120.14.164.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Heibei Province Network

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=38523 TCP DPT=8080 WINDOW=64824 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=7803 TCP DPT=8080 WINDOW=64824 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=5273 TCP DPT=8080 WINDOW=4622 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=40874 TCP DPT=8080 WINDOW=4622 SYN Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=14762 TCP DPT=8080 WINDOW=64824 SYN	2019-08-24 01:53:11

类型

评论内容

时间

attackbots

Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=38523 TCP DPT=8080 WINDOW=64824 SYN 
Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=7803 TCP DPT=8080 WINDOW=64824 SYN 
Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=5273 TCP DPT=8080 WINDOW=4622 SYN 
Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=40874 TCP DPT=8080 WINDOW=4622 SYN 
Unauthorised access (Aug 23) SRC=120.14.164.80 LEN=40 TTL=114 ID=14762 TCP DPT=8080 WINDOW=64824 SYN

2019-08-24 01:53:11

相同子网IP讨论:

IP	类型	评论内容	时间
120.14.164.90	attackspam	Seq 2995002506	2019-08-22 16:18:43
120.14.164.90	attackspambots	23/tcp [2019-08-15]1pkt	2019-08-16 07:05:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.14.164.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22563
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.14.164.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 01:53:04 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.164.14.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 80.164.14.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
88.178.206.196	attack	" "	2019-07-30 06:09:10
109.224.57.14	attackbotsspam	SPAM Delivery Attempt	2019-07-30 06:12:53
109.202.0.14	attackbotsspam	Jul 29 21:26:12 MK-Soft-VM4 sshd\[28110\]: Invalid user curt from 109.202.0.14 port 54876 Jul 29 21:26:12 MK-Soft-VM4 sshd\[28110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 Jul 29 21:26:14 MK-Soft-VM4 sshd\[28110\]: Failed password for invalid user curt from 109.202.0.14 port 54876 ssh2 ...	2019-07-30 05:38:30
27.117.163.21	attack	Jul 29 23:12:17 debian sshd\[21718\]: Invalid user da from 27.117.163.21 port 50628 Jul 29 23:12:17 debian sshd\[21718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.117.163.21 ...	2019-07-30 06:17:44
120.196.128.42	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-30 05:48:34
119.90.52.36	attackspam	Jul 29 21:36:47 ip-172-31-62-245 sshd\[5544\]: Invalid user git from 119.90.52.36\ Jul 29 21:36:49 ip-172-31-62-245 sshd\[5544\]: Failed password for invalid user git from 119.90.52.36 port 55122 ssh2\ Jul 29 21:41:26 ip-172-31-62-245 sshd\[5643\]: Invalid user sleeper from 119.90.52.36\ Jul 29 21:41:28 ip-172-31-62-245 sshd\[5643\]: Failed password for invalid user sleeper from 119.90.52.36 port 47098 ssh2\ Jul 29 21:46:10 ip-172-31-62-245 sshd\[5667\]: Invalid user chase from 119.90.52.36\	2019-07-30 06:15:53
77.247.110.250	attack	SIPVicious Scanner Detection, PTR: PTR record not found	2019-07-30 06:08:35
134.209.243.95	attackbotsspam	$f2bV_matches	2019-07-30 05:50:31
185.173.35.17	attack	firewall-block, port(s): 5903/tcp	2019-07-30 06:23:49
77.116.174.254	attackbotsspam	SSH bruteforce	2019-07-30 06:19:15
148.72.65.10	attackspam	Jul 29 23:37:42 OPSO sshd\[23490\]: Invalid user isar from 148.72.65.10 port 43696 Jul 29 23:37:42 OPSO sshd\[23490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 Jul 29 23:37:45 OPSO sshd\[23490\]: Failed password for invalid user isar from 148.72.65.10 port 43696 ssh2 Jul 29 23:42:06 OPSO sshd\[23940\]: Invalid user support from 148.72.65.10 port 39094 Jul 29 23:42:06 OPSO sshd\[23940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10	2019-07-30 05:56:04
34.76.253.174	attackspambots	port scan and connect, tcp 110 (pop3)	2019-07-30 05:55:17
141.98.9.2	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-30 05:41:32
1.217.98.44	attack	Jul 29 22:23:37 mail sshd\[12597\]: Failed password for invalid user info3 from 1.217.98.44 port 36108 ssh2 Jul 29 22:40:05 mail sshd\[12849\]: Invalid user test from 1.217.98.44 port 53090 Jul 29 22:40:05 mail sshd\[12849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.217.98.44 ...	2019-07-30 05:48:49
206.189.132.246	attack	19/7/29@15:20:55: FAIL: Alarm-SSH address from=206.189.132.246 ...	2019-07-30 06:23:11

最近上报的IP列表

180.228.157.117	213.152.25.128	132.99.60.177	71.113.255.173
130.159.97.158	89.190.44.34	185.105.169.100	159.90.119.249
60.64.179.3	72.109.8.3	209.194.85.90	83.224.140.247
148.194.231.142	65.145.241.92	73.205.185.226	122.233.48.224
52.116.227.238	211.213.63.97	107.120.105.128	178.191.179.53