218.64.14.207 - IPInfo

基本信息:

城市(city): Nanchang

省份(region): Jiangxi

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
218.64.148.111	attackbotsspam	Sep 25 21:49:31 hiderm sshd\[24095\]: Invalid user sken from 218.64.148.111 Sep 25 21:49:31 hiderm sshd\[24095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111 Sep 25 21:49:33 hiderm sshd\[24095\]: Failed password for invalid user sken from 218.64.148.111 port 57926 ssh2 Sep 25 21:54:08 hiderm sshd\[24425\]: Invalid user ubnt from 218.64.148.111 Sep 25 21:54:08 hiderm sshd\[24425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111	2019-09-26 15:59:17
218.64.148.111	attackbotsspam	Sep 24 15:24:20 aat-srv002 sshd[23032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111 Sep 24 15:24:22 aat-srv002 sshd[23032]: Failed password for invalid user user0 from 218.64.148.111 port 44583 ssh2 Sep 24 15:28:37 aat-srv002 sshd[23147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111 Sep 24 15:28:39 aat-srv002 sshd[23147]: Failed password for invalid user scanner from 218.64.148.111 port 32994 ssh2 ...	2019-09-25 04:40:52

类型

评论内容

时间

218.64.148.111

attackbotsspam

Sep 25 21:49:31 hiderm sshd\[24095\]: Invalid user sken from 218.64.148.111
Sep 25 21:49:31 hiderm sshd\[24095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111
Sep 25 21:49:33 hiderm sshd\[24095\]: Failed password for invalid user sken from 218.64.148.111 port 57926 ssh2
Sep 25 21:54:08 hiderm sshd\[24425\]: Invalid user ubnt from 218.64.148.111
Sep 25 21:54:08 hiderm sshd\[24425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111

2019-09-26 15:59:17

218.64.148.111

attackbotsspam

Sep 24 15:24:20 aat-srv002 sshd[23032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111
Sep 24 15:24:22 aat-srv002 sshd[23032]: Failed password for invalid user user0 from 218.64.148.111 port 44583 ssh2
Sep 24 15:28:37 aat-srv002 sshd[23147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111
Sep 24 15:28:39 aat-srv002 sshd[23147]: Failed password for invalid user scanner from 218.64.148.111 port 32994 ssh2
...

2019-09-25 04:40:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.64.14.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56384
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.64.14.207.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050200 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 20:23:53 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

