114.207.139.221

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 21:24:05
attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 13:17:15
attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 04:55:49

相同子网IP讨论:

IP	类型	评论内容	时间
114.207.139.203	attackbots	Oct 10 07:55:22 sip sshd[6305]: Failed password for root from 114.207.139.203 port 43777 ssh2 Oct 10 08:04:19 sip sshd[8638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Oct 10 08:04:21 sip sshd[8638]: Failed password for invalid user azureuser from 114.207.139.203 port 41683 ssh2	2020-10-10 22:11:58
114.207.139.203	attackbotsspam	Oct 10 07:55:22 sip sshd[6305]: Failed password for root from 114.207.139.203 port 43777 ssh2 Oct 10 08:04:19 sip sshd[8638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Oct 10 08:04:21 sip sshd[8638]: Failed password for invalid user azureuser from 114.207.139.203 port 41683 ssh2	2020-10-10 14:05:40
114.207.139.203	attack	SSH Invalid Login	2020-09-26 07:02:01
114.207.139.203	attack	Invalid user user from 114.207.139.203 port 33182	2020-09-26 00:10:14
114.207.139.203	attackspambots	Sep 25 08:44:06 minden010 sshd[30369]: Failed password for root from 114.207.139.203 port 32771 ssh2 Sep 25 08:48:06 minden010 sshd[31723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Sep 25 08:48:08 minden010 sshd[31723]: Failed password for invalid user user1 from 114.207.139.203 port 36689 ssh2 ...	2020-09-25 15:46:50
114.207.139.203	attackspambots	2020-09-16 09:46:24.593983-0500 localhost sshd[29664]: Failed password for root from 114.207.139.203 port 56076 ssh2	2020-09-17 02:48:18
114.207.139.203	attackspam	Sep 16 12:42:31 ns381471 sshd[15388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Sep 16 12:42:34 ns381471 sshd[15388]: Failed password for invalid user jacob from 114.207.139.203 port 38020 ssh2	2020-09-16 19:10:06
114.207.139.203	attackbotsspam	Failed password for root from 114.207.139.203 port 52278 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 user=root Failed password for root from 114.207.139.203 port 58990 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 user=root Failed password for root from 114.207.139.203 port 37434 ssh2	2020-09-07 16:31:40
114.207.139.203	attack	Sep 6 sshd[25287]: Invalid user rawlinson from 114.207.139.203 port 36870	2020-09-07 08:55:27
114.207.139.203	attackbots	Invalid user nut from 114.207.139.203 port 51728	2020-08-30 08:48:45
114.207.139.203	attackbotsspam	Aug 29 20:14:58 electroncash sshd[4179]: Failed password for root from 114.207.139.203 port 33050 ssh2 Aug 29 20:17:33 electroncash sshd[4847]: Invalid user guest from 114.207.139.203 port 56292 Aug 29 20:17:34 electroncash sshd[4847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Aug 29 20:17:33 electroncash sshd[4847]: Invalid user guest from 114.207.139.203 port 56292 Aug 29 20:17:36 electroncash sshd[4847]: Failed password for invalid user guest from 114.207.139.203 port 56292 ssh2 ...	2020-08-30 03:36:22
114.207.139.203	attackbots	Aug 11 22:37:38 ns41 sshd[13046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203	2020-08-12 04:58:09
114.207.139.203	attackspambots	Aug 7 21:12:48 webhost01 sshd[31684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Aug 7 21:12:49 webhost01 sshd[31684]: Failed password for invalid user PASswOrD from 114.207.139.203 port 44414 ssh2 ...	2020-08-08 01:06:18
114.207.139.203	attackbots	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-08-06 22:30:47
