14.124.11.221 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.124.112.69	attackbots	2020-06-30T16:28:02.192515shield sshd\[6181\]: Invalid user test1 from 14.124.112.69 port 57379 2020-06-30T16:28:02.196177shield sshd\[6181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.124.112.69 2020-06-30T16:28:03.841273shield sshd\[6181\]: Failed password for invalid user test1 from 14.124.112.69 port 57379 ssh2 2020-06-30T16:35:47.202401shield sshd\[9135\]: Invalid user oracle from 14.124.112.69 port 42334 2020-06-30T16:35:47.206128shield sshd\[9135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.124.112.69	2020-07-01 04:08:27
14.124.112.135	attackspambots	port scan and connect, tcp 23 (telnet)	2020-04-02 17:38:03
14.124.112.39	attackbotsspam	Automatic report - Port Scan Attack	2020-03-19 17:19:30

类型

评论内容

时间

14.124.112.69

attackbots

2020-06-30T16:28:02.192515shield sshd\[6181\]: Invalid user test1 from 14.124.112.69 port 57379
2020-06-30T16:28:02.196177shield sshd\[6181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.124.112.69
2020-06-30T16:28:03.841273shield sshd\[6181\]: Failed password for invalid user test1 from 14.124.112.69 port 57379 ssh2
2020-06-30T16:35:47.202401shield sshd\[9135\]: Invalid user oracle from 14.124.112.69 port 42334
2020-06-30T16:35:47.206128shield sshd\[9135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.124.112.69

2020-07-01 04:08:27

14.124.112.135

attackspambots

port scan and connect, tcp 23 (telnet)