207.14.64.218.in-addr.arpa domain name pointer 207.14.64.218.broad.nc.jx.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
207.14.64.218.in-addr.arpa	name = 207.14.64.218.broad.nc.jx.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.172.195.227	attackbotsspam	2020-06-17T12:17:52.126608shield sshd\[4592\]: Invalid user hduser from 167.172.195.227 port 44616 2020-06-17T12:17:52.130163shield sshd\[4592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.195.227 2020-06-17T12:17:54.034854shield sshd\[4592\]: Failed password for invalid user hduser from 167.172.195.227 port 44616 ssh2 2020-06-17T12:21:08.827075shield sshd\[5114\]: Invalid user hexing from 167.172.195.227 port 44840 2020-06-17T12:21:08.831677shield sshd\[5114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.195.227	2020-06-17 20:36:57
167.99.66.158	attackbotsspam	Jun 17 14:43:12 sip sshd[683163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.158 Jun 17 14:43:12 sip sshd[683163]: Invalid user natalia from 167.99.66.158 port 52658 Jun 17 14:43:14 sip sshd[683163]: Failed password for invalid user natalia from 167.99.66.158 port 52658 ssh2 ...	2020-06-17 20:52:28
118.71.164.18	attackbots	Unauthorized connection attempt from IP address 118.71.164.18 on Port 445(SMB)	2020-06-17 20:58:55
211.250.72.142	attackspambots	Jun 17 14:05:05 tor-proxy-08 sshd\[14047\]: Invalid user pi from 211.250.72.142 port 57052 Jun 17 14:05:05 tor-proxy-08 sshd\[14048\]: Invalid user pi from 211.250.72.142 port 57064 Jun 17 14:05:05 tor-proxy-08 sshd\[14047\]: Connection closed by 211.250.72.142 port 57052 \[preauth\] ...	2020-06-17 20:49:29
125.166.24.127	attack	Jun 17 11:24:18 mx01 sshd[28881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.166.24.127 user=r.r Jun 17 11:24:20 mx01 sshd[28881]: Failed password for r.r from 125.166.24.127 port 52544 ssh2 Jun 17 11:24:20 mx01 sshd[28881]: Received disconnect from 125.166.24.127: 11: Bye Bye [preauth] Jun 17 11:40:23 mx01 sshd[31788]: Invalid user sport from 125.166.24.127 Jun 17 11:40:23 mx01 sshd[31788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.166.24.127 Jun 17 11:40:26 mx01 sshd[31788]: Failed password for invalid user sport from 125.166.24.127 port 42584 ssh2 Jun 17 11:40:26 mx01 sshd[31788]: Received disconnect from 125.166.24.127: 11: Bye Bye [preauth] Jun 17 11:44:57 mx01 sshd[32505]: Invalid user comfort from 125.166.24.127 Jun 17 11:44:57 mx01 sshd[32505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.166.24.127 Jun 17 11:44:59 ........ -------------------------------	2020-06-17 21:02:04
185.143.75.153	attackbotsspam	Jun 17 15:02:36 relay postfix/smtpd\[18519\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 15:03:08 relay postfix/smtpd\[16536\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 15:03:25 relay postfix/smtpd\[19949\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 15:03:58 relay postfix/smtpd\[15713\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 15:04:15 relay postfix/smtpd\[16760\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-17 21:04:36
218.92.0.251	attack	2020-06-17T08:19:53.463415xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:57.445411xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:32.374511xentho-1 sshd[384385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root 2020-06-17T08:19:34.340953xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:39.325392xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:43.448653xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:48.791089xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:53.463415xentho-1 sshd[384385]: Failed password for root from 218.92.0.251 port 52543 ssh2 2020-06-17T08:19:57.445411xentho-1 sshd[384385]: Failed password for root from 218. ...	2020-06-17 20:31:20
201.148.87.82	attackbots	Jun 17 15:44:43 hosting sshd[15194]: Invalid user db2inst1 from 201.148.87.82 port 2247 ...	2020-06-17 21:00:03
203.153.125.10	attackspam	Jun 17 08:04:53 Tower sshd[14184]: Connection from 203.153.125.10 port 52663 on 192.168.10.220 port 22 rdomain "" Jun 17 08:04:55 Tower sshd[14184]: Failed password for root from 203.153.125.10 port 52663 ssh2 Jun 17 08:04:55 Tower sshd[14184]: Received disconnect from 203.153.125.10 port 52663:11: Bye Bye [preauth] Jun 17 08:04:55 Tower sshd[14184]: Disconnected from authenticating user root 203.153.125.10 port 52663 [preauth]	2020-06-17 20:42:54
178.216.251.21	attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-17 20:25:38
45.125.66.205	attackspam	[2020-06-17 08:05:13] NOTICE[1273][C-00001dce] chan_sip.c: Call from '' (45.125.66.205:5070) to extension '442037697412' rejected because extension not found in context 'public'. [2020-06-17 08:05:13] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-17T08:05:13.562-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="442037697412",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.205/5070",ACLName="no_extension_match" [2020-06-17 08:05:13] NOTICE[1273][C-00001dcf] chan_sip.c: Call from '' (45.125.66.205:5070) to extension '00442037697412' rejected because extension not found in context 'public'. [2020-06-17 08:05:13] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-17T08:05:13.905-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037697412",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.2 ...	2020-06-17 20:44:21
185.143.72.27	attack	2020-06-17T14:35:06.008641www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-17T14:35:57.048028www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-17T14:36:51.393999www postfix/smtpd[15762]: warning: unknown[185.143.72.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-17 20:40:46
68.183.230.47	attackspam	Jun 17 13:47:01 server sshd[19852]: Failed password for root from 68.183.230.47 port 45866 ssh2 Jun 17 14:05:32 server sshd[4922]: Failed password for root from 68.183.230.47 port 49350 ssh2 Jun 17 14:09:23 server sshd[8567]: Failed password for root from 68.183.230.47 port 50564 ssh2	2020-06-17 20:45:38
51.68.122.155	attackspam	Jun 17 05:21:54 dignus sshd[7794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 Jun 17 05:21:56 dignus sshd[7794]: Failed password for invalid user id from 51.68.122.155 port 43776 ssh2 Jun 17 05:25:18 dignus sshd[8097]: Invalid user cent from 51.68.122.155 port 44144 Jun 17 05:25:18 dignus sshd[8097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 Jun 17 05:25:20 dignus sshd[8097]: Failed password for invalid user cent from 51.68.122.155 port 44144 ssh2 ...	2020-06-17 20:36:14
128.1.34.12	attackbots	Jun 17 14:00:26 mxgate1 postfix/postscreen[9373]: CONNECT from [128.1.34.12]:63893 to [176.31.12.44]:25 Jun 17 14:00:26 mxgate1 postfix/dnsblog[9423]: addr 128.1.34.12 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 17 14:00:26 mxgate1 postfix/dnsblog[9424]: addr 128.1.34.12 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 17 14:00:32 mxgate1 postfix/postscreen[9373]: DNSBL rank 3 for [128.1.34.12]:63893 Jun 17 14:00:32 mxgate1 postfix/postscreen[9373]: NOQUEUE: reject: RCPT from [128.1.34.12]:63893: 550 5.7.1 Service unavailable; client [128.1.34.12] blocked using zen.spamhaus.org; from=x@x helo= Jun 17 14:00:32 mxgate1 postfix/postscreen[9373]: DISCONNECT [128.1.34.12]:63893 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=128.1.34.12	2020-06-17 20:25:56

最近上报的IP列表

75.78.222.121	119.214.247.86	71.128.2.15	44.212.123.239
168.167.7.154	14.186.81.169	143.210.215.12	82.114.186.147
107.49.22.99	81.215.174.93	141.6.236.82	199.148.251.14
180.244.234.109	15.176.209.13	219.38.102.189	38.247.198.123
170.33.14.152	156.100.226.94	48.204.74.24	96.212.233.223