117.64.248.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Anhui Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	[portscan] Port scan	2020-02-28 20:44:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.64.248.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5505
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.64.248.14.			IN	A

;; AUTHORITY SECTION:
.			124	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 20:44:45 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 14.248.64.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.248.64.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.187.3.60	attackbots	Aug 17 17:22:21 hanapaa sshd\[11734\]: Invalid user 123456789 from 37.187.3.60 Aug 17 17:22:21 hanapaa sshd\[11734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3109541.ip-37-187-3.eu Aug 17 17:22:23 hanapaa sshd\[11734\]: Failed password for invalid user 123456789 from 37.187.3.60 port 38574 ssh2 Aug 17 17:26:55 hanapaa sshd\[12189\]: Invalid user skan from 37.187.3.60 Aug 17 17:26:55 hanapaa sshd\[12189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3109541.ip-37-187-3.eu	2019-08-18 12:51:12
104.236.72.182	attackbots	Splunk® : port scan detected: Aug 18 00:32:40 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=104.236.72.182 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=252 ID=18454 PROTO=TCP SPT=56468 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-18 12:38:03
59.72.109.242	attack	Aug 18 06:30:53 SilenceServices sshd[20666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.109.242 Aug 18 06:30:55 SilenceServices sshd[20666]: Failed password for invalid user andrew from 59.72.109.242 port 48048 ssh2 Aug 18 06:34:22 SilenceServices sshd[23613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.109.242	2019-08-18 12:49:21
47.254.213.227	attackspambots	8080/tcp [2019-08-18]1pkt	2019-08-18 13:20:35
181.54.250.2	attack	Aug 18 06:00:38 www sshd\[22512\]: Invalid user nd from 181.54.250.2Aug 18 06:00:39 www sshd\[22512\]: Failed password for invalid user nd from 181.54.250.2 port 54032 ssh2Aug 18 06:08:12 www sshd\[22569\]: Invalid user tom from 181.54.250.2 ...	2019-08-18 13:03:31
86.51.158.118	attack	445/tcp [2019-08-18]1pkt	2019-08-18 12:59:56
35.244.15.215	attackspam	Aug 17 18:48:12 auw2 sshd\[2465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.15.244.35.bc.googleusercontent.com user=root Aug 17 18:48:14 auw2 sshd\[2465\]: Failed password for root from 35.244.15.215 port 60730 ssh2 Aug 17 18:56:33 auw2 sshd\[3135\]: Invalid user fish from 35.244.15.215 Aug 17 18:56:33 auw2 sshd\[3135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.15.244.35.bc.googleusercontent.com Aug 17 18:56:34 auw2 sshd\[3135\]: Failed password for invalid user fish from 35.244.15.215 port 53274 ssh2	2019-08-18 13:04:50
113.185.40.231	attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2019-08-18 12:58:08
86.49.81.10	attackbots	2019/08/18 05:08:17 [error] 1586#1586: *6700 open() "/srv/automx/instance/cgi-bin/ViewLog.asp" failed (2: No such file or directory), client: 86.49.81.10, server: autoconfig.tuxlinux.eu, request: "POST /cgi-bin/ViewLog.asp HTTP/1.1", host: "127.0.0.1" ...	2019-08-18 13:00:49
85.184.224.149	attackspam	port scan and connect, tcp 23 (telnet)	2019-08-18 12:34:29
182.122.166.3	attack	23/tcp [2019-08-18]1pkt	2019-08-18 13:05:18
68.48.240.245	attackbots	Aug 18 06:29:39 meumeu sshd[13737]: Failed password for invalid user sinusbot from 68.48.240.245 port 44644 ssh2 Aug 18 06:34:03 meumeu sshd[14334]: Failed password for invalid user ts3 from 68.48.240.245 port 34596 ssh2 Aug 18 06:38:25 meumeu sshd[14771]: Failed password for invalid user unna from 68.48.240.245 port 52784 ssh2 ...	2019-08-18 12:48:52
106.13.33.181	attackbots	Aug 17 19:00:09 lcdev sshd\[14204\]: Invalid user p@ssword from 106.13.33.181 Aug 17 19:00:09 lcdev sshd\[14204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 Aug 17 19:00:11 lcdev sshd\[14204\]: Failed password for invalid user p@ssword from 106.13.33.181 port 50806 ssh2 Aug 17 19:05:51 lcdev sshd\[14689\]: Invalid user tian from 106.13.33.181 Aug 17 19:05:51 lcdev sshd\[14689\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181	2019-08-18 13:12:36
103.243.143.140	attackbots	Aug 17 23:44:58 aat-srv002 sshd[15240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.143.140 Aug 17 23:45:00 aat-srv002 sshd[15240]: Failed password for invalid user testphp from 103.243.143.140 port 61578 ssh2 Aug 17 23:49:23 aat-srv002 sshd[15413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.143.140 Aug 17 23:49:24 aat-srv002 sshd[15413]: Failed password for invalid user kevin from 103.243.143.140 port 49303 ssh2 ...	2019-08-18 12:50:51
177.23.73.35	attackbotsspam	$f2bV_matches	2019-08-18 13:07:54

最近上报的IP列表

175.215.80.190	125.59.217.10	158.44.48.171	159.192.188.241
175.211.202.64	175.208.123.158	59.2.8.65	14.228.94.7
148.153.12.217	220.145.131.40	131.54.26.30	227.229.245.18
175.204.163.76	40.245.205.81	123.23.36.79	218.51.50.134
171.232.85.110	14.227.57.102	187.106.115.89	83.233.3.27