114.86.246.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanghai Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 114.86.246.20 on Port 445(SMB)	2019-09-09 05:35:34

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.86.246.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12895
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.86.246.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 05:35:29 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 20.246.86.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.246.86.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.199.91.162	attackbots	05/20/2020-11:21:53.717943 198.199.91.162 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-20 23:55:02
179.66.119.195	attackspambots	Lines containing failures of 179.66.119.195 May 20 17:56:29 shared11 sshd[30174]: Did not receive identification string from 179.66.119.195 port 26753 May 20 17:56:40 shared11 sshd[30225]: Invalid user service from 179.66.119.195 port 27021 May 20 17:56:41 shared11 sshd[30225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.66.119.195 May 20 17:56:42 shared11 sshd[30225]: Failed password for invalid user service from 179.66.119.195 port 27021 ssh2 May 20 17:56:43 shared11 sshd[30225]: Connection closed by invalid user service 179.66.119.195 port 27021 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.66.119.195	2020-05-21 00:36:27
195.189.248.195	attack	Unauthorized connection attempt from IP address 195.189.248.195 on Port 445(SMB)	2020-05-21 00:38:09
77.222.132.189	attack	May 20 15:45:36 UTC__SANYALnet-Labs__cac14 sshd[27519]: Connection from 77.222.132.189 port 49040 on 64.137.176.112 port 22 May 20 15:45:37 UTC__SANYALnet-Labs__cac14 sshd[27519]: Invalid user ics from 77.222.132.189 May 20 15:45:37 UTC__SANYALnet-Labs__cac14 sshd[27519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.222.132.189 May 20 15:45:38 UTC__SANYALnet-Labs__cac14 sshd[27519]: Failed password for invalid user ics from 77.222.132.189 port 49040 ssh2 May 20 15:45:38 UTC__SANYALnet-Labs__cac14 sshd[27519]: Received disconnect from 77.222.132.189: 11: Bye Bye [preauth] May 20 15:49:53 UTC__SANYALnet-Labs__cac14 sshd[27605]: Connection from 77.222.132.189 port 36490 on 64.137.176.112 port 22 May 20 15:49:54 UTC__SANYALnet-Labs__cac14 sshd[27605]: Invalid user tuf from 77.222.132.189 May 20 15:49:54 UTC__SANYALnet-Labs__cac14 sshd[27605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos........ -------------------------------	2020-05-21 00:13:40
197.156.65.138	attack	Invalid user bran from 197.156.65.138 port 38324	2020-05-21 00:13:58
37.49.230.253	attack	May 20 18:05:04 mail.srvfarm.net postfix/smtpd[1512868]: warning: unknown[37.49.230.253]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 20 18:05:04 mail.srvfarm.net postfix/smtpd[1512868]: lost connection after AUTH from unknown[37.49.230.253] May 20 18:05:10 mail.srvfarm.net postfix/smtpd[1512861]: warning: unknown[37.49.230.253]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 20 18:05:10 mail.srvfarm.net postfix/smtpd[1512861]: lost connection after AUTH from unknown[37.49.230.253] May 20 18:05:25 mail.srvfarm.net postfix/smtpd[1509610]: warning: unknown[37.49.230.253]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 20 18:05:25 mail.srvfarm.net postfix/smtpd[1509610]: lost connection after AUTH from unknown[37.49.230.253]	2020-05-21 00:30:15
51.83.105.225	attack	51.83.105.225 - - [20/May/2020:18:05:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.83.105.225 - - [20/May/2020:18:05:54 +0200] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.83.105.225 - - [20/May/2020:18:05:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.83.105.225 - - [20/May/2020:18:05:54 +0200] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.83.105.225 - - [20/May/2020:18:05:55 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.83.105.225 - - [20/May/2020:18:05:55 +0200] "POST /wp-login.php HTTP/1.1" 200 1627 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-05-21 00:27:41
1.55.133.30	attackbots	Unauthorized connection attempt from IP address 1.55.133.30 on Port 445(SMB)	2020-05-20 23:58:02
84.233.242.114	attackspambots	Unauthorized connection attempt from IP address 84.233.242.114 on Port 445(SMB)	2020-05-21 00:35:34
112.253.11.105	attackbots	May 20 18:05:53 sso sshd[2974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.253.11.105 May 20 18:05:55 sso sshd[2974]: Failed password for invalid user scm from 112.253.11.105 port 40841 ssh2 ...	2020-05-21 00:28:41
112.64.34.165	attackspambots	$f2bV_matches	2020-05-20 23:57:00
167.114.12.244	attack	May 20 17:57:15 vps sshd[187649]: Failed password for invalid user fb from 167.114.12.244 port 44594 ssh2 May 20 18:01:36 vps sshd[209326]: Invalid user gvl from 167.114.12.244 port 52988 May 20 18:01:36 vps sshd[209326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.12.244 May 20 18:01:38 vps sshd[209326]: Failed password for invalid user gvl from 167.114.12.244 port 52988 ssh2 May 20 18:05:49 vps sshd[229919]: Invalid user xzn from 167.114.12.244 port 33148 ...	2020-05-21 00:36:47
115.84.99.216	attackbots	Dovecot Invalid User Login Attempt.	2020-05-21 00:35:01
58.56.5.232	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 00:23:05
222.186.30.218	attackbots	May 20 18:33:20 Ubuntu-1404-trusty-64-minimal sshd\[29612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root May 20 18:33:22 Ubuntu-1404-trusty-64-minimal sshd\[29612\]: Failed password for root from 222.186.30.218 port 19854 ssh2 May 20 18:33:29 Ubuntu-1404-trusty-64-minimal sshd\[29758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root May 20 18:33:31 Ubuntu-1404-trusty-64-minimal sshd\[29758\]: Failed password for root from 222.186.30.218 port 18752 ssh2 May 20 18:33:42 Ubuntu-1404-trusty-64-minimal sshd\[29863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root	2020-05-21 00:34:07

最近上报的IP列表

176.59.73.204	121.46.233.31	22.58.210.122	1.52.82.59
161.132.206.154	78.187.236.126	58.153.34.181	36.239.77.53
217.79.14.78	162.144.134.39	194.109.3.91	27.182.231.43
77.69.130.235	54.36.149.34	177.94.244.42	134.209.159.216
20.162.19.152	113.195.96.208	82.151.125.230	71.31.8.197