14.139.231.131

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Indian Council for Medical Research (Icmr) Aiims New Delhi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Feb 9 04:02:12 firewall sshd[2828]: Invalid user alh from 14.139.231.131 Feb 9 04:02:14 firewall sshd[2828]: Failed password for invalid user alh from 14.139.231.131 port 47491 ssh2 Feb 9 04:05:51 firewall sshd[3028]: Invalid user pps from 14.139.231.131 ...	2020-02-09 15:56:41
attackspam	Dec 5 08:45:30 nextcloud sshd\[24349\]: Invalid user bungeecord from 14.139.231.131 Dec 5 08:45:30 nextcloud sshd\[24349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.131 Dec 5 08:45:32 nextcloud sshd\[24349\]: Failed password for invalid user bungeecord from 14.139.231.131 port 62230 ssh2 ...	2019-12-05 20:20:27
attackspam	SSH Brute Force	2019-11-30 03:05:39
attack	Nov 4 05:52:08 MainVPS sshd[3392]: Invalid user user from 14.139.231.131 port 57097 Nov 4 05:52:08 MainVPS sshd[3392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.131 Nov 4 05:52:08 MainVPS sshd[3392]: Invalid user user from 14.139.231.131 port 57097 Nov 4 05:52:10 MainVPS sshd[3392]: Failed password for invalid user user from 14.139.231.131 port 57097 ssh2 Nov 4 05:56:26 MainVPS sshd[3706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.131 user=root Nov 4 05:56:28 MainVPS sshd[3706]: Failed password for root from 14.139.231.131 port 43238 ssh2 ...	2019-11-04 13:46:18
attack	$f2bV_matches	2019-09-17 13:56:43

相同子网IP讨论:

