14.166.231.63 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan on 1 port(s): 445	2020-06-22 19:40:16

相同子网IP讨论:

IP	类型	评论内容	时间
14.166.231.128	attack	Fail2Ban Ban Triggered	2020-02-16 14:38:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.166.231.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.166.231.63.			IN	A

;; AUTHORITY SECTION:
.			120	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062200 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 19:40:10 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

63.231.166.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.231.166.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
171.15.16.8	attackbotsspam	Unauthorized connection attempt from IP address 171.15.16.8 on Port 445(SMB)	2019-09-28 23:48:23
195.98.168.78	attackbots	Unauthorized connection attempt from IP address 195.98.168.78 on Port 445(SMB)	2019-09-29 00:03:06
142.93.114.123	attackspam	Sep 28 10:45:56 aat-srv002 sshd[17756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.114.123 Sep 28 10:45:58 aat-srv002 sshd[17756]: Failed password for invalid user mirror from 142.93.114.123 port 37770 ssh2 Sep 28 10:50:22 aat-srv002 sshd[17852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.114.123 Sep 28 10:50:24 aat-srv002 sshd[17852]: Failed password for invalid user guest from 142.93.114.123 port 50558 ssh2 ...	2019-09-29 00:01:55
164.68.120.40	attackspam	2019-09-28T16:53:10.830246 sshd[26250]: Invalid user vo from 164.68.120.40 port 55894 2019-09-28T16:53:10.845234 sshd[26250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.120.40 2019-09-28T16:53:10.830246 sshd[26250]: Invalid user vo from 164.68.120.40 port 55894 2019-09-28T16:53:13.019801 sshd[26250]: Failed password for invalid user vo from 164.68.120.40 port 55894 ssh2 2019-09-28T16:56:51.485948 sshd[26278]: Invalid user lord from 164.68.120.40 port 40710 ...	2019-09-28 23:39:32
81.22.45.184	attack	Sep 28 14:52:56 h2177944 kernel: \[2551421.599902\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.184 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=3678 PROTO=TCP SPT=47651 DPT=33898 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 28 14:53:01 h2177944 kernel: \[2551426.600110\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.184 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=58142 PROTO=TCP SPT=47651 DPT=33389 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 28 14:53:19 h2177944 kernel: \[2551444.624262\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.184 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=23049 PROTO=TCP SPT=47651 DPT=2211 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 28 14:54:01 h2177944 kernel: \[2551485.791569\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.184 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=38362 PROTO=TCP SPT=47651 DPT=404 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 28 14:54:38 h2177944 kernel: \[2551523.579741\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.184 DST=85.214.117.9 LEN=	2019-09-28 23:45:28
185.177.57.36	attackbotsspam	Unauthorised access (Sep 28) SRC=185.177.57.36 LEN=40 TTL=52 ID=18633 TCP DPT=23 WINDOW=24499 SYN Unauthorised access (Sep 28) SRC=185.177.57.36 LEN=40 TTL=52 ID=18633 TCP DPT=23 WINDOW=24499 SYN Unauthorised access (Sep 28) SRC=185.177.57.36 LEN=40 TTL=52 ID=18633 TCP DPT=23 WINDOW=24499 SYN Unauthorised access (Sep 28) SRC=185.177.57.36 LEN=40 TTL=52 ID=18633 TCP DPT=23 WINDOW=24499 SYN	2019-09-29 00:20:00
159.65.30.66	attack	Sep 28 18:16:42 OPSO sshd\[18946\]: Invalid user hex from 159.65.30.66 port 36262 Sep 28 18:16:42 OPSO sshd\[18946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.30.66 Sep 28 18:16:44 OPSO sshd\[18946\]: Failed password for invalid user hex from 159.65.30.66 port 36262 ssh2 Sep 28 18:20:53 OPSO sshd\[19805\]: Invalid user ck from 159.65.30.66 port 48026 Sep 28 18:20:53 OPSO sshd\[19805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.30.66	2019-09-29 00:21:02
104.37.169.192	attackbotsspam	2019-09-28T11:37:18.9700601495-001 sshd\[40761\]: Invalid user bagel123 from 104.37.169.192 port 34352 2019-09-28T11:37:18.9733971495-001 sshd\[40761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 2019-09-28T11:37:20.6709461495-001 sshd\[40761\]: Failed password for invalid user bagel123 from 104.37.169.192 port 34352 ssh2 2019-09-28T11:41:47.1680991495-001 sshd\[41186\]: Invalid user 1234 from 104.37.169.192 port 35378 2019-09-28T11:41:47.1748881495-001 sshd\[41186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 2019-09-28T11:41:49.8009391495-001 sshd\[41186\]: Failed password for invalid user 1234 from 104.37.169.192 port 35378 ssh2 ...	2019-09-28 23:58:18
79.169.73.15	attack	Sep 28 17:32:31 eventyay sshd[24330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.169.73.15 Sep 28 17:32:33 eventyay sshd[24330]: Failed password for invalid user xubuntu from 79.169.73.15 port 60446 ssh2 Sep 28 17:36:44 eventyay sshd[24398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.169.73.15 ...	2019-09-28 23:45:54
14.254.122.235	attackspam	Unauthorized connection attempt from IP address 14.254.122.235 on Port 445(SMB)	2019-09-29 00:20:28
92.118.160.17	attack	28.09.2019 13:27:18 Connection to port 502 blocked by firewall	2019-09-29 00:09:15
49.235.222.199	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-09-29 00:00:09
82.6.38.130	attack	Sep 28 16:57:34 MK-Soft-Root1 sshd[19089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.6.38.130 Sep 28 16:57:36 MK-Soft-Root1 sshd[19089]: Failed password for invalid user atlasmaritime from 82.6.38.130 port 33346 ssh2 ...	2019-09-29 00:05:54
106.12.206.253	attack	2019-09-28T16:17:48.080053lon01.zurich-datacenter.net sshd\[14759\]: Invalid user 123456 from 106.12.206.253 port 46034 2019-09-28T16:17:48.086918lon01.zurich-datacenter.net sshd\[14759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253 2019-09-28T16:17:49.945596lon01.zurich-datacenter.net sshd\[14759\]: Failed password for invalid user 123456 from 106.12.206.253 port 46034 ssh2 2019-09-28T16:24:30.277675lon01.zurich-datacenter.net sshd\[14899\]: Invalid user 12345 from 106.12.206.253 port 56918 2019-09-28T16:24:30.283519lon01.zurich-datacenter.net sshd\[14899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253 ...	2019-09-28 23:41:01
190.128.130.242	attack	Unauthorized connection attempt from IP address 190.128.130.242 on Port 445(SMB)	2019-09-28 23:41:48

最近上报的IP列表

161.35.30.56	153.126.142.232	38.102.173.6	113.255.114.117
192.35.168.45	190.151.37.20	192.35.168.109	69.94.157.141
114.135.73.54	141.168.150.186	60.167.177.25	103.34.33.38
64.103.224.147	182.56.89.80	43.226.150.113	195.190.171.13
52.163.121.142	36.83.127.22	45.235.95.46	117.30.236.35