14.245.10.62 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 05-01-2020 04:55:13.	2020-01-05 17:27:43

相同子网IP讨论:

IP	类型	评论内容	时间
14.245.106.93	attackspam	1598586549 - 08/28/2020 05:49:09 Host: 14.245.106.93/14.245.106.93 Port: 445 TCP Blocked ...	2020-08-28 17:55:28
14.245.101.136	attackbotsspam	2019-12-02 14:36:37 H=(static.vnpt.vn) [14.245.101.136] sender verify fail for : Unknown user 2019-12-02 14:36:37 H=(static.vnpt.vn) [14.245.101.136] F= rejected RCPT : Sender verify failed ...	2019-12-02 22:32:41

类型

评论内容

时间

14.245.106.93

attackspam

1598586549 - 08/28/2020 05:49:09 Host: 14.245.106.93/14.245.106.93 Port: 445 TCP Blocked
...

2020-08-28 17:55:28

14.245.101.136

attackbotsspam

2019-12-02 14:36:37 H=(static.vnpt.vn) [14.245.101.136] sender verify fail for : Unknown user
2019-12-02 14:36:37 H=(static.vnpt.vn) [14.245.101.136] F= rejected RCPT : Sender verify failed
...

2019-12-02 22:32:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.245.10.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57605
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.245.10.62.			IN	A

;; AUTHORITY SECTION:
.			554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010500 1800 900 604800 86400

;; Query time: 162 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 17:27:28 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

62.10.245.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
62.10.245.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
188.246.224.219	attack	May 15 18:54:57 debian-2gb-nbg1-2 kernel: \[11820546.052311\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=188.246.224.219 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=9610 PROTO=TCP SPT=56696 DPT=3320 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 01:55:41
178.128.150.158	attackspambots	SSH Brute-Force attacks	2020-05-16 01:38:28
49.67.60.178	attack	May 15 14:10:24 myhostname sshd[12114]: Invalid user cvs from 49.67.60.178 May 15 14:10:24 myhostname sshd[12114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.67.60.178 May 15 14:10:27 myhostname sshd[12114]: Failed password for invalid user cvs from 49.67.60.178 port 7118 ssh2 May 15 14:10:27 myhostname sshd[12114]: Received disconnect from 49.67.60.178 port 7118:11: Normal Shutdown, Thank you for playing [preauth] May 15 14:10:27 myhostname sshd[12114]: Disconnected from 49.67.60.178 port 7118 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.67.60.178	2020-05-16 01:54:49
193.186.15.35	attack	May 15 20:03:58 vps639187 sshd\[6258\]: Invalid user password1 from 193.186.15.35 port 46396 May 15 20:03:58 vps639187 sshd\[6258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.186.15.35 May 15 20:04:00 vps639187 sshd\[6258\]: Failed password for invalid user password1 from 193.186.15.35 port 46396 ssh2 ...	2020-05-16 02:11:04
84.51.29.7	attackbotsspam	HTTP/80/443/8080 Probe, Hack -	2020-05-16 02:10:22
159.65.155.69	attackspam	May 15 16:22:24 pkdns2 sshd\[36929\]: Invalid user ftpuser from 159.65.155.69May 15 16:22:25 pkdns2 sshd\[36929\]: Failed password for invalid user ftpuser from 159.65.155.69 port 38646 ssh2May 15 16:24:30 pkdns2 sshd\[37027\]: Invalid user postgres from 159.65.155.69May 15 16:24:32 pkdns2 sshd\[37027\]: Failed password for invalid user postgres from 159.65.155.69 port 41498 ssh2May 15 16:26:42 pkdns2 sshd\[37182\]: Invalid user dustin from 159.65.155.69May 15 16:26:43 pkdns2 sshd\[37182\]: Failed password for invalid user dustin from 159.65.155.69 port 44340 ssh2 ...	2020-05-16 01:48:07
142.93.211.52	attack	TCP (SYN) 142.93.211.52:57215 -> port 27278, len 44	2020-05-16 01:36:57
221.142.56.160	attackbots	May 15 17:49:27 cloud sshd[32100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.142.56.160 May 15 17:49:29 cloud sshd[32100]: Failed password for invalid user pepper from 221.142.56.160 port 40756 ssh2	2020-05-16 02:08:49
218.94.125.234	attack	Unauthorized SSH login attempts	2020-05-16 01:46:23
40.85.206.198	attackspam	2020-05-15T19:10:15.727561 sshd[22393]: Invalid user fidelis from 40.85.206.198 port 51954 2020-05-15T19:10:15.741049 sshd[22393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.85.206.198 2020-05-15T19:10:15.727561 sshd[22393]: Invalid user fidelis from 40.85.206.198 port 51954 2020-05-15T19:10:17.893091 sshd[22393]: Failed password for invalid user fidelis from 40.85.206.198 port 51954 ssh2 ...	2020-05-16 01:44:17
51.255.30.7	attackbots	Invalid user student05 from 51.255.30.7 port 59480	2020-05-16 01:40:42
183.89.237.40	attackspambots	"Account brute force using dictionary attack against Exchange Online"	2020-05-16 01:58:33
207.154.229.50	attackspam	May 15 17:09:37 ns381471 sshd[21732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.229.50 May 15 17:09:40 ns381471 sshd[21732]: Failed password for invalid user sftp_user from 207.154.229.50 port 51418 ssh2	2020-05-16 01:34:50
150.109.146.32	attack	May 15 15:52:09 OPSO sshd\[6123\]: Invalid user github from 150.109.146.32 port 59436 May 15 15:52:09 OPSO sshd\[6123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.146.32 May 15 15:52:11 OPSO sshd\[6123\]: Failed password for invalid user github from 150.109.146.32 port 59436 ssh2 May 15 15:56:17 OPSO sshd\[7179\]: Invalid user doom from 150.109.146.32 port 39538 May 15 15:56:17 OPSO sshd\[7179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.146.32	2020-05-16 01:46:42
51.38.57.78	attackspambots	May 15 15:49:49 XXX sshd[35409]: Invalid user deploy from 51.38.57.78 port 32854	2020-05-16 01:48:39

最近上报的IP列表

20.115.230.75	241.96.147.101	52.125.137.137	245.15.187.125
122.2.81.63	189.117.248.230	106.13.172.150	150.126.33.139
23.9.184.36	197.187.117.176	62.106.45.102	123.210.7.1
121.68.136.12	62.105.44.155	68.183.120.30	96.21.211.70
132.190.10.95	51.231.135.175	201.146.58.246	52.202.225.175