194.29.214.191

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Garanti Bilisim Teknolojisi ve Ticaret T.A.S.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	slow and persistent scanner	2019-10-28 21:51:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.29.214.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25339
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.29.214.191.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 21:51:36 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 191.214.29.194.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 191.214.29.194.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.108.55.214	attackbots	Brute force attempt	2019-08-22 07:00:58
115.77.184.238	attack	Aug 21 12:44:06 web1 sshd\[1285\]: Invalid user jsj from 115.77.184.238 Aug 21 12:44:06 web1 sshd\[1285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.77.184.238 Aug 21 12:44:08 web1 sshd\[1285\]: Failed password for invalid user jsj from 115.77.184.238 port 48880 ssh2 Aug 21 12:49:18 web1 sshd\[1807\]: Invalid user store from 115.77.184.238 Aug 21 12:49:18 web1 sshd\[1807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.77.184.238	2019-08-22 06:55:04
173.241.21.82	attackbots	SSH-BruteForce	2019-08-22 07:05:32
210.17.4.2	attack	vps1:sshd-InvalidUser	2019-08-22 06:58:04
1.203.115.140	attackbotsspam	Aug 21 12:51:57 aiointranet sshd\[10396\]: Invalid user tir from 1.203.115.140 Aug 21 12:51:57 aiointranet sshd\[10396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.140 Aug 21 12:51:59 aiointranet sshd\[10396\]: Failed password for invalid user tir from 1.203.115.140 port 57652 ssh2 Aug 21 12:54:35 aiointranet sshd\[10619\]: Invalid user raquel from 1.203.115.140 Aug 21 12:54:35 aiointranet sshd\[10619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.140	2019-08-22 07:13:36
104.40.201.221	attackspambots	Aug 21 12:59:41 sachi sshd\[9623\]: Invalid user user from 104.40.201.221 Aug 21 12:59:41 sachi sshd\[9623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.201.221 Aug 21 12:59:42 sachi sshd\[9623\]: Failed password for invalid user user from 104.40.201.221 port 37768 ssh2 Aug 21 13:04:01 sachi sshd\[10048\]: Invalid user github from 104.40.201.221 Aug 21 13:04:01 sachi sshd\[10048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.201.221	2019-08-22 07:17:08
106.12.88.32	attackspambots	Aug 22 00:24:13 MainVPS sshd[29297]: Invalid user didi from 106.12.88.32 port 43644 Aug 22 00:24:13 MainVPS sshd[29297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.32 Aug 22 00:24:13 MainVPS sshd[29297]: Invalid user didi from 106.12.88.32 port 43644 Aug 22 00:24:15 MainVPS sshd[29297]: Failed password for invalid user didi from 106.12.88.32 port 43644 ssh2 Aug 22 00:28:51 MainVPS sshd[29613]: Invalid user temp1 from 106.12.88.32 port 58706 ...	2019-08-22 07:15:04
80.52.199.93	attackspam	Automatic report	2019-08-22 07:26:09
83.56.34.165	attackspam	Aug 21 22:41:47 hb sshd\[7994\]: Invalid user postgres from 83.56.34.165 Aug 21 22:41:47 hb sshd\[7994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.red-83-56-34.staticip.rima-tde.net Aug 21 22:41:49 hb sshd\[7994\]: Failed password for invalid user postgres from 83.56.34.165 port 57593 ssh2 Aug 21 22:46:04 hb sshd\[8386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.red-83-56-34.staticip.rima-tde.net user=root Aug 21 22:46:05 hb sshd\[8386\]: Failed password for root from 83.56.34.165 port 30237 ssh2	2019-08-22 06:50:39
106.13.48.201	attack	Aug 22 00:29:18 lnxweb62 sshd[14460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.201 Aug 22 00:29:18 lnxweb62 sshd[14460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.201	2019-08-22 06:46:11
151.80.146.228	attack	$f2bV_matches	2019-08-22 07:29:18
166.62.45.39	attack	Trying different user names to hack into WP site.	2019-08-22 07:28:58
178.128.213.91	attack	Aug 21 23:48:18 debian sshd\[20839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.91 user=proxy Aug 21 23:48:20 debian sshd\[20839\]: Failed password for proxy from 178.128.213.91 port 36034 ssh2 ...	2019-08-22 06:53:57
118.163.97.19	attack	[munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:01 +0200] "POST /[munged]: HTTP/1.1" 200 9359 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:02 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:04 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:05 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:06 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 118.163.97.19 - - [22/Aug/2019:00:29:07	2019-08-22 06:51:41
104.168.18.235	attack	21.08.2019 22:29:01 Recursive DNS scan	2019-08-22 07:06:31

最近上报的IP列表

179.186.144.81	195.216.249.67	190.85.122.147	123.207.108.51
71.242.174.118	21.148.31.250	141.162.13.125	156.250.90.218
126.28.247.158	104.42.159.141	65.0.3.163	100.37.196.27
223.10.5.67	52.63.54.237	179.162.132.230	27.49.160.8
210.76.97.179	84.17.61.104	125.227.249.88	3.96.231.63