14.244.116.63 - IPInfo

基本信息:

城市(city): Bac Giang

省份(region): Tinh Bac Giang

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 14.244.116.63 on Port 445(SMB)	2020-06-17 07:40:03

相同子网IP讨论:

IP	类型	评论内容	时间
14.244.116.173	attack	1578316452 - 01/06/2020 14:14:12 Host: 14.244.116.173/14.244.116.173 Port: 445 TCP Blocked	2020-01-06 21:27:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.244.116.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.244.116.63.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061602 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 07:39:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

63.116.244.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.116.244.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.207.39.136	attack	Oct 17 18:37:54 lcl-usvr-02 sshd[32664]: Invalid user admin from 103.207.39.136 port 53673 Oct 17 18:37:54 lcl-usvr-02 sshd[32664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.39.136 Oct 17 18:37:54 lcl-usvr-02 sshd[32664]: Invalid user admin from 103.207.39.136 port 53673 Oct 17 18:37:56 lcl-usvr-02 sshd[32664]: Failed password for invalid user admin from 103.207.39.136 port 53673 ssh2 Oct 17 18:37:54 lcl-usvr-02 sshd[32664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.39.136 Oct 17 18:37:54 lcl-usvr-02 sshd[32664]: Invalid user admin from 103.207.39.136 port 53673 Oct 17 18:37:56 lcl-usvr-02 sshd[32664]: Failed password for invalid user admin from 103.207.39.136 port 53673 ssh2 Oct 17 18:37:56 lcl-usvr-02 sshd[32664]: error: Received disconnect from 103.207.39.136 port 53673:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2019-10-18 01:33:11
142.93.212.168	attackspam	Invalid user cocoon from 142.93.212.168 port 60296	2019-10-18 01:19:25
171.6.164.24	attackspam	Oct 17 05:22:19 django sshd[114186]: reveeclipse mapping checking getaddrinfo for mx-ll-171.6.164-24.dynamic.3bb.in.th [171.6.164.24] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 17 05:22:19 django sshd[114186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.6.164.24 user=r.r Oct 17 05:22:21 django sshd[114186]: Failed password for r.r from 171.6.164.24 port 1812 ssh2 Oct 17 05:22:21 django sshd[114187]: Received disconnect from 171.6.164.24: 11: Bye Bye Oct 17 05:26:38 django sshd[114745]: reveeclipse mapping checking getaddrinfo for mx-ll-171.6.164-24.dynamic.3bb.in.th [171.6.164.24] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 17 05:26:38 django sshd[114745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.6.164.24 user=r.r Oct 17 05:26:39 django sshd[114745]: Failed password for r.r from 171.6.164.24 port 6022 ssh2 Oct 17 05:26:39 django sshd[114746]: Received disconnect from 171.6.164......... -------------------------------	2019-10-18 01:37:06
106.12.108.90	attackspambots	2019-10-17T10:44:32.342066mizuno.rwx.ovh sshd[1677140]: Connection from 106.12.108.90 port 41756 on 78.46.61.178 port 22 rdomain "" 2019-10-17T10:44:34.461076mizuno.rwx.ovh sshd[1677140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.90 user=root 2019-10-17T10:44:36.670227mizuno.rwx.ovh sshd[1677140]: Failed password for root from 106.12.108.90 port 41756 ssh2 2019-10-17T10:51:39.769393mizuno.rwx.ovh sshd[1677980]: Connection from 106.12.108.90 port 55944 on 78.46.61.178 port 22 rdomain "" 2019-10-17T10:51:41.158758mizuno.rwx.ovh sshd[1677980]: Invalid user ovidiu from 106.12.108.90 port 55944 ...	2019-10-18 01:20:31
