114.199.212.102

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): Hyundai Communications & Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Fail2Ban Ban Triggered	2019-10-23 05:37:01

相同子网IP讨论:

IP	类型	评论内容	时间
114.199.212.42	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.199.212.42/ KR - 1H : (124) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN10175 IP : 114.199.212.42 CIDR : 114.199.212.0/22 PREFIX COUNT : 45 UNIQUE IP COUNT : 46080 WYKRYTE ATAKI Z ASN10175 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 3 DateTime : 2019-10-08 13:47:30 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 03:09:52
114.199.212.93	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-11 18:45:28

类型

评论内容

时间

114.199.212.42

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.199.212.42/ 
 KR - 1H : (124)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : KR 
 NAME ASN : ASN10175 
 
 IP : 114.199.212.42 
 
 CIDR : 114.199.212.0/22 
 
 PREFIX COUNT : 45 
 
 UNIQUE IP COUNT : 46080 
 
 
 WYKRYTE ATAKI Z ASN10175 :  
  1H - 1 
  3H - 1 
  6H - 2 
 12H - 2 
 24H - 3 
 
 DateTime : 2019-10-08 13:47:30 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-09 03:09:52

114.199.212.93

attack

MultiHost/MultiPort Probe, Scan, Hack -

2019-08-11 18:45:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.199.212.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.199.212.102.		IN	A

;; AUTHORITY SECTION:
.			316	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 05:36:59 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 102.212.199.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.212.199.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.62.23.108	attackbotsspam	Unauthorized connection attempt detected from IP address 178.62.23.108 to port 2220 [J]	2020-01-29 16:00:20
15.236.38.55	attackspam	HTTP/80/443 Probe, Hack -	2020-01-29 16:00:52
128.199.84.201	attack	Jan 29 07:28:31 mout sshd[29669]: Invalid user kartik from 128.199.84.201 port 36366	2020-01-29 16:16:40
106.13.178.103	attackspam	Jan 29 09:55:43 hosting sshd[26670]: Invalid user piyush from 106.13.178.103 port 59734 ...	2020-01-29 16:02:59
112.85.42.185	attack	Jan 29 07:44:31 odroid64 sshd\[13298\]: User root from 112.85.42.185 not allowed because not listed in AllowUsers Jan 29 07:44:32 odroid64 sshd\[13298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.185 user=root ...	2020-01-29 16:30:01
112.78.134.11	attackspam	Unauthorized connection attempt detected from IP address 112.78.134.11 to port 2220 [J]	2020-01-29 16:14:28
125.77.16.197	attackspam	$f2bV_matches	2020-01-29 16:13:41
185.184.79.35	attackbotsspam	Fail2Ban Ban Triggered	2020-01-29 16:09:07
202.29.230.21	attackbots	Jan 29 09:10:34 markkoudstaal sshd[4805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.230.21 Jan 29 09:10:35 markkoudstaal sshd[4805]: Failed password for invalid user munish from 202.29.230.21 port 35432 ssh2 Jan 29 09:12:59 markkoudstaal sshd[5184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.230.21	2020-01-29 16:16:09
180.123.81.155	attackbotsspam	Jan 29 05:51:29 grey postfix/smtpd\[14667\]: NOQUEUE: reject: RCPT from unknown\[180.123.81.155\]: 554 5.7.1 Service unavailable\; Client host \[180.123.81.155\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[180.123.81.155\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-29 16:22:21
2.35.181.162	attack	port scan and connect, tcp 23 (telnet)	2020-01-29 16:30:20
185.143.221.55	attack	01/29/2020-01:01:26.251465 185.143.221.55 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-29 16:32:57
43.225.192.50	attack	" "	2020-01-29 16:26:51
36.68.53.80	attackspam	20/1/28@23:51:26: FAIL: Alarm-Network address from=36.68.53.80 ...	2020-01-29 16:25:52
175.127.240.54	attackbots	Invalid user duraimurugan from 175.127.240.54 port 40462 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.127.240.54 Failed password for invalid user duraimurugan from 175.127.240.54 port 40462 ssh2 Invalid user zoe from 175.127.240.54 port 60536 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.127.240.54	2020-01-29 16:19:45

最近上报的IP列表

174.233.134.218	68.183.188.183	217.70.138.207	189.166.160.142
201.28.8.163	96.58.45.5	34.87.6.255	108.162.212.215
35.187.99.216	34.89.169.196	198.98.183.134	195.144.196.34
202.254.236.150	24.38.142.82	27.75.126.208	118.126.94.215
37.26.209.229	80.82.77.221	194.182.177.163	218.146.254.195