114.86.16.67 - IPInfo

基本信息:

城市(city): Shanghai

省份(region): Shanghai

国家(country): China

运营商(isp): China Telecom

主机名(hostname): unknown

机构(organization): China Telecom (Group)

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
114.86.166.167	attackbotsspam	Port probing on unauthorized port 8000	2020-06-06 06:49:31
114.86.166.63	attack	Unauthorized connection attempt detected from IP address 114.86.166.63 to port 81 [J]	2020-02-04 04:10:33

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.86.16.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30917
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.86.16.67.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 12:48:32 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 67.16.86.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 67.16.86.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
161.35.164.121	attackbotsspam	Jun 7 06:07:25 cumulus sshd[30542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.164.121 user=r.r Jun 7 06:07:27 cumulus sshd[30542]: Failed password for r.r from 161.35.164.121 port 44088 ssh2 Jun 7 06:07:27 cumulus sshd[30542]: Received disconnect from 161.35.164.121 port 44088:11: Bye Bye [preauth] Jun 7 06:07:27 cumulus sshd[30542]: Disconnected from 161.35.164.121 port 44088 [preauth] Jun 7 06:20:25 cumulus sshd[31563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.164.121 user=r.r Jun 7 06:20:26 cumulus sshd[31563]: Failed password for r.r from 161.35.164.121 port 37250 ssh2 Jun 7 06:20:26 cumulus sshd[31563]: Received disconnect from 161.35.164.121 port 37250:11: Bye Bye [preauth] Jun 7 06:20:26 cumulus sshd[31563]: Disconnected from 161.35.164.121 port 37250 [preauth] Jun 7 06:23:38 cumulus sshd[31816]: pam_unix(sshd:auth): authentication failure; lognam........ -------------------------------	2020-06-08 01:12:44
2001:41d0:a:2843::	attackbots	[SunJun0718:12:33.6007832020][:error][pid7833:tid46962520893184][client2001:41d0:a:2843:::38320][client2001:41d0:a:2843::]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$\^w3c-\\|systran\\\\\\\\$\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent$Python-urllib$.DisablethisruleifyouusePython-urllib."][severity"CRITICAL"][hostname"cser.ch"][uri"/wp-content/themes/ninkj/db.php"][unique_id"Xt0R8fEhuq1Sg86EXnAD3QAAABY"][SunJun0718:12:34.3104012020][:error][pid17725:tid46962431891200][client2001:41d0:a:2843:::38387][client2001:41d0:a:2843::]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$\^w3c-\\|systran\\\\\\\\$\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(	2020-06-08 01:15:19
186.216.71.50	attackbotsspam	Jun 5 14:48:38 mail.srvfarm.net postfix/smtpd[3095007]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed: Jun 5 14:48:38 mail.srvfarm.net postfix/smtpd[3095007]: lost connection after AUTH from unknown[186.216.71.50] Jun 5 14:55:01 mail.srvfarm.net postfix/smtps/smtpd[3094396]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed: Jun 5 14:55:01 mail.srvfarm.net postfix/smtps/smtpd[3094396]: lost connection after AUTH from unknown[186.216.71.50] Jun 5 14:57:10 mail.srvfarm.net postfix/smtpd[3093305]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed:	2020-06-08 00:57:01
61.184.71.113	attack	Jun 5 14:54:52 web01.srvfarm.net pure-ftpd: (?@61.184.71.113) [WARNING] Authentication failed for user [anonymous] Jun 5 14:55:32 web01.srvfarm.net pure-ftpd: (?@61.184.71.113) [WARNING] Authentication failed for user [www] Jun 5 14:55:40 web01.srvfarm.net pure-ftpd: (?@61.184.71.113) [WARNING] Authentication failed for user [www] Jun 5 14:55:56 web01.srvfarm.net pure-ftpd: (?@61.184.71.113) [WARNING] Authentication failed for user [www] Jun 5 14:56:03 web01.srvfarm.net pure-ftpd: (?@61.184.71.113) [WARNING] Authentication failed for user [www]	2020-06-08 01:02:05
62.182.151.46	attack	Jun 5 16:06:24 mail.srvfarm.net postfix/smtps/smtpd[3115649]: warning: unknown[62.182.151.46]: SASL PLAIN authentication failed: Jun 5 16:06:24 mail.srvfarm.net postfix/smtps/smtpd[3115649]: lost connection after AUTH from unknown[62.182.151.46] Jun 5 16:09:54 mail.srvfarm.net postfix/smtps/smtpd[3115655]: warning: unknown[62.182.151.46]: SASL PLAIN authentication failed: Jun 5 16:09:54 mail.srvfarm.net postfix/smtps/smtpd[3115655]: lost connection after AUTH from unknown[62.182.151.46] Jun 5 16:15:57 mail.srvfarm.net postfix/smtps/smtpd[3115653]: warning: unknown[62.182.151.46]: SASL PLAIN authentication failed:	2020-06-08 00:53:39
35.186.145.141	attackspam	$f2bV_matches	2020-06-08 01:11:44