IP	类型	评论内容	时间
14.139.231.132	attack	Lines containing failures of 14.139.231.132 (max 1000) Jan 6 05:02:45 localhost sshd[31090]: Invalid user weburl from 14.139.231.132 port 21483 Jan 6 05:02:45 localhost sshd[31090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Jan 6 05:02:47 localhost sshd[31090]: Failed password for invalid user weburl from 14.139.231.132 port 21483 ssh2 Jan 6 05:02:49 localhost sshd[31090]: Received disconnect from 14.139.231.132 port 21483:11: Bye Bye [preauth] Jan 6 05:02:49 localhost sshd[31090]: Disconnected from invalid user weburl 14.139.231.132 port 21483 [preauth] Jan 6 05:04:35 localhost sshd[3873]: Invalid user s from 14.139.231.132 port 17656 Jan 6 05:04:35 localhost sshd[3873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.139.231.132	2020-01-06 14:29:22
14.139.231.132	attackspam	Jan 3 14:32:48 plex sshd[5581]: Invalid user sur from 14.139.231.132 port 9703	2020-01-03 22:25:01
14.139.231.132	attackspam	Jan 1 07:21:05 vps691689 sshd[3731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Jan 1 07:21:07 vps691689 sshd[3731]: Failed password for invalid user ts3bot from 14.139.231.132 port 64040 ssh2 ...	2020-01-01 17:59:37
14.139.231.132	attackspambots	Dec 22 20:18:35 hpm sshd\[12010\]: Invalid user yomiuri from 14.139.231.132 Dec 22 20:18:35 hpm sshd\[12010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Dec 22 20:18:37 hpm sshd\[12010\]: Failed password for invalid user yomiuri from 14.139.231.132 port 33812 ssh2 Dec 22 20:25:34 hpm sshd\[12654\]: Invalid user temp from 14.139.231.132 Dec 22 20:25:34 hpm sshd\[12654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132	2019-12-23 20:18:26
14.139.231.132	attackbotsspam	Dec 15 09:13:15 mail1 sshd\[31312\]: Invalid user dermid from 14.139.231.132 port 64962 Dec 15 09:13:15 mail1 sshd\[31312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Dec 15 09:13:17 mail1 sshd\[31312\]: Failed password for invalid user dermid from 14.139.231.132 port 64962 ssh2 Dec 15 09:26:25 mail1 sshd\[5528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 user=root Dec 15 09:26:27 mail1 sshd\[5528\]: Failed password for root from 14.139.231.132 port 36225 ssh2 ...	2019-12-15 17:50:04
14.139.231.132	attackbotsspam	Dec 11 08:39:37 vpn01 sshd[19016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Dec 11 08:39:39 vpn01 sshd[19016]: Failed password for invalid user dave2 from 14.139.231.132 port 59624 ssh2 ...	2019-12-11 23:00:08
14.139.231.130	attackspam	Nov 17 08:48:40 ns41 sshd[12491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.130	2019-11-17 17:53:29
14.139.231.132	attack	Nov 16 07:20:15 MK-Soft-VM4 sshd[6251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Nov 16 07:20:17 MK-Soft-VM4 sshd[6251]: Failed password for invalid user yourselves from 14.139.231.132 port 63274 ssh2 ...	2019-11-16 20:35:22
14.139.231.130	attack	SSHScan	2019-11-07 03:13:22
14.139.231.132	attack	SSH invalid-user multiple login try	2019-10-22 19:08:09
14.139.231.132	attack	Invalid user test12 from 14.139.231.132 port 7407	2019-10-20 04:12:58
14.139.231.132	attack	$f2bV_matches	2019-10-05 03:29:44
14.139.231.132	attack	Port Scan detected from 14.139.231.132 (IN/India/-). 4 hits in the last 105 seconds	2019-09-30 16:07:28
14.139.231.132	attackbots	Sep 27 17:34:54 MK-Soft-Root1 sshd[9967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.231.132 Sep 27 17:34:56 MK-Soft-Root1 sshd[9967]: Failed password for invalid user 12345 from 14.139.231.132 port 37003 ssh2 ...	2019-09-27 23:57:38
14.139.231.132	attack	Automatic report - SSH Brute-Force Attack	2019-09-16 20:41:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.139.231.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35506
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.139.231.131.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 13:56:38 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 131.231.139.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 131.231.139.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.246.7.74	attack	2020-06-04 16:11:48 auth_plain authenticator failed for (User) [87.246.7.74]: 535 Incorrect authentication data (set_id=iam@com.ua) 2020-06-04 16:14:57 auth_plain authenticator failed for (User) [87.246.7.74]: 535 Incorrect authentication data (set_id=ews@com.ua) ...	2020-06-04 21:26:27
162.243.142.211	attackspam	2020-06-04 08:08:52,618 fail2ban.actions [6572]: NOTICE [sshd] Ban 162.243.142.211	2020-06-04 21:23:26
45.148.10.98	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 45.148.10.98 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-04 16:38:35 login authenticator failed for (ADMIN) [45.148.10.98]: 535 Incorrect authentication data (set_id=info@taninsanat.com)	2020-06-04 21:31:07
106.54.62.168	attackbots	Jun 4 15:10:05 eventyay sshd[28116]: Failed password for root from 106.54.62.168 port 51906 ssh2 Jun 4 15:13:27 eventyay sshd[28318]: Failed password for root from 106.54.62.168 port 33152 ssh2 ...	2020-06-04 21:33:33
93.113.111.197	attackbotsspam	93.113.111.197 has been banned for [WebApp Attack] ...	2020-06-04 21:39:57
13.210.177.21	attackspam	Fail2Ban Ban Triggered	2020-06-04 21:32:43
217.19.154.220	attack	Jun 4 09:47:12 dns1 sshd[25705]: Failed password for root from 217.19.154.220 port 21109 ssh2 Jun 4 09:51:58 dns1 sshd[26031]: Failed password for root from 217.19.154.220 port 55955 ssh2	2020-06-04 21:37:21
187.189.65.51	attack	Jun 4 07:14:18 server1 sshd\[8294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.65.51 user=root Jun 4 07:14:19 server1 sshd\[8294\]: Failed password for root from 187.189.65.51 port 48450 ssh2 Jun 4 07:17:57 server1 sshd\[9309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.65.51 user=root Jun 4 07:17:59 server1 sshd\[9309\]: Failed password for root from 187.189.65.51 port 52972 ssh2 Jun 4 07:21:46 server1 sshd\[10429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.65.51 user=root ...	2020-06-04 21:27:44
201.236.182.92	attackspam	2020-06-04T14:02:42.702292amanda2.illicoweb.com sshd\[10716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.236.182.92 user=root 2020-06-04T14:02:44.213153amanda2.illicoweb.com sshd\[10716\]: Failed password for root from 201.236.182.92 port 57788 ssh2 2020-06-04T14:05:41.847867amanda2.illicoweb.com sshd\[10899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.236.182.92 user=root 2020-06-04T14:05:43.268110amanda2.illicoweb.com sshd\[10899\]: Failed password for root from 201.236.182.92 port 44374 ssh2 2020-06-04T14:08:31.934746amanda2.illicoweb.com sshd\[11000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.236.182.92 user=root ...	2020-06-04 21:39:17
159.65.136.196	attackbotsspam	Jun 4 15:11:45 server sshd[20720]: Failed password for root from 159.65.136.196 port 41900 ssh2 Jun 4 15:15:42 server sshd[25165]: Failed password for root from 159.65.136.196 port 45442 ssh2 Jun 4 15:19:41 server sshd[29603]: Failed password for root from 159.65.136.196 port 48984 ssh2	2020-06-04 21:33:53
206.189.87.108	attackspam	"fail2ban match"	2020-06-04 21:41:09
191.232.191.253	attackspam	0,81-10/02 [bc00/m01] PostRequest-Spammer scoring: berlin	2020-06-04 21:46:18
106.53.83.170	attackspambots	Jun 4 08:08:39 mail sshd\[33653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.83.170 user=root ...	2020-06-04 21:30:05
159.65.183.47	attackspam	Jun 4 02:36:19 php1 sshd\[26339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.183.47 user=root Jun 4 02:36:21 php1 sshd\[26339\]: Failed password for root from 159.65.183.47 port 55148 ssh2 Jun 4 02:39:48 php1 sshd\[26744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.183.47 user=root Jun 4 02:39:50 php1 sshd\[26744\]: Failed password for root from 159.65.183.47 port 58656 ssh2 Jun 4 02:43:22 php1 sshd\[26994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.183.47 user=root	2020-06-04 21:12:29
34.80.66.39	attack	Jun 4 15:19:31 home sshd[20923]: Failed password for root from 34.80.66.39 port 60482 ssh2 Jun 4 15:23:33 home sshd[21397]: Failed password for root from 34.80.66.39 port 37440 ssh2 ...	2020-06-04 21:29:25

最近上报的IP列表

176.223.142.93	149.56.177.246	77.32.26.129	11.165.202.187
112.78.1.86	159.203.201.46	60.251.118.221	171.96.79.109
31.14.133.173	153.71.58.21	135.219.94.232	81.156.12.243
54.36.148.53	37.114.179.57	174.178.101.27	158.220.197.68
202.197.44.48	183.157.170.168	41.41.147.243	112.127.147.230