14.102.44.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.102.44.14	attackspambots	/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox&curpath=/¤tsetting.htm=1	2019-12-16 00:06:53
14.102.44.66	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 18:14:57,134 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.102.44.66)	2019-07-27 05:29:52

类型

评论内容

时间

14.102.44.14

attackspambots

/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox&curpath=/¤tsetting.htm=1

2019-12-16 00:06:53

14.102.44.66

attackbotsspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 18:14:57,134 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.102.44.66)

2019-07-27 05:29:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.102.44.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27050
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.102.44.145.			IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:39:32 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

b';; connection timed out; no servers could be reached
'

NSLOOKUP信息:

server can't find 14.102.44.145.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
101.4.130.247	attackbotsspam	Apr 21 01:02:13 * sshd[15056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.4.130.247 Apr 21 01:02:15 * sshd[15056]: Failed password for invalid user s from 101.4.130.247 port 40436 ssh2	2020-04-21 07:20:25
191.32.190.59	attackspam	Automatic report - Port Scan Attack	2020-04-21 07:12:28
170.244.232.91	attackspam	" "	2020-04-21 07:30:08
74.91.124.123	attack	Port scanning	2020-04-21 07:27:52
66.249.73.70	attackspam	[Tue Apr 21 06:21:37.078341 2020] [:error] [pid 7451:tid 140338691090176] [client 66.249.73.70:63230] [client 66.249.73.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/bmkg-malang.json"] [unique_id "Xp4ugRl@CjvK30y@iWjCmgAAALU"], referer: https://103.27.207.197/ ...	2020-04-21 07:31:33
101.78.3.29	attackspam	Apr 21 00:03:35 prod4 sshd\[28426\]: Failed password for root from 101.78.3.29 port 47794 ssh2 Apr 21 00:08:11 prod4 sshd\[29891\]: Invalid user postgres from 101.78.3.29 Apr 21 00:08:14 prod4 sshd\[29891\]: Failed password for invalid user postgres from 101.78.3.29 port 49256 ssh2 ...	2020-04-21 07:41:13
185.175.93.17	attackspam	04/20/2020-19:09:00.730796 185.175.93.17 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-21 07:33:58
49.234.189.19	attackspam	SSH Invalid Login	2020-04-21 07:42:22
222.186.30.167	attackbotsspam	Apr 21 01:23:46 vmd38886 sshd\[28139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Apr 21 01:23:48 vmd38886 sshd\[28139\]: Failed password for root from 222.186.30.167 port 46307 ssh2 Apr 21 01:23:50 vmd38886 sshd\[28139\]: Failed password for root from 222.186.30.167 port 46307 ssh2	2020-04-21 07:32:11
106.12.171.65	attackspam	Apr 20 22:56:47 server sshd[1738]: Failed password for root from 106.12.171.65 port 49730 ssh2 Apr 20 23:02:08 server sshd[2897]: Failed password for lp from 106.12.171.65 port 59434 ssh2 Apr 20 23:07:31 server sshd[3950]: Failed password for invalid user bl from 106.12.171.65 port 40912 ssh2	2020-04-21 07:33:32
106.13.25.112	attack	Apr 20 14:08:27 : SSH login attempts with invalid user	2020-04-21 07:27:25
2a01:7e00::f03c:91ff:fe89:5608	attackspam	xmlrpc attack	2020-04-21 07:45:10
138.197.200.113	attack	138.197.200.113 - - \[21/Apr/2020:00:05:56 +0200\] "POST /wp-login.php HTTP/1.1" 200 9652 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 138.197.200.113 - - \[21/Apr/2020:00:05:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 9521 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-04-21 07:43:50
222.252.22.247	attackbotsspam	IMAP brute force ...	2020-04-21 07:25:20
13.76.245.128	attack	[ 📨 ] From root@sempreonline59.southeastasia.cloudapp.azure.com Mon Apr 20 16:54:20 2020 Received: from [13.76.245.128] (port=58564 helo=sempreonline59.southeastasia.cloudapp.azure.com)	2020-04-21 07:17:44

最近上报的IP列表

14.102.44.134	14.102.44.151	14.102.44.152	14.102.44.148
14.102.44.147	14.102.44.132	14.102.44.155	14.102.44.140
14.102.44.156	14.102.44.225	14.102.44.247	14.102.46.37
14.102.47.110	14.102.46.133	14.102.72.200	14.102.45.244
14.102.72.54	14.102.76.170	14.102.76.14	14.102.76.30