必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): VNPT Corp

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
14.249.141.161 attack
Sat, 20 Jul 2019 21:55:28 +0000 likely compromised host or open proxy. ddos rate spidering
2019-07-21 10:26:31
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.249.141.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11484
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.249.141.0.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062201 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 17:03:38 CST 2019
;; MSG SIZE  rcvd: 116
HOST信息:
0.141.249.14.in-addr.arpa domain name pointer static.vnpt.vn.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
0.141.249.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
118.25.91.168 attackspambots
Failed password for root from 118.25.91.168 port 49086 ssh2
2020-08-15 14:08:28
170.239.85.39 attack
Lines containing failures of 170.239.85.39
Aug 13 05:10:30 shared03 sshd[1546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.239.85.39  user=r.r
Aug 13 05:10:33 shared03 sshd[1546]: Failed password for r.r from 170.239.85.39 port 53174 ssh2
Aug 13 05:10:33 shared03 sshd[1546]: Received disconnect from 170.239.85.39 port 53174:11: Bye Bye [preauth]
Aug 13 05:10:33 shared03 sshd[1546]: Disconnected from authenticating user r.r 170.239.85.39 port 53174 [preauth]
Aug 13 05:13:09 shared03 sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.239.85.39  user=r.r
Aug 13 05:13:11 shared03 sshd[2277]: Failed password for r.r from 170.239.85.39 port 55778 ssh2
Aug 13 05:13:12 shared03 sshd[2277]: Received disconnect from 170.239.85.39 port 55778:11
.... truncated .... 
Lines containing failures of 170.239.85.39
Aug 13 05:10:30 shared03 sshd[1546]: pam_unix(sshd:auth): authentication fa........
------------------------------
2020-08-15 14:37:12
61.177.172.102 attackspam
2020-08-15T09:19:16.323566snf-827550 sshd[3960]: Failed password for root from 61.177.172.102 port 21353 ssh2
2020-08-15T09:19:18.844188snf-827550 sshd[3960]: Failed password for root from 61.177.172.102 port 21353 ssh2
2020-08-15T09:19:21.780359snf-827550 sshd[3960]: Failed password for root from 61.177.172.102 port 21353 ssh2
...
2020-08-15 14:22:04
94.102.49.159 attackbots
Aug 15 08:05:44 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=41383 PROTO=TCP SPT=45696 DPT=22092 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 08:10:49 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10752 PROTO=TCP SPT=45696 DPT=23476 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 08:16:24 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=52777 PROTO=TCP SPT=45696 DPT=22157 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 08:20:06 *hidden* kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.49.159 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6156 PROTO=TCP SPT=45696 DPT=22139 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 08:22:54 *
...
2020-08-15 14:33:48
5.190.168.134 attackbots
Aug 15 01:31:56 mail.srvfarm.net postfix/smtps/smtpd[944622]: warning: unknown[5.190.168.134]: SASL PLAIN authentication failed: 
Aug 15 01:31:56 mail.srvfarm.net postfix/smtps/smtpd[944622]: lost connection after AUTH from unknown[5.190.168.134]
Aug 15 01:32:33 mail.srvfarm.net postfix/smtps/smtpd[931402]: warning: unknown[5.190.168.134]: SASL PLAIN authentication failed: 
Aug 15 01:32:33 mail.srvfarm.net postfix/smtps/smtpd[931402]: lost connection after AUTH from unknown[5.190.168.134]
