128.14.209.244

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Zenlayer Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	TCP (SYN) 128.14.209.244:23411 -> port 443, len 44	2020-07-22 22:42:37
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-05 02:29:41
attackbots	Firewall Dropped Connection	2020-06-26 03:57:05

相同子网IP讨论:

IP	类型	评论内容	时间
128.14.209.30	attackproxy	Brute-force attacker IP	2024-05-16 12:46:00
128.14.209.34	attack	Malicious IP	2024-04-21 01:52:16
128.14.209.42	botsattack	hacking	2024-02-19 13:52:38
128.14.209.178	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-08 06:15:22
128.14.209.154	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-08 05:52:50
128.14.209.178	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 22:34:44
128.14.209.178	attackspam	TCP (SYN) 128.14.209.178:35096 -> port 443, len 44	2020-10-07 14:36:13
128.14.209.154	attackspam	8080/tcp 8443/tcp... [2020-08-06/10-06]5pkt,3pt.(tcp)	2020-10-07 14:10:08
128.14.209.178	attackbotsspam	Unwanted checking 80 or 443 port ...	2020-10-02 00:41:51
128.14.209.178	attack	2020/06/29 14:39:19 [error] 14439#14439: *16658 open() "/var/services/web/version" failed (2: No such file or directory), client: 128.14.209.178, server: , request: "GET /version HTTP/1.1", host: "80.0.208.108"	2020-10-01 16:47:27
128.14.209.242	attackspambots	REQUESTED PAGE: /webfig/	2020-08-18 04:57:08
128.14.209.250	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: survey.internet-census.org.	2020-08-17 22:34:07
128.14.209.178	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: survey.internet-census.org.	2020-08-17 22:22:33
128.14.209.250	attackspam	TCP (SYN) 128.14.209.250:39581 -> port 443, len 40	2020-08-14 04:40:25
128.14.209.154	attack	Unauthorized connection attempt detected from IP address 128.14.209.154 to port 443 [T]	2020-08-14 04:22:53

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.14.209.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41568
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.14.209.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050501 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon May 06 07:26:54 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 244.209.14.128.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 244.209.14.128.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
185.220.100.240	attackbotsspam	Brute force attack stopped by firewall	2020-08-29 08:26:59
158.69.0.38	attack	Aug 29 03:39:29 XXXXXX sshd[45296]: Invalid user wdbs from 158.69.0.38 port 58812	2020-08-29 12:03:04
180.250.124.227	attackspam	Aug 29 03:23:36 XXX sshd[46925]: Invalid user platinum from 180.250.124.227 port 47210	2020-08-29 12:10:05
106.12.59.23	attackbots	$f2bV_matches	2020-08-29 08:22:21
140.143.56.61	attackspam	Aug 28 23:26:31 *** sshd[26162]: Invalid user wanghao from 140.143.56.61	2020-08-29 08:19:26
62.112.11.90	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-29T03:28:31Z and 2020-08-29T03:59:52Z	2020-08-29 12:16:50
49.88.112.76	attackbots	Aug 29 06:59:56 webhost01 sshd[12524]: Failed password for root from 49.88.112.76 port 33773 ssh2 ...	2020-08-29 08:24:57
222.186.15.115	attack	Aug 29 04:03:56 scw-6657dc sshd[6544]: Failed password for root from 222.186.15.115 port 51299 ssh2 Aug 29 04:03:56 scw-6657dc sshd[6544]: Failed password for root from 222.186.15.115 port 51299 ssh2 Aug 29 04:03:59 scw-6657dc sshd[6544]: Failed password for root from 222.186.15.115 port 51299 ssh2 ...	2020-08-29 12:12:56
5.135.224.151	attackspam	Automatic Fail2ban report - Trying login SSH	2020-08-29 08:24:34
202.179.74.34	attack	202.179.74.34 - - [29/Aug/2020:03:23:15 +0000] "GET /phpmyadmin/index.php HTTP/1.1" 404 218 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36 Mozilla/5.0 (iPad; U; CPU OS 3_2 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Version/4.0.4 Mobile/7B334b Safari/531.21.10"	2020-08-29 12:11:47
118.24.114.205	attackbots	Aug 29 02:11:30 pve1 sshd[20388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.205 Aug 29 02:11:32 pve1 sshd[20388]: Failed password for invalid user asi from 118.24.114.205 port 44486 ssh2 ...	2020-08-29 08:31:50
136.243.72.5	attack	Aug 29 02:10:43 relay postfix/smtpd\[24836\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[24964\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[23275\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[24965\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[23242\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[24798\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[23327\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 02:10:43 relay postfix/smtpd\[23694\]: warning: ...	2020-08-29 08:27:34
51.210.13.215	attack	Invalid user postmaster from 51.210.13.215 port 53786	2020-08-29 12:17:06
221.12.107.26	attackbotsspam	Aug 29 03:27:16 XXX sshd[57546]: Invalid user dev14 from 221.12.107.26 port 22979	2020-08-29 12:08:59
112.85.42.172	attack	Aug 28 18:00:53 web9 sshd\[396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Aug 28 18:00:56 web9 sshd\[396\]: Failed password for root from 112.85.42.172 port 24114 ssh2 Aug 28 18:00:59 web9 sshd\[396\]: Failed password for root from 112.85.42.172 port 24114 ssh2 Aug 28 18:01:02 web9 sshd\[396\]: Failed password for root from 112.85.42.172 port 24114 ssh2 Aug 28 18:01:05 web9 sshd\[396\]: Failed password for root from 112.85.42.172 port 24114 ssh2	2020-08-29 12:24:21

最近上报的IP列表

118.70.187.84	118.70.169.8	157.50.240.52	92.63.196.7
189.8.108.73	172.110.73.170	2607:5300:60:139f::1	118.24.145.89
89.246.233.34	191.209.99.112	1.220.9.68	222.235.242.224
142.93.72.131	212.124.188.103	228.88.68.62	35.238.81.17
5.9.151.57	161.126.94.95	83.212.74.140	132.66.231.148