14.248.132.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	445/tcp [2019-07-04]1pkt	2019-07-04 18:40:07

相同子网IP讨论:

IP	类型	评论内容	时间
14.248.132.97	attackbotsspam	Brute force attempt	2020-01-31 23:43:56
14.248.132.249	attackspambots	Unauthorized connection attempt detected from IP address 14.248.132.249 to port 445	2019-12-21 22:51:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.248.132.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48048
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.248.132.46.			IN	A

;; AUTHORITY SECTION:
.			2229	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 04 18:39:58 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

46.132.248.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
46.132.248.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.25.92.72	attackspambots	Apr 28 20:34:38 haigwepa sshd[19860]: Failed password for root from 103.25.92.72 port 21633 ssh2 ...	2020-04-29 02:51:44
138.68.48.127	attackbotsspam	$f2bV_matches	2020-04-29 02:53:10
222.186.42.7	attack	Apr 28 20:24:06 inter-technics sshd[14480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Apr 28 20:24:08 inter-technics sshd[14480]: Failed password for root from 222.186.42.7 port 62160 ssh2 Apr 28 20:24:11 inter-technics sshd[14480]: Failed password for root from 222.186.42.7 port 62160 ssh2 Apr 28 20:24:06 inter-technics sshd[14480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Apr 28 20:24:08 inter-technics sshd[14480]: Failed password for root from 222.186.42.7 port 62160 ssh2 Apr 28 20:24:11 inter-technics sshd[14480]: Failed password for root from 222.186.42.7 port 62160 ssh2 Apr 28 20:24:06 inter-technics sshd[14480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Apr 28 20:24:08 inter-technics sshd[14480]: Failed password for root from 222.186.42.7 port 62160 ssh2 Apr 28 20:24:11 i ...	2020-04-29 02:34:50
181.174.81.244	attack	Apr 28 19:24:54 ArkNodeAT sshd\[6607\]: Invalid user admin from 181.174.81.244 Apr 28 19:24:54 ArkNodeAT sshd\[6607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.81.244 Apr 28 19:24:56 ArkNodeAT sshd\[6607\]: Failed password for invalid user admin from 181.174.81.244 port 46588 ssh2	2020-04-29 02:42:43
103.28.224.234	attackbotsspam	Apr 27 14:50:36 liveconfig01 sshd[17045]: Invalid user testuser from 103.28.224.234 Apr 27 14:50:36 liveconfig01 sshd[17045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.224.234 Apr 27 14:50:38 liveconfig01 sshd[17045]: Failed password for invalid user testuser from 103.28.224.234 port 48927 ssh2 Apr 27 14:50:38 liveconfig01 sshd[17045]: Received disconnect from 103.28.224.234 port 48927:11: Bye Bye [preauth] Apr 27 14:50:38 liveconfig01 sshd[17045]: Disconnected from 103.28.224.234 port 48927 [preauth] Apr 27 14:55:51 liveconfig01 sshd[17375]: Invalid user alice from 103.28.224.234 Apr 27 14:55:51 liveconfig01 sshd[17375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.224.234 Apr 27 14:55:52 liveconfig01 sshd[17375]: Failed password for invalid user alice from 103.28.224.234 port 43805 ssh2 Apr 27 14:55:53 liveconfig01 sshd[17375]: Received disconnect from 103.28.224.234........ -------------------------------	2020-04-29 03:06:01
105.112.53.236	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-29 02:50:59
112.78.133.253	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-29 02:38:48
35.220.250.5	attackbotsspam	Apr 28 02:33:03 our-server-hostname sshd[16473]: Invalid user rails from 35.220.250.5 Apr 28 02:33:04 our-server-hostname sshd[16473]: Failed password for invalid user rails from 35.220.250.5 port 42412 ssh2 Apr 28 02:37:36 our-server-hostname sshd[17359]: Invalid user ziad from 35.220.250.5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=35.220.250.5	2020-04-29 02:58:09
119.55.210.158	attackspam	Unauthorised access (Apr 28) SRC=119.55.210.158 LEN=40 TTL=46 ID=36691 TCP DPT=8080 WINDOW=18606 SYN	2020-04-29 02:50:29
103.214.129.204	attackbotsspam	(sshd) Failed SSH login from 103.214.129.204 (IN/India/undefined.hostname.localhost): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 28 14:55:27 elude sshd[12605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.129.204 user=root Apr 28 14:55:30 elude sshd[12605]: Failed password for root from 103.214.129.204 port 38148 ssh2 Apr 28 15:01:51 elude sshd[13624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.129.204 user=root Apr 28 15:01:53 elude sshd[13624]: Failed password for root from 103.214.129.204 port 35472 ssh2 Apr 28 15:05:10 elude sshd[14151]: Invalid user wxw from 103.214.129.204 port 45520	2020-04-29 03:06:36
145.255.31.52	attackbotsspam	2020-04-28T19:14:15.777032sd-86998 sshd[6378]: Invalid user download from 145.255.31.52 port 41013 2020-04-28T19:14:15.782346sd-86998 sshd[6378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.255.31.52 2020-04-28T19:14:15.777032sd-86998 sshd[6378]: Invalid user download from 145.255.31.52 port 41013 2020-04-28T19:14:17.888516sd-86998 sshd[6378]: Failed password for invalid user download from 145.255.31.52 port 41013 ssh2 2020-04-28T19:23:49.148964sd-86998 sshd[7088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.255.31.52 user=root 2020-04-28T19:23:50.723008sd-86998 sshd[7088]: Failed password for root from 145.255.31.52 port 39509 ssh2 ...	2020-04-29 02:51:28
83.233.120.250	attackbotsspam	Brute force SMTP login attempted. ...	2020-04-29 03:10:15
41.83.236.121	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-29 02:37:08
62.210.29.120	attack	Unauthorized connection attempt detected from IP address 62.210.29.120 to port 443	2020-04-29 03:08:48
111.57.0.90	attack	Apr 28 14:27:42 ws22vmsma01 sshd[53238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.57.0.90 Apr 28 14:27:44 ws22vmsma01 sshd[53238]: Failed password for invalid user guest9 from 111.57.0.90 port 59430 ssh2 ...	2020-04-29 02:36:21

最近上报的IP列表

12.49.151.21	153.91.168.203	185.181.222.243	28.16.197.2
14.157.201.132	188.43.18.245	51.158.70.83	180.172.240.188
87.229.71.149	121.32.127.85	213.99.150.11	58.56.96.30
117.54.138.43	144.65.172.3	103.103.237.67	118.131.127.196
36.239.196.45	76.250.199.133	131.161.15.250	49.156.45.181