123.145.14.18 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Chongqing Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 123.145.14.18 to port 21	2020-05-31 03:37:45

相同子网IP讨论:

IP	类型	评论内容	时间
123.145.14.230	attack	Unauthorized connection attempt detected from IP address 123.145.14.230 to port 8080	2019-12-29 17:11:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.145.14.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53765
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.145.14.18.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020053000 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 31 03:37:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 18.14.145.123.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 18.14.145.123.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
219.139.164.131	attack	08/20/2019-11:33:20.258925 219.139.164.131 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-21 01:49:01
91.134.140.32	attackspam	Aug 20 20:29:08 localhost sshd\[858\]: Invalid user yseult from 91.134.140.32 port 47272 Aug 20 20:29:08 localhost sshd\[858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.140.32 Aug 20 20:29:10 localhost sshd\[858\]: Failed password for invalid user yseult from 91.134.140.32 port 47272 ssh2	2019-08-21 02:48:54
179.189.201.67	attack	Aug 20 16:50:22 xeon postfix/smtpd[14775]: warning: unknown[179.189.201.67]: SASL PLAIN authentication failed: authentication failure	2019-08-21 01:35:33
123.136.193.38	attackspambots	Brute force attempt	2019-08-21 02:32:29
151.80.217.219	attackspambots	Brute force attempt	2019-08-20 23:59:54
2a02:a44e:ef72:1:5188:5845:6e84:f22a	attackspambots	failed_logins	2019-08-21 02:58:02
106.12.221.86	attackbots	Aug 20 19:23:12 bouncer sshd\[845\]: Invalid user csgoserver78 from 106.12.221.86 port 55574 Aug 20 19:23:12 bouncer sshd\[845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.221.86 Aug 20 19:23:13 bouncer sshd\[845\]: Failed password for invalid user csgoserver78 from 106.12.221.86 port 55574 ssh2 ...	2019-08-21 02:03:07
36.42.100.228	attackspambots	Aug 20 16:25:25 l01 sshd[280841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.42.100.228 user=r.r Aug 20 16:25:27 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:29 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:31 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:33 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:36 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:40 l01 sshd[280841]: Failed password for r.r from 36.42.100.228 port 54229 ssh2 Aug 20 16:25:40 l01 sshd[280841]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.42.100.228 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.42.100.228	2019-08-21 02:07:24
213.109.1.15	attack	SPAM Delivery Attempt	2019-08-21 00:11:34
80.211.136.203	attackspambots	Aug 20 19:19:51 mail sshd\[12019\]: Failed password for invalid user bai from 80.211.136.203 port 54976 ssh2 Aug 20 19:24:14 mail sshd\[12613\]: Invalid user jking from 80.211.136.203 port 44902 Aug 20 19:24:14 mail sshd\[12613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.136.203 Aug 20 19:24:16 mail sshd\[12613\]: Failed password for invalid user jking from 80.211.136.203 port 44902 ssh2 Aug 20 19:28:33 mail sshd\[13016\]: Invalid user jack from 80.211.136.203 port 34824	2019-08-21 01:33:12
164.132.207.231	attack	Lines containing failures of 164.132.207.231 Aug 20 02:34:53 echo390 sshd[18252]: Invalid user chay from 164.132.207.231 port 55542 Aug 20 02:34:53 echo390 sshd[18252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.207.231 Aug 20 02:34:56 echo390 sshd[18252]: Failed password for invalid user chay from 164.132.207.231 port 55542 ssh2 Aug 20 02:34:56 echo390 sshd[18252]: Received disconnect from 164.132.207.231 port 55542:11: Bye Bye [preauth] Aug 20 02:34:56 echo390 sshd[18252]: Disconnected from invalid user chay 164.132.207.231 port 55542 [preauth] Aug 20 06:26:47 echo390 sshd[30589]: Invalid user leonidas from 164.132.207.231 port 32850 Aug 20 06:26:48 echo390 sshd[30589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.207.231 Aug 20 06:26:50 echo390 sshd[30589]: Failed password for invalid user leonidas from 164.132.207.231 port 32850 ssh2 Aug 20 06:26:50 echo390 sshd[30........ ------------------------------	2019-08-21 02:36:24
175.143.33.180	attackspam	Aug 20 17:52:32 mail sshd\[32583\]: Invalid user 4 from 175.143.33.180 port 45180 Aug 20 17:52:32 mail sshd\[32583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.143.33.180 Aug 20 17:52:35 mail sshd\[32583\]: Failed password for invalid user 4 from 175.143.33.180 port 45180 ssh2 Aug 20 17:58:02 mail sshd\[832\]: Invalid user tariq from 175.143.33.180 port 35960 Aug 20 17:58:02 mail sshd\[832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.143.33.180	2019-08-21 00:07:55
5.62.41.170	attackbotsspam	\[2019-08-20 12:20:44\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '5.62.41.170:7683' - Wrong password \[2019-08-20 12:20:44\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-20T12:20:44.639-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="46208",SessionID="0x7f7b3004c7e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.170/51328",Challenge="2026cac7",ReceivedChallenge="2026cac7",ReceivedHash="ff1143e71d0603793e27f45e148e8fe1" \[2019-08-20 12:21:36\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '5.62.41.170:7636' - Wrong password \[2019-08-20 12:21:36\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-20T12:21:36.449-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="33761",SessionID="0x7f7b3008e088",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.170/5	2019-08-21 00:27:41
66.155.18.238	attackspambots	Aug 20 18:56:37 ubuntu-2gb-nbg1-dc3-1 sshd[15717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.155.18.238 Aug 20 18:56:39 ubuntu-2gb-nbg1-dc3-1 sshd[15717]: Failed password for invalid user tomcat from 66.155.18.238 port 38346 ssh2 ...	2019-08-21 01:56:18
148.70.1.210	attackspam	Aug 20 10:35:42 aat-srv002 sshd[17703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.1.210 Aug 20 10:35:44 aat-srv002 sshd[17703]: Failed password for invalid user florian from 148.70.1.210 port 56946 ssh2 Aug 20 10:41:59 aat-srv002 sshd[17915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.1.210 Aug 20 10:42:01 aat-srv002 sshd[17915]: Failed password for invalid user manu from 148.70.1.210 port 44582 ssh2 ...	2019-08-21 00:49:29

最近上报的IP列表

93.198.249.18	93.65.250.233	92.84.235.147	80.174.217.106
79.49.226.19	77.42.93.244	76.174.86.202	62.42.129.179
54.90.202.204	50.36.173.244	46.37.39.21	45.83.65.84
36.255.135.224	34.228.189.205	31.25.132.230	27.184.49.161
5.27.210.70	3.7.252.183	223.10.179.253	222.212.154.185