58.20.239.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): CNC Group HuNan JiShou network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2019-12-03T22:25:12.900125shield sshd\[26921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=root 2019-12-03T22:25:14.653548shield sshd\[26921\]: Failed password for root from 58.20.239.14 port 36338 ssh2 2019-12-03T22:32:13.639624shield sshd\[29234\]: Invalid user tokumitsu from 58.20.239.14 port 38122 2019-12-03T22:32:13.644284shield sshd\[29234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 2019-12-03T22:32:14.860608shield sshd\[29234\]: Failed password for invalid user tokumitsu from 58.20.239.14 port 38122 ssh2	2019-12-04 06:36:34
attackbotsspam	Nov 24 07:54:29 mail sshd[1175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 Nov 24 07:54:30 mail sshd[1175]: Failed password for invalid user admin from 58.20.239.14 port 56122 ssh2 Nov 24 07:57:04 mail sshd[1724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14	2019-11-24 15:16:43
attackbots	Nov 21 20:21:06 areeb-Workstation sshd[5553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 Nov 21 20:21:09 areeb-Workstation sshd[5553]: Failed password for invalid user glowmusic from 58.20.239.14 port 39492 ssh2 ...	2019-11-22 02:50:43
attackspambots	Nov 20 15:14:33 TORMINT sshd\[14657\]: Invalid user pi from 58.20.239.14 Nov 20 15:14:33 TORMINT sshd\[14657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 Nov 20 15:14:36 TORMINT sshd\[14657\]: Failed password for invalid user pi from 58.20.239.14 port 44772 ssh2 ...	2019-11-21 04:28:41
attack	Nov 6 22:41:10 venus sshd\[11921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=root Nov 6 22:41:12 venus sshd\[11921\]: Failed password for root from 58.20.239.14 port 49384 ssh2 Nov 6 22:45:17 venus sshd\[11981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=root ...	2019-11-07 07:08:57
attackbotsspam	detected by Fail2Ban	2019-11-02 22:12:49
attackbotsspam	Lines containing failures of 58.20.239.14 Oct 21 16:42:03 shared09 sshd[2622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=r.r Oct 21 16:42:05 shared09 sshd[2622]: Failed password for r.r from 58.20.239.14 port 45792 ssh2 Oct 21 16:42:05 shared09 sshd[2622]: Received disconnect from 58.20.239.14 port 45792:11: Bye Bye [preauth] Oct 21 16:42:05 shared09 sshd[2622]: Disconnected from authenticating user r.r 58.20.239.14 port 45792 [preauth] Oct 21 16:57:00 shared09 sshd[7347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=r.r Oct 21 16:57:02 shared09 sshd[7347]: Failed password for r.r from 58.20.239.14 port 50286 ssh2 Oct 21 16:57:02 shared09 sshd[7347]: Received disconnect from 58.20.239.14 port 50286:11: Bye Bye [preauth] Oct 21 16:57:02 shared09 sshd[7347]: Disconnected from authenticating user r.r 58.20.239.14 port 50286 [preauth] Oct 21 17:01:19........ ------------------------------	2019-10-26 05:17:41
attackspam	ssh brute force	2019-10-24 18:09:16

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.20.239.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12132
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.20.239.14.			IN	A

