14.244.116.63 - IPInfo

基本信息:

城市(city): Bac Giang

省份(region): Tinh Bac Giang

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 14.244.116.63 on Port 445(SMB)	2020-06-17 07:40:03

相同子网IP讨论:

IP	类型	评论内容	时间
14.244.116.173	attack	1578316452 - 01/06/2020 14:14:12 Host: 14.244.116.173/14.244.116.173 Port: 445 TCP Blocked	2020-01-06 21:27:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.244.116.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.244.116.63.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061602 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 07:39:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

63.116.244.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.116.244.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.28.214.129	attackbotsspam	Jun 16 08:44:34 mail.srvfarm.net postfix/smtpd[1065370]: NOQUEUE: reject: RCPT from unknown[119.28.214.129]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 16 08:44:39 mail.srvfarm.net postfix/smtpd[1065370]: NOQUEUE: reject: RCPT from unknown[119.28.214.129]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 16 08:44:40 mail.srvfarm.net postfix/smtpd[1065370]: NOQUEUE: reject: RCPT from unknown[119.28.214.129]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 16 08:44:41 mail	2020-06-16 16:16:59
103.237.57.65	attack	Jun 16 05:28:32 mail.srvfarm.net postfix/smtps/smtpd[956593]: warning: unknown[103.237.57.65]: SASL PLAIN authentication failed: Jun 16 05:28:32 mail.srvfarm.net postfix/smtps/smtpd[956593]: lost connection after AUTH from unknown[103.237.57.65] Jun 16 05:30:29 mail.srvfarm.net postfix/smtpd[953423]: warning: unknown[103.237.57.65]: SASL PLAIN authentication failed: Jun 16 05:30:30 mail.srvfarm.net postfix/smtpd[953423]: lost connection after AUTH from unknown[103.237.57.65] Jun 16 05:33:18 mail.srvfarm.net postfix/smtpd[953490]: warning: unknown[103.237.57.65]: SASL PLAIN authentication failed:	2020-06-16 16:18:23
109.203.187.9	attackspam	Jun 16 05:24:49 mail.srvfarm.net postfix/smtpd[953479]: warning: unknown[109.203.187.9]: SASL PLAIN authentication failed: Jun 16 05:24:49 mail.srvfarm.net postfix/smtpd[953479]: lost connection after AUTH from unknown[109.203.187.9] Jun 16 05:28:32 mail.srvfarm.net postfix/smtps/smtpd[954626]: warning: unknown[109.203.187.9]: SASL PLAIN authentication failed: Jun 16 05:28:32 mail.srvfarm.net postfix/smtps/smtpd[954626]: lost connection after AUTH from unknown[109.203.187.9] Jun 16 05:33:11 mail.srvfarm.net postfix/smtpd[935207]: warning: unknown[109.203.187.9]: SASL PLAIN authentication failed:	2020-06-16 16:17:36
191.53.223.252	attack	Jun 16 05:21:52 mail.srvfarm.net postfix/smtpd[935206]: lost connection after CONNECT from unknown[191.53.223.252] Jun 16 05:28:58 mail.srvfarm.net postfix/smtps/smtpd[936250]: warning: unknown[191.53.223.252]: SASL PLAIN authentication failed: Jun 16 05:28:58 mail.srvfarm.net postfix/smtps/smtpd[936250]: lost connection after AUTH from unknown[191.53.223.252] Jun 16 05:29:04 mail.srvfarm.net postfix/smtpd[935974]: warning: unknown[191.53.223.252]: SASL PLAIN authentication failed: Jun 16 05:29:04 mail.srvfarm.net postfix/smtpd[935974]: lost connection after AUTH from unknown[191.53.223.252]	2020-06-16 16:13:19
37.120.192.130	attack	Automatic report - XMLRPC Attack	2020-06-16 16:08:46
41.139.11.160	attackspambots	Jun 16 05:25:33 mail.srvfarm.net postfix/smtpd[921341]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed: Jun 16 05:25:33 mail.srvfarm.net postfix/smtpd[921341]: lost connection after AUTH from unknown[41.139.11.160] Jun 16 05:30:56 mail.srvfarm.net postfix/smtps/smtpd[937456]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed: Jun 16 05:30:56 mail.srvfarm.net postfix/smtps/smtpd[937456]: lost connection after AUTH from unknown[41.139.11.160] Jun 16 05:34:51 mail.srvfarm.net postfix/smtpd[935205]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed:	2020-06-16 15:49:27
