14.139.125.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Visvesvaraya National Institute of Technology Mumbai

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jan 13 15:46:33 motanud sshd\[3014\]: Invalid user steam from 14.139.125.70 port 48778 Jan 13 15:46:33 motanud sshd\[3014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.125.70 Jan 13 15:46:36 motanud sshd\[3014\]: Failed password for invalid user steam from 14.139.125.70 port 48778 ssh2	2019-08-10 21:09:07

类型

评论内容

时间

attackbots

Jan 13 15:46:33 motanud sshd\[3014\]: Invalid user steam from 14.139.125.70 port 48778
Jan 13 15:46:33 motanud sshd\[3014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.125.70
Jan 13 15:46:36 motanud sshd\[3014\]: Failed password for invalid user steam from 14.139.125.70 port 48778 ssh2

2019-08-10 21:09:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.139.125.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40651
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.139.125.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 21:09:00 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.125.139.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 70.125.139.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.202.211.200	attack	Jun 25 18:27:42 ns382633 sshd\[24691\]: Invalid user lei from 213.202.211.200 port 60146 Jun 25 18:27:42 ns382633 sshd\[24691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 Jun 25 18:27:44 ns382633 sshd\[24691\]: Failed password for invalid user lei from 213.202.211.200 port 60146 ssh2 Jun 25 18:31:28 ns382633 sshd\[25544\]: Invalid user rld from 213.202.211.200 port 38474 Jun 25 18:31:28 ns382633 sshd\[25544\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200	2020-06-26 02:04:41
47.75.172.46	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-06-26 02:06:22
52.151.73.46	attack	Jun 25 20:18:07 serwer sshd\[19122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.151.73.46 user=root Jun 25 20:18:07 serwer sshd\[19124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.151.73.46 user=root Jun 25 20:18:09 serwer sshd\[19122\]: Failed password for root from 52.151.73.46 port 16454 ssh2 Jun 25 20:18:09 serwer sshd\[19124\]: Failed password for root from 52.151.73.46 port 16532 ssh2 ...	2020-06-26 02:28:46
77.107.41.121	attackbotsspam	20/6/25@08:23:23: FAIL: Alarm-Telnet address from=77.107.41.121 ...	2020-06-26 02:01:40
114.67.110.240	attack	Jun 25 20:07:32 ns382633 sshd\[12765\]: Invalid user support from 114.67.110.240 port 53207 Jun 25 20:07:32 ns382633 sshd\[12765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.240 Jun 25 20:07:35 ns382633 sshd\[12765\]: Failed password for invalid user support from 114.67.110.240 port 53207 ssh2 Jun 25 20:11:38 ns382633 sshd\[13624\]: Invalid user mc from 114.67.110.240 port 26198 Jun 25 20:11:38 ns382633 sshd\[13624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.240	2020-06-26 02:12:51
61.177.172.177	attack	2020-06-25T19:45:09.849949sd-86998 sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root 2020-06-25T19:45:11.627539sd-86998 sshd[18334]: Failed password for root from 61.177.172.177 port 44870 ssh2 2020-06-25T19:45:14.479487sd-86998 sshd[18334]: Failed password for root from 61.177.172.177 port 44870 ssh2 2020-06-25T19:45:09.849949sd-86998 sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root 2020-06-25T19:45:11.627539sd-86998 sshd[18334]: Failed password for root from 61.177.172.177 port 44870 ssh2 2020-06-25T19:45:14.479487sd-86998 sshd[18334]: Failed password for root from 61.177.172.177 port 44870 ssh2 2020-06-25T19:45:09.849949sd-86998 sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root 2020-06-25T19:45:11.627539sd-86998 sshd[18334]: Failed password for root from ...	2020-06-26 01:58:28
