14.116.214.153

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 1 15:37:01 ns382633 sshd\[30365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.214.153 user=root Apr 1 15:37:02 ns382633 sshd\[30365\]: Failed password for root from 14.116.214.153 port 58638 ssh2 Apr 1 15:47:24 ns382633 sshd\[32355\]: Invalid user lt from 14.116.214.153 port 49274 Apr 1 15:47:24 ns382633 sshd\[32355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.214.153 Apr 1 15:47:26 ns382633 sshd\[32355\]: Failed password for invalid user lt from 14.116.214.153 port 49274 ssh2	2020-04-01 22:35:07
attack	Mar 26 05:09:57 mout sshd[10501]: Invalid user identd from 14.116.214.153 port 50546	2020-03-26 14:12:38
attackspambots	Mar 22 04:53:33 minden010 sshd[21666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.214.153 Mar 22 04:53:35 minden010 sshd[21666]: Failed password for invalid user robin from 14.116.214.153 port 47694 ssh2 Mar 22 04:54:31 minden010 sshd[22009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.214.153 ...	2020-03-22 15:23:08
attackspam	$f2bV_matches	2020-03-19 20:11:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.116.214.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.116.214.153.			IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031900 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 20:11:32 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 153.214.116.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 153.214.116.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.30.167	attackbotsspam	May 13 07:37:05 localhost sshd[21150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root May 13 07:37:07 localhost sshd[21150]: Failed password for root from 222.186.30.167 port 30723 ssh2 May 13 07:37:09 localhost sshd[21150]: Failed password for root from 222.186.30.167 port 30723 ssh2 May 13 07:37:05 localhost sshd[21150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root May 13 07:37:07 localhost sshd[21150]: Failed password for root from 222.186.30.167 port 30723 ssh2 May 13 07:37:09 localhost sshd[21150]: Failed password for root from 222.186.30.167 port 30723 ssh2 May 13 07:37:05 localhost sshd[21150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root May 13 07:37:07 localhost sshd[21150]: Failed password for root from 222.186.30.167 port 30723 ssh2 May 13 07:37:09 localhost sshd[21150]: Fa ...	2020-05-13 15:42:50
60.208.101.174	attackbotsspam	Invalid user admin from 60.208.101.174 port 49112	2020-05-13 15:49:31
171.103.159.150	attackspam	171.103.159.150 (TH/Thailand/171-103-159-150.static.asianet.co.th), 3 distributed imapd attacks on account [robert179@webpods.com] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: May 12 23:01:23 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=171.103.159.150, lip=69.195.129.243, TLS, session= May 12 23:55:08 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 8 secs): user=, method=PLAIN, rip=202.137.154.148, lip=69.195.129.243, TLS, session= May 12 23:03:15 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 12 secs): user=, method=PLAIN, rip=183.89.237.234, lip=69.195.129.243, TLS, session= IP Addresses Blocked:	2020-05-13 15:55:40
192.141.200.20	attackbots	May 13 07:56:43 [host] sshd[28727]: Invalid user c May 13 07:56:43 [host] sshd[28727]: pam_unix(sshd: May 13 07:56:45 [host] sshd[28727]: Failed passwor	2020-05-13 15:38:45
103.21.143.200	attackbots	May 13 06:57:44 meumeu sshd[1034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.200 May 13 06:57:46 meumeu sshd[1034]: Failed password for invalid user simon from 103.21.143.200 port 48212 ssh2 May 13 07:04:47 meumeu sshd[5520]: Failed password for root from 103.21.143.200 port 39814 ssh2 ...	2020-05-13 16:08:32
200.122.249.203	attackbots	Invalid user trading from 200.122.249.203 port 35229	2020-05-13 15:38:18
106.12.191.143	attack	May 13 09:32:55 v22018086721571380 sshd[8387]: Failed password for invalid user deploy from 106.12.191.143 port 60264 ssh2 May 13 09:37:23 v22018086721571380 sshd[13602]: Failed password for invalid user schaal from 106.12.191.143 port 54954 ssh2	2020-05-13 15:40:00
106.12.57.149	attackspambots	Invalid user user from 106.12.57.149 port 35248	2020-05-13 16:05:31
202.137.154.148	attackbots	202.137.154.148 (LA/Laos/-), 3 distributed imapd attacks on account [robert179@webpods.com] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: May 12 23:01:23 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=171.103.159.150, lip=69.195.129.243, TLS, session= May 12 23:55:08 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 8 secs): user=, method=PLAIN, rip=202.137.154.148, lip=69.195.129.243, TLS, session= May 12 23:03:15 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 12 secs): user=, method=PLAIN, rip=183.89.237.234, lip=69.195.129.243, TLS, session= IP Addresses Blocked: 171.103.159.150 (TH/Thailand/171-103-159-150.static.asianet.co.th)	2020-05-13 15:47:16
183.89.237.234	attackbotsspam	183.89.237.234 (TH/Thailand/mx-ll-183.89.237-234.dynamic.3bb.in.th), 3 distributed imapd attacks on account [robert179@webpods.com] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: May 12 23:01:23 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=171.103.159.150, lip=69.195.129.243, TLS, session= May 12 23:55:08 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 8 secs): user=, method=PLAIN, rip=202.137.154.148, lip=69.195.129.243, TLS, session= May 12 23:03:15 server dovecot: imap-login: Disconnected (auth failed, 1 attempts in 12 secs): user=, method=PLAIN, rip=183.89.237.234, lip=69.195.129.243, TLS, session= IP Addresses Blocked: 171.103.159.150 (TH/Thailand/171-103-159-150.static.asianet.co.th) 202.137.154.148 (LA/Laos/-)	2020-05-13 15:46:19
88.98.232.53	attackbotsspam	May 13 09:27:04 ns381471 sshd[21886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.98.232.53 May 13 09:27:06 ns381471 sshd[21886]: Failed password for invalid user abc from 88.98.232.53 port 35864 ssh2	2020-05-13 15:54:09
47.75.70.153	attack	Malicious/Probing: /xmlrpc.php	2020-05-13 15:22:07
223.205.222.123	attackbots	IP attempted unauthorised action	2020-05-13 15:42:24
134.175.129.204	attackspambots	Invalid user cm from 134.175.129.204 port 45748	2020-05-13 15:57:20
185.175.93.104	attackspambots	firewall-block, port(s): 7005/tcp, 8857/tcp, 9020/tcp, 9500/tcp, 9797/tcp	2020-05-13 15:40:33

最近上报的IP列表

42.179.7.82	42.141.216.21	103.40.26.77	235.170.14.77
116.111.98.128	215.40.44.198	119.90.51.171	27.104.135.156
178.252.111.184	106.13.49.213	14.116.150.230	185.17.120.15
185.242.86.47	185.242.86.46	129.82.138.12	78.29.44.100
66.42.77.85	61.184.189.52	192.241.238.106	86.6.54.142