14.139.125.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Visvesvaraya National Institute of Technology Mumbai

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jan 13 15:46:33 motanud sshd\[3014\]: Invalid user steam from 14.139.125.70 port 48778 Jan 13 15:46:33 motanud sshd\[3014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.125.70 Jan 13 15:46:36 motanud sshd\[3014\]: Failed password for invalid user steam from 14.139.125.70 port 48778 ssh2	2019-08-10 21:09:07

类型

评论内容

时间

attackbots

Jan 13 15:46:33 motanud sshd\[3014\]: Invalid user steam from 14.139.125.70 port 48778
Jan 13 15:46:33 motanud sshd\[3014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.125.70
Jan 13 15:46:36 motanud sshd\[3014\]: Failed password for invalid user steam from 14.139.125.70 port 48778 ssh2

2019-08-10 21:09:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.139.125.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40651
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.139.125.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 21:09:00 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.125.139.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 70.125.139.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.131.8.137	attackbotsspam	Port Scan detected from 104.131.8.137 (US/United States/-). 4 hits in the last 66 seconds	2020-01-10 06:55:46
36.108.170.241	attack	Jan 9 22:24:48 host sshd[19145]: Invalid user omega from 36.108.170.241 port 51400 ...	2020-01-10 07:06:46
39.86.15.194	attack	Honeypot hit.	2020-01-10 06:46:24
103.135.38.109	attack	Jan 10 03:13:47 our-server-hostname postfix/smtpd[32403]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:13:50 our-server-hostname postfix/smtpd[32403]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:13:50 our-server-hostname postfix/smtpd[32403]: disconnect from unknown[103.135.38.109] Jan 10 03:17:06 our-server-hostname postfix/smtpd[32492]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:17:08 our-server-hostname postfix/smtpd[32492]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:17:08 our-server-hostname postfix/smtpd[32492]: disconnect from unknown[103.135.38.109] Jan 10 03:17:15 our-server-hostname postfix/smtpd[32491]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:17:17 our-server-hostname postfix/smtpd[32491]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:17:17 our-server-hostname postfix/smtpd[32491]: disconnect from unknown[103.135.38.109] Jan 10 03:21:26 our-server-hostname pos........ -------------------------------	2020-01-10 06:56:44
178.16.175.146	attackbotsspam	$f2bV_matches	2020-01-10 07:15:34
36.66.69.33	attackspam	Jan 10 03:33:13 gw1 sshd[19838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.69.33 Jan 10 03:33:15 gw1 sshd[19838]: Failed password for invalid user xzq19851114 from 36.66.69.33 port 2369 ssh2 ...	2020-01-10 07:08:54
77.247.108.14	attackspambots	77.247.108.14 was recorded 33 times by 8 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 33, 89, 1052	2020-01-10 07:07:56
77.247.108.91	attackspam	Jan 9 23:40:37 debian-2gb-nbg1-2 kernel: \[868948.967529\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.247.108.91 DST=195.201.40.59 LEN=437 TOS=0x00 PREC=0x00 TTL=51 ID=0 DF PROTO=UDP SPT=5086 DPT=5060 LEN=417	2020-01-10 07:10:10
181.171.181.50	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.171.181.50 user=root Failed password for root from 181.171.181.50 port 35830 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.171.181.50 user=root Failed password for root from 181.171.181.50 port 50296 ssh2 Invalid user packer from 181.171.181.50 port 36526	2020-01-10 06:56:31
81.28.107.21	attackspam	Jan 9 23:39:58 grey postfix/smtpd\[22278\]: NOQUEUE: reject: RCPT from talented.youavto.com\[81.28.107.21\]: 554 5.7.1 Service unavailable\; Client host \[81.28.107.21\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[81.28.107.21\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 06:54:02
80.66.81.143	attackbots	Jan 9 23:34:05 relay postfix/smtpd\[13197\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 23:34:32 relay postfix/smtpd\[10988\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 23:34:49 relay postfix/smtpd\[13193\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 23:34:54 relay postfix/smtpd\[13199\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 23:35:10 relay postfix/smtpd\[4563\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-10 06:41:52
45.80.65.15	attack	SSH brutforce	2020-01-10 07:08:27
190.39.212.74	attackspambots	Automatic report - Port Scan Attack	2020-01-10 07:00:26
174.232.132.37	attack	$f2bV_matches	2020-01-10 07:12:02
180.76.98.71	attack	Jan 9 23:27:13 MK-Soft-VM8 sshd[7201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.98.71 Jan 9 23:27:15 MK-Soft-VM8 sshd[7201]: Failed password for invalid user 5555555 from 180.76.98.71 port 33390 ssh2 ...	2020-01-10 06:41:09

最近上报的IP列表

41.35.17.72	14.116.251.29	61.254.200.126	5.189.160.177
64.94.45.67	58.71.220.30	180.248.121.42	115.75.104.128
177.167.178.225	104.211.156.205	52.177.129.153	64.94.45.66
47.98.5.236	64.94.45.63	36.62.241.10	64.94.45.59
125.120.84.117	165.22.206.81	64.94.45.0	87.236.212.48