214.207.17.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DoD Network Information Center

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.207.17.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59268
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;214.207.17.145.			IN	A

;; AUTHORITY SECTION:
.			2469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081001 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 11 03:23:53 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 145.17.207.214.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 145.17.207.214.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
63.82.54.124	attack	Aug 11 13:05:52 web01 postfix/smtpd[10059]: connect from hatter.moonntree.com[63.82.54.124] Aug 11 13:05:52 web01 policyd-spf[10071]: None; identhostnamey=helo; client-ip=63.82.54.124; helo=hatter.moonntree.com; envelope-from=x@x Aug 11 13:05:52 web01 policyd-spf[10071]: Pass; identhostnamey=mailfrom; client-ip=63.82.54.124; helo=hatter.moonntree.com; envelope-from=x@x Aug x@x Aug 11 13:05:53 web01 postfix/smtpd[10059]: disconnect from hatter.moonntree.com[63.82.54.124] Aug 11 13:09:53 web01 postfix/smtpd[10079]: connect from hatter.moonntree.com[63.82.54.124] Aug 11 13:09:54 web01 policyd-spf[10081]: None; identhostnamey=helo; client-ip=63.82.54.124; helo=hatter.moonntree.com; envelope-from=x@x Aug 11 13:09:54 web01 policyd-spf[10081]: Pass; identhostnamey=mailfrom; client-ip=63.82.54.124; helo=hatter.moonntree.com; envelope-from=x@x Aug x@x Aug 11 13:09:54 web01 postfix/smtpd[10079]: disconnect from hatter.moonntree.com[63.82.54.124] Aug 11 13:10:56 web01 postfix/smtp........ -------------------------------	2020-08-12 00:23:17
167.172.56.36	attackspam	167.172.56.36 - - [11/Aug/2020:16:22:02 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.56.36 - - [11/Aug/2020:16:22:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-12 00:17:56
175.24.62.199	attackspambots	Lines containing failures of 175.24.62.199 Aug 10 01:36:37 keyhelp sshd[27578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.62.199 user=r.r Aug 10 01:36:39 keyhelp sshd[27578]: Failed password for r.r from 175.24.62.199 port 51380 ssh2 Aug 10 01:36:39 keyhelp sshd[27578]: Received disconnect from 175.24.62.199 port 51380:11: Bye Bye [preauth] Aug 10 01:36:39 keyhelp sshd[27578]: Disconnected from authenticating user r.r 175.24.62.199 port 51380 [preauth] Aug 10 01:58:38 keyhelp sshd[725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.62.199 user=r.r Aug 10 01:58:41 keyhelp sshd[725]: Failed password for r.r from 175.24.62.199 port 54392 ssh2 Aug 10 01:58:41 keyhelp sshd[725]: Received disconnect from 175.24.62.199 port 54392:11: Bye Bye [preauth] Aug 10 01:58:41 keyhelp sshd[725]: Disconnected from authenticating user r.r 175.24.62.199 port 54392 [preauth] Aug 10 02:04:4........ ------------------------------	2020-08-12 00:34:30
34.84.146.34	attackbots	Lines containing failures of 34.84.146.34 Jul 29 23:18:25 server-name sshd[25175]: Invalid user czj2 from 34.84.146.34 port 48422 Jul 29 23:18:25 server-name sshd[25175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.84.146.34 Jul 29 23:18:27 server-name sshd[25175]: Failed password for invalid user czj2 from 34.84.146.34 port 48422 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=34.84.146.34	2020-08-12 00:02:10
24.18.164.232	attackbots	Aug 11 13:43:25 uapps sshd[15162]: banner exchange: Connection from 24.18.164.232 port 53493: invalid format Aug 11 13:43:27 uapps sshd[15163]: Invalid user plexuser from 24.18.164.232 port 53518 Aug 11 13:43:29 uapps sshd[15163]: Failed password for invalid user plexuser from 24.18.164.232 port 53518 ssh2 Aug 11 13:43:31 uapps sshd[15163]: Connection closed by invalid user plexuser 24.18.164.232 port 53518 [preauth] Aug 11 13:43:32 uapps sshd[15165]: Invalid user admin from 24.18.164.232 port 53888 Aug 11 13:43:35 uapps sshd[15165]: Failed password for invalid user admin from 24.18.164.232 port 53888 ssh2 Aug 11 13:43:36 uapps sshd[15165]: Connection closed by invalid user admin 24.18.164.232 port 53888 [preauth] Aug 11 13:43:38 uapps sshd[15167]: Invalid user admin from 24.18.164.232 port 54213 Aug 11 13:43:40 uapps sshd[15167]: Failed password for invalid user admin from 24.18.164.232 port 54213 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=24.18.1	2020-08-12 00:41:34
27.150.169.223	attackbots	Aug 11 15:32:16 vps647732 sshd[18873]: Failed password for root from 27.150.169.223 port 60903 ssh2 ...	2020-08-11 23:57:30
193.27.229.47	attackbots	TCP (SYN) 193.27.229.47:46746 -> port 62444, len 44	2020-08-11 23:58:46
165.22.200.17	attackbotsspam	Aug 11 18:03:47 vps639187 sshd\[11689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.200.17 user=root Aug 11 18:03:49 vps639187 sshd\[11689\]: Failed password for root from 165.22.200.17 port 47854 ssh2 Aug 11 18:08:22 vps639187 sshd\[11799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.200.17 user=root ...	2020-08-12 00:10:57
222.186.180.147	attack	detected by Fail2Ban	2020-08-12 00:28:26
216.45.23.6	attack	Brute-force attempt banned	2020-08-12 00:24:06
27.115.127.210	attackspambots	Aug 11 18:14:51 ns381471 sshd[20505]: Failed password for root from 27.115.127.210 port 36414 ssh2	2020-08-12 00:42:14
197.243.20.76	attackspambots	Unauthorised access (Aug 11) SRC=197.243.20.76 LEN=52 TTL=110 ID=7176 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-12 00:24:52
182.148.122.2	attack	Port probing on unauthorized port 1433	2020-08-12 00:36:49
8.42.54.5	attackbots	Unauthorized IMAP connection attempt	2020-08-12 00:10:25
101.72.6.171	attackbotsspam	Unauthorised access (Aug 11) SRC=101.72.6.171 LEN=40 TTL=46 ID=51274 TCP DPT=8080 WINDOW=49496 SYN Unauthorised access (Aug 11) SRC=101.72.6.171 LEN=40 TTL=46 ID=32622 TCP DPT=8080 WINDOW=47963 SYN Unauthorised access (Aug 10) SRC=101.72.6.171 LEN=40 TTL=46 ID=39546 TCP DPT=8080 WINDOW=49496 SYN Unauthorised access (Aug 10) SRC=101.72.6.171 LEN=40 TTL=46 ID=34722 TCP DPT=8080 WINDOW=49496 SYN	2020-08-11 23:59:23

最近上报的IP列表

221.90.64.94	118.64.10.35	78.176.91.216	153.127.62.160
160.150.36.92	140.237.122.214	54.36.87.149	167.250.60.88
47.254.146.67	65.245.153.255	97.18.241.241	47.141.25.241
170.80.225.115	44.168.185.32	187.115.201.23	93.6.137.166
189.234.168.175	121.127.27.206	183.171.137.192	198.255.202.144