2020-04-02 17:38:03

14.124.112.39

attackbotsspam

Automatic report - Port Scan Attack

2020-03-19 17:19:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.124.11.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.124.11.221.			IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 15:56:35 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 221.11.124.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.11.124.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.19.147	attackbots	Oct 10 23:56:16 vps639187 sshd\[17636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.19.147 user=root Oct 10 23:56:18 vps639187 sshd\[17636\]: Failed password for root from 106.13.19.147 port 33022 ssh2 Oct 11 00:00:12 vps639187 sshd\[17764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.19.147 user=root ...	2020-10-11 06:11:58
158.177.123.152	attackspam	www.goldgier.de 158.177.123.152 [10/Oct/2020:22:49:45 +0200] "POST /wp-login.php HTTP/1.1" 200 8762 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.goldgier.de 158.177.123.152 [10/Oct/2020:22:49:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4338 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-11 06:09:07
212.70.149.68	attack	Oct 10 23:57:35 mx postfix/smtps/smtpd\[5977\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 10 23:59:35 mx postfix/smtps/smtpd\[5977\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 23:59:40 mx postfix/smtps/smtpd\[5977\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 11 00:01:30 mx postfix/smtps/smtpd\[5977\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 00:01:35 mx postfix/smtps/smtpd\[5977\]: lost connection after AUTH from unknown\[212.70.149.68\] ...	2020-10-11 06:04:17
218.92.0.208	attackbots	Oct 10 23:08:48 ajax sshd[20384]: Failed password for root from 218.92.0.208 port 33323 ssh2 Oct 10 23:08:52 ajax sshd[20384]: Failed password for root from 218.92.0.208 port 33323 ssh2	2020-10-11 06:18:54
49.88.112.77	attackspambots	October 10 2020, 17:52:46 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-10-11 06:06:03
46.101.246.76	attackbots	Automatic report - XMLRPC Attack	2020-10-11 06:28:42
91.241.19.173	attackbots	Oct 10 22:25:30 kernel: [30164.517416] IN=enp34s0 OUT= MAC=SERVERMAC SRC=91.241.19.173 DST=MYSERVERIP LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=1919 DF PROTO=TCP SPT=63403 DPT=3389 WINDOW=200 RES=0x00 SYN URGP=0 Ports: 3389	2020-10-11 06:17:57
49.234.24.14	attackbots	Oct 10 21:44:19 ns308116 sshd[1789]: Invalid user office from 49.234.24.14 port 31715 Oct 10 21:44:19 ns308116 sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.24.14 Oct 10 21:44:21 ns308116 sshd[1789]: Failed password for invalid user office from 49.234.24.14 port 31715 ssh2 Oct 10 21:49:48 ns308116 sshd[3303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.24.14 user=root Oct 10 21:49:50 ns308116 sshd[3303]: Failed password for root from 49.234.24.14 port 30096 ssh2 ...	2020-10-11 06:06:46
123.206.65.38	attack	Automatic report - Banned IP Access	2020-10-11 06:03:12
46.101.154.96	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-11 06:13:36
62.210.151.21	attack	[2020-10-10 18:10:43] NOTICE[1182][C-00002a57] chan_sip.c: Call from '' (62.210.151.21:58557) to extension '9008441665529305' rejected because extension not found in context 'public'. [2020-10-10 18:10:43] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-10T18:10:43.226-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9008441665529305",SessionID="0x7f22f81cd5d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/58557",ACLName="no_extension_match" [2020-10-10 18:10:49] NOTICE[1182][C-00002a58] chan_sip.c: Call from '' (62.210.151.21:53109) to extension '9994441665529305' rejected because extension not found in context 'public'. [2020-10-10 18:10:49] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-10T18:10:49.251-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9994441665529305",SessionID="0x7f22f840f098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/ ...	2020-10-11 06:18:25
165.232.64.90	attackbots	Oct 10 23:58:28 abendstille sshd\[27308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.64.90 user=root Oct 10 23:58:30 abendstille sshd\[27308\]: Failed password for root from 165.232.64.90 port 53258 ssh2 Oct 11 00:01:51 abendstille sshd\[31086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.64.90 user=root Oct 11 00:01:53 abendstille sshd\[31086\]: Failed password for root from 165.232.64.90 port 59634 ssh2 Oct 11 00:05:11 abendstille sshd\[3251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.64.90 user=root ...	2020-10-11 06:08:18
37.46.150.205	attackspam	Oct 8 04:40:21 web1 sshd[29606]: Invalid user ubnt from 37.46.150.205 Oct 8 04:40:21 web1 sshd[29606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.46.150.205 Oct 8 04:40:24 web1 sshd[29606]: Failed password for invalid user ubnt from 37.46.150.205 port 42466 ssh2 Oct 8 04:40:24 web1 sshd[29606]: Received disconnect from 37.46.150.205: 11: Bye Bye [preauth] Oct 8 04:40:24 web1 sshd[29612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.46.150.205 user=admin Oct 8 04:40:27 web1 sshd[29612]: Failed password for admin from 37.46.150.205 port 50518 ssh2 Oct 8 04:40:27 web1 sshd[29612]: Received disconnect from 37.46.150.205: 11: Bye Bye [preauth] Oct 8 04:40:29 web1 sshd[29616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.46.150.205 user=r.r Oct 8 04:40:31 web1 sshd[29616]: Failed password for r.r from 37.46.150.205 port 53538 ........ -------------------------------	2020-10-11 06:35:49
37.221.179.119	attackspambots	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-10-11 06:04:59
14.165.213.62	attack	Oct 10 23:40:03 ift sshd\[6756\]: Failed password for root from 14.165.213.62 port 33412 ssh2Oct 10 23:43:38 ift sshd\[7583\]: Invalid user oracle from 14.165.213.62Oct 10 23:43:40 ift sshd\[7583\]: Failed password for invalid user oracle from 14.165.213.62 port 57484 ssh2Oct 10 23:47:22 ift sshd\[8192\]: Failed password for root from 14.165.213.62 port 53328 ssh2Oct 10 23:49:09 ift sshd\[8417\]: Failed password for root from 14.165.213.62 port 51246 ssh2 ...	2020-10-11 06:38:28

最近上报的IP列表

2.51.153.80	12.196.235.50	141.234.228.78	197.182.165.36
129.100.55.139	105.96.237.213	128.40.94.160	153.30.128.23
219.117.11.75	134.142.114.248	165.229.196.204	125.190.135.126
116.9.34.217	249.40.61.245	229.71.167.134	115.130.130.181
154.72.216.160	75.241.41.104	12.246.190.105	191.220.194.63