14.231.21.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized IMAP connection attempt	2019-12-30 08:47:11

相同子网IP讨论:

IP	类型	评论内容	时间
14.231.210.182	attackbots	445/tcp 445/tcp [2020-07-08]2pkt	2020-07-09 02:22:50
14.231.218.184	attackspam	1591617845 - 06/08/2020 14:04:05 Host: 14.231.218.184/14.231.218.184 Port: 445 TCP Blocked	2020-06-09 01:16:37
14.231.215.45	attackspam	Unauthorized connection attempt from IP address 14.231.215.45 on Port 445(SMB)	2020-06-05 02:58:04
14.231.218.69	attack	Unauthorized connection attempt from IP address 14.231.218.69 on Port 445(SMB)	2020-04-06 22:06:46
14.231.219.93	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-03-2020 03:50:15.	2020-03-26 18:44:01
14.231.216.189	attackspambots	2020-03-0605:52:251jA4yD-0003Qj-Vb\<=verena@rs-solution.chH=\(localhost\)[14.169.170.130]:59814P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2307id=4D48FEADA6725CEF33367FC73397A85D@rs-solution.chT="Onlyneedatinyamountofyourinterest"forseaboy1335@gmail.comjasminecovarruvias7@gmail.com2020-03-0605:53:301jA4zK-0003Xy-3l\<=verena@rs-solution.chH=\(localhost\)[14.231.155.177]:53062P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2272id=878234676CB89625F9FCB50DF9781E97@rs-solution.chT="Areyoupresentlylookingforlove\?"forscottbrian751@gmail.commoot843@yahoo.com2020-03-0605:52:241jA4yF-0003SU-A8\<=verena@rs-solution.chH=\(localhost\)[14.231.216.189]:54579P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2322id=EEEB5D0E05D1FF4C9095DC6490E31ED8@rs-solution.chT="Justchosetogetacquaintedwithyou"forthomas.herault@hotmail.commicahway08@gmail.com2020-03-0605:52:581jA4yo-0003VD-2D\<=vere	2020-03-06 17:03:43
14.231.210.68	attackspambots	Feb 16 13:47:18 hanapaa sshd\[14382\]: Invalid user stats from 14.231.210.68 Feb 16 13:47:18 hanapaa sshd\[14382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.210.68 Feb 16 13:47:20 hanapaa sshd\[14382\]: Failed password for invalid user stats from 14.231.210.68 port 65321 ssh2 Feb 16 13:47:22 hanapaa sshd\[14392\]: Invalid user stats from 14.231.210.68 Feb 16 13:47:22 hanapaa sshd\[14392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.210.68	2020-02-17 08:06:59
14.231.211.107	attack	Feb 13 11:56:51 hanapaa sshd\[12110\]: Failed password for invalid user mikhail from 14.231.211.107 port 54878 ssh2 Feb 13 11:56:53 hanapaa sshd\[12115\]: Invalid user mikhail from 14.231.211.107 Feb 13 11:56:53 hanapaa sshd\[12115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.211.107 Feb 13 11:56:55 hanapaa sshd\[12115\]: Failed password for invalid user mikhail from 14.231.211.107 port 56399 ssh2 Feb 13 11:56:56 hanapaa sshd\[12132\]: Invalid user mikhail from 14.231.211.107	2020-02-14 08:57:12
14.231.21.153	attackbotsspam	Feb 10 06:53:37 ncomp sshd[30883]: Invalid user admin2 from 14.231.21.153 Feb 10 06:53:38 ncomp sshd[30883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.21.153 Feb 10 06:53:37 ncomp sshd[30883]: Invalid user admin2 from 14.231.21.153 Feb 10 06:53:40 ncomp sshd[30883]: Failed password for invalid user admin2 from 14.231.21.153 port 64765 ssh2	2020-02-10 16:45:18
14.231.216.40	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 14.231.216.40 (static.vnpt.vn): 5 in the last 3600 secs - Wed Dec 19 22:05:27 2018	2020-02-07 09:43:25
14.231.213.1	attack	445/tcp [2020-02-01]1pkt	2020-02-02 03:49:59
14.231.210.223	attackbots	Brute force attempt	2020-01-26 19:11:47
14.231.214.183	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-01-18 09:10:06
14.231.210.104	attack	IP: 14.231.210.104 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS45899 VNPT Corp Vietnam (VN) CIDR 14.228.0.0/14 Log Date: 16/01/2020 4:06:39 AM UTC	2020-01-16 20:06:12
14.231.217.198	attackspam	Nov 23 15:22:57 riskplan-s sshd[32106]: Address 14.231.217.198 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 23 15:22:57 riskplan-s sshd[32106]: Invalid user admin from 14.231.217.198 Nov 23 15:22:57 riskplan-s sshd[32106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.217.198 Nov 23 15:22:59 riskplan-s sshd[32106]: Failed password for invalid user admin from 14.231.217.198 port 56507 ssh2 Nov 23 15:23:01 riskplan-s sshd[32106]: Connection closed by 14.231.217.198 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.231.217.198	2019-11-23 22:43:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.231.21.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.231.21.148.			IN	A