165.231.33.66	attackspambots	Oct 17 18:07:06 server sshd\[675\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.231.33.66 user=root Oct 17 18:07:08 server sshd\[675\]: Failed password for root from 165.231.33.66 port 54300 ssh2 Oct 17 18:28:55 server sshd\[6276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.231.33.66 user=root Oct 17 18:28:57 server sshd\[6276\]: Failed password for root from 165.231.33.66 port 43062 ssh2 Oct 17 18:33:01 server sshd\[7375\]: Invalid user pvm from 165.231.33.66 Oct 17 18:33:01 server sshd\[7375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.231.33.66 ...	2019-10-18 01:43:33
198.8.83.194	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-18 01:46:12
47.23.10.242	attack	Lines containing failures of 47.23.10.242 Oct 17 00:24:08 nxxxxxxx sshd[31413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.23.10.242 user=r.r Oct 17 00:24:09 nxxxxxxx sshd[31413]: Failed password for r.r from 47.23.10.242 port 59922 ssh2 Oct 17 00:24:09 nxxxxxxx sshd[31413]: Received disconnect from 47.23.10.242 port 59922:11: Bye Bye [preauth] Oct 17 00:24:09 nxxxxxxx sshd[31413]: Disconnected from authenticating user r.r 47.23.10.242 port 59922 [preauth] Oct 17 00:38:42 nxxxxxxx sshd[307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.23.10.242 user=r.r Oct 17 00:38:45 nxxxxxxx sshd[307]: Failed password for r.r from 47.23.10.242 port 34892 ssh2 Oct 17 00:38:45 nxxxxxxx sshd[307]: Received disconnect from 47.23.10.242 port 34892:11: Bye Bye [preauth] Oct 17 00:38:45 nxxxxxxx sshd[307]: Disconnected from authenticating user r.r 47.23.10.242 port 34892 [preauth] Oct 17 00:46:12........ ------------------------------	2019-10-18 01:33:26
118.24.38.12	attackspambots	2019-10-17T12:58:35.418069shield sshd\[27505\]: Invalid user tmlsales from 118.24.38.12 port 42177 2019-10-17T12:58:35.422246shield sshd\[27505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.38.12 2019-10-17T12:58:37.196108shield sshd\[27505\]: Failed password for invalid user tmlsales from 118.24.38.12 port 42177 ssh2 2019-10-17T13:04:23.158021shield sshd\[28101\]: Invalid user adminp@ss from 118.24.38.12 port 60945 2019-10-17T13:04:23.162482shield sshd\[28101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.38.12	2019-10-18 01:15:48
193.70.42.33	attackspambots	Oct 17 18:13:40 icinga sshd[21239]: Failed password for www-data from 193.70.42.33 port 42970 ssh2 ...	2019-10-18 01:26:19
198.108.67.53	attackbots	firewall-block, port(s): 9199/tcp	2019-10-18 01:31:34
103.206.245.78	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-18 01:35:01
186.122.149.38	attackbotsspam	Oct 17 19:36:15 markkoudstaal sshd[11595]: Failed password for root from 186.122.149.38 port 56778 ssh2 Oct 17 19:41:31 markkoudstaal sshd[12221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.149.38 Oct 17 19:41:33 markkoudstaal sshd[12221]: Failed password for invalid user nagios from 186.122.149.38 port 40588 ssh2	2019-10-18 01:46:41
41.43.195.86	attack	Fail2Ban Ban Triggered	2019-10-18 01:37:30
141.98.81.37	attackbotsspam	detected by Fail2Ban	2019-10-18 01:45:10
80.38.165.87	attack	Port Scan detected from 80.38.165.87 (ES/Spain/87.red-80-38-165.staticip.rima-tde.net). 4 hits in the last 35 seconds	2019-10-18 01:35:24

最近上报的IP列表

79.236.206.196	45.32.151.224	45.248.29.61	201.246.29.10
198.70.191.212	109.42.38.11	123.74.148.76	92.218.101.217
172.117.37.87	37.20.50.200	44.230.242.71	40.114.210.223
132.252.156.243	91.40.244.105	37.33.23.236	122.88.231.243
77.150.210.95	164.42.106.147	36.81.234.152	84.87.13.66