124.6.14.208 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): TFN Media Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	firewall-block, port(s): 23/tcp	2020-08-27 20:17:31

相同子网IP讨论:

IP	类型	评论内容	时间
124.6.14.222	attack	Port probing on unauthorized port 23	2020-04-27 19:01:55
124.6.14.149	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-03 06:35:07
124.6.14.65	attackbotsspam	Unauthorized connection attempt detected from IP address 124.6.14.65 to port 23 [J]	2020-01-25 08:22:18
124.6.14.65	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-10 07:42:14
124.6.140.110	attackspambots	Unauthorized connection attempt detected from IP address 124.6.140.110 to port 23 [T]	2020-01-07 03:06:10
124.6.14.238	attack	Unauthorized connection attempt detected from IP address 124.6.14.238 to port 4567	2020-01-01 19:55:05
124.6.140.50	attack	Nov 25 10:22:37 server sshd\[6771\]: Invalid user changeme from 124.6.140.50 port 53702 Nov 25 10:22:37 server sshd\[6771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.6.140.50 Nov 25 10:22:39 server sshd\[6771\]: Failed password for invalid user changeme from 124.6.140.50 port 53702 ssh2 Nov 25 10:27:03 server sshd\[30748\]: Invalid user theodo from 124.6.140.50 port 16383 Nov 25 10:27:03 server sshd\[30748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.6.140.50	2019-11-25 16:34:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.6.14.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6951
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.6.14.208.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082700 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 27 20:17:26 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 208.14.6.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 208.14.6.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.230.42.28	attack	Sep 5 21:48:44 tdfoods sshd\[13923\]: Invalid user guest from 157.230.42.28 Sep 5 21:48:44 tdfoods sshd\[13923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.28 Sep 5 21:48:45 tdfoods sshd\[13923\]: Failed password for invalid user guest from 157.230.42.28 port 34300 ssh2 Sep 5 21:53:32 tdfoods sshd\[14318\]: Invalid user password from 157.230.42.28 Sep 5 21:53:32 tdfoods sshd\[14318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.28	2019-09-06 20:23:49
193.32.160.140	attack	Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\	2019-09-06 20:23:21
173.244.36.42	attackbotsspam	B: Magento admin pass test (wrong country)	2019-09-06 20:50:13
213.202.211.200	attackspam	Sep 6 14:34:01 localhost sshd\[15291\]: Invalid user gitolite from 213.202.211.200 port 55350 Sep 6 14:34:01 localhost sshd\[15291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 Sep 6 14:34:04 localhost sshd\[15291\]: Failed password for invalid user gitolite from 213.202.211.200 port 55350 ssh2	2019-09-06 20:41:42
130.105.68.165	attackbotsspam	Sep 6 05:47:39 lnxweb61 sshd[17113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.105.68.165	2019-09-06 20:55:04
185.254.122.56	attackbotsspam	09/06/2019-07:55:32.861734 185.254.122.56 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-06 21:03:17
110.185.39.29	attackspambots	Sep 6 11:51:56 www_kotimaassa_fi sshd[11739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.39.29 Sep 6 11:51:57 www_kotimaassa_fi sshd[11739]: Failed password for invalid user postgres from 110.185.39.29 port 19270 ssh2 ...	2019-09-06 20:17:22
201.39.233.40	attackbots	Sep 6 14:17:27 plex sshd[20848]: Invalid user nagios from 201.39.233.40 port 48667	2019-09-06 20:34:28
103.219.154.13	attackspambots	Sep 6 14:17:42 andromeda postfix/smtpd\[13037\]: warning: unknown\[103.219.154.13\]: SASL LOGIN authentication failed: authentication failure Sep 6 14:18:05 andromeda postfix/smtpd\[12927\]: warning: unknown\[103.219.154.13\]: SASL LOGIN authentication failed: authentication failure Sep 6 14:18:05 andromeda postfix/smtpd\[13037\]: warning: unknown\[103.219.154.13\]: SASL LOGIN authentication failed: authentication failure Sep 6 14:18:28 andromeda postfix/smtpd\[12748\]: warning: unknown\[103.219.154.13\]: SASL LOGIN authentication failed: authentication failure Sep 6 14:18:28 andromeda postfix/smtpd\[12927\]: warning: unknown\[103.219.154.13\]: SASL LOGIN authentication failed: authentication failure	2019-09-06 20:58:35
202.152.20.186	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 02:12:13,679 INFO [amun_request_handler] PortScan Detected on Port: 445 (202.152.20.186)	2019-09-06 20:12:17
149.56.129.68	attack	Sep 6 02:43:28 tdfoods sshd\[7195\]: Invalid user 1234 from 149.56.129.68 Sep 6 02:43:28 tdfoods sshd\[7195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.ip-149-56-129.net Sep 6 02:43:29 tdfoods sshd\[7195\]: Failed password for invalid user 1234 from 149.56.129.68 port 37778 ssh2 Sep 6 02:47:44 tdfoods sshd\[7516\]: Invalid user test from 149.56.129.68 Sep 6 02:47:44 tdfoods sshd\[7516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.ip-149-56-129.net	2019-09-06 21:01:08
23.251.128.200	attackspambots	" "	2019-09-06 20:51:40
167.99.251.192	attackspambots	/wp-login.php	2019-09-06 20:13:13
202.101.189.10	attackspambots	SMB Server BruteForce Attack	2019-09-06 20:25:37
107.170.109.82	attackbots	v+ssh-bruteforce	2019-09-06 20:53:36

最近上报的IP列表

95.174.127.68	39.82.195.189	91.240.118.110	171.246.121.6
190.44.129.165	180.191.156.71	121.139.202.56	181.239.185.129
87.203.105.184	60.190.185.142	35.196.207.94	114.41.38.205
180.99.51.187	16.164.203.17	163.22.59.130	154.85.148.37
165.182.111.192	43.191.88.222	34.49.22.59	100.229.35.4