18.191.66.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Banned IP Access	2019-09-03 20:29:24
attack	Aug 29 01:54:45 dedicated sshd[14603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.191.66.14 user=root Aug 29 01:54:48 dedicated sshd[14603]: Failed password for root from 18.191.66.14 port 60014 ssh2	2019-08-29 08:04:27

类型

评论内容

时间

attack

Automatic report - Banned IP Access

2019-09-03 20:29:24

attack

Aug 29 01:54:45 dedicated sshd[14603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.191.66.14  user=root
Aug 29 01:54:48 dedicated sshd[14603]: Failed password for root from 18.191.66.14 port 60014 ssh2

2019-08-29 08:04:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.191.66.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60805
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.191.66.14.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082802 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 08:04:22 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

14.66.191.18.in-addr.arpa domain name pointer ec2-18-191-66-14.us-east-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
14.66.191.18.in-addr.arpa	name = ec2-18-191-66-14.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
124.95.99.202	attackspam	Unauthorised access (Sep 20) SRC=124.95.99.202 LEN=40 TTL=49 ID=10229 TCP DPT=8080 WINDOW=6757 SYN Unauthorised access (Sep 20) SRC=124.95.99.202 LEN=40 TTL=49 ID=40628 TCP DPT=8080 WINDOW=6757 SYN Unauthorised access (Sep 20) SRC=124.95.99.202 LEN=40 TTL=49 ID=1893 TCP DPT=8080 WINDOW=5485 SYN	2019-09-21 05:57:53
213.135.239.146	attackspam	Sep 21 03:08:14 lcl-usvr-02 sshd[8852]: Invalid user junior from 213.135.239.146 port 60039 Sep 21 03:08:14 lcl-usvr-02 sshd[8852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.135.239.146 Sep 21 03:08:14 lcl-usvr-02 sshd[8852]: Invalid user junior from 213.135.239.146 port 60039 Sep 21 03:08:16 lcl-usvr-02 sshd[8852]: Failed password for invalid user junior from 213.135.239.146 port 60039 ssh2 Sep 21 03:12:06 lcl-usvr-02 sshd[9855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.135.239.146 user=root Sep 21 03:12:09 lcl-usvr-02 sshd[9855]: Failed password for root from 213.135.239.146 port 47225 ssh2 ...	2019-09-21 06:23:05
139.162.122.110	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-09-21 06:14:29
51.75.32.141	attackbotsspam	Sep 20 20:17:13 MK-Soft-VM5 sshd\[10395\]: Invalid user test from 51.75.32.141 port 41778 Sep 20 20:17:13 MK-Soft-VM5 sshd\[10395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.32.141 Sep 20 20:17:15 MK-Soft-VM5 sshd\[10395\]: Failed password for invalid user test from 51.75.32.141 port 41778 ssh2 ...	2019-09-21 06:28:31
209.17.96.178	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-09-21 06:37:21
185.207.232.232	attackspambots	Sep 20 12:18:31 hpm sshd\[6355\]: Invalid user ss from 185.207.232.232 Sep 20 12:18:31 hpm sshd\[6355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.207.232.232 Sep 20 12:18:34 hpm sshd\[6355\]: Failed password for invalid user ss from 185.207.232.232 port 38170 ssh2 Sep 20 12:22:57 hpm sshd\[6936\]: Invalid user nsroot from 185.207.232.232 Sep 20 12:22:57 hpm sshd\[6936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.207.232.232	2019-09-21 06:32:10
197.253.6.249	attack	2019-09-20T22:29:23.584125 sshd[31756]: Invalid user mongod123 from 197.253.6.249 port 36619 2019-09-20T22:29:23.597475 sshd[31756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.6.249 2019-09-20T22:29:23.584125 sshd[31756]: Invalid user mongod123 from 197.253.6.249 port 36619 2019-09-20T22:29:26.451487 sshd[31756]: Failed password for invalid user mongod123 from 197.253.6.249 port 36619 ssh2 2019-09-20T22:34:27.339395 sshd[31879]: Invalid user skin from 197.253.6.249 port 57756 ...	2019-09-21 06:30:28
182.61.55.239	attackspambots	[ssh] SSH attack	2019-09-21 06:34:18
202.166.219.238	attack	Sep 20 23:28:35 MK-Soft-VM7 sshd[19632]: Invalid user flavio from 202.166.219.238 port 38142 Sep 20 23:28:35 MK-Soft-VM7 sshd[19632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.166.219.238 Sep 20 23:28:37 MK-Soft-VM7 sshd[19632]: Failed password for invalid user flavio from 202.166.219.238 port 38142 ssh2 ...	2019-09-21 06:36:03
49.88.112.111	attackbots	Sep 21 00:10:22 localhost sshd\[2116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root Sep 21 00:10:24 localhost sshd\[2116\]: Failed password for root from 49.88.112.111 port 32201 ssh2 Sep 21 00:10:27 localhost sshd\[2116\]: Failed password for root from 49.88.112.111 port 32201 ssh2	2019-09-21 06:16:21
51.15.159.7	attack	Sep 20 18:30:49 plusreed sshd[11879]: Invalid user adamek from 51.15.159.7 ...	2019-09-21 06:35:30
51.83.78.56	attackspam	Sep 20 23:56:31 localhost sshd\[661\]: Invalid user yanny from 51.83.78.56 port 35612 Sep 20 23:56:31 localhost sshd\[661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.56 Sep 20 23:56:33 localhost sshd\[661\]: Failed password for invalid user yanny from 51.83.78.56 port 35612 ssh2	2019-09-21 06:02:36
95.123.194.76	attackspam	" "	2019-09-21 06:33:33
183.129.188.92	attackbots	$f2bV_matches	2019-09-21 06:05:51
137.74.159.147	attackbotsspam	Sep 20 11:47:57 hiderm sshd\[8705\]: Invalid user device from 137.74.159.147 Sep 20 11:47:57 hiderm sshd\[8705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sonar.terratex.eu Sep 20 11:47:59 hiderm sshd\[8705\]: Failed password for invalid user device from 137.74.159.147 port 47540 ssh2 Sep 20 11:52:17 hiderm sshd\[9097\]: Invalid user user1 from 137.74.159.147 Sep 20 11:52:17 hiderm sshd\[9097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sonar.terratex.eu	2019-09-21 06:08:36

最近上报的IP列表

176.215.4.72	147.139.135.52	168.96.118.23	95.141.37.33
211.221.191.106	182.117.68.245	212.129.52.3	163.172.52.206
44.6.91.55	48.47.73.223	115.48.180.152	49.234.236.126
212.64.91.187	197.89.255.23	103.243.24.217	39.106.85.98
129.226.56.24	164.77.210.118	50.60.129.33	244.154.74.152