14.231.117.71 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-09-07 20:41:51
attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-09-07 12:25:22
attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-09-07 05:08:50

相同子网IP讨论:

IP	类型	评论内容	时间
14.231.117.37	attack	Unauthorized connection attempt from IP address 14.231.117.37 on Port 445(SMB)	2019-07-09 12:31:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.231.117.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29201
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.231.117.71.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090601 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 07 05:08:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

71.117.231.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.117.231.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
156.96.56.57	attackbots	Brute forcing email accounts	2020-06-07 23:00:59
176.113.115.33	attackbots	06/07/2020-10:13:53.727097 176.113.115.33 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-07 23:10:11
193.106.155.55	attack	Jun 5 19:08:15 mail.srvfarm.net postfix/smtpd[3192029]: warning: unknown[193.106.155.55]: SASL PLAIN authentication failed: Jun 5 19:08:15 mail.srvfarm.net postfix/smtpd[3192029]: lost connection after AUTH from unknown[193.106.155.55] Jun 5 19:15:05 mail.srvfarm.net postfix/smtpd[3192029]: warning: unknown[193.106.155.55]: SASL PLAIN authentication failed: Jun 5 19:15:05 mail.srvfarm.net postfix/smtpd[3192029]: lost connection after AUTH from unknown[193.106.155.55] Jun 5 19:17:49 mail.srvfarm.net postfix/smtps/smtpd[3191647]: warning: unknown[193.106.155.55]: SASL PLAIN authentication failed:	2020-06-07 23:28:42
211.157.179.38	attack	Jun 7 14:18:49 legacy sshd[5720]: Failed password for root from 211.157.179.38 port 35940 ssh2 Jun 7 14:22:42 legacy sshd[5864]: Failed password for root from 211.157.179.38 port 58187 ssh2 ...	2020-06-07 22:56:53
222.186.175.148	attackbots	Jun 7 17:07:19 pve1 sshd[20450]: Failed password for root from 222.186.175.148 port 11622 ssh2 Jun 7 17:07:22 pve1 sshd[20450]: Failed password for root from 222.186.175.148 port 11622 ssh2 ...	2020-06-07 23:11:43
42.2.136.107	attack	Brute-force attempt banned	2020-06-07 23:21:10
217.182.77.186	attack	2020-06-07T11:59:24.373126shield sshd\[4561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.ip-217-182-77.eu user=root 2020-06-07T11:59:26.706866shield sshd\[4561\]: Failed password for root from 217.182.77.186 port 34880 ssh2 2020-06-07T12:02:58.484350shield sshd\[6389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.ip-217-182-77.eu user=root 2020-06-07T12:03:00.175350shield sshd\[6389\]: Failed password for root from 217.182.77.186 port 38396 ssh2 2020-06-07T12:06:36.889813shield sshd\[7692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.ip-217-182-77.eu user=root	2020-06-07 23:03:03
195.93.143.172	attackbots	Jun 5 18:11:28 mail.srvfarm.net postfix/smtpd[3160155]: warning: unknown[195.93.143.172]: SASL PLAIN authentication failed: Jun 5 18:11:28 mail.srvfarm.net postfix/smtpd[3160155]: lost connection after AUTH from unknown[195.93.143.172] Jun 5 18:12:41 mail.srvfarm.net postfix/smtps/smtpd[3160855]: warning: unknown[195.93.143.172]: SASL PLAIN authentication failed: Jun 5 18:12:41 mail.srvfarm.net postfix/smtps/smtpd[3160855]: lost connection after AUTH from unknown[195.93.143.172] Jun 5 18:15:40 mail.srvfarm.net postfix/smtps/smtpd[3172531]: warning: unknown[195.93.143.172]: SASL PLAIN authentication failed:	2020-06-07 23:28:07
