14.231.21.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized IMAP connection attempt	2019-12-30 08:47:11

相同子网IP讨论:

IP	类型	评论内容	时间
14.231.210.182	attackbots	445/tcp 445/tcp [2020-07-08]2pkt	2020-07-09 02:22:50
14.231.218.184	attackspam	1591617845 - 06/08/2020 14:04:05 Host: 14.231.218.184/14.231.218.184 Port: 445 TCP Blocked	2020-06-09 01:16:37
14.231.215.45	attackspam	Unauthorized connection attempt from IP address 14.231.215.45 on Port 445(SMB)	2020-06-05 02:58:04
14.231.218.69	attack	Unauthorized connection attempt from IP address 14.231.218.69 on Port 445(SMB)	2020-04-06 22:06:46
14.231.219.93	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-03-2020 03:50:15.	2020-03-26 18:44:01
14.231.216.189	attackspambots	2020-03-0605:52:251jA4yD-0003Qj-Vb\<=verena@rs-solution.chH=\(localhost\)[14.169.170.130]:59814P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2307id=4D48FEADA6725CEF33367FC73397A85D@rs-solution.chT="Onlyneedatinyamountofyourinterest"forseaboy1335@gmail.comjasminecovarruvias7@gmail.com2020-03-0605:53:301jA4zK-0003Xy-3l\<=verena@rs-solution.chH=\(localhost\)[14.231.155.177]:53062P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2272id=878234676CB89625F9FCB50DF9781E97@rs-solution.chT="Areyoupresentlylookingforlove\?"forscottbrian751@gmail.commoot843@yahoo.com2020-03-0605:52:241jA4yF-0003SU-A8\<=verena@rs-solution.chH=\(localhost\)[14.231.216.189]:54579P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2322id=EEEB5D0E05D1FF4C9095DC6490E31ED8@rs-solution.chT="Justchosetogetacquaintedwithyou"forthomas.herault@hotmail.commicahway08@gmail.com2020-03-0605:52:581jA4yo-0003VD-2D\<=vere	2020-03-06 17:03:43
14.231.210.68	attackspambots	Feb 16 13:47:18 hanapaa sshd\[14382\]: Invalid user stats from 14.231.210.68 Feb 16 13:47:18 hanapaa sshd\[14382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.210.68 Feb 16 13:47:20 hanapaa sshd\[14382\]: Failed password for invalid user stats from 14.231.210.68 port 65321 ssh2 Feb 16 13:47:22 hanapaa sshd\[14392\]: Invalid user stats from 14.231.210.68 Feb 16 13:47:22 hanapaa sshd\[14392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.210.68	2020-02-17 08:06:59
14.231.211.107	attack	Feb 13 11:56:51 hanapaa sshd\[12110\]: Failed password for invalid user mikhail from 14.231.211.107 port 54878 ssh2 Feb 13 11:56:53 hanapaa sshd\[12115\]: Invalid user mikhail from 14.231.211.107 Feb 13 11:56:53 hanapaa sshd\[12115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.211.107 Feb 13 11:56:55 hanapaa sshd\[12115\]: Failed password for invalid user mikhail from 14.231.211.107 port 56399 ssh2 Feb 13 11:56:56 hanapaa sshd\[12132\]: Invalid user mikhail from 14.231.211.107	2020-02-14 08:57:12
14.231.21.153	attackbotsspam	Feb 10 06:53:37 ncomp sshd[30883]: Invalid user admin2 from 14.231.21.153 Feb 10 06:53:38 ncomp sshd[30883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.21.153 Feb 10 06:53:37 ncomp sshd[30883]: Invalid user admin2 from 14.231.21.153 Feb 10 06:53:40 ncomp sshd[30883]: Failed password for invalid user admin2 from 14.231.21.153 port 64765 ssh2	2020-02-10 16:45:18
14.231.216.40	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 14.231.216.40 (static.vnpt.vn): 5 in the last 3600 secs - Wed Dec 19 22:05:27 2018	2020-02-07 09:43:25
14.231.213.1	attack	445/tcp [2020-02-01]1pkt	2020-02-02 03:49:59
14.231.210.223	attackbots	Brute force attempt	2020-01-26 19:11:47
14.231.214.183	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-01-18 09:10:06
14.231.210.104	attack	IP: 14.231.210.104 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS45899 VNPT Corp Vietnam (VN) CIDR 14.228.0.0/14 Log Date: 16/01/2020 4:06:39 AM UTC	2020-01-16 20:06:12
14.231.217.198	attackspam	Nov 23 15:22:57 riskplan-s sshd[32106]: Address 14.231.217.198 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 23 15:22:57 riskplan-s sshd[32106]: Invalid user admin from 14.231.217.198 Nov 23 15:22:57 riskplan-s sshd[32106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.217.198 Nov 23 15:22:59 riskplan-s sshd[32106]: Failed password for invalid user admin from 14.231.217.198 port 56507 ssh2 Nov 23 15:23:01 riskplan-s sshd[32106]: Connection closed by 14.231.217.198 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.231.217.198	2019-11-23 22:43:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.231.21.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.231.21.148.			IN	A

