14.231.93.208 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 14.231.93.208 on Port 445(SMB)	2019-09-05 17:23:22

相同子网IP讨论:

IP	类型	评论内容	时间
14.231.93.218	attack	1581223750 - 02/09/2020 05:49:10 Host: 14.231.93.218/14.231.93.218 Port: 445 TCP Blocked	2020-02-09 20:06:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.231.93.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36457
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.231.93.208.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 17:23:15 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

208.93.231.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
208.93.231.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.12.76	attackbotsspam	Oct 15 09:12:00 HOSTNAME sshd[27948]: User r.r from 106.13.12.76 not allowed because not listed in AllowUsers Oct 15 09:12:00 HOSTNAME sshd[27948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.12.76 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.12.76	2019-10-18 12:49:59
41.204.161.161	attack	Oct 17 18:46:34 hanapaa sshd\[6878\]: Invalid user cfg from 41.204.161.161 Oct 17 18:46:34 hanapaa sshd\[6878\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.204.161.161 Oct 17 18:46:36 hanapaa sshd\[6878\]: Failed password for invalid user cfg from 41.204.161.161 port 45296 ssh2 Oct 17 18:51:02 hanapaa sshd\[7223\]: Invalid user attack from 41.204.161.161 Oct 17 18:51:03 hanapaa sshd\[7223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.204.161.161	2019-10-18 13:03:24
158.69.192.200	attackspam	2019-10-18T03:56:23.934143abusebot.cloudsearch.cf sshd\[8414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.ip-158-69-192.net user=root	2019-10-18 12:44:32
104.248.177.15	attack	104.248.177.15 - - [18/Oct/2019:06:00:39 +0200] "POST /wp-login.php HTTP/1.1" 200 2112 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.177.15 - - [18/Oct/2019:06:00:42 +0200] "POST /wp-login.php HTTP/1.1" 200 2093 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-18 12:27:56
212.64.7.134	attackspam	Oct 17 18:43:42 hanapaa sshd\[6637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 user=root Oct 17 18:43:44 hanapaa sshd\[6637\]: Failed password for root from 212.64.7.134 port 60012 ssh2 Oct 17 18:48:09 hanapaa sshd\[6990\]: Invalid user kai from 212.64.7.134 Oct 17 18:48:09 hanapaa sshd\[6990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 Oct 17 18:48:11 hanapaa sshd\[6990\]: Failed password for invalid user kai from 212.64.7.134 port 40848 ssh2	2019-10-18 13:00:43
49.235.137.58	attack	$f2bV_matches	2019-10-18 12:49:08
188.254.0.182	attackspambots	Oct 18 05:56:49 lnxmail61 sshd[1517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182	2019-10-18 12:28:28
122.115.230.183	attackbotsspam	2019-10-18T04:27:35.094453abusebot-3.cloudsearch.cf sshd\[6129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.115.230.183 user=root	2019-10-18 12:52:20
46.61.235.111	attackbotsspam	Oct 18 06:25:26 vps691689 sshd[30428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.61.235.111 Oct 18 06:25:28 vps691689 sshd[30428]: Failed password for invalid user maria from 46.61.235.111 port 47980 ssh2 ...	2019-10-18 12:46:36
178.128.158.113	attackbots	Invalid user zimbra from 178.128.158.113 port 60790	2019-10-18 13:06:14
23.129.64.166	attackbots	Oct 18 05:56:08 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2Oct 18 05:56:11 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2Oct 18 05:56:13 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2Oct 18 05:56:15 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2Oct 18 05:56:19 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2Oct 18 05:56:22 rotator sshd\[28978\]: Failed password for root from 23.129.64.166 port 16753 ssh2 ...	2019-10-18 12:44:47
54.37.233.163	attack	2019-10-18T04:27:42.990918abusebot-7.cloudsearch.cf sshd\[11569\]: Invalid user sig@zjtt from 54.37.233.163 port 34700	2019-10-18 12:58:29
37.59.165.37	attack	Oct 18 07:35:21 site1 sshd\[56464\]: Invalid user ZAQ12wsx from 37.59.165.37Oct 18 07:35:24 site1 sshd\[56464\]: Failed password for invalid user ZAQ12wsx from 37.59.165.37 port 51706 ssh2Oct 18 07:39:08 site1 sshd\[56620\]: Invalid user chtna123qwe from 37.59.165.37Oct 18 07:39:09 site1 sshd\[56620\]: Failed password for invalid user chtna123qwe from 37.59.165.37 port 36298 ssh2Oct 18 07:43:08 site1 sshd\[57050\]: Invalid user P4ssword@2017 from 37.59.165.37Oct 18 07:43:10 site1 sshd\[57050\]: Failed password for invalid user P4ssword@2017 from 37.59.165.37 port 49120 ssh2 ...	2019-10-18 12:46:50
129.158.73.119	attackspam	Oct 17 18:24:26 sachi sshd\[27340\]: Invalid user admin from 129.158.73.119 Oct 17 18:24:26 sachi sshd\[27340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-158-73-119.compute.oraclecloud.com Oct 17 18:24:28 sachi sshd\[27340\]: Failed password for invalid user admin from 129.158.73.119 port 47423 ssh2 Oct 17 18:28:18 sachi sshd\[27634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-158-73-119.compute.oraclecloud.com user=root Oct 17 18:28:21 sachi sshd\[27634\]: Failed password for root from 129.158.73.119 port 10379 ssh2	2019-10-18 12:42:01
151.75.250.64	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/151.75.250.64/ IT - 1H : (103) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN1267 IP : 151.75.250.64 CIDR : 151.75.0.0/16 PREFIX COUNT : 161 UNIQUE IP COUNT : 6032640 WYKRYTE ATAKI Z ASN1267 : 1H - 1 3H - 2 6H - 4 12H - 9 24H - 17 DateTime : 2019-10-18 05:56:18 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-10-18 12:45:28

最近上报的IP列表

143.255.25.50	47.182.168.67	48.188.117.103	43.225.148.138
203.210.87.54	66.249.79.51	39.90.8.128	78.161.238.19
49.68.26.189	223.79.122.30	39.210.109.199	117.7.235.233
182.253.105.93	169.1.10.180	118.70.67.101	114.219.84.40
105.201.4.102	103.110.184.174	210.79.130.195	213.109.193.168