1.214.2.129 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea Republic of

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.214.245.27	attackbots	(sshd) Failed SSH login from 1.214.245.27 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 18:02:03 jbs1 sshd[1818]: Invalid user seminar from 1.214.245.27 Oct 13 18:02:03 jbs1 sshd[1818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.245.27 Oct 13 18:02:06 jbs1 sshd[1818]: Failed password for invalid user seminar from 1.214.245.27 port 46804 ssh2 Oct 13 18:06:04 jbs1 sshd[3113]: Invalid user kim from 1.214.245.27 Oct 13 18:06:04 jbs1 sshd[3113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.245.27	2020-10-14 06:24:12
1.214.245.27	attackbotsspam	various type of attack	2020-10-14 01:52:01
1.214.245.27	attackspam	SSH login attempts.	2020-10-13 17:04:16
1.214.245.27	attackbots	Oct 12 08:40:50 Tower sshd[6971]: Connection from 1.214.245.27 port 46114 on 192.168.10.220 port 22 rdomain "" Oct 12 08:40:51 Tower sshd[6971]: Invalid user trac from 1.214.245.27 port 46114 Oct 12 08:40:51 Tower sshd[6971]: error: Could not get shadow information for NOUSER Oct 12 08:40:51 Tower sshd[6971]: Failed password for invalid user trac from 1.214.245.27 port 46114 ssh2 Oct 12 08:40:51 Tower sshd[6971]: Received disconnect from 1.214.245.27 port 46114:11: Bye Bye [preauth] Oct 12 08:40:51 Tower sshd[6971]: Disconnected from invalid user trac 1.214.245.27 port 46114 [preauth]	2020-10-12 20:44:31
1.214.245.27	attackspam	TCP (SYN) 1.214.245.27:50661 -> port 25647, len 44	2020-10-12 12:13:18
1.214.220.227	attack	1.214.220.227 (KR/South Korea/mail.tesk.co.kr), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-10-12 03:42:40
1.214.220.227	attackbots	2020-10-11T05:11:38.992896yoshi.linuxbox.ninja sshd[1939375]: Failed password for root from 1.214.220.227 port 44534 ssh2 2020-10-11T05:13:25.901602yoshi.linuxbox.ninja sshd[1940525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.220.227 user=root 2020-10-11T05:13:27.678418yoshi.linuxbox.ninja sshd[1940525]: Failed password for root from 1.214.220.227 port 57653 ssh2 ...	2020-10-11 19:37:39
1.214.220.227	attackbots	2020-10-08T01:47:57.376607snf-827550 sshd[10724]: Failed password for root from 1.214.220.227 port 59675 ssh2 2020-10-08T01:51:45.213683snf-827550 sshd[10778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.tesk.co.kr user=root 2020-10-08T01:51:47.490656snf-827550 sshd[10778]: Failed password for root from 1.214.220.227 port 34739 ssh2 ...	2020-10-08 06:52:43
1.214.220.227	attackbots	detected by Fail2Ban	2020-10-07 23:14:28
1.214.220.227	attackbotsspam	Sep 30 16:49:26 staging sshd[157266]: Invalid user ftb from 1.214.220.227 port 33122 Sep 30 16:49:26 staging sshd[157266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.220.227 Sep 30 16:49:26 staging sshd[157266]: Invalid user ftb from 1.214.220.227 port 33122 Sep 30 16:49:27 staging sshd[157266]: Failed password for invalid user ftb from 1.214.220.227 port 33122 ssh2 ...	2020-10-01 01:46:22
1.214.220.227	attackspambots	Sep 29 22:11:51 pixelmemory sshd[2778737]: Invalid user jay from 1.214.220.227 port 53795 Sep 29 22:11:51 pixelmemory sshd[2778737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.220.227 Sep 29 22:11:51 pixelmemory sshd[2778737]: Invalid user jay from 1.214.220.227 port 53795 Sep 29 22:11:52 pixelmemory sshd[2778737]: Failed password for invalid user jay from 1.214.220.227 port 53795 ssh2 Sep 29 22:15:58 pixelmemory sshd[2779517]: Invalid user test from 1.214.220.227 port 57270 ...	2020-09-30 17:58:08
1.214.215.236	attackspam	2020-02-08T17:55:11.140063suse-nuc sshd[32729]: Invalid user upm from 1.214.215.236 port 36664 ...	2020-09-27 04:53:15
1.214.220.227	attack	(sshd) Failed SSH login from 1.214.220.227 (KR/South Korea/Seoul/Seoul/mail.jeongdo.net/[AS3786 LG DACOM Corporation]): 10 in the last 3600 secs	2020-09-27 04:52:47
1.214.245.27	attack	Sep 26 20:06:16 scw-tender-jepsen sshd[31593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.245.27 Sep 26 20:06:18 scw-tender-jepsen sshd[31593]: Failed password for invalid user www from 1.214.245.27 port 35496 ssh2	2020-09-27 04:51:30
1.214.215.236	attackbotsspam	2020-02-08T17:55:11.140063suse-nuc sshd[32729]: Invalid user upm from 1.214.215.236 port 36664 ...	2020-09-26 21:04:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.214.2.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26490
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.214.2.129.			IN	A

