14.4.45.211 - IPInfo

基本信息:

城市(city): Dongducheon-si

省份(region): Gyeonggi-do

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.4.45.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.4.45.211.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061801 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 07:09:00 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 211.45.4.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 211.45.4.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
207.154.229.50	attackbots	Jul 17 22:12:25 pornomens sshd\[18612\]: Invalid user csmith from 207.154.229.50 port 33188 Jul 17 22:12:25 pornomens sshd\[18612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.229.50 Jul 17 22:12:27 pornomens sshd\[18612\]: Failed password for invalid user csmith from 207.154.229.50 port 33188 ssh2 ...	2020-07-18 04:18:16
190.55.53.49	attackbotsspam	Jul 17 20:28:50 localhost sshd[62539]: Invalid user ftp1 from 190.55.53.49 port 49996 Jul 17 20:28:50 localhost sshd[62539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.55.53.49 Jul 17 20:28:50 localhost sshd[62539]: Invalid user ftp1 from 190.55.53.49 port 49996 Jul 17 20:28:52 localhost sshd[62539]: Failed password for invalid user ftp1 from 190.55.53.49 port 49996 ssh2 Jul 17 20:34:16 localhost sshd[63078]: Invalid user user from 190.55.53.49 port 36818 ...	2020-07-18 04:37:15
47.115.54.160	attackbotsspam	Looking for system folders	2020-07-18 04:46:12
195.146.59.157	attackbotsspam	Jul 17 22:29:40 piServer sshd[5413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.146.59.157 Jul 17 22:29:42 piServer sshd[5413]: Failed password for invalid user jimmy from 195.146.59.157 port 42084 ssh2 Jul 17 22:34:12 piServer sshd[5795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.146.59.157 ...	2020-07-18 04:40:47
91.134.157.246	attackbotsspam	Jul 17 16:29:42 NPSTNNYC01T sshd[1464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.157.246 Jul 17 16:29:44 NPSTNNYC01T sshd[1464]: Failed password for invalid user spadmin from 91.134.157.246 port 39560 ssh2 Jul 17 16:34:08 NPSTNNYC01T sshd[1783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.157.246 ...	2020-07-18 04:47:59
49.149.97.78	attackbots	1594987659 - 07/17/2020 14:07:39 Host: 49.149.97.78/49.149.97.78 Port: 445 TCP Blocked	2020-07-18 04:24:10
191.163.199.180	attack	Jul 17 17:32:41 ws12vmsma01 sshd[22550]: Invalid user ead from 191.163.199.180 Jul 17 17:32:44 ws12vmsma01 sshd[22550]: Failed password for invalid user ead from 191.163.199.180 port 60762 ssh2 Jul 17 17:32:48 ws12vmsma01 sshd[22693]: Invalid user ead from 191.163.199.180 ...	2020-07-18 04:51:49
124.156.112.181	attack	2020-07-17T15:15:03.469345randservbullet-proofcloud-66.localdomain sshd[21284]: Invalid user mne from 124.156.112.181 port 59108 2020-07-17T15:15:03.473884randservbullet-proofcloud-66.localdomain sshd[21284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.112.181 2020-07-17T15:15:03.469345randservbullet-proofcloud-66.localdomain sshd[21284]: Invalid user mne from 124.156.112.181 port 59108 2020-07-17T15:15:05.952895randservbullet-proofcloud-66.localdomain sshd[21284]: Failed password for invalid user mne from 124.156.112.181 port 59108 ssh2 ...	2020-07-18 04:22:50
106.53.68.194	attackbotsspam	2020-07-17T16:08:13.810725hostname sshd[105891]: Failed password for admin from 106.53.68.194 port 36848 ssh2 ...	2020-07-18 04:15:32
128.201.84.14	attackspambots	[Fri Jul 17 19:07:27.187906 2020] [:error] [pid 1963:tid 140071626475264] [client 128.201.84.14:36793] [client 128.201.84.14] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XxGUf9@PYLyinAtYlZhtrgAAAcI"] ...	2020-07-18 04:33:40
103.12.160.83	attack	Unauthorized connection attempt from IP address 103.12.160.83	2020-07-18 04:16:02
203.163.247.42	attackspam	Jul 17 22:00:50 vps333114 sshd[977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.163.247.42 Jul 17 22:00:52 vps333114 sshd[977]: Failed password for invalid user test from 203.163.247.42 port 55864 ssh2 ...	2020-07-18 04:32:38
128.199.203.211	attackspambots	Jul 17 19:58:50 ns392434 sshd[16778]: Invalid user user from 128.199.203.211 port 48238 Jul 17 19:58:50 ns392434 sshd[16778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.203.211 Jul 17 19:58:50 ns392434 sshd[16778]: Invalid user user from 128.199.203.211 port 48238 Jul 17 19:58:52 ns392434 sshd[16778]: Failed password for invalid user user from 128.199.203.211 port 48238 ssh2 Jul 17 20:10:55 ns392434 sshd[17097]: Invalid user wpc from 128.199.203.211 port 43020 Jul 17 20:10:55 ns392434 sshd[17097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.203.211 Jul 17 20:10:55 ns392434 sshd[17097]: Invalid user wpc from 128.199.203.211 port 43020 Jul 17 20:10:57 ns392434 sshd[17097]: Failed password for invalid user wpc from 128.199.203.211 port 43020 ssh2 Jul 17 20:14:52 ns392434 sshd[17158]: Invalid user friend from 128.199.203.211 port 49396	2020-07-18 04:31:57
217.79.178.53	attackbotsspam	php injection	2020-07-18 04:23:25
213.160.143.146	attack	Jul 17 15:13:01 ny01 sshd[27046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.160.143.146 Jul 17 15:13:03 ny01 sshd[27046]: Failed password for invalid user cxz from 213.160.143.146 port 11301 ssh2 Jul 17 15:18:02 ny01 sshd[27784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.160.143.146	2020-07-18 04:17:33

最近上报的IP列表

162.170.135.245	63.127.0.147	61.193.53.138	137.147.17.193
91.153.184.138	114.64.97.152	168.121.51.85	187.69.3.55
90.66.155.18	119.115.154.112	72.185.250.17	71.83.184.164
193.239.104.168	137.97.182.20	206.210.146.47	201.11.20.87
5.248.254.199	163.44.54.37	136.243.102.233	109.181.86.121