14.191.111.169

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Port Scan Attack	2019-11-13 15:53:37

相同子网IP讨论:

IP	类型	评论内容	时间
14.191.111.131	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: static.vnpt.vn.	2020-10-08 02:46:58
14.191.111.131	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: static.vnpt.vn.	2020-10-07 19:00:47
14.191.111.128	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-01 22:25:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.191.111.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1978
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.191.111.169.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111300 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 15:53:30 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

169.111.191.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
169.111.191.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.248.174.39	attack	Apr 1 12:55:15 ns3042688 courier-pop3d: LOGIN FAILED, user=bilgi@tienda-dewalt.eu, ip=\[::ffff:89.248.174.39\] ...	2020-04-01 19:02:55
34.84.101.187	attackspam	$f2bV_matches	2020-04-01 19:10:19
137.74.173.182	attackspam	Apr 1 07:06:07 NPSTNNYC01T sshd[19276]: Failed password for root from 137.74.173.182 port 33076 ssh2 Apr 1 07:09:47 NPSTNNYC01T sshd[19529]: Failed password for root from 137.74.173.182 port 44788 ssh2 ...	2020-04-01 19:15:18
194.204.194.11	attackbots	SSH brute force attempt	2020-04-01 19:06:23
148.70.68.175	attack	Apr 1 08:12:11 srv01 sshd[17791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.175 user=root Apr 1 08:12:12 srv01 sshd[17791]: Failed password for root from 148.70.68.175 port 52856 ssh2 Apr 1 08:15:42 srv01 sshd[17979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.175 user=root Apr 1 08:15:43 srv01 sshd[17979]: Failed password for root from 148.70.68.175 port 60936 ssh2 Apr 1 08:19:00 srv01 sshd[18134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.175 user=root Apr 1 08:19:02 srv01 sshd[18134]: Failed password for root from 148.70.68.175 port 40782 ssh2 ...	2020-04-01 19:10:45
89.208.29.161	attackbots	Malicious brute force vulnerability hacking attacks	2020-04-01 19:18:21
107.170.18.163	attackspam	(sshd) Failed SSH login from 107.170.18.163 (US/United States/-): 5 in the last 3600 secs	2020-04-01 19:24:13
223.220.251.232	attackspam	Apr 1 10:47:13 srv01 sshd[28419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.220.251.232 user=root Apr 1 10:47:15 srv01 sshd[28419]: Failed password for root from 223.220.251.232 port 40762 ssh2 Apr 1 10:49:54 srv01 sshd[28598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.220.251.232 user=root Apr 1 10:49:56 srv01 sshd[28598]: Failed password for root from 223.220.251.232 port 56369 ssh2 Apr 1 10:52:44 srv01 sshd[28840]: Invalid user chengm from 223.220.251.232 port 43771 ...	2020-04-01 19:23:46
209.240.232.114	attackbots	Apr 1 06:39:03 mail sshd\[6235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.240.232.114 user=root ...	2020-04-01 18:53:10
80.211.57.181	attack	80.211.57.181 - - \[01/Apr/2020:11:37:02 +0200\] "POST /wp-login.php HTTP/1.0" 200 6997 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 80.211.57.181 - - \[01/Apr/2020:11:37:03 +0200\] "POST /wp-login.php HTTP/1.0" 200 6864 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 80.211.57.181 - - \[01/Apr/2020:11:37:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6860 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-04-01 19:25:45
119.29.158.26	attackspam	k+ssh-bruteforce	2020-04-01 19:22:52
149.56.183.202	attackbots	2020-04-01 13:32:05,266 fail2ban.actions: WARNING [ssh] Ban 149.56.183.202	2020-04-01 19:32:51
51.91.79.232	attack	Apr 1 05:38:43 mail sshd\[37259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.79.232 user=root ...	2020-04-01 19:29:34
63.143.57.30	attackbots	[2020-04-01 06:32:52] NOTICE[1148][C-00019d38] chan_sip.c: Call from '' (63.143.57.30:58197) to extension '011972599088868' rejected because extension not found in context 'public'. [2020-04-01 06:32:52] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-01T06:32:52.043-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972599088868",SessionID="0x7fd82c43c848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.57.30/58197",ACLName="no_extension_match" [2020-04-01 06:35:06] NOTICE[1148][C-00019d3a] chan_sip.c: Call from '' (63.143.57.30:57402) to extension '9011972599088868' rejected because extension not found in context 'public'. [2020-04-01 06:35:06] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-01T06:35:06.516-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011972599088868",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/6 ...	2020-04-01 18:52:27
129.204.240.42	attack	2020-04-01T12:21:18.805234vps773228.ovh.net sshd[22832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.240.42 2020-04-01T12:21:18.789868vps773228.ovh.net sshd[22832]: Invalid user suruiqiang from 129.204.240.42 port 53002 2020-04-01T12:21:20.653079vps773228.ovh.net sshd[22832]: Failed password for invalid user suruiqiang from 129.204.240.42 port 53002 ssh2 2020-04-01T12:27:35.443219vps773228.ovh.net sshd[25139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.240.42 user=root 2020-04-01T12:27:37.045507vps773228.ovh.net sshd[25139]: Failed password for root from 129.204.240.42 port 35694 ssh2 ...	2020-04-01 19:15:33

最近上报的IP列表

105.227.143.209	192.34.61.49	113.172.163.153	14.231.228.41
116.118.2.171	113.188.184.146	185.102.238.194	5.81.17.72
34.92.155.26	190.0.11.90	189.172.41.180	178.182.247.4
76.248.248.52	61.7.191.132	41.76.80.119	201.235.168.104
46.21.54.224	123.21.235.81	124.156.206.152	119.42.88.183