;; AUTHORITY SECTION:
.			218	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:33:30 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 129.2.214.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.2.214.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
196.52.43.63	attack	Automatic report - Port Scan Attack	2019-08-15 04:26:39
165.227.10.163	attackbots	Aug 14 20:52:46 Ubuntu-1404-trusty-64-minimal sshd\[3289\]: Invalid user jeffrey from 165.227.10.163 Aug 14 20:52:46 Ubuntu-1404-trusty-64-minimal sshd\[3289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.10.163 Aug 14 20:52:47 Ubuntu-1404-trusty-64-minimal sshd\[3289\]: Failed password for invalid user jeffrey from 165.227.10.163 port 41246 ssh2 Aug 14 21:01:19 Ubuntu-1404-trusty-64-minimal sshd\[8712\]: Invalid user warcraft from 165.227.10.163 Aug 14 21:01:19 Ubuntu-1404-trusty-64-minimal sshd\[8712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.10.163	2019-08-15 03:52:56
185.24.235.146	attackbots	Aug 14 14:41:43 XXX sshd[6266]: Invalid user testadmin from 185.24.235.146 port 40050	2019-08-15 03:58:47
54.172.129.97	attackbotsspam	Message Possible TCP Flood on IF X1 - from machine xx:xx:75:51:40:bf with TCP packet rate of 1/sec has ceased Src. Name ec2-54-172-129-97.compute-1.amazonaws.com Src. IP 54.172.129.97 Src. Port 443 Src. MAC C8:4C:75:51:40:BF	2019-08-15 04:03:46
108.62.202.220	attackspam	Splunk® : port scan detected: Aug 14 15:30:39 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=108.62.202.220 DST=104.248.11.191 LEN=40 TOS=0x08 PREC=0x20 TTL=244 ID=54321 PROTO=TCP SPT=59329 DPT=985 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-15 03:45:40
51.15.178.114	attackspambots	Automatic report	2019-08-15 04:25:00
103.242.13.70	attack	Aug 14 21:40:44 * sshd[19497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.13.70 Aug 14 21:40:46 * sshd[19497]: Failed password for invalid user uftp from 103.242.13.70 port 49194 ssh2	2019-08-15 04:09:50
43.250.186.150	attackbotsspam	SMB Server BruteForce Attack	2019-08-15 03:44:52
13.210.177.21	attack	Fail2Ban Ban Triggered	2019-08-15 03:49:46
139.199.0.84	attackbots	Aug 14 19:34:45 yabzik sshd[30932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.0.84 Aug 14 19:34:47 yabzik sshd[30932]: Failed password for invalid user 123 from 139.199.0.84 port 49978 ssh2 Aug 14 19:38:00 yabzik sshd[32193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.0.84	2019-08-15 04:23:30
117.93.65.135	attackbots	Automatic report - Port Scan Attack	2019-08-15 04:06:04
170.84.129.226	attackspambots	Automatic report - Port Scan Attack	2019-08-15 04:00:42
138.255.0.105	attackbots	Aug 14 14:40:05 XXX sshd[6212]: Invalid user oracle from 138.255.0.105 port 53862	2019-08-15 04:21:24
35.194.198.18	attackspam	Aug 14 14:10:20 raspberrypi sshd\[9783\]: Invalid user oracle from 35.194.198.18Aug 14 14:10:23 raspberrypi sshd\[9783\]: Failed password for invalid user oracle from 35.194.198.18 port 50274 ssh2Aug 14 14:29:51 raspberrypi sshd\[10213\]: Invalid user norbert from 35.194.198.18 ...	2019-08-15 03:46:10
106.12.187.83	attackspambots	HTTP/80/443 Probe, Hack -	2019-08-15 04:22:11

最近上报的IP列表

1.211.135.107	1.210.182.126	1.21.67.86	1.21.246.71
1.21.6.33	1.210.7.241	1.210.186.165	1.211.179.45
1.211.211.221	1.21.43.102	1.210.173.234	1.210.242.101
1.211.59.110	1.210.68.203	1.211.39.16	1.213.157.50
1.211.177.166	1.210.27.184	1.210.197.167	1.210.202.19