185.40.242.191	attack	$f2bV_matches	2020-06-26 02:30:00
193.112.108.135	attack	2020-06-25T16:25:09.648147mail.standpoint.com.ua sshd[3455]: Invalid user xxl from 193.112.108.135 port 45288 2020-06-25T16:25:09.651581mail.standpoint.com.ua sshd[3455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.108.135 2020-06-25T16:25:09.648147mail.standpoint.com.ua sshd[3455]: Invalid user xxl from 193.112.108.135 port 45288 2020-06-25T16:25:12.153802mail.standpoint.com.ua sshd[3455]: Failed password for invalid user xxl from 193.112.108.135 port 45288 ssh2 2020-06-25T16:27:42.038562mail.standpoint.com.ua sshd[3853]: Invalid user upgrade from 193.112.108.135 port 46040 ...	2020-06-26 02:04:59
49.207.193.249	attack	Port probing on unauthorized port 445	2020-06-26 02:06:09
167.71.102.17	attackbotsspam	167.71.102.17 - - [25/Jun/2020:18:26:47 +0100] "POST /wp-login.php HTTP/1.1" 200 4433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.102.17 - - [25/Jun/2020:18:26:48 +0100] "POST /wp-login.php HTTP/1.1" 200 4433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.102.17 - - [25/Jun/2020:18:26:48 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-26 01:52:39
190.186.42.130	attack	2020-06-25T19:40:18.094474afi-git.jinr.ru sshd[8973]: Failed password for root from 190.186.42.130 port 59909 ssh2 2020-06-25T19:41:43.113567afi-git.jinr.ru sshd[9336]: Invalid user james from 190.186.42.130 port 7575 2020-06-25T19:41:43.116918afi-git.jinr.ru sshd[9336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.186.42.130 2020-06-25T19:41:43.113567afi-git.jinr.ru sshd[9336]: Invalid user james from 190.186.42.130 port 7575 2020-06-25T19:41:45.065303afi-git.jinr.ru sshd[9336]: Failed password for invalid user james from 190.186.42.130 port 7575 ssh2 ...	2020-06-26 02:25:54
107.170.37.74	attackbotsspam	Jun 25 18:42:16 rocket sshd[23513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.37.74 Jun 25 18:42:18 rocket sshd[23513]: Failed password for invalid user bitlbee from 107.170.37.74 port 57705 ssh2 ...	2020-06-26 01:54:51
176.31.182.125	attackspam	Jun 25 05:22:18 dignus sshd[13118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.125 Jun 25 05:22:21 dignus sshd[13118]: Failed password for invalid user centos from 176.31.182.125 port 56938 ssh2 Jun 25 05:23:30 dignus sshd[13238]: Invalid user edwin123 from 176.31.182.125 port 34257 Jun 25 05:23:30 dignus sshd[13238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.125 Jun 25 05:23:32 dignus sshd[13238]: Failed password for invalid user edwin123 from 176.31.182.125 port 34257 ssh2 ...	2020-06-26 01:50:53
3.21.122.137	attack	mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php()	2020-06-26 01:49:55
111.72.194.151	attackspam	Jun 25 14:18:53 srv01 postfix/smtpd\[8841\]: warning: unknown\[111.72.194.151\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 14:22:37 srv01 postfix/smtpd\[14602\]: warning: unknown\[111.72.194.151\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 14:22:49 srv01 postfix/smtpd\[14602\]: warning: unknown\[111.72.194.151\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 14:23:06 srv01 postfix/smtpd\[14602\]: warning: unknown\[111.72.194.151\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 14:23:25 srv01 postfix/smtpd\[14602\]: warning: unknown\[111.72.194.151\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-26 02:00:31

最近上报的IP列表

41.35.17.72	14.116.251.29	61.254.200.126	5.189.160.177
64.94.45.67	58.71.220.30	180.248.121.42	115.75.104.128
177.167.178.225	104.211.156.205	52.177.129.153	64.94.45.66
47.98.5.236	64.94.45.63	36.62.241.10	64.94.45.59
125.120.84.117	165.22.206.81	64.94.45.0	87.236.212.48