14.231.205.140

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	1578459124 - 01/08/2020 05:52:04 Host: 14.231.205.140/14.231.205.140 Port: 445 TCP Blocked	2020-01-08 16:06:49

相同子网IP讨论:

IP	类型	评论内容	时间
14.231.205.24	attackspambots	445/tcp [2019-12-06]1pkt	2019-12-06 22:57:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.231.205.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.231.205.140.			IN	A

;; AUTHORITY SECTION:
.			423	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010800 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 16:06:45 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

140.205.231.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.205.231.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.99.192.189	attack	[2020-08-24 02:08:33] NOTICE[1185] chan_sip.c: Registration from '"322"' failed for '139.99.192.189:23369' - Wrong password [2020-08-24 02:08:33] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-24T02:08:33.794-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="322",SessionID="0x7f10c4239d98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/139.99.192.189/23369",Challenge="11cf6f0a",ReceivedChallenge="11cf6f0a",ReceivedHash="265c52b28983f18d23133d93ab72aca2" [2020-08-24 02:10:46] NOTICE[1185] chan_sip.c: Registration from '"323"' failed for '139.99.192.189:33802' - Wrong password [2020-08-24 02:10:46] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-24T02:10:46.457-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="323",SessionID="0x7f10c405a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/139. ...	2020-08-24 14:57:28
222.186.175.150	attackbots	Aug 23 23:49:14 dignus sshd[11680]: Failed password for root from 222.186.175.150 port 45722 ssh2 Aug 23 23:49:23 dignus sshd[11680]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 45722 ssh2 [preauth] Aug 23 23:49:30 dignus sshd[11712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Aug 23 23:49:31 dignus sshd[11712]: Failed password for root from 222.186.175.150 port 48950 ssh2 Aug 23 23:49:34 dignus sshd[11712]: Failed password for root from 222.186.175.150 port 48950 ssh2 ...	2020-08-24 14:54:09
42.112.211.52	attack	Lines containing failures of 42.112.211.52 Aug 24 04:26:29 kmh-vmh-003-fsn07 sshd[10353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 user=r.r Aug 24 04:26:31 kmh-vmh-003-fsn07 sshd[10353]: Failed password for r.r from 42.112.211.52 port 35634 ssh2 Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Received disconnect from 42.112.211.52 port 35634:11: Bye Bye [preauth] Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Disconnected from authenticating user r.r 42.112.211.52 port 35634 [preauth] Aug 24 04:44:55 kmh-vmh-003-fsn07 sshd[12890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 user=r.r Aug 24 04:44:57 kmh-vmh-003-fsn07 sshd[12890]: Failed password for r.r from 42.112.211.52 port 23324 ssh2 Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Received disconnect from 42.112.211.52 port 23324:11: Bye Bye [preauth] Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Dis........ ------------------------------	2020-08-24 14:38:32
141.98.9.156	attack	5x Failed Password	2020-08-24 15:03:28
58.87.78.55	attackspambots	Aug 23 22:49:31 dignus sshd[4474]: Failed password for invalid user yq from 58.87.78.55 port 59424 ssh2 Aug 23 22:52:16 dignus sshd[4788]: Invalid user oracle from 58.87.78.55 port 56178 Aug 23 22:52:16 dignus sshd[4788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.78.55 Aug 23 22:52:18 dignus sshd[4788]: Failed password for invalid user oracle from 58.87.78.55 port 56178 ssh2 Aug 23 22:54:56 dignus sshd[5086]: Invalid user vp from 58.87.78.55 port 52934 ...	2020-08-24 14:45:58
148.70.173.252	attackspambots	Aug 24 00:53:50 ws24vmsma01 sshd[42114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.173.252 Aug 24 00:53:52 ws24vmsma01 sshd[42114]: Failed password for invalid user trace from 148.70.173.252 port 10558 ssh2 ...	2020-08-24 14:40:44
218.92.0.206	attack	Aug 24 09:01:49 santamaria sshd\[13212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.206 user=root Aug 24 09:01:51 santamaria sshd\[13212\]: Failed password for root from 218.92.0.206 port 35782 ssh2 Aug 24 09:04:41 santamaria sshd\[13271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.206 user=root ...	2020-08-24 15:06:19
117.87.209.243	attackspambots	Automatic report - Port Scan Attack	2020-08-24 14:41:23
211.22.154.223	attack	Aug 24 05:49:08 OPSO sshd\[29448\]: Invalid user paintball from 211.22.154.223 port 56894 Aug 24 05:49:08 OPSO sshd\[29448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.22.154.223 Aug 24 05:49:10 OPSO sshd\[29448\]: Failed password for invalid user paintball from 211.22.154.223 port 56894 ssh2 Aug 24 05:53:14 OPSO sshd\[30823\]: Invalid user robert from 211.22.154.223 port 34372 Aug 24 05:53:14 OPSO sshd\[30823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.22.154.223	2020-08-24 15:05:57
187.123.142.23	attackbots	SSH Brute-force	2020-08-24 15:01:09
58.220.87.226	attackspambots	Aug 24 07:54:49 rotator sshd\[19224\]: Invalid user 1 from 58.220.87.226Aug 24 07:54:51 rotator sshd\[19224\]: Failed password for invalid user 1 from 58.220.87.226 port 38086 ssh2Aug 24 07:56:17 rotator sshd\[19986\]: Invalid user salman123 from 58.220.87.226Aug 24 07:56:19 rotator sshd\[19986\]: Failed password for invalid user salman123 from 58.220.87.226 port 48624 ssh2Aug 24 07:57:44 rotator sshd\[20006\]: Invalid user piper from 58.220.87.226Aug 24 07:57:46 rotator sshd\[20006\]: Failed password for invalid user piper from 58.220.87.226 port 59176 ssh2 ...	2020-08-24 14:42:27
200.105.183.118	attackspambots	Aug 24 05:50:58 ns382633 sshd\[10316\]: Invalid user user from 200.105.183.118 port 4097 Aug 24 05:50:58 ns382633 sshd\[10316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.183.118 Aug 24 05:51:01 ns382633 sshd\[10316\]: Failed password for invalid user user from 200.105.183.118 port 4097 ssh2 Aug 24 05:53:11 ns382633 sshd\[10516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.183.118 user=root Aug 24 05:53:13 ns382633 sshd\[10516\]: Failed password for root from 200.105.183.118 port 12929 ssh2	2020-08-24 15:06:32
202.147.198.154	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-24 15:03:01
49.235.136.49	attack	Aug 23 23:59:46 propaganda sshd[43815]: Connection from 49.235.136.49 port 40308 on 10.0.0.161 port 22 rdomain "" Aug 23 23:59:47 propaganda sshd[43815]: Connection closed by 49.235.136.49 port 40308 [preauth]	2020-08-24 15:13:14
171.247.169.201	attackspam	20/8/24@00:54:22: FAIL: Alarm-Network address from=171.247.169.201 20/8/24@00:54:22: FAIL: Alarm-Network address from=171.247.169.201 ...	2020-08-24 14:38:51

最近上报的IP列表

67.48.201.204	173.56.185.192	1.20.157.148	106.39.213.124
14.229.229.132	251.187.114.82	109.27.15.75	184.72.213.194
117.103.2.114	98.38.145.100	171.225.157.240	18.223.213.110
194.67.211.239	41.37.158.50	138.197.113.240	46.101.119.148
103.87.143.115	117.0.193.249	176.234.19.108	117.220.176.129