;; AUTHORITY SECTION:
.			394	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122901 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 08:47:08 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.21.231.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.21.231.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.255.4.27	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:27.	2019-11-26 18:32:05
54.38.188.34	attackbotsspam	2019-11-26T09:23:04.917306shield sshd\[12487\]: Invalid user qwerty from 54.38.188.34 port 40348 2019-11-26T09:23:04.921690shield sshd\[12487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-54-38-188.eu 2019-11-26T09:23:07.113574shield sshd\[12487\]: Failed password for invalid user qwerty from 54.38.188.34 port 40348 ssh2 2019-11-26T09:29:05.457956shield sshd\[13139\]: Invalid user vahe from 54.38.188.34 port 48476 2019-11-26T09:29:05.462115shield sshd\[13139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-54-38-188.eu	2019-11-26 18:34:49
172.105.89.161	attackbotsspam	172.105.89.161 was recorded 14 times by 14 hosts attempting to connect to the following ports: 55384,56920. Incident counter (4h, 24h, all-time): 14, 83, 1946	2019-11-26 18:36:45
218.92.0.193	attackbots	2019-11-26T11:02:12.574236hub.schaetter.us sshd\[24275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.193 user=root 2019-11-26T11:02:15.315202hub.schaetter.us sshd\[24275\]: Failed password for root from 218.92.0.193 port 59469 ssh2 2019-11-26T11:02:18.485314hub.schaetter.us sshd\[24275\]: Failed password for root from 218.92.0.193 port 59469 ssh2 2019-11-26T11:02:21.403904hub.schaetter.us sshd\[24275\]: Failed password for root from 218.92.0.193 port 59469 ssh2 2019-11-26T11:02:24.730785hub.schaetter.us sshd\[24275\]: Failed password for root from 218.92.0.193 port 59469 ssh2 ...	2019-11-26 19:03:29
173.0.55.106	attack	Mon, 2019-11-25 12:48:03 - UDP Packet - Source:173.0.55.106,5141 Destination:my IP address - [DOS]	2019-11-26 18:53:42
41.45.182.13	attackbotsspam	Nov 26 07:24:37 [munged] sshd[6922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.45.182.13	2019-11-26 18:58:00
34.219.255.111	attackspambots	Automatic report - Web App Attack	2019-11-26 19:03:03
141.28.73.7	attack	Nov 26 07:43:36 game-panel sshd[23148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.28.73.7 Nov 26 07:43:38 game-panel sshd[23148]: Failed password for invalid user cssserver from 141.28.73.7 port 32888 ssh2 Nov 26 07:49:09 game-panel sshd[23310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.28.73.7	2019-11-26 18:58:42
173.0.55.106	attack	Mon, 2019-11-25 12:48:03 - UDP Packet - Source:173.0.55.106,5141 Destination:my IP address - [DOS]	2019-11-26 18:53:39
113.160.152.250	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:30.	2019-11-26 18:28:15
66.249.79.70	attack	Automatic report - Banned IP Access	2019-11-26 18:59:48
104.236.31.227	attackspam	Nov 26 11:14:41 h2812830 sshd[32518]: Invalid user alijo85 from 104.236.31.227 port 34251 Nov 26 11:14:41 h2812830 sshd[32518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.31.227 Nov 26 11:14:41 h2812830 sshd[32518]: Invalid user alijo85 from 104.236.31.227 port 34251 Nov 26 11:14:43 h2812830 sshd[32518]: Failed password for invalid user alijo85 from 104.236.31.227 port 34251 ssh2 Nov 26 11:52:05 h2812830 sshd[2108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.31.227 user=root Nov 26 11:52:07 h2812830 sshd[2108]: Failed password for root from 104.236.31.227 port 35977 ssh2 ...	2019-11-26 18:59:19
185.62.85.150	attackbots	Nov 26 06:18:44 venus sshd\[12124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.85.150 user=root Nov 26 06:18:46 venus sshd\[12124\]: Failed password for root from 185.62.85.150 port 56748 ssh2 Nov 26 06:24:37 venus sshd\[12293\]: Invalid user juve from 185.62.85.150 port 35522 ...	2019-11-26 19:01:45
222.128.59.164	attack	Nov 26 11:06:18 debian sshd\[25047\]: Invalid user test4 from 222.128.59.164 port 37803 Nov 26 11:06:18 debian sshd\[25047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.59.164 Nov 26 11:06:20 debian sshd\[25047\]: Failed password for invalid user test4 from 222.128.59.164 port 37803 ssh2 ...	2019-11-26 18:47:42
103.123.43.42	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:27.	2019-11-26 18:32:23

最近上报的IP列表

207.5.150.194	183.80.89.245	10.23.248.149	183.6.155.145
244.232.11.95	151.170.152.101	180.218.122.48	227.180.249.158
180.97.204.211	76.134.208.72	124.235.118.14	95.177.102.8
251.105.60.178	123.207.73.150	216.82.37.37	123.25.70.12
121.28.131.228	120.203.15.155	118.191.216.249	112.168.215.149