200.14.50.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Cuba

运营商(isp): Instituto Nacional de Ciencia Animal

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 11 17:02:26 srv-ubuntu-dev3 sshd[8216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8 user=root Apr 11 17:02:29 srv-ubuntu-dev3 sshd[8216]: Failed password for root from 200.14.50.8 port 49186 ssh2 Apr 11 17:05:16 srv-ubuntu-dev3 sshd[8615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8 user=root Apr 11 17:05:18 srv-ubuntu-dev3 sshd[8615]: Failed password for root from 200.14.50.8 port 59212 ssh2 Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: Invalid user user from 200.14.50.8 Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8 Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: Invalid user user from 200.14.50.8 Apr 11 17:08:00 srv-ubuntu-dev3 sshd[9045]: Failed password for invalid user user from 200.14.50.8 port 41290 ssh2 Apr 11 17:10:35 srv-ubuntu-dev3 sshd[9419]: pam_unix(sshd:auth): auth ...	2020-04-11 23:11:43
attack	Apr 10 22:31:24 minden010 sshd[12181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8 Apr 10 22:31:26 minden010 sshd[12181]: Failed password for invalid user info5 from 200.14.50.8 port 41720 ssh2 Apr 10 22:35:43 minden010 sshd[13683]: Failed password for root from 200.14.50.8 port 49698 ssh2 ...	2020-04-11 05:26:20

类型

评论内容

时间

attack

Apr 11 17:02:26 srv-ubuntu-dev3 sshd[8216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8  user=root
Apr 11 17:02:29 srv-ubuntu-dev3 sshd[8216]: Failed password for root from 200.14.50.8 port 49186 ssh2
Apr 11 17:05:16 srv-ubuntu-dev3 sshd[8615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8  user=root
Apr 11 17:05:18 srv-ubuntu-dev3 sshd[8615]: Failed password for root from 200.14.50.8 port 59212 ssh2
Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: Invalid user user from 200.14.50.8
Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8
Apr 11 17:07:59 srv-ubuntu-dev3 sshd[9045]: Invalid user user from 200.14.50.8
Apr 11 17:08:00 srv-ubuntu-dev3 sshd[9045]: Failed password for invalid user user from 200.14.50.8 port 41290 ssh2
Apr 11 17:10:35 srv-ubuntu-dev3 sshd[9419]: pam_unix(sshd:auth): auth
...

2020-04-11 23:11:43

attack

Apr 10 22:31:24 minden010 sshd[12181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.14.50.8
Apr 10 22:31:26 minden010 sshd[12181]: Failed password for invalid user info5 from 200.14.50.8 port 41720 ssh2
Apr 10 22:35:43 minden010 sshd[13683]: Failed password for root from 200.14.50.8 port 49698 ssh2
...

2020-04-11 05:26:20

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.14.50.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.14.50.8.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041001 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 11 05:26:17 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

8.50.14.200.in-addr.arpa domain name pointer pmg1.inca.edu.cu.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.50.14.200.in-addr.arpa	name = pmg1.inca.edu.cu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
1.160.65.27	attackbotsspam	79.172.201.32:80 1.160.65.27 - - [20/Sep/2019:02:56:33 +0200] "CONNECT www.google.com:443 HTTP/1.0" 405 558 "-" "-"	2019-09-20 16:12:35
218.92.0.134	attack	Fail2Ban - SSH Bruteforce Attempt	2019-09-20 16:25:22
183.131.82.99	attackspambots	Sep 20 09:44:26 root sshd[5126]: Failed password for root from 183.131.82.99 port 41468 ssh2 Sep 20 09:44:31 root sshd[5126]: Failed password for root from 183.131.82.99 port 41468 ssh2 Sep 20 09:44:33 root sshd[5126]: Failed password for root from 183.131.82.99 port 41468 ssh2 ...	2019-09-20 16:06:41
167.114.47.81	attackbots	Sep 20 10:03:26 dedicated sshd[9430]: Invalid user ek from 167.114.47.81 port 40897	2019-09-20 16:16:05
112.217.225.59	attackbotsspam	$f2bV_matches_ltvn	2019-09-20 16:22:39
185.254.122.32	attackbotsspam	09/20/2019-03:49:59.141136 185.254.122.32 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-20 16:30:16
222.186.180.19	attackbotsspam	Sep 20 08:30:41 ip-172-31-1-72 sshd\[22004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.19 user=root Sep 20 08:30:42 ip-172-31-1-72 sshd\[22004\]: Failed password for root from 222.186.180.19 port 33936 ssh2 Sep 20 08:31:09 ip-172-31-1-72 sshd\[22011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.19 user=root Sep 20 08:31:11 ip-172-31-1-72 sshd\[22011\]: Failed password for root from 222.186.180.19 port 4372 ssh2 Sep 20 08:31:43 ip-172-31-1-72 sshd\[22015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.19 user=root	2019-09-20 16:42:44
213.139.144.10	attackspambots	Sep 20 08:12:19 SilenceServices sshd[15319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.139.144.10 Sep 20 08:12:21 SilenceServices sshd[15319]: Failed password for invalid user santuario from 213.139.144.10 port 50313 ssh2 Sep 20 08:18:56 SilenceServices sshd[17774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.139.144.10	2019-09-20 16:20:34
153.35.165.125	attackspam	Sep 20 07:45:49 vps01 sshd[30576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.165.125 Sep 20 07:45:51 vps01 sshd[30576]: Failed password for invalid user teamspeak3 from 153.35.165.125 port 56026 ssh2	2019-09-20 16:28:22
113.204.147.26	attack	SSH invalid-user multiple login try	2019-09-20 16:12:00
62.210.207.193	attackspambots	Sep 20 10:34:37 SilenceServices sshd[5399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.207.193 Sep 20 10:34:39 SilenceServices sshd[5399]: Failed password for invalid user noaccess from 62.210.207.193 port 52470 ssh2 Sep 20 10:38:22 SilenceServices sshd[6844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.207.193	2019-09-20 16:41:10
101.71.2.111	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-09-20 16:31:46
198.108.66.112	attack	RDP brute force attack detected by fail2ban	2019-09-20 16:23:56
159.65.92.3	attackbotsspam	2019-09-20T08:13:29.380617centos sshd\[6235\]: Invalid user copie from 159.65.92.3 port 50018 2019-09-20T08:13:29.385060centos sshd\[6235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.92.3 2019-09-20T08:13:31.894195centos sshd\[6235\]: Failed password for invalid user copie from 159.65.92.3 port 50018 ssh2	2019-09-20 16:26:06
91.236.116.89	attackbots	Sep 20 14:00:41 webhost01 sshd[19215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.236.116.89 Sep 20 14:00:44 webhost01 sshd[19215]: Failed password for invalid user 0 from 91.236.116.89 port 13951 ssh2 ...	2019-09-20 16:16:21

最近上报的IP列表

23.97.186.25	105.144.159.174	148.206.100.125	86.138.149.88
69.211.231.219	92.182.14.135	200.57.1.233	194.87.234.195
209.55.71.238	107.10.223.0	90.227.11.199	177.55.180.102
99.146.65.134	88.4.103.155	178.32.148.5	70.225.68.104
159.148.9.167	78.217.110.160	32.240.91.106	111.89.146.197