114.39.0.65 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 29-09-2019 04:50:13.	2019-09-29 16:50:04

相同子网IP讨论:

IP	类型	评论内容	时间
114.39.0.115	attackspam	UTC: 2019-12-25 port: 23/tcp	2019-12-26 14:29:49
114.39.0.115	attack	Telnet Server BruteForce Attack	2019-12-23 18:07:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.39.0.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.39.0.65.			IN	A

;; AUTHORITY SECTION:
.			152	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092900 1800 900 604800 86400

;; Query time: 687 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 16:50:00 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

65.0.39.114.in-addr.arpa domain name pointer 114-39-0-65.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
65.0.39.114.in-addr.arpa	name = 114-39-0-65.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
141.98.9.160	attack	2020-06-15T07:19:34.322817abusebot-4.cloudsearch.cf sshd[19217]: Invalid user user from 141.98.9.160 port 39323 2020-06-15T07:19:34.332913abusebot-4.cloudsearch.cf sshd[19217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 2020-06-15T07:19:34.322817abusebot-4.cloudsearch.cf sshd[19217]: Invalid user user from 141.98.9.160 port 39323 2020-06-15T07:19:36.723007abusebot-4.cloudsearch.cf sshd[19217]: Failed password for invalid user user from 141.98.9.160 port 39323 ssh2 2020-06-15T07:19:57.607338abusebot-4.cloudsearch.cf sshd[19289]: Invalid user guest from 141.98.9.160 port 44725 2020-06-15T07:19:57.615783abusebot-4.cloudsearch.cf sshd[19289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 2020-06-15T07:19:57.607338abusebot-4.cloudsearch.cf sshd[19289]: Invalid user guest from 141.98.9.160 port 44725 2020-06-15T07:19:59.830058abusebot-4.cloudsearch.cf sshd[19289]: Failed password ...	2020-06-15 15:37:18
118.193.35.230	attack	Jun 15 05:52:18 sip sshd[654116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.35.230 Jun 15 05:52:18 sip sshd[654116]: Invalid user testbed from 118.193.35.230 port 49916 Jun 15 05:52:20 sip sshd[654116]: Failed password for invalid user testbed from 118.193.35.230 port 49916 ssh2 ...	2020-06-15 16:10:44
154.8.161.25	attackspambots	Jun 15 08:16:06 pve1 sshd[17787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.161.25 Jun 15 08:16:07 pve1 sshd[17787]: Failed password for invalid user user001 from 154.8.161.25 port 40719 ssh2 ...	2020-06-15 16:03:58
49.232.69.39	attack	Jun 15 06:12:20 cosmoit sshd[27441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.69.39	2020-06-15 15:40:19
191.254.132.180	attackbots	[Mon Jun 15 10:53:00.347457 2020] [:error] [pid 14881:tid 140416430409472] [client 191.254.132.180:35243] [client 191.254.132.180] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XubwnCkSlPgyt-kn6anvlQAAAfA"] ...	2020-06-15 15:34:29
185.195.25.227	attackspambots	Brute-force attempt banned	2020-06-15 15:52:50
64.225.35.135	attack	Jun 15 08:53:24 serwer sshd\[1767\]: Invalid user lzg from 64.225.35.135 port 55930 Jun 15 08:53:24 serwer sshd\[1767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.35.135 Jun 15 08:53:26 serwer sshd\[1767\]: Failed password for invalid user lzg from 64.225.35.135 port 55930 ssh2 ...	2020-06-15 16:00:48
