14.157.117.152

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.157.117.158	attackspambots	Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=14115 TCP DPT=8080 WINDOW=50454 SYN Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=41434 TCP DPT=8080 WINDOW=54524 SYN Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=11240 TCP DPT=8080 WINDOW=35419 SYN Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=36005 TCP DPT=8080 WINDOW=54524 SYN Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=33002 TCP DPT=8080 WINDOW=60468 SYN Unauthorised access (Sep 25) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=7769 TCP DPT=8080 WINDOW=51525 SYN	2019-09-27 01:41:02
14.157.117.158	attackspam	23/tcp [2019-09-25]1pkt	2019-09-26 03:13:18

类型

评论内容

时间

14.157.117.158

attackspambots

Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=14115 TCP DPT=8080 WINDOW=50454 SYN 
Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=41434 TCP DPT=8080 WINDOW=54524 SYN 
Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=11240 TCP DPT=8080 WINDOW=35419 SYN 
Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=36005 TCP DPT=8080 WINDOW=54524 SYN 
Unauthorised access (Sep 26) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=33002 TCP DPT=8080 WINDOW=60468 SYN 
Unauthorised access (Sep 25) SRC=14.157.117.158 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=7769 TCP DPT=8080 WINDOW=51525 SYN

2019-09-27 01:41:02

14.157.117.158

attackspam

23/tcp
[2019-09-25]1pkt

2019-09-26 03:13:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.157.117.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8033
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.157.117.152.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:46:24 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 152.117.157.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.117.157.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
152.136.229.129	attack	Sep 21 09:48:52 s2 sshd[6935]: Failed password for root from 152.136.229.129 port 46838 ssh2 Sep 21 09:54:24 s2 sshd[7216]: Failed password for root from 152.136.229.129 port 50500 ssh2	2020-09-21 21:33:58
93.241.220.45	attack	93.241.220.45 (DE/Germany/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 21 06:15:17 server4 sshd[13916]: Failed password for root from 91.204.248.42 port 41836 ssh2 Sep 21 06:15:30 server4 sshd[14002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.170 user=root Sep 21 06:15:32 server4 sshd[14002]: Failed password for root from 106.12.55.170 port 51282 ssh2 Sep 21 06:18:11 server4 sshd[15483]: Failed password for root from 93.241.220.45 port 33168 ssh2 Sep 21 06:16:39 server4 sshd[14779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.173.149 user=root Sep 21 06:16:41 server4 sshd[14779]: Failed password for root from 106.12.173.149 port 60438 ssh2 IP Addresses Blocked: 91.204.248.42 (IT/Italy/-) 106.12.55.170 (CN/China/-)	2020-09-21 21:20:39
116.73.67.45	attackbots	Listed on dnsbl-sorbs plus abuseat.org and barracudaCentral / proto=6 . srcport=21447 . dstport=2323 . (2338)	2020-09-21 21:24:45
140.120.15.176	attackbots	Sep 21 02:28:46 our-server-hostname sshd[11960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 user=r.r Sep 21 02:28:48 our-server-hostname sshd[11960]: Failed password for r.r from 140.120.15.176 port 48384 ssh2 Sep 21 02:45:30 our-server-hostname sshd[14328]: Invalid user ftpuser from 140.120.15.176 Sep 21 02:45:30 our-server-hostname sshd[14328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 Sep 21 02:45:32 our-server-hostname sshd[14328]: Failed password for invalid user ftpuser from 140.120.15.176 port 35942 ssh2 Sep 21 02:49:29 our-server-hostname sshd[14820]: Invalid user admin from 140.120.15.176 Sep 21 02:49:29 our-server-hostname sshd[14820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.120.15.176	2020-09-21 21:42:04
183.32.222.171	attackbots	" "	2020-09-21 21:46:52
117.247.95.246	attack	Unauthorised access (Sep 20) SRC=117.247.95.246 LEN=48 TTL=110 ID=23735 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-21 21:27:30
79.124.62.74	attackbots	Port scan on 10 port(s): 121 2200 2372 2500 3009 3307 3763 14891 33240 53390	2020-09-21 21:23:12
185.63.253.200	spambotsattackproxynormal	Aajajhaha	2020-09-21 21:38:52
177.139.194.62	attackspambots	2 SSH login attempts.	2020-09-21 21:57:56
111.231.119.93	attack	TCP (SYN) 111.231.119.93:42644 -> port 30728, len 44	2020-09-21 21:22:48
175.24.75.183	attackbots	Sep 21 11:38:05 ip-172-31-42-142 sshd\[28015\]: Failed password for root from 175.24.75.183 port 36428 ssh2\ Sep 21 11:40:03 ip-172-31-42-142 sshd\[28128\]: Invalid user test from 175.24.75.183\ Sep 21 11:40:05 ip-172-31-42-142 sshd\[28128\]: Failed password for invalid user test from 175.24.75.183 port 57276 ssh2\ Sep 21 11:42:04 ip-172-31-42-142 sshd\[28151\]: Failed password for root from 175.24.75.183 port 49860 ssh2\ Sep 21 11:44:04 ip-172-31-42-142 sshd\[28188\]: Invalid user user1 from 175.24.75.183\	2020-09-21 21:45:19
112.246.22.162	attackspam	Automatic report - Port Scan Attack	2020-09-21 21:28:03
43.231.237.154	attackbots	Lines containing failures of 43.231.237.154 (max 1000) Sep 20 18:52:51 server sshd[9210]: Connection from 43.231.237.154 port 60745 on 62.116.165.82 port 22 Sep 20 18:52:51 server sshd[9210]: Did not receive identification string from 43.231.237.154 port 60745 Sep 20 18:52:53 server sshd[9213]: Connection from 43.231.237.154 port 61006 on 62.116.165.82 port 22 Sep 20 18:52:55 server sshd[9213]: Invalid user admina from 43.231.237.154 port 61006 Sep 20 18:52:56 server sshd[9213]: Connection closed by 43.231.237.154 port 61006 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=43.231.237.154	2020-09-21 21:36:36
201.148.157.226	attackbots	Sep 21 10:21:01 vm0 sshd[15903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.157.226 Sep 21 10:21:03 vm0 sshd[15903]: Failed password for invalid user admin from 201.148.157.226 port 43960 ssh2 ...	2020-09-21 21:31:20
180.76.160.148	attack	24540/tcp 21704/tcp 13994/tcp... [2020-07-24/09-21]10pkt,10pt.(tcp)	2020-09-21 21:37:23

最近上报的IP列表

118.27.2.34	14.157.118.44	14.157.164.174	14.157.16.18
14.157.12.2	14.157.165.87	14.157.167.25	14.157.117.169
14.157.167.75	14.157.166.116	14.157.172.75	118.27.2.41
14.157.23.114	14.157.19.91	14.157.50.101	14.157.60.145
14.157.58.23	14.157.54.95	14.157.66.20	14.157.91.23