106.13.94.193	attackspam	Jun 7 15:58:27 vps sshd[519822]: Failed password for root from 106.13.94.193 port 34244 ssh2 Jun 7 16:00:41 vps sshd[531947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:00:44 vps sshd[531947]: Failed password for root from 106.13.94.193 port 33130 ssh2 Jun 7 16:03:03 vps sshd[541155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.94.193 user=root Jun 7 16:03:04 vps sshd[541155]: Failed password for root from 106.13.94.193 port 60254 ssh2 ...	2020-06-07 23:16:18
150.109.108.25	attackspambots	Jun 7 13:12:43 web8 sshd\[5493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.108.25 user=root Jun 7 13:12:45 web8 sshd\[5493\]: Failed password for root from 150.109.108.25 port 37904 ssh2 Jun 7 13:16:29 web8 sshd\[7606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.108.25 user=root Jun 7 13:16:31 web8 sshd\[7606\]: Failed password for root from 150.109.108.25 port 41494 ssh2 Jun 7 13:20:16 web8 sshd\[9544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.108.25 user=root	2020-06-07 22:57:39
187.0.185.126	attackspam	Automatic report - Banned IP Access	2020-06-07 23:14:34
93.99.133.168	attackbotsspam	Jun 5 19:12:53 mail.srvfarm.net postfix/smtps/smtpd[3191648]: warning: unknown[93.99.133.168]: SASL PLAIN authentication failed: Jun 5 19:12:53 mail.srvfarm.net postfix/smtps/smtpd[3191648]: lost connection after AUTH from unknown[93.99.133.168] Jun 5 19:14:30 mail.srvfarm.net postfix/smtpd[3177784]: warning: unknown[93.99.133.168]: SASL PLAIN authentication failed: Jun 5 19:14:30 mail.srvfarm.net postfix/smtpd[3177784]: lost connection after AUTH from unknown[93.99.133.168] Jun 5 19:20:37 mail.srvfarm.net postfix/smtpd[3177813]: warning: unknown[93.99.133.168]: SASL PLAIN authentication failed:	2020-06-07 23:39:59
216.244.66.238	attackbots	login attempts	2020-06-07 23:15:35
177.21.195.107	attack	Jun 5 19:00:49 mail.srvfarm.net postfix/smtps/smtpd[3178011]: warning: unknown[177.21.195.107]: SASL PLAIN authentication failed: Jun 5 19:00:49 mail.srvfarm.net postfix/smtps/smtpd[3178011]: lost connection after AUTH from unknown[177.21.195.107] Jun 5 19:07:20 mail.srvfarm.net postfix/smtpd[3177813]: warning: unknown[177.21.195.107]: SASL PLAIN authentication failed: Jun 5 19:07:21 mail.srvfarm.net postfix/smtpd[3177813]: lost connection after AUTH from unknown[177.21.195.107] Jun 5 19:09:51 mail.srvfarm.net postfix/smtps/smtpd[3178015]: warning: unknown[177.21.195.107]: SASL PLAIN authentication failed:	2020-06-07 23:35:25
200.66.124.55	attack	Jun 5 19:06:28 mail.srvfarm.net postfix/smtpd[3176227]: warning: unknown[200.66.124.55]: SASL PLAIN authentication failed: Jun 5 19:06:28 mail.srvfarm.net postfix/smtpd[3176227]: lost connection after AUTH from unknown[200.66.124.55] Jun 5 19:10:06 mail.srvfarm.net postfix/smtps/smtpd[3191656]: warning: unknown[200.66.124.55]: SASL PLAIN authentication failed: Jun 5 19:10:06 mail.srvfarm.net postfix/smtps/smtpd[3191656]: lost connection after AUTH from unknown[200.66.124.55] Jun 5 19:14:24 mail.srvfarm.net postfix/smtps/smtpd[3191650]: warning: unknown[200.66.124.55]: SASL PLAIN authentication failed:	2020-06-07 23:27:37

最近上报的IP列表

195.145.62.68	200.94.21.27	217.172.77.106	83.176.189.189
186.21.215.39	179.182.183.228	133.211.116.42	134.68.111.38
157.140.33.172	212.191.114.196	181.18.24.98	23.101.132.246
104.244.74.223	189.170.62.37	197.49.209.166	113.116.98.192
143.202.179.12	171.221.150.182	117.212.53.111	36.80.97.187