;; AUTHORITY SECTION:
.			394	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122901 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 08:47:08 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.21.231.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.21.231.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

IP	类型	评论内容	时间
94.183.47.161	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-20 02:52:37
51.158.113.27	attackbots	5x Failed Password	2020-02-20 02:58:57
175.212.87.136	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-20 02:26:17
123.31.43.40	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-02-20 02:51:43
218.145.212.72	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-20 02:43:12
211.217.210.21	attackbotsspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-20 02:38:00
167.62.121.4	attackbots	Automatic report - Port Scan Attack	2020-02-20 02:48:53
106.12.193.6	attackbots	5x Failed Password	2020-02-20 02:46:37
124.46.186.67	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-20 02:25:10
94.130.221.57	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-20 02:55:16
104.244.75.244	attackspambots	port	2020-02-20 03:03:41
134.175.38.75	attack	Feb 19 16:32:38 dedicated sshd[14618]: Invalid user administrator from 134.175.38.75 port 43342	2020-02-20 02:49:25
47.74.245.7	attackspambots	Feb 19 03:55:09 web9 sshd\[23693\]: Invalid user libuuid from 47.74.245.7 Feb 19 03:55:09 web9 sshd\[23693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.74.245.7 Feb 19 03:55:10 web9 sshd\[23693\]: Failed password for invalid user libuuid from 47.74.245.7 port 48252 ssh2 Feb 19 03:55:41 web9 sshd\[23766\]: Invalid user confluence from 47.74.245.7 Feb 19 03:55:41 web9 sshd\[23766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.74.245.7	2020-02-20 02:28:23
177.10.217.90	attackbots	port scan and connect, tcp 8000 (http-alt)	2020-02-20 03:06:02
49.235.83.156	attack	Feb 19 05:15:39 wbs sshd\[16321\]: Invalid user nginx from 49.235.83.156 Feb 19 05:15:39 wbs sshd\[16321\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.83.156 Feb 19 05:15:42 wbs sshd\[16321\]: Failed password for invalid user nginx from 49.235.83.156 port 58618 ssh2 Feb 19 05:18:02 wbs sshd\[16560\]: Invalid user vmail from 49.235.83.156 Feb 19 05:18:02 wbs sshd\[16560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.83.156	2020-02-20 03:05:21

最近上报的IP列表

207.5.150.194	183.80.89.245	10.23.248.149	183.6.155.145
244.232.11.95	151.170.152.101	180.218.122.48	227.180.249.158
180.97.204.211	76.134.208.72	124.235.118.14	95.177.102.8
251.105.60.178	123.207.73.150	216.82.37.37	123.25.70.12
121.28.131.228	120.203.15.155	118.191.216.249	112.168.215.149