Aug 15 01:36:47 mail.srvfarm.net postfix/smtps/smtpd[944893]: warning: unknown[5.190.168.134]: SASL PLAIN authentication failed:
2020-08-15 14:08:14
94.102.49.190 attackbots
Fail2Ban Ban Triggered
2020-08-15 14:49:43
222.186.175.215 attack
Aug 15 08:26:20 minden010 sshd[20637]: Failed password for root from 222.186.175.215 port 27398 ssh2
Aug 15 08:26:23 minden010 sshd[20637]: Failed password for root from 222.186.175.215 port 27398 ssh2
Aug 15 08:26:27 minden010 sshd[20637]: Failed password for root from 222.186.175.215 port 27398 ssh2
Aug 15 08:26:30 minden010 sshd[20637]: Failed password for root from 222.186.175.215 port 27398 ssh2
...
2020-08-15 14:28:24
212.33.203.228 attackspambots
Aug 15 09:02:10 root sshd[26878]: Failed password for invalid user ansible from 212.33.203.228 port 54936 ssh2
...
2020-08-15 14:35:08
130.93.84.1 attack
Aug 15 08:04:39 mout sshd[32244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.93.84.1  user=pi
Aug 15 08:04:41 mout sshd[32244]: Failed password for pi from 130.93.84.1 port 49840 ssh2
Aug 15 08:04:42 mout sshd[32244]: Connection closed by authenticating user pi 130.93.84.1 port 49840 [preauth]
2020-08-15 14:09:45
72.130.10.216 attackbots
Port 22 Scan, PTR: None
2020-08-15 14:31:10
194.26.25.97 attack
[Sat Aug 15 07:14:00 2020] - DDoS Attack From IP: 194.26.25.97 Port: 40449
2020-08-15 14:34:08
119.45.50.17 attack
2020-08-15T05:50:22.656641vps-d63064a2 sshd[45460]: User root from 119.45.50.17 not allowed because not listed in AllowUsers
2020-08-15T05:50:24.456089vps-d63064a2 sshd[45460]: Failed password for invalid user root from 119.45.50.17 port 53678 ssh2
2020-08-15T05:51:21.949969vps-d63064a2 sshd[45475]: User root from 119.45.50.17 not allowed because not listed in AllowUsers
2020-08-15T05:51:21.966694vps-d63064a2 sshd[45475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.50.17  user=root
2020-08-15T05:51:21.949969vps-d63064a2 sshd[45475]: User root from 119.45.50.17 not allowed because not listed in AllowUsers
2020-08-15T05:51:23.511882vps-d63064a2 sshd[45475]: Failed password for invalid user root from 119.45.50.17 port 32810 ssh2
...
2020-08-15 14:38:59
116.232.67.218 attackspambots
Aug 11 01:12:15 *** sshd[18678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.232.67.218  user=r.r
Aug 11 01:12:17 *** sshd[18678]: Failed password for r.r from 116.232.67.218 port 37904 ssh2
Aug 11 01:12:17 *** sshd[18678]: Received disconnect from 116.232.67.218 port 37904:11: Bye Bye [preauth]
Aug 11 01:12:17 *** sshd[18678]: Disconnected from 116.232.67.218 port 37904 [preauth]
Aug 11 01:30:01 *** sshd[18888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.232.67.218  user=r.r
Aug 11 01:30:03 *** sshd[18888]: Failed password for r.r from 116.232.67.218 port 58642 ssh2
Aug 11 01:30:03 *** sshd[18888]: Received disconnect from 116.232.67.218 port 58642:11: Bye Bye [preauth]
Aug 11 01:30:03 *** sshd[18888]: Disconnected from 116.232.67.218 port 58642 [preauth]
Aug 11 01:34:45 *** sshd[18945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost........
-------------------------------
2020-08-15 14:36:46
97.90.110.160 attackspambots
frenzy
2020-08-15 14:19:46
179.124.19.240 attackbots
Attempted Brute Force (dovecot)
2020-08-15 14:24:19

最近上报的IP列表

147.237.235.17 96.213.204.38 91.227.6.17 154.15.180.215
78.205.105.64 74.91.58.111 122.237.213.135 78.61.106.141
89.105.122.204 167.100.110.236 68.93.135.250 131.155.232.105
111.226.171.47 193.152.145.105 114.35.25.239 42.19.226.75
51.53.45.136 145.93.172.227 36.118.237.95 122.200.123.136