14.203.201.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Australia

运营商(isp): TPG Internet Pty Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port probing on unauthorized port 5555	2020-08-19 09:02:29

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.203.201.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40773
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.203.201.85.			IN	A

;; AUTHORITY SECTION:
.			415	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081802 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 19 09:02:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

85.201.203.14.in-addr.arpa domain name pointer 14-203-201-85.tpgi.com.au.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.201.203.14.in-addr.arpa	name = 14-203-201-85.tpgi.com.au.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.199.37.189	attackbots	Oct 21 08:54:24 mail1 sshd\[16409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.37.189 user=root Oct 21 08:54:27 mail1 sshd\[16409\]: Failed password for root from 139.199.37.189 port 39638 ssh2 Oct 21 09:05:15 mail1 sshd\[21384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.37.189 user=root Oct 21 09:05:17 mail1 sshd\[21384\]: Failed password for root from 139.199.37.189 port 43803 ssh2 Oct 21 09:10:24 mail1 sshd\[23703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.37.189 user=mysql ...	2019-10-21 15:12:16
159.203.190.189	attackbotsspam	Oct 21 07:10:32 www sshd\[62328\]: Invalid user wd from 159.203.190.189Oct 21 07:10:35 www sshd\[62328\]: Failed password for invalid user wd from 159.203.190.189 port 43483 ssh2Oct 21 07:13:50 www sshd\[62518\]: Failed password for root from 159.203.190.189 port 34587 ssh2 ...	2019-10-21 14:45:59
178.150.216.229	attackspambots	$f2bV_matches	2019-10-21 14:51:21
58.250.164.242	attackspambots	Invalid user test from 58.250.164.242 port 55980	2019-10-21 15:11:17
66.70.189.209	attackbotsspam	Oct 21 07:09:33 www sshd\[62788\]: Failed password for root from 66.70.189.209 port 34251 ssh2Oct 21 07:13:07 www sshd\[62836\]: Invalid user team from 66.70.189.209Oct 21 07:13:08 www sshd\[62836\]: Failed password for invalid user team from 66.70.189.209 port 52835 ssh2 ...	2019-10-21 15:00:42
101.21.107.6	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-21 14:40:39
170.0.128.10	attackbotsspam	Oct 21 07:59:26 root sshd[6886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.0.128.10 Oct 21 07:59:28 root sshd[6886]: Failed password for invalid user xj from 170.0.128.10 port 59995 ssh2 Oct 21 08:04:11 root sshd[6921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.0.128.10 ...	2019-10-21 15:06:14
37.139.2.218	attackbots	Oct 21 07:03:13 site1 sshd\[33268\]: Address 37.139.2.218 maps to pplmx.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 21 07:03:13 site1 sshd\[33268\]: Invalid user zw from 37.139.2.218Oct 21 07:03:15 site1 sshd\[33268\]: Failed password for invalid user zw from 37.139.2.218 port 41190 ssh2Oct 21 07:12:44 site1 sshd\[34678\]: Address 37.139.2.218 maps to pplmx.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 21 07:12:44 site1 sshd\[34678\]: Invalid user xmrpool from 37.139.2.218Oct 21 07:12:46 site1 sshd\[34678\]: Failed password for invalid user xmrpool from 37.139.2.218 port 50804 ssh2 ...	2019-10-21 15:15:48
116.196.90.181	attack	Oct 21 12:03:44 webhost01 sshd[20065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.90.181 Oct 21 12:03:46 webhost01 sshd[20065]: Failed password for invalid user user3 from 116.196.90.181 port 57600 ssh2 ...	2019-10-21 14:50:58
200.41.86.59	attack	Oct 20 20:57:15 kapalua sshd\[29138\]: Invalid user daredevilz from 200.41.86.59 Oct 20 20:57:15 kapalua sshd\[29138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.41.86.59 Oct 20 20:57:17 kapalua sshd\[29138\]: Failed password for invalid user daredevilz from 200.41.86.59 port 48792 ssh2 Oct 20 21:01:39 kapalua sshd\[29653\]: Invalid user 12345678 from 200.41.86.59 Oct 20 21:01:39 kapalua sshd\[29653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.41.86.59	2019-10-21 15:12:47
23.98.151.182	attackspam	2019-10-21T06:25:58.392375abusebot.cloudsearch.cf sshd\[2436\]: Invalid user 123456789 from 23.98.151.182 port 49344	2019-10-21 14:57:08
180.71.47.198	attackspam	2019-10-21T05:27:34.284113abusebot-4.cloudsearch.cf sshd\[20626\]: Invalid user novinvps\#2006 from 180.71.47.198 port 45600	2019-10-21 15:14:37
159.203.32.174	attackspam	2019-10-21T10:51:38.957802enmeeting.mahidol.ac.th sshd\[7142\]: Invalid user abakus from 159.203.32.174 port 38178 2019-10-21T10:51:38.976425enmeeting.mahidol.ac.th sshd\[7142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.32.174 2019-10-21T10:51:41.414403enmeeting.mahidol.ac.th sshd\[7142\]: Failed password for invalid user abakus from 159.203.32.174 port 38178 ssh2 ...	2019-10-21 14:56:38
119.29.242.84	attackspam	Oct 21 05:46:39 SilenceServices sshd[26334]: Failed password for root from 119.29.242.84 port 39270 ssh2 Oct 21 05:51:36 SilenceServices sshd[27681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.84 Oct 21 05:51:38 SilenceServices sshd[27681]: Failed password for invalid user test6 from 119.29.242.84 port 48900 ssh2	2019-10-21 15:00:56
177.75.147.126	attack	Honeypot attack, port: 23, PTR: 177.75.145.126.mhnet.com.br.	2019-10-21 14:46:16

最近上报的IP列表

84.115.248.191	42.200.231.27	73.80.2.208	157.245.103.203
207.73.198.236	39.94.193.221	172.245.20.135	38.235.141.140
64.251.184.26	160.175.176.224	61.82.124.232	26.238.211.164
139.211.73.225	35.203.212.22	180.164.59.151	148.70.50.244
170.233.159.142	139.99.61.247	152.32.199.140	189.212.120.240