31.14.214.126 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Greece

运营商(isp): Vodafone-Panafon Hellenic Telecommunications Company SA

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Nov 23 15:08:37 mxgate1 postfix/postscreen[4834]: CONNECT from [31.14.214.126]:18345 to [176.31.12.44]:25 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4838]: addr 31.14.214.126 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4839]: addr 31.14.214.126 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 23 15:08:37 mxgate1 postfix/dnsblog[4836]: addr 31.14.214.126 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DNSBL rank 4 for [31.14.214.126]:18345 Nov x@x Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: HANGUP after 0.52 from [31.14.214.126]:18345 in tests after SMTP handshake Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DISCONNECT [31.14.214.126]:18345 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.14.214.126	2019-11-24 01:21:27

类型

评论内容

时间

attackbots

Nov 23 15:08:37 mxgate1 postfix/postscreen[4834]: CONNECT from [31.14.214.126]:18345 to [176.31.12.44]:25
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4838]: addr 31.14.214.126 listed by domain zen.spamhaus.org as 127.0.0.4
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4839]: addr 31.14.214.126 listed by domain cbl.abuseat.org as 127.0.0.2
Nov 23 15:08:37 mxgate1 postfix/dnsblog[4836]: addr 31.14.214.126 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DNSBL rank 4 for [31.14.214.126]:18345
Nov x@x
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: HANGUP after 0.52 from [31.14.214.126]:18345 in tests after SMTP handshake
Nov 23 15:08:43 mxgate1 postfix/postscreen[4834]: DISCONNECT [31.14.214.126]:18345


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=31.14.214.126

2019-11-24 01:21:27

相同子网IP讨论:

IP	类型	评论内容	时间
31.14.214.159	attack	Honeypot attack, port: 81, PTR: ppp031014214159.access.hol.gr.	2020-01-11 05:44:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.14.214.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.14.214.126.			IN	A

;; AUTHORITY SECTION:
.			535	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112300 1800 900 604800 86400

;; Query time: 716 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 24 01:21:24 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

126.214.14.31.in-addr.arpa domain name pointer ppp031014214126.access.hol.gr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.214.14.31.in-addr.arpa	name = ppp031014214126.access.hol.gr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
207.154.229.50	attackspam	SSH Brute Force	2019-12-06 22:11:00
37.187.127.13	attackspam	detected by Fail2Ban	2019-12-06 21:45:32
165.227.157.168	attackbots	$f2bV_matches	2019-12-06 21:56:35
222.186.173.215	attackspam	Dec 6 11:24:47 v22018086721571380 sshd[17885]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 3074 ssh2 [preauth] Dec 6 15:10:01 v22018086721571380 sshd[674]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 49980 ssh2 [preauth]	2019-12-06 22:12:00
36.22.187.34	attackbotsspam	Dec 6 14:38:38 nextcloud sshd\[10560\]: Invalid user arkserver from 36.22.187.34 Dec 6 14:38:38 nextcloud sshd\[10560\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.22.187.34 Dec 6 14:38:40 nextcloud sshd\[10560\]: Failed password for invalid user arkserver from 36.22.187.34 port 34962 ssh2 ...	2019-12-06 21:41:29
63.81.87.143	attack	Dec 6 07:22:59 grey postfix/smtpd\[11395\]: NOQUEUE: reject: RCPT from refugee.jcnovel.com\[63.81.87.143\]: 554 5.7.1 Service unavailable\; Client host \[63.81.87.143\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.81.87.143\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-06 22:01:49
223.194.43.75	attack	Dec 6 07:15:31 extapp sshd[11913]: Invalid user pi from 223.194.43.75 Dec 6 07:15:31 extapp sshd[11914]: Invalid user pi from 223.194.43.75 Dec 6 07:15:34 extapp sshd[11913]: Failed password for invalid user pi from 223.194.43.75 port 59538 ssh2 Dec 6 07:15:34 extapp sshd[11914]: Failed password for invalid user pi from 223.194.43.75 port 59544 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.194.43.75	2019-12-06 21:32:44
106.246.250.202	attackbotsspam	Dec 6 10:19:49 vps666546 sshd\[29827\]: Invalid user ching from 106.246.250.202 port 18028 Dec 6 10:19:49 vps666546 sshd\[29827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202 Dec 6 10:19:51 vps666546 sshd\[29827\]: Failed password for invalid user ching from 106.246.250.202 port 18028 ssh2 Dec 6 10:26:16 vps666546 sshd\[30030\]: Invalid user yllcheng from 106.246.250.202 port 28587 Dec 6 10:26:16 vps666546 sshd\[30030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202 ...	2019-12-06 22:09:34
59.36.75.227	attackspam	21 attempts against mh-ssh on cloud.magehost.pro	2019-12-06 21:52:04
115.110.207.116	attackbotsspam	Dec 6 10:36:46 firewall sshd[6963]: Invalid user test from 115.110.207.116 Dec 6 10:36:49 firewall sshd[6963]: Failed password for invalid user test from 115.110.207.116 port 33396 ssh2 Dec 6 10:43:28 firewall sshd[7161]: Invalid user wwwrun from 115.110.207.116 ...	2019-12-06 21:56:15
178.128.213.126	attackbotsspam	2019-12-06T09:44:56.123298scmdmz1 sshd\[31962\]: Invalid user test from 178.128.213.126 port 55176 2019-12-06T09:44:56.126252scmdmz1 sshd\[31962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 2019-12-06T09:44:58.360294scmdmz1 sshd\[31962\]: Failed password for invalid user test from 178.128.213.126 port 55176 ssh2 ...	2019-12-06 22:12:59
150.109.113.127	attack	2019-12-06T13:44:27.670825shield sshd\[406\]: Invalid user braskett from 150.109.113.127 port 52228 2019-12-06T13:44:27.675000shield sshd\[406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.113.127 2019-12-06T13:44:29.345368shield sshd\[406\]: Failed password for invalid user braskett from 150.109.113.127 port 52228 ssh2 2019-12-06T13:50:34.878024shield sshd\[2013\]: Invalid user zack from 150.109.113.127 port 34550 2019-12-06T13:50:34.882580shield sshd\[2013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.113.127	2019-12-06 21:53:10
119.92.59.242	attackbots	Unauthorised access (Dec 6) SRC=119.92.59.242 LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=26282 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 6) SRC=119.92.59.242 LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=30118 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 5) SRC=119.92.59.242 LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=17186 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-06 21:53:31
132.232.7.197	attack	2019-12-06T12:33:41.617824centos sshd\[19385\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.7.197 user=mysql 2019-12-06T12:33:43.505623centos sshd\[19385\]: Failed password for mysql from 132.232.7.197 port 44972 ssh2 2019-12-06T12:41:51.325666centos sshd\[19605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.7.197 user=root	2019-12-06 21:59:58
149.129.212.221	attackspambots	Dec 6 12:27:34 areeb-Workstation sshd[24468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.212.221 Dec 6 12:27:35 areeb-Workstation sshd[24468]: Failed password for invalid user rpc from 149.129.212.221 port 8390 ssh2 ...	2019-12-06 21:35:08

最近上报的IP列表

100.177.53.123	154.27.165.150	77.245.15.62	65.41.125.28
188.136.174.17	220.201.226.138	133.248.23.142	112.160.178.226
96.92.220.36	103.70.154.15	20.85.56.135	220.65.181.255
191.248.230.224	224.214.59.220	222.141.18.159	45.162.98.84
222.188.66.6	14.248.79.68	14.177.249.205	185.225.17.34