14.139.228.197

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.139.228.217	attack	2019-04-10 07:13:38 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16508 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-04-10 07:13:50 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16661 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-04-10 07:13:57 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16749 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-04 23:23:09
14.139.228.217	attack	Mar 5 22:43:40 motanud sshd\[28509\]: Invalid user hq from 14.139.228.217 port 33099 Mar 5 22:43:40 motanud sshd\[28509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.228.217 Mar 5 22:43:42 motanud sshd\[28509\]: Failed password for invalid user hq from 14.139.228.217 port 33099 ssh2	2019-08-10 21:05:09

类型

评论内容

时间

14.139.228.217

attack

2019-04-10 07:13:38 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16508 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-04-10 07:13:50 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16661 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-04-10 07:13:57 H=\(\[14.139.228.217\]\) \[14.139.228.217\]:16749 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...

2020-02-04 23:23:09

14.139.228.217

attack

Mar  5 22:43:40 motanud sshd\[28509\]: Invalid user hq from 14.139.228.217 port 33099
Mar  5 22:43:40 motanud sshd\[28509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.228.217
Mar  5 22:43:42 motanud sshd\[28509\]: Failed password for invalid user hq from 14.139.228.217 port 33099 ssh2

2019-08-10 21:05:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.139.228.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.139.228.197.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:08:08 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 197.228.139.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 197.228.139.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.187.23.116	attack	Oct 5 02:20:32 server sshd\[24222\]: Invalid user 12345zxcvb from 37.187.23.116 port 56622 Oct 5 02:20:32 server sshd\[24222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.23.116 Oct 5 02:20:34 server sshd\[24222\]: Failed password for invalid user 12345zxcvb from 37.187.23.116 port 56622 ssh2 Oct 5 02:24:29 server sshd\[1797\]: Invalid user Level@123 from 37.187.23.116 port 39158 Oct 5 02:24:29 server sshd\[1797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.23.116	2019-10-05 08:25:16
170.130.187.38	attackspambots	Port scan	2019-10-05 08:15:57
45.73.12.219	attackbotsspam	Triggered by Fail2Ban at Ares web server	2019-10-05 08:07:39
92.118.37.95	attack	Port Scan detected from 92.118.37.95 (RO/Romania/-). 4 hits in the last 210 seconds	2019-10-05 08:11:04
139.59.59.187	attackspambots	Oct 4 02:00:05 XXX sshd[38587]: Invalid user chase from 139.59.59.187 port 59640	2019-10-05 08:31:15
202.107.238.94	attackbotsspam	[Aegis] @ 2019-10-04 21:23:01 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-10-05 08:01:02
162.62.16.102	attackbotsspam	514/tcp 9030/tcp 119/tcp... [2019-08-06/10-04]13pkt,12pt.(tcp),1pt.(udp)	2019-10-05 08:26:09
171.67.70.99	attackspambots	Unauthorised access (Oct 5) SRC=171.67.70.99 LEN=40 TTL=239 ID=54321 TCP DPT=8080 WINDOW=65535 SYN Unauthorised access (Oct 4) SRC=171.67.70.99 LEN=40 TTL=239 ID=54321 TCP DPT=21 WINDOW=65535 SYN Unauthorised access (Sep 30) SRC=171.67.70.99 LEN=40 TTL=239 ID=54321 TCP DPT=21 WINDOW=65535 SYN	2019-10-05 08:29:37
185.143.221.39	attack	Port scan	2019-10-05 08:18:11
197.253.6.249	attack	Oct 5 02:12:22 localhost sshd\[27354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.6.249 user=root Oct 5 02:12:23 localhost sshd\[27354\]: Failed password for root from 197.253.6.249 port 55635 ssh2 Oct 5 02:16:48 localhost sshd\[27839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.6.249 user=root	2019-10-05 08:28:11
1.85.120.143	attackspam	Automatic report - FTP Brute Force	2019-10-05 08:29:01
45.61.186.103	attack	Looking for resource vulnerabilities	2019-10-05 08:27:46
185.232.30.130	attack	63389/tcp 51111/tcp 34444/tcp... [2019-08-14/10-04]796pkt,267pt.(tcp)	2019-10-05 08:22:24
103.16.12.134	attackspambots	firewall-block, port(s): 445/tcp	2019-10-05 08:08:51
129.211.79.102	attackspam	Oct 4 19:36:21 ny01 sshd[1480]: Failed password for root from 129.211.79.102 port 41184 ssh2 Oct 4 19:40:56 ny01 sshd[2258]: Failed password for root from 129.211.79.102 port 52466 ssh2	2019-10-05 08:05:59

最近上报的IP列表

14.139.225.86	14.139.232.55	14.139.230.34	14.139.235.211
14.139.236.138	14.139.242.57	14.139.242.109	14.139.247.8
14.139.246.12	14.139.248.28	14.139.253.69	14.139.37.5
14.139.244.217	14.139.40.198	14.139.40.44	14.139.41.65
14.139.45.149	14.139.45.243	14.139.45.241	14.139.56.100