31.14.214.126 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Greece

运营商(isp): Vodafone-Panafon Hellenic Telecommunications Company SA

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Nov 23 15:08:37 mxgate1 postfix/postscreen[4834]: CONNECT from [31.14.214.126]:18345 to [176.31.12.44]:25 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4838]: addr 31.14.214.126 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4839]: addr 31.14.214.126 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4836]: addr 31.14.214.126 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DNSBL rank 4 for [31.14.214.126]:18345 Nov x@x Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: HANGUP after 0.52 from [31.14.214.126]:18345 in tests after SMTP handshake Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DISCONNECT [31.14.214.126]:18345 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.14.214.126	2019-11-24 01:21:27

类型

评论内容

时间

attackbots

Nov 23 15:08:37 mxgate1 postfix/postscreen[4834]: CONNECT from [31.14.214.126]:18345 to [176.31.12.44]:25
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4838]: addr 31.14.214.126 listed by domain zen.spamhaus.org as 127.0.0.4
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4839]: addr 31.14.214.126 listed by domain cbl.abuseat.org as 127.0.0.2
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4836]: addr 31.14.214.126 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DNSBL rank 4 for [31.14.214.126]:18345
Nov x@x
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: HANGUP after 0.52 from [31.14.214.126]:18345 in tests after SMTP handshake
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DISCONNECT [31.14.214.126]:18345


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=31.14.214.126

2019-11-24 01:21:27

相同子网IP讨论:

IP	类型	评论内容	时间
31.14.214.159	attack	Honeypot attack, port: 81, PTR: ppp031014214159.access.hol.gr.	2020-01-11 05:44:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.14.214.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.14.214.126.			IN	A

;; AUTHORITY SECTION:
.			535	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112300 1800 900 604800 86400

;; Query time: 716 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 24 01:21:24 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

126.214.14.31.in-addr.arpa domain name pointer ppp031014214126.access.hol.gr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.214.14.31.in-addr.arpa	name = ppp031014214126.access.hol.gr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
66.240.219.146	attackspam	12/01/2019-22:53:40.382511 66.240.219.146 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 69	2019-12-02 05:58:19
129.211.117.47	attack	$f2bV_matches	2019-12-02 05:56:39
187.189.11.49	attackspam	Dec 1 23:08:11 cp sshd[982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.11.49 Dec 1 23:08:11 cp sshd[982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.11.49	2019-12-02 06:09:53
3.115.49.134	attackbotsspam	Message ID Created at: Sun, Dec 1, 2019 at 8:37 AM (Delivered after -2424 seconds) From: Alert Subject: (36) Your account will be closed in 10 Hours SPF: PASS with IP 3.115.49.134 ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of bighpbiw@3veqv---3veqv----us-west-2.compute.amazonaws.com designates 3.115.49.134 as permitted sender) smtp.mailfrom=BiGHPbIw@3veqv---3veqv----us-west-2.compute.amazonaws.com Return-Path: Received: from cyborganic.com (ec2-3-115-49-134.ap-northeast-1.compute.amazonaws.com. [3.115.49.134]) by mx.google.com with ESMTP id x15si15785153pgk.593.2019.12.01.05.56.36	2019-12-02 06:01:21
1.52.46.118	attack	Automatic report - Port Scan Attack	2019-12-02 05:57:03
81.242.6.36	attackspambots	3389BruteforceFW23	2019-12-02 06:07:15
187.148.126.247	attackspambots	Automatic report - Port Scan Attack	2019-12-02 05:56:17
106.52.174.139	attack	Dec 1 22:44:18 localhost sshd\[30795\]: Invalid user admin from 106.52.174.139 port 38870 Dec 1 22:44:18 localhost sshd\[30795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.174.139 Dec 1 22:44:19 localhost sshd\[30795\]: Failed password for invalid user admin from 106.52.174.139 port 38870 ssh2	2019-12-02 05:57:22
73.203.102.132	attackspambots	Dec 1 15:33:41 MK-Soft-VM7 sshd[22228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.203.102.132 Dec 1 15:33:43 MK-Soft-VM7 sshd[22228]: Failed password for invalid user seven from 73.203.102.132 port 42058 ssh2 ...	2019-12-02 06:16:19
218.92.0.131	attackbotsspam	Dec 1 22:43:08 vmanager6029 sshd\[32406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.131 user=root Dec 1 22:43:10 vmanager6029 sshd\[32406\]: Failed password for root from 218.92.0.131 port 65194 ssh2 Dec 1 22:43:13 vmanager6029 sshd\[32406\]: Failed password for root from 218.92.0.131 port 65194 ssh2	2019-12-02 05:51:36
92.96.235.201	attackspam	Dec 1 19:00:12 XXX sshd[42933]: Invalid user user from 92.96.235.201 port 63884	2019-12-02 06:12:33
168.121.198.14	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-12-02 06:19:28
14.126.15.164	attack	Telnet/23 MH Probe, BF, Hack -	2019-12-02 06:24:02
37.49.230.34	attackspam	\[2019-12-01 14:25:00\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-01T14:25:00.414-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="40040048422069033",SessionID="0x7f26c4276ea8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.34/50891",ACLName="no_extension_match" \[2019-12-01 14:25:13\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-01T14:25:13.073-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="33410048422069026",SessionID="0x7f26c40cecf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.34/64731",ACLName="no_extension_match" \[2019-12-01 14:26:06\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-01T14:26:06.247-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="52470048422069032",SessionID="0x7f26c445f668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.34/60324",ACLName="no_	2019-12-02 06:03:00
92.50.151.170	attackspam	Dec 1 16:35:52 sso sshd[21046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.151.170 Dec 1 16:35:54 sso sshd[21046]: Failed password for invalid user test2 from 92.50.151.170 port 37122 ssh2 ...	2019-12-02 06:05:53

最近上报的IP列表

100.177.53.123	154.27.165.150	77.245.15.62	65.41.125.28
188.136.174.17	220.201.226.138	133.248.23.142	112.160.178.226
96.92.220.36	103.70.154.15	20.85.56.135	220.65.181.255
191.248.230.224	224.214.59.220	222.141.18.159	45.162.98.84
222.188.66.6	14.248.79.68	14.177.249.205	185.225.17.34