14.20.90.246 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Aug 30 19:54:22 sachi sshd\[11398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.20.90.246 user=root Aug 30 19:54:24 sachi sshd\[11398\]: Failed password for root from 14.20.90.246 port 51756 ssh2 Aug 30 19:57:05 sachi sshd\[11588\]: Invalid user test1 from 14.20.90.246 Aug 30 19:57:05 sachi sshd\[11588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.20.90.246 Aug 30 19:57:07 sachi sshd\[11588\]: Failed password for invalid user test1 from 14.20.90.246 port 52857 ssh2	2020-08-31 20:21:09

类型

评论内容

时间

attackspam

Aug 30 19:54:22 sachi sshd\[11398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.20.90.246  user=root
Aug 30 19:54:24 sachi sshd\[11398\]: Failed password for root from 14.20.90.246 port 51756 ssh2
Aug 30 19:57:05 sachi sshd\[11588\]: Invalid user test1 from 14.20.90.246
Aug 30 19:57:05 sachi sshd\[11588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.20.90.246
Aug 30 19:57:07 sachi sshd\[11588\]: Failed password for invalid user test1 from 14.20.90.246 port 52857 ssh2

2020-08-31 20:21:09

相同子网IP讨论:

IP	类型	评论内容	时间
14.20.90.167	attackbots	Sep 4 06:05:46 lnxmysql61 sshd[12956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.20.90.167	2019-09-04 12:50:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.20.90.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61340
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.20.90.246.			IN	A

;; AUTHORITY SECTION:
.			131	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083100 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 31 20:21:04 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 246.90.20.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.90.20.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.99.52.216	attackbots	May 11 13:53:12 pornomens sshd\[7428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 user=root May 11 13:53:14 pornomens sshd\[7428\]: Failed password for root from 222.99.52.216 port 32368 ssh2 May 11 14:05:20 pornomens sshd\[7526\]: Invalid user edsalse1 from 222.99.52.216 port 17741 May 11 14:05:20 pornomens sshd\[7526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 ...	2020-05-12 00:26:15
171.97.153.142	attack	invalid login attempt (pi)	2020-05-12 01:05:00
129.28.192.71	attack	2020-05-11T14:26:14.058742shield sshd\[24261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.192.71 user=root 2020-05-11T14:26:15.350903shield sshd\[24261\]: Failed password for root from 129.28.192.71 port 42448 ssh2 2020-05-11T14:28:21.618763shield sshd\[24808\]: Invalid user xian from 129.28.192.71 port 35810 2020-05-11T14:28:21.622522shield sshd\[24808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.192.71 2020-05-11T14:28:24.018279shield sshd\[24808\]: Failed password for invalid user xian from 129.28.192.71 port 35810 ssh2	2020-05-12 00:53:30
129.211.20.61	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-05-12 01:10:53
5.189.145.86	attackbotsspam	5.189.145.86 was recorded 6 times by 3 hosts attempting to connect to the following ports: 65476,5066. Incident counter (4h, 24h, all-time): 6, 6, 6	2020-05-12 00:33:19
51.77.230.49	attack	2020-05-11T15:56:56.874350abusebot.cloudsearch.cf sshd[15559]: Invalid user vnc from 51.77.230.49 port 47704 2020-05-11T15:56:56.879734abusebot.cloudsearch.cf sshd[15559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.ip-51-77-230.eu 2020-05-11T15:56:56.874350abusebot.cloudsearch.cf sshd[15559]: Invalid user vnc from 51.77.230.49 port 47704 2020-05-11T15:56:58.600459abusebot.cloudsearch.cf sshd[15559]: Failed password for invalid user vnc from 51.77.230.49 port 47704 ssh2 2020-05-11T16:01:07.869708abusebot.cloudsearch.cf sshd[15983]: Invalid user test from 51.77.230.49 port 57248 2020-05-11T16:01:07.874545abusebot.cloudsearch.cf sshd[15983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.ip-51-77-230.eu 2020-05-11T16:01:07.869708abusebot.cloudsearch.cf sshd[15983]: Invalid user test from 51.77.230.49 port 57248 2020-05-11T16:01:10.344436abusebot.cloudsearch.cf sshd[15983]: Failed password for inval ...	2020-05-12 00:25:55
154.126.92.181	attack	"Unauthorized connection attempt on SSHD detected"	2020-05-12 00:56:21
190.145.20.106	attackbots	Invalid user matt from 190.145.20.106 port 9224	2020-05-12 00:52:58
83.14.216.172	attack	Automatic report - Port Scan Attack	2020-05-12 00:32:00
13.77.141.237	attackspambots	From www-data@star-mini.c10r.facebook.com Mon May 11 09:05:20 2020 Received: from [13.77.141.237] (port=48704 helo=star-mini.c10r.facebook.com)	2020-05-12 00:23:22
123.201.124.74	attackbotsspam	Lines containing failures of 123.201.124.74 May 11 13:42:08 shared06 sshd[10261]: Invalid user vuser from 123.201.124.74 port 26116 May 11 13:42:08 shared06 sshd[10261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.201.124.74 May 11 13:42:10 shared06 sshd[10261]: Failed password for invalid user vuser from 123.201.124.74 port 26116 ssh2 May 11 13:42:10 shared06 sshd[10261]: Received disconnect from 123.201.124.74 port 26116:11: Bye Bye [preauth] May 11 13:42:10 shared06 sshd[10261]: Disconnected from invalid user vuser 123.201.124.74 port 26116 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.201.124.74	2020-05-12 00:44:19
181.129.182.3	attackbots	May 11 17:50:26 santamaria sshd\[6243\]: Invalid user teampspeak from 181.129.182.3 May 11 17:50:26 santamaria sshd\[6243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.182.3 May 11 17:50:27 santamaria sshd\[6243\]: Failed password for invalid user teampspeak from 181.129.182.3 port 38600 ssh2 ...	2020-05-12 00:24:59
207.154.229.50	attackbots	invalid user	2020-05-12 00:55:45
204.77.8.84	attack	Brute Force - Postfix	2020-05-12 00:30:52
118.126.106.196	attackspam	2020-05-11T13:58:41.771607ns386461 sshd\[10465\]: Invalid user joshua from 118.126.106.196 port 62748 2020-05-11T13:58:41.776071ns386461 sshd\[10465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.106.196 2020-05-11T13:58:44.036654ns386461 sshd\[10465\]: Failed password for invalid user joshua from 118.126.106.196 port 62748 ssh2 2020-05-11T14:05:06.077136ns386461 sshd\[16346\]: Invalid user damien from 118.126.106.196 port 13360 2020-05-11T14:05:06.081906ns386461 sshd\[16346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.106.196 ...	2020-05-12 00:39:36

最近上报的IP列表

203.124.168.4	95.235.78.109	103.94.110.29	10.57.126.205
63.112.113.102	217.125.202.184	254.252.100.95	118.70.175.61
165.232.32.196	139.59.38.142	136.144.188.96	228.53.86.15
105.186.212.17	73.219.188.211	49.234.64.200	104.209.160.68
45.185.133.70	42.59.187.153	213.204.154.112	40.74.50.165