104.214.93.152

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	firewall-block, port(s): 23/tcp	2020-05-04 05:09:34

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.214.93.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.214.93.152.			IN	A

;; AUTHORITY SECTION:
.			238	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050301 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 05:09:30 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 152.93.214.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.93.214.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.69.26.234	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-02 23:06:16
96.54.228.119	attack	Aug 2 14:10:12 ip40 sshd[12598]: Failed password for root from 96.54.228.119 port 36882 ssh2 ...	2020-08-02 22:58:07
51.38.186.244	attackspambots	Aug 2 12:47:32 IngegnereFirenze sshd[32647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.244 user=root ...	2020-08-02 23:29:29
138.197.223.125	attack	Lines containing failures of 138.197.223.125 Jul 29 17:50:22 newdogma sshd[3905]: Did not receive identification string from 138.197.223.125 port 39092 Jul 29 17:50:31 newdogma sshd[3910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.223.125 user=r.r Jul 29 17:50:34 newdogma sshd[3910]: Failed password for r.r from 138.197.223.125 port 60978 ssh2 Jul 29 17:50:35 newdogma sshd[3910]: Received disconnect from 138.197.223.125 port 60978:11: Normal Shutdown, Thank you for playing [preauth] Jul 29 17:50:35 newdogma sshd[3910]: Disconnected from authenticating user r.r 138.197.223.125 port 60978 [preauth] Jul 29 17:50:42 newdogma sshd[3914]: Invalid user oracle from 138.197.223.125 port 51076 Jul 29 17:50:42 newdogma sshd[3914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.223.125 Jul 29 17:50:44 newdogma sshd[3914]: Failed password for invalid user oracle from 138.197.223.1........ ------------------------------	2020-08-02 22:58:47
103.66.16.18	attackspam	Aug 2 13:24:26 web8 sshd\[1076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root Aug 2 13:24:28 web8 sshd\[1076\]: Failed password for root from 103.66.16.18 port 56906 ssh2 Aug 2 13:29:16 web8 sshd\[3396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root Aug 2 13:29:18 web8 sshd\[3396\]: Failed password for root from 103.66.16.18 port 40652 ssh2 Aug 2 13:34:04 web8 sshd\[6040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root	2020-08-02 23:28:58
218.92.0.191	attackbots	Aug 2 16:50:43 dcd-gentoo sshd[22029]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Aug 2 16:50:47 dcd-gentoo sshd[22029]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Aug 2 16:50:47 dcd-gentoo sshd[22029]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 45399 ssh2 ...	2020-08-02 23:09:10
115.231.221.129	attackbotsspam	Aug 2 14:02:01 hidden sshd[50819]: Failed password for hidden from 115.231.221.129 port 50726 ssh2 Aug 2 14:06:10 hidden sshd[61337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.221.129 user=root Aug 2 14:06:12 hidden sshd[61337]: Failed password for hidden from 115.231.221.129 port 53970 ssh2 Aug 2 14:10:20 hidden sshd[5823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.221.129 user=root Aug 2 14:10:21 hidden sshd[5823]: Failed password for hidden from 115.231.221.129 port 57206 ssh2	2020-08-02 23:31:49
117.35.118.42	attackspambots	Aug 2 19:22:57 gw1 sshd[12674]: Failed password for root from 117.35.118.42 port 38590 ssh2 ...	2020-08-02 23:15:50
52.157.110.87	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-02T11:55:03Z and 2020-08-02T12:10:47Z	2020-08-02 23:10:18
123.57.208.161	attack	Aug 2 09:07:02 firewall sshd[31645]: Failed password for root from 123.57.208.161 port 52562 ssh2 Aug 2 09:10:07 firewall sshd[31774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.57.208.161 user=root Aug 2 09:10:09 firewall sshd[31774]: Failed password for root from 123.57.208.161 port 47875 ssh2 ...	2020-08-02 23:40:08
192.241.237.137	attackbotsspam	trying to access non-authorized port	2020-08-02 23:24:44
161.35.230.183	attack	Fail2Ban Ban Triggered	2020-08-02 23:23:15
118.69.225.57	attackspambots	(imapd) Failed IMAP login from 118.69.225.57 (VN/Vietnam/118-69-225-57-static.hcm.fpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 2 16:40:28 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=118.69.225.57, lip=5.63.12.44, TLS: Connection closed, session=	2020-08-02 23:26:54
103.98.17.94	attack	Aug 2 14:07:55 ip40 sshd[12468]: Failed password for root from 103.98.17.94 port 44786 ssh2 ...	2020-08-02 22:56:03
37.49.230.71	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-08-02 22:58:30

最近上报的IP列表

84.201.173.199	190.4.202.243	174.255.200.27	37.6.117.24
170.233.47.244	178.128.173.181	51.15.85.14	164.41.143.159
120.228.1.3	181.155.64.17	179.182.194.241	113.88.235.139
51.195.36.221	12.36.125.158	200.114.120.183	15.150.92.118
106.51.76.115	177.174.189.2	115.80.40.201	42.201.253.195