114.67.239.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Jingdong 360 Degree E-Commerce Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-12-20T08:09:41.593334shield sshd\[2741\]: Invalid user printconf from 114.67.239.55 port 31874 2019-12-20T08:09:41.599761shield sshd\[2741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.55 2019-12-20T08:09:43.495317shield sshd\[2741\]: Failed password for invalid user printconf from 114.67.239.55 port 31874 ssh2 2019-12-20T08:14:18.169775shield sshd\[3886\]: Invalid user register from 114.67.239.55 port 3042 2019-12-20T08:14:18.173991shield sshd\[3886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.55	2019-12-20 16:27:06

类型

评论内容

时间

attack

2019-12-20T08:09:41.593334shield sshd\[2741\]: Invalid user printconf from 114.67.239.55 port 31874
2019-12-20T08:09:41.599761shield sshd\[2741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.55
2019-12-20T08:09:43.495317shield sshd\[2741\]: Failed password for invalid user printconf from 114.67.239.55 port 31874 ssh2
2019-12-20T08:14:18.169775shield sshd\[3886\]: Invalid user register from 114.67.239.55 port 3042
2019-12-20T08:14:18.173991shield sshd\[3886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.55

2019-12-20 16:27:06

相同子网IP讨论:

IP	类型	评论内容	时间
114.67.239.47	attackbots	Fail2Ban Ban Triggered	2020-10-09 06:11:11
114.67.239.47	attackspam	Bruteforce detected by fail2ban	2020-10-08 22:30:27
114.67.239.47	attackspambots	$f2bV_matches	2020-10-08 14:25:26
114.67.239.47	attackspambots	Invalid user leon from 114.67.239.47 port 40726	2020-09-24 23:14:26
114.67.239.47	attackbotsspam	Sep 24 08:48:43 vps639187 sshd\[9421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.47 user=root Sep 24 08:48:45 vps639187 sshd\[9421\]: Failed password for root from 114.67.239.47 port 39280 ssh2 Sep 24 08:53:55 vps639187 sshd\[9508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.47 user=root ...	2020-09-24 15:01:39
114.67.239.220	attackspambots	Invalid user oracle from 114.67.239.220 port 56381	2020-07-01 19:12:59
114.67.239.220	attackspam	2020-06-29T20:41:34.839691shield sshd\[12296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.220 user=root 2020-06-29T20:41:37.612580shield sshd\[12296\]: Failed password for root from 114.67.239.220 port 42929 ssh2 2020-06-29T20:43:49.273399shield sshd\[13005\]: Invalid user santhosh from 114.67.239.220 port 57061 2020-06-29T20:43:49.276617shield sshd\[13005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.220 2020-06-29T20:43:50.915388shield sshd\[13005\]: Failed password for invalid user santhosh from 114.67.239.220 port 57061 ssh2	2020-06-30 04:54:22
114.67.239.220	attack	Jun 6 10:05:11 melroy-server sshd[28236]: Failed password for root from 114.67.239.220 port 44440 ssh2 ...	2020-06-06 20:34:22
114.67.239.220	attackspam	Jun 5 06:55:59 server sshd[7742]: Failed password for root from 114.67.239.220 port 53113 ssh2 Jun 5 06:59:34 server sshd[7922]: Failed password for root from 114.67.239.220 port 44656 ssh2 ...	2020-06-05 17:56:11
114.67.239.220	attackbots	Jun 4 01:45:43 server1 sshd\[2202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.220 user=root Jun 4 01:45:45 server1 sshd\[2202\]: Failed password for root from 114.67.239.220 port 44984 ssh2 Jun 4 01:49:11 server1 sshd\[3135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.220 user=root Jun 4 01:49:13 server1 sshd\[3135\]: Failed password for root from 114.67.239.220 port 35942 ssh2 Jun 4 01:52:44 server1 sshd\[4142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.220 user=root ...	2020-06-04 16:31:58
114.67.239.220	attackbotsspam	Jun 2 22:17:25 nas sshd[13410]: Failed password for root from 114.67.239.220 port 42272 ssh2 Jun 2 22:20:54 nas sshd[13775]: Failed password for root from 114.67.239.220 port 59475 ssh2 ...	2020-06-03 06:53:08
114.67.239.170	attack	Feb 21 19:28:16 gw1 sshd[12519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.170 Feb 21 19:28:18 gw1 sshd[12519]: Failed password for invalid user couch from 114.67.239.170 port 53152 ssh2 ...	2020-02-22 03:27:57
114.67.239.215	attackbotsspam	Feb 15 09:53:01 gw1 sshd[28650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.215 Feb 15 09:53:04 gw1 sshd[28650]: Failed password for invalid user shua from 114.67.239.215 port 38814 ssh2 ...	2020-02-15 15:42:10
114.67.239.215	attackbots	1581520438 - 02/12/2020 16:13:58 Host: 114.67.239.215/114.67.239.215 Port: 22 TCP Blocked	2020-02-13 00:24:52
114.67.239.215	attackbotsspam	Feb 9 07:50:51 home sshd[20519]: Invalid user aof from 114.67.239.215 port 60429 Feb 9 07:50:51 home sshd[20519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.215 Feb 9 07:50:51 home sshd[20519]: Invalid user aof from 114.67.239.215 port 60429 Feb 9 07:50:52 home sshd[20519]: Failed password for invalid user aof from 114.67.239.215 port 60429 ssh2 Feb 9 08:14:17 home sshd[20647]: Invalid user rim from 114.67.239.215 port 51140 Feb 9 08:14:17 home sshd[20647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.239.215 Feb 9 08:14:17 home sshd[20647]: Invalid user rim from 114.67.239.215 port 51140 Feb 9 08:14:19 home sshd[20647]: Failed password for invalid user rim from 114.67.239.215 port 51140 ssh2 Feb 9 08:23:56 home sshd[20709]: Invalid user ssa from 114.67.239.215 port 40843 Feb 9 08:23:56 home sshd[20709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.	2020-02-10 00:44:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.67.239.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52340
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.67.239.55.			IN	A