51.83.75.97	attack	Jun 14 19:51:27 web9 sshd\[22344\]: Invalid user lager from 51.83.75.97 Jun 14 19:51:27 web9 sshd\[22344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.75.97 Jun 14 19:51:28 web9 sshd\[22344\]: Failed password for invalid user lager from 51.83.75.97 port 39632 ssh2 Jun 14 19:54:40 web9 sshd\[22728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.75.97 user=root Jun 14 19:54:41 web9 sshd\[22728\]: Failed password for root from 51.83.75.97 port 40072 ssh2	2020-06-15 15:46:50
92.207.180.50	attackspambots	Jun 14 20:32:46 Tower sshd[7292]: refused connect from 103.45.161.100 (103.45.161.100) Jun 15 03:02:40 Tower sshd[7292]: Connection from 92.207.180.50 port 57062 on 192.168.10.220 port 22 rdomain "" Jun 15 03:02:40 Tower sshd[7292]: Invalid user user from 92.207.180.50 port 57062 Jun 15 03:02:40 Tower sshd[7292]: error: Could not get shadow information for NOUSER Jun 15 03:02:40 Tower sshd[7292]: Failed password for invalid user user from 92.207.180.50 port 57062 ssh2 Jun 15 03:02:41 Tower sshd[7292]: Received disconnect from 92.207.180.50 port 57062:11: Bye Bye [preauth] Jun 15 03:02:41 Tower sshd[7292]: Disconnected from invalid user user 92.207.180.50 port 57062 [preauth]	2020-06-15 15:41:37
40.72.97.22	attackbots	Jun 15 07:58:49 abendstille sshd\[23699\]: Invalid user randy from 40.72.97.22 Jun 15 07:58:49 abendstille sshd\[23699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.72.97.22 Jun 15 07:58:51 abendstille sshd\[23699\]: Failed password for invalid user randy from 40.72.97.22 port 54642 ssh2 Jun 15 08:02:13 abendstille sshd\[27244\]: Invalid user rtest from 40.72.97.22 Jun 15 08:02:13 abendstille sshd\[27244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.72.97.22 ...	2020-06-15 15:36:35
190.0.8.134	attack	Jun 15 07:06:38 *** sshd[998]: Invalid user jack from 190.0.8.134	2020-06-15 16:08:05
61.177.172.102	attackbotsspam	2020-06-14T23:16:34.352197homeassistant sshd[18508]: Failed password for root from 61.177.172.102 port 63101 ssh2 2020-06-15T07:34:15.262617homeassistant sshd[29703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root ...	2020-06-15 15:35:32
222.186.173.226	attackspambots	2020-06-15T07:59:26.107898shield sshd\[22362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root 2020-06-15T07:59:28.211404shield sshd\[22362\]: Failed password for root from 222.186.173.226 port 23233 ssh2 2020-06-15T07:59:31.297098shield sshd\[22362\]: Failed password for root from 222.186.173.226 port 23233 ssh2 2020-06-15T07:59:34.463232shield sshd\[22362\]: Failed password for root from 222.186.173.226 port 23233 ssh2 2020-06-15T07:59:37.378738shield sshd\[22362\]: Failed password for root from 222.186.173.226 port 23233 ssh2	2020-06-15 16:01:29
51.158.120.115	attackspambots	Jun 15 09:18:04 nas sshd[30821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.120.115 Jun 15 09:18:06 nas sshd[30821]: Failed password for invalid user lcw from 51.158.120.115 port 41784 ssh2 Jun 15 09:32:45 nas sshd[31337]: Failed password for root from 51.158.120.115 port 43460 ssh2 ...	2020-06-15 16:10:07
101.231.146.34	attackbots	Jun 15 07:38:10 django-0 sshd\[32356\]: Invalid user liulei from 101.231.146.34Jun 15 07:38:12 django-0 sshd\[32356\]: Failed password for invalid user liulei from 101.231.146.34 port 36786 ssh2Jun 15 07:42:30 django-0 sshd\[32420\]: Invalid user server1 from 101.231.146.34 ...	2020-06-15 15:52:21

最近上报的IP列表

87.241.206.34	223.233.67.253	154.117.162.178	41.96.37.160
36.239.53.111	87.110.27.151	220.135.50.222	95.49.10.22
113.125.119.83	148.234.109.93	67.243.86.40	141.47.24.227
230.149.152.250	15.240.192.47	4.244.44.235	251.48.208.136
242.46.96.97	110.160.29.120	80.177.126.86	45.187.56.179