;; AUTHORITY SECTION:
.			390	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102400 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 18:09:13 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 14.239.20.58.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 14.239.20.58.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
118.25.55.87	attackbotsspam	Oct 16 11:05:50 hanapaa sshd\[29218\]: Invalid user vn from 118.25.55.87 Oct 16 11:05:50 hanapaa sshd\[29218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.55.87 Oct 16 11:05:52 hanapaa sshd\[29218\]: Failed password for invalid user vn from 118.25.55.87 port 47014 ssh2 Oct 16 11:10:38 hanapaa sshd\[29718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.55.87 user=root Oct 16 11:10:40 hanapaa sshd\[29718\]: Failed password for root from 118.25.55.87 port 57666 ssh2	2019-10-17 05:20:07
182.74.190.198	attack	Oct 16 21:27:19 herz-der-gamer sshd[3811]: Invalid user admin from 182.74.190.198 port 47694 Oct 16 21:27:19 herz-der-gamer sshd[3811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.74.190.198 Oct 16 21:27:19 herz-der-gamer sshd[3811]: Invalid user admin from 182.74.190.198 port 47694 Oct 16 21:27:21 herz-der-gamer sshd[3811]: Failed password for invalid user admin from 182.74.190.198 port 47694 ssh2 ...	2019-10-17 05:10:20
221.215.130.162	attackbots	2019-10-16T20:34:12.967560abusebot-5.cloudsearch.cf sshd\[27114\]: Invalid user user from 221.215.130.162 port 39781	2019-10-17 05:04:08
222.186.173.201	attackbotsspam	2019-10-17T04:08:12.053618enmeeting.mahidol.ac.th sshd\[18481\]: User root from 222.186.173.201 not allowed because not listed in AllowUsers 2019-10-17T04:08:13.313762enmeeting.mahidol.ac.th sshd\[18481\]: Failed none for invalid user root from 222.186.173.201 port 58354 ssh2 2019-10-17T04:08:14.681121enmeeting.mahidol.ac.th sshd\[18481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root ...	2019-10-17 05:31:28
36.26.124.37	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/36.26.124.37/ CN - 1H : (472) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 36.26.124.37 CIDR : 36.26.96.0/19 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 10 3H - 26 6H - 46 12H - 112 24H - 170 DateTime : 2019-10-16 21:26:55 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-17 05:26:20
212.64.91.66	attackspam	2019-10-16T20:30:56.757682hub.schaetter.us sshd\[23892\]: Invalid user Passw0rd0 from 212.64.91.66 port 58870 2019-10-16T20:30:56.770452hub.schaetter.us sshd\[23892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.91.66 2019-10-16T20:30:58.651829hub.schaetter.us sshd\[23892\]: Failed password for invalid user Passw0rd0 from 212.64.91.66 port 58870 ssh2 2019-10-16T20:35:20.025826hub.schaetter.us sshd\[23923\]: Invalid user Forum123 from 212.64.91.66 port 41318 2019-10-16T20:35:20.033126hub.schaetter.us sshd\[23923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.91.66 ...	2019-10-17 05:14:33
49.249.237.226	attackspam	Oct 16 10:54:12 php1 sshd\[20445\]: Invalid user -,0m from 49.249.237.226 Oct 16 10:54:12 php1 sshd\[20445\]: Failed password for invalid user -,0m from 49.249.237.226 port 56046 ssh2 Oct 16 10:57:28 php1 sshd\[20893\]: Invalid user worldwideweb from 49.249.237.226 Oct 16 10:57:28 php1 sshd\[20893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.237.226 Oct 16 10:57:30 php1 sshd\[20893\]: Failed password for invalid user worldwideweb from 49.249.237.226 port 39688 ssh2	2019-10-17 05:08:38
142.93.157.155	attackbots	Automatic report - Banned IP Access	2019-10-17 05:38:31
222.186.173.215	attackspam	2019-10-15 04:22:55 -> 2019-10-16 10:49:06 : 17 login attempts (222.186.173.215)	2019-10-17 05:14:47
177.21.237.22	attack	Automatic report - XMLRPC Attack	2019-10-17 05:21:59
110.4.45.181	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-10-17 05:13:05
150.249.114.20	attack	Oct 16 21:30:52 vps58358 sshd\[7326\]: Invalid user abcd12345\^ from 150.249.114.20Oct 16 21:30:54 vps58358 sshd\[7326\]: Failed password for invalid user abcd12345\^ from 150.249.114.20 port 45788 ssh2Oct 16 21:34:40 vps58358 sshd\[7348\]: Invalid user asadas123 from 150.249.114.20Oct 16 21:34:42 vps58358 sshd\[7348\]: Failed password for invalid user asadas123 from 150.249.114.20 port 56352 ssh2Oct 16 21:38:21 vps58358 sshd\[7378\]: Invalid user 12345 from 150.249.114.20Oct 16 21:38:24 vps58358 sshd\[7378\]: Failed password for invalid user 12345 from 150.249.114.20 port 38692 ssh2 ...	2019-10-17 05:13:54
216.244.66.195	attackbotsspam	[Wed Oct 16 21:21:26.861412 2019] [access_compat:error] [pid 17854:tid 139904415635200] [client 216.244.66.195:50942] AH01797: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/cassandra-cain-i-can-only-fuck-my-stepmom [Wed Oct 16 21:22:41.374535 2019] [access_compat:error] [pid 17942:tid 139904465991424] [client 216.244.66.195:55184] AH01797: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/bffs-poonjab-special [Wed Oct 16 21:24:24.371699 2019] [access_compat:error] [pid 17854:tid 139904617187072] [client 216.244.66.195:61622] AH01797: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/anissa-kate-the-pleasure-provider-episode-3 [Wed Oct 16 21:26:25.051861 2019] [access_compat:error] [pid 17942:tid 139904533133056] [client 216.244.66.195:29800] AH01797: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/eva-kept-him-waiting-for-her-tightest-slot ...	2019-10-17 05:43:36
59.39.177.195	attackbots	Oct 16 15:27:06 web1 postfix/smtpd[14814]: warning: unknown[59.39.177.195]: SASL LOGIN authentication failed: authentication failure ...	2019-10-17 05:18:41
46.38.144.32	attack	2019-09-19 02:31:38 -> 2019-10-16 23:03:59 : 12210 login attempts (46.38.144.32)	2019-10-17 05:16:56

最近上报的IP列表

69.182.100.103	101.171.38.44	154.9.199.159	67.106.54.220
60.44.91.178	224.64.47.46	45.107.235.178	129.146.32.163
98.210.4.74	128.225.114.254	10.255.202.5	237.43.21.107
193.110.134.55	81.5.204.53	156.126.248.147	194.36.84.58
35.122.209.226	160.100.65.155	27.40.43.185	23.36.16.4