109.196.240.132	attackbotsspam	Jun 5 15:40:31 mail.srvfarm.net postfix/smtps/smtpd[3114307]: warning: ip-109-196-240-132.static.system77.pl[109.196.240.132]: SASL PLAIN authentication failed: Jun 5 15:40:31 mail.srvfarm.net postfix/smtps/smtpd[3114307]: lost connection after AUTH from ip-109-196-240-132.static.system77.pl[109.196.240.132] Jun 5 15:48:28 mail.srvfarm.net postfix/smtps/smtpd[3115645]: warning: ip-109-196-240-132.static.system77.pl[109.196.240.132]: SASL PLAIN authentication failed: Jun 5 15:48:28 mail.srvfarm.net postfix/smtps/smtpd[3115645]: lost connection after AUTH from ip-109-196-240-132.static.system77.pl[109.196.240.132] Jun 5 15:49:11 mail.srvfarm.net postfix/smtpd[3113153]: warning: ip-109-196-240-132.static.system77.pl[109.196.240.132]: SASL PLAIN authentication failed:	2020-06-08 00:50:50
115.68.184.90	attack	Jun 7 10:53:46 mail.srvfarm.net postfix/smtpd[77074]: warning: unknown[115.68.184.90]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 10:53:46 mail.srvfarm.net postfix/smtpd[77074]: lost connection after AUTH from unknown[115.68.184.90] Jun 7 11:02:56 mail.srvfarm.net postfix/smtpd[77081]: warning: unknown[115.68.184.90]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 11:02:56 mail.srvfarm.net postfix/smtpd[77081]: lost connection after AUTH from unknown[115.68.184.90] Jun 7 11:03:03 mail.srvfarm.net postfix/smtpd[74234]: warning: unknown[115.68.184.90]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-08 00:50:14
81.163.14.200	attackspam	Jun 5 15:12:36 mail.srvfarm.net postfix/smtps/smtpd[3109500]: warning: unknown[81.163.14.200]: SASL PLAIN authentication failed: Jun 5 15:12:36 mail.srvfarm.net postfix/smtps/smtpd[3109500]: lost connection after AUTH from unknown[81.163.14.200] Jun 5 15:12:54 mail.srvfarm.net postfix/smtps/smtpd[3097217]: warning: 81-163-14-200.net.lasnet.pl[81.163.14.200]: SASL PLAIN authentication failed: Jun 5 15:12:54 mail.srvfarm.net postfix/smtps/smtpd[3097217]: lost connection after AUTH from 81-163-14-200.net.lasnet.pl[81.163.14.200] Jun 5 15:17:54 mail.srvfarm.net postfix/smtps/smtpd[3108780]: warning: 81-163-14-200.net.lasnet.pl[81.163.14.200]: SASL PLAIN authentication failed:	2020-06-08 01:01:29
94.40.75.147	attack	Jun 5 14:51:56 mail.srvfarm.net postfix/smtps/smtpd[3095846]: warning: 94-40-75-147.tktelekom.pl[94.40.75.147]: SASL PLAIN authentication failed: Jun 5 14:51:56 mail.srvfarm.net postfix/smtps/smtpd[3095846]: lost connection after AUTH from 94-40-75-147.tktelekom.pl[94.40.75.147] Jun 5 14:52:17 mail.srvfarm.net postfix/smtps/smtpd[3095846]: warning: 94-40-75-147.tktelekom.pl[94.40.75.147]: SASL PLAIN authentication failed: Jun 5 14:52:17 mail.srvfarm.net postfix/smtps/smtpd[3095846]: lost connection after AUTH from 94-40-75-147.tktelekom.pl[94.40.75.147] Jun 5 15:00:01 mail.srvfarm.net postfix/smtps/smtpd[3095847]: warning: 94-40-75-147.tktelekom.pl[94.40.75.147]: SASL PLAIN authentication failed:	2020-06-08 01:00:42
121.229.26.104	attackspam	5x Failed Password	2020-06-08 01:30:22
144.34.153.49	attackbots	Jun 7 17:59:52 buvik sshd[29387]: Failed password for root from 144.34.153.49 port 47864 ssh2 Jun 7 18:06:36 buvik sshd[30810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.153.49 user=root Jun 7 18:06:39 buvik sshd[30810]: Failed password for root from 144.34.153.49 port 41388 ssh2 ...	2020-06-08 01:27:52
37.49.226.173	attackbotsspam	07.06.2020 16:59:11 SSH access blocked by firewall	2020-06-08 01:11:19
103.25.134.168	attackspambots	Jun 5 15:13:06 mail.srvfarm.net postfix/smtps/smtpd[3097217]: warning: unknown[103.25.134.168]: SASL PLAIN authentication failed: Jun 5 15:13:06 mail.srvfarm.net postfix/smtps/smtpd[3097217]: lost connection after AUTH from unknown[103.25.134.168] Jun 5 15:13:18 mail.srvfarm.net postfix/smtps/smtpd[3109500]: warning: unknown[103.25.134.168]: SASL PLAIN authentication failed: Jun 5 15:13:18 mail.srvfarm.net postfix/smtps/smtpd[3109500]: lost connection after AUTH from unknown[103.25.134.168] Jun 5 15:13:44 mail.srvfarm.net postfix/smtpd[3095038]: warning: unknown[103.25.134.168]: SASL PLAIN authentication failed:	2020-06-08 00:59:36
157.230.190.90	attackbots	Jun 7 14:04:09 server sshd[27628]: Failed password for root from 157.230.190.90 port 41562 ssh2 Jun 7 14:04:48 server sshd[27668]: Failed password for root from 157.230.190.90 port 48962 ssh2 ...	2020-06-08 01:06:58

最近上报的IP列表

209.17.96.186	112.86.25.99	217.210.109.188	66.249.76.51
178.216.35.43	186.103.137.170	78.94.14.122	49.148.160.15
221.159.230.65	192.3.143.92	42.230.133.30	41.237.186.122
124.115.41.162	59.8.177.80	218.87.99.125	222.175.62.130
101.226.114.193	108.4.32.103	178.32.224.119	223.196.164.102