114.207.139.203	attackbotsspam	2020-05-01T05:22:07.141617shield sshd\[17548\]: Invalid user 123 from 114.207.139.203 port 39896 2020-05-01T05:22:07.149800shield sshd\[17548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 2020-05-01T05:22:10.089913shield sshd\[17548\]: Failed password for invalid user 123 from 114.207.139.203 port 39896 ssh2 2020-05-01T05:26:23.588929shield sshd\[18076\]: Invalid user cz123 from 114.207.139.203 port 50586 2020-05-01T05:26:23.592490shield sshd\[18076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203	2020-05-01 13:44:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.207.139.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.207.139.221.		IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091801 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 19 04:55:46 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 221.139.207.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.139.207.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
199.195.251.227	attack	Jun 22 22:30:58 DAAP sshd[911]: Invalid user student from 199.195.251.227 port 47470 Jun 22 22:30:58 DAAP sshd[911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.251.227 Jun 22 22:30:58 DAAP sshd[911]: Invalid user student from 199.195.251.227 port 47470 Jun 22 22:31:00 DAAP sshd[911]: Failed password for invalid user student from 199.195.251.227 port 47470 ssh2 Jun 22 22:36:19 DAAP sshd[959]: Invalid user cnt from 199.195.251.227 port 50922 ...	2020-06-23 05:43:17
120.53.124.104	attackbotsspam	/TP/public/index.php	2020-06-23 05:36:15
161.35.60.51	attackspambots	11719/tcp 11719/tcp [2020-06-22]2pkt	2020-06-23 05:40:52
129.204.249.36	attack	DATE:2020-06-22 23:46:08, IP:129.204.249.36, PORT:ssh SSH brute force auth (docker-dc)	2020-06-23 05:50:40
218.25.130.220	attackspam	$f2bV_matches	2020-06-23 05:31:53
106.12.222.209	attack	Jun 22 14:09:32 mockhub sshd[26343]: Failed password for root from 106.12.222.209 port 39534 ssh2 ...	2020-06-23 06:05:47
119.30.38.135	attackbotsspam	Attempts against non-existent wp-login	2020-06-23 05:41:18
123.30.239.133	attackbots	4539/tcp [2020-06-22]1pkt	2020-06-23 05:38:03
84.228.228.55	attack	IP 84.228.228.55 attacked honeypot on port: 23 at 6/22/2020 1:36:09 PM	2020-06-23 05:54:02
83.17.166.241	attackbotsspam	83.17.166.241 (PL/Poland/aqg241.internetdsl.tpnet.pl), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-06-23 05:54:19
81.10.50.115	attackspam	445/tcp [2020-06-22]1pkt	2020-06-23 05:31:22
13.79.191.179	attackbots	Jun 22 20:33:18 ip-172-31-61-156 sshd[28499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.79.191.179 user=root Jun 22 20:33:20 ip-172-31-61-156 sshd[28499]: Failed password for root from 13.79.191.179 port 58594 ssh2 Jun 22 20:36:12 ip-172-31-61-156 sshd[28617]: Invalid user satheesh from 13.79.191.179 Jun 22 20:36:12 ip-172-31-61-156 sshd[28617]: Invalid user satheesh from 13.79.191.179 ...	2020-06-23 05:56:51
54.39.138.251	attack	Jun 23 00:36:50 lukav-desktop sshd\[1829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 user=root Jun 23 00:36:52 lukav-desktop sshd\[1829\]: Failed password for root from 54.39.138.251 port 52632 ssh2 Jun 23 00:39:52 lukav-desktop sshd\[1979\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 user=root Jun 23 00:39:54 lukav-desktop sshd\[1979\]: Failed password for root from 54.39.138.251 port 52000 ssh2 Jun 23 00:42:54 lukav-desktop sshd\[2039\]: Invalid user test1 from 54.39.138.251	2020-06-23 05:50:02
91.121.45.5	attack	Jun 22 23:38:27 sip sshd[736589]: Invalid user ox from 91.121.45.5 port 30624 Jun 22 23:38:29 sip sshd[736589]: Failed password for invalid user ox from 91.121.45.5 port 30624 ssh2 Jun 22 23:45:33 sip sshd[736616]: Invalid user siteadmin from 91.121.45.5 port 54456 ...	2020-06-23 05:46:57
87.120.36.243	attackspambots	Jun 22 23:25:00 sip sshd[736363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.120.36.243 Jun 22 23:25:00 sip sshd[736363]: Invalid user liyan from 87.120.36.243 port 42716 Jun 22 23:25:02 sip sshd[736363]: Failed password for invalid user liyan from 87.120.36.243 port 42716 ssh2 ...	2020-06-23 06:03:31

最近上报的IP列表

223.17.161.175	72.19.15.32	72.1.242.133	72.1.242.131
212.183.178.253	210.2.134.34	193.42.240.214	183.88.133.134
87.253.92.85	213.27.211.172	188.166.232.147	116.203.230.197
2.59.106.152	175.196.24.155	91.126.189.105	178.177.69.205
197.245.38.72	190.57.133.114	83.254.22.45	42.2.101.166