;; AUTHORITY SECTION:
.			392	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121902 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 16:27:00 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 55.239.67.114.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 55.239.67.114.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
110.78.168.234	attack	firewall-block, port(s): 23/tcp	2019-08-07 10:48:46
49.83.142.191	attack	23/tcp [2019-08-06]1pkt	2019-08-07 10:10:05
205.185.117.149	attackspam	SSH bruteforce	2019-08-07 10:42:42
104.149.70.34	attack	RDP Bruteforce	2019-08-07 10:17:50
103.62.239.77	attackspam	k+ssh-bruteforce	2019-08-07 09:57:02
101.99.23.105	attackbotsspam	445/tcp [2019-08-06]1pkt	2019-08-07 10:23:38
92.54.200.66	attackbots	SPAM Delivery Attempt	2019-08-07 10:18:34
45.32.181.47	attack	2019-08-06 16:41:25 dovecot_login authenticator failed for (5ryiuGn) [45.32.181.47]:54360 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=chrish@lerctr.org) 2019-08-06 16:41:42 dovecot_login authenticator failed for (T7Mh3dhd) [45.32.181.47]:50632 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=chrish@lerctr.org) 2019-08-06 16:42:02 dovecot_login authenticator failed for (oCoziNi) [45.32.181.47]:60668 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=chrish@lerctr.org) ...	2019-08-07 10:03:05
89.248.172.85	attackspam	08/06/2019-21:54:30.620818 89.248.172.85 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2019-08-07 10:28:36
114.40.232.213	attack	23/tcp [2019-08-06]1pkt	2019-08-07 10:22:22
5.62.41.134	attack	\[2019-08-06 22:03:54\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.134:1096' - Wrong password \[2019-08-06 22:03:54\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-06T22:03:54.985-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="72478",SessionID="0x7ff4d0160998",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.134/50042",Challenge="158fee01",ReceivedChallenge="158fee01",ReceivedHash="17737d10c021f4ef7c65986fdf0d16b2" \[2019-08-06 22:04:34\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.134:1010' - Wrong password \[2019-08-06 22:04:34\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-06T22:04:34.705-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="78334",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.134/6	2019-08-07 10:06:05
167.99.15.245	attack	Aug 7 02:20:01 ns41 sshd[31863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.15.245	2019-08-07 10:15:31
128.199.164.87	attack	Aug 7 03:51:18 server sshd\[5476\]: Invalid user kevin from 128.199.164.87 port 51224 Aug 7 03:51:18 server sshd\[5476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.164.87 Aug 7 03:51:19 server sshd\[5476\]: Failed password for invalid user kevin from 128.199.164.87 port 51224 ssh2 Aug 7 03:56:17 server sshd\[32151\]: Invalid user uftp from 128.199.164.87 port 47308 Aug 7 03:56:17 server sshd\[32151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.164.87	2019-08-07 10:47:00
167.114.227.138	attackbots	xmlrpc attack	2019-08-07 10:08:18
187.137.86.233	attack	23/tcp [2019-08-06]1pkt	2019-08-07 10:28:03

最近上报的IP列表

198.37.169.39	86.238.30.51	113.174.175.228	91.121.92.17
137.97.41.166	37.202.5.156	203.91.115.245	117.184.114.140
71.11.66.34	91.122.202.57	156.133.165.184	5.152.111.129
14.169.139.206	1.55.190.136	40.92.69.27	111.93.117.178
122.236.156.15	84.245.6.57	49.207.143.24	5.135.15.151