164.43.99.214 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.43.99.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20827
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.43.99.214.			IN	A

;; AUTHORITY SECTION:
.			1928	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 09:17:37 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 214.99.43.164.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 214.99.43.164.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
191.13.103.148	attack	2020-07-09T20:41:52.351675afi-git.jinr.ru sshd[8243]: Invalid user congwei from 191.13.103.148 port 42654 2020-07-09T20:41:52.354999afi-git.jinr.ru sshd[8243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.13.103.148 2020-07-09T20:41:52.351675afi-git.jinr.ru sshd[8243]: Invalid user congwei from 191.13.103.148 port 42654 2020-07-09T20:41:54.766792afi-git.jinr.ru sshd[8243]: Failed password for invalid user congwei from 191.13.103.148 port 42654 ssh2 2020-07-09T20:44:10.124551afi-git.jinr.ru sshd[8748]: Invalid user user from 191.13.103.148 port 38752 ...	2020-07-10 01:56:23
59.13.125.142	attackspam	SSH bruteforce	2020-07-10 01:33:24
151.248.63.189	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 151.248.63.189 (PL/Poland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-09 18:03:53 plain authenticator failed for ([151.248.63.189]) [151.248.63.189]: 535 Incorrect authentication data (set_id=info@sepasgroup.com)	2020-07-10 01:28:56
216.218.206.88	attack	TCP (SYN) 216.218.206.88:56211 -> port 21, len 44	2020-07-10 01:42:52
168.205.109.70	attackbots	failed_logins	2020-07-10 01:52:49
77.247.108.119	attack	Jul 9 19:10:14 debian-2gb-nbg1-2 kernel: \[16573207.757816\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.247.108.119 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x20 TTL=242 ID=34490 PROTO=TCP SPT=47467 DPT=8784 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-10 01:24:44
5.89.10.81	attack	Bruteforce detected by fail2ban	2020-07-10 01:50:00
196.52.84.35	attack	0,22-12/04 [bc05/m27] PostRequest-Spammer scoring: essen	2020-07-10 01:46:15
178.162.123.80	attackbotsspam	[Thu Jul 09 19:05:00.089471 2020] [:error] [pid 32224:tid 140046008297216] [client 178.162.123.80:34903] [client 178.162.123.80] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XwcH7N-w4PLeR-c0aSH3XwAAAyw"] ...	2020-07-10 01:35:47
185.176.27.30	attack	TCP (SYN) 185.176.27.30:47822 -> port 37186, len 44	2020-07-10 01:59:32
49.88.112.111	attackspambots	Jul 9 10:32:01 dignus sshd[12073]: Failed password for root from 49.88.112.111 port 47048 ssh2 Jul 9 10:32:05 dignus sshd[12073]: Failed password for root from 49.88.112.111 port 47048 ssh2 Jul 9 10:33:40 dignus sshd[12251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root Jul 9 10:33:43 dignus sshd[12251]: Failed password for root from 49.88.112.111 port 36109 ssh2 Jul 9 10:33:45 dignus sshd[12251]: Failed password for root from 49.88.112.111 port 36109 ssh2 ...	2020-07-10 01:34:48
106.12.173.236	attackbotsspam	ssh intrusion attempt	2020-07-10 01:55:02
180.242.183.184	attackspambots	Automatic report - XMLRPC Attack	2020-07-10 02:01:12
218.92.0.220	attackspam	Jul 9 19:29:59 abendstille sshd\[28742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root Jul 9 19:30:01 abendstille sshd\[28742\]: Failed password for root from 218.92.0.220 port 50522 ssh2 Jul 9 19:30:04 abendstille sshd\[28742\]: Failed password for root from 218.92.0.220 port 50522 ssh2 Jul 9 19:30:07 abendstille sshd\[28742\]: Failed password for root from 218.92.0.220 port 50522 ssh2 Jul 9 19:30:20 abendstille sshd\[28985\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root ...	2020-07-10 01:32:24
119.45.4.14	attack	Jul 9 19:35:52 inter-technics sshd[11334]: Invalid user john from 119.45.4.14 port 55326 Jul 9 19:35:52 inter-technics sshd[11334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.4.14 Jul 9 19:35:52 inter-technics sshd[11334]: Invalid user john from 119.45.4.14 port 55326 Jul 9 19:35:54 inter-technics sshd[11334]: Failed password for invalid user john from 119.45.4.14 port 55326 ssh2 Jul 9 19:40:56 inter-technics sshd[11756]: Invalid user shinobu from 119.45.4.14 port 53720 ...	2020-07-10 01:57:36

最近上报的IP列表

38.12.153.61	174.88.46.5	208.187.167.69	138.68.217.57
133.130.90.174	176.109.248.96	159.228.59.190	93.104.178.153
120.29.76.201	200.172.119.219	110.95.196.60	192.160.159.206
52.83.66.237	46.249.52.134	106.38.203.230	103.243.127.96
221.6.78.41	62.29.185.245	207.188.149.47	143.249.133.245