106.12.86.238	attack	(sshd) Failed SSH login from 106.12.86.238 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 16 06:23:31 srv sshd[25519]: Invalid user julio from 106.12.86.238 port 36298 Jun 16 06:23:33 srv sshd[25519]: Failed password for invalid user julio from 106.12.86.238 port 36298 ssh2 Jun 16 06:47:52 srv sshd[26031]: Invalid user zxx from 106.12.86.238 port 35968 Jun 16 06:47:54 srv sshd[26031]: Failed password for invalid user zxx from 106.12.86.238 port 35968 ssh2 Jun 16 06:50:58 srv sshd[26111]: Invalid user barbara from 106.12.86.238 port 55882	2020-06-16 16:02:43
91.218.233.28	attackbots	Jun 16 06:37:29 mail.srvfarm.net postfix/smtps/smtpd[979607]: warning: user4903.agnet.cz[91.218.233.28]: SASL PLAIN authentication failed: Jun 16 06:37:29 mail.srvfarm.net postfix/smtps/smtpd[979607]: lost connection after AUTH from user4903.agnet.cz[91.218.233.28] Jun 16 06:43:38 mail.srvfarm.net postfix/smtpd[986916]: lost connection after CONNECT from user4903.agnet.cz[91.218.233.28] Jun 16 06:47:12 mail.srvfarm.net postfix/smtpd[968429]: warning: user4903.agnet.cz[91.218.233.28]: SASL PLAIN authentication failed: Jun 16 06:47:12 mail.srvfarm.net postfix/smtpd[968429]: lost connection after AUTH from user4903.agnet.cz[91.218.233.28]	2020-06-16 15:48:09
104.236.124.45	attackspambots	Jun 16 08:58:08 OPSO sshd\[13500\]: Invalid user dylan from 104.236.124.45 port 39385 Jun 16 08:58:08 OPSO sshd\[13500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Jun 16 08:58:10 OPSO sshd\[13500\]: Failed password for invalid user dylan from 104.236.124.45 port 39385 ssh2 Jun 16 09:05:51 OPSO sshd\[15153\]: Invalid user hyd from 104.236.124.45 port 41832 Jun 16 09:05:51 OPSO sshd\[15153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45	2020-06-16 16:01:33
217.182.206.211	attackbots	217.182.206.211 - - [16/Jun/2020:11:56:24 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-06-16 16:05:55
103.48.193.7	attackbots	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-06-16 15:50:59
41.139.10.86	attack	Jun 16 05:22:50 mail.srvfarm.net postfix/smtpd[935946]: lost connection after CONNECT from unknown[41.139.10.86] Jun 16 05:26:10 mail.srvfarm.net postfix/smtpd[935987]: warning: unknown[41.139.10.86]: SASL PLAIN authentication failed: Jun 16 05:26:10 mail.srvfarm.net postfix/smtpd[935987]: lost connection after AUTH from unknown[41.139.10.86] Jun 16 05:29:54 mail.srvfarm.net postfix/smtpd[935980]: warning: unknown[41.139.10.86]: SASL PLAIN authentication failed: Jun 16 05:29:54 mail.srvfarm.net postfix/smtpd[935980]: lost connection after AUTH from unknown[41.139.10.86]	2020-06-16 16:24:57
151.236.39.126	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-06-16 16:25:43
89.248.168.2	attackbots	Jun 16 09:48:12 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.2, lip=185.118.198.210, session= Jun 16 09:48:28 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=89.248.168.2, lip=185.118.198.210, session= Jun 16 09:48:48 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.2, lip=185.118.198.210, session=<0fXtxS6oeohZ+KgC> Jun 16 09:50:37 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.2, lip=185.118.198.210, session= Jun 16 09:51:47 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, meth	2020-06-16 16:22:07
185.143.75.81	attackbots	2020-06-16T01:39:14.374368linuxbox-skyline auth[425959]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=mini rhost=185.143.75.81 ...	2020-06-16 15:44:57

最近上报的IP列表

79.236.206.196	45.32.151.224	45.248.29.61	201.246.29.10
198.70.191.212	109.42.38.11	123.74.148.76	92.218.101.217
172.117.37.87	37.20.50.200	44.230.242.71	40.114.210.223
132.252.156.243	91.40.244.105	37.33.23.236	122.88.231.243
77.150.210.95	164.42.106.147	36.81.234.152	84.87.13.66