211.107.14.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	06/27/2020-08:19:22.105972 211.107.14.12 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-27 23:49:17

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.107.14.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63621
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.107.14.12.			IN	A

;; AUTHORITY SECTION:
.			284	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062700 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 23:49:13 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 12.14.107.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.14.107.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.121.173.20	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-09 23:03:45
163.172.45.69	attack	Dec 9 10:22:03 ny01 sshd[13120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.45.69 Dec 9 10:22:06 ny01 sshd[13120]: Failed password for invalid user earnest from 163.172.45.69 port 46804 ssh2 Dec 9 10:27:36 ny01 sshd[14069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.45.69	2019-12-09 23:28:10
49.88.112.58	attackbotsspam	Dec 6 23:13:07 mail sshd[3662]: Failed password for root from 49.88.112.58 port 4818 ssh2 Dec 6 23:13:12 mail sshd[3662]: Failed password for root from 49.88.112.58 port 4818 ssh2 Dec 6 23:13:15 mail sshd[3662]: Failed password for root from 49.88.112.58 port 4818 ssh2 Dec 6 23:13:19 mail sshd[3662]: Failed password for root from 49.88.112.58 port 4818 ssh2	2019-12-09 23:20:57
46.38.144.57	attack	Dec 9 16:27:55 mail postfix/smtpd\[17730\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 9 16:28:24 mail postfix/smtpd\[17730\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 9 16:28:50 mail postfix/smtpd\[17772\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-09 23:37:15
103.42.87.23	attackbots	Unauthorized connection attempt detected from IP address 103.42.87.23 to port 445	2019-12-09 23:04:16
165.22.114.237	attackspambots	Dec 9 15:58:35 loxhost sshd\[15971\]: Invalid user azmeena from 165.22.114.237 port 50144 Dec 9 15:58:35 loxhost sshd\[15971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.114.237 Dec 9 15:58:37 loxhost sshd\[15971\]: Failed password for invalid user azmeena from 165.22.114.237 port 50144 ssh2 Dec 9 16:04:52 loxhost sshd\[16126\]: Invalid user mysql from 165.22.114.237 port 59646 Dec 9 16:04:52 loxhost sshd\[16126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.114.237 ...	2019-12-09 23:22:43
113.21.113.130	attackbots	failed_logins	2019-12-09 23:10:27
103.138.41.74	attack	SSH invalid-user multiple login try	2019-12-09 23:10:54
41.138.88.3	attack	Dec 9 04:42:53 php1 sshd\[957\]: Invalid user nakamu from 41.138.88.3 Dec 9 04:42:53 php1 sshd\[957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3 Dec 9 04:42:55 php1 sshd\[957\]: Failed password for invalid user nakamu from 41.138.88.3 port 44990 ssh2 Dec 9 04:49:36 php1 sshd\[1772\]: Invalid user ihsan from 41.138.88.3 Dec 9 04:49:36 php1 sshd\[1772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3	2019-12-09 23:02:16
79.3.6.207	attackspambots	Dec 9 11:57:54 firewall sshd[31617]: Failed password for invalid user temp from 79.3.6.207 port 64736 ssh2 Dec 9 12:04:52 firewall sshd[31794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.3.6.207 user=root Dec 9 12:04:54 firewall sshd[31794]: Failed password for root from 79.3.6.207 port 56492 ssh2 ...	2019-12-09 23:21:36
107.189.10.141	attackbots	Dec 9 04:17:13 server sshd\[16862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.10.141 Dec 9 04:17:15 server sshd\[16862\]: Failed password for invalid user admin from 107.189.10.141 port 42844 ssh2 Dec 9 18:08:02 server sshd\[29948\]: Invalid user fake from 107.189.10.141 Dec 9 18:08:02 server sshd\[29948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.10.141 Dec 9 18:08:04 server sshd\[29948\]: Failed password for invalid user fake from 107.189.10.141 port 47050 ssh2 ...	2019-12-09 23:12:57
107.150.48.218	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-09 23:36:40
168.181.49.122	attackbots	Dec 9 16:09:06 localhost sshd\[1141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.49.122 user=root Dec 9 16:09:07 localhost sshd\[1141\]: Failed password for root from 168.181.49.122 port 17394 ssh2 Dec 9 16:15:38 localhost sshd\[2693\]: Invalid user ruz from 168.181.49.122 port 62643 Dec 9 16:15:38 localhost sshd\[2693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.49.122	2019-12-09 23:17:02
123.206.17.68	attackspam	2019-12-09T15:04:46.909671abusebot-2.cloudsearch.cf sshd\[16529\]: Invalid user changyoung from 123.206.17.68 port 36396	2019-12-09 23:30:22
128.199.207.45	attack	Dec 9 16:18:18 eventyay sshd[9073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.207.45 Dec 9 16:18:20 eventyay sshd[9073]: Failed password for invalid user isaiah from 128.199.207.45 port 43276 ssh2 Dec 9 16:25:06 eventyay sshd[9259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.207.45 ...	2019-12-09 23:34:56

最近上报的IP列表

83.114.45.79	177.101.133.35	124.123.254.223	99.16.84.67
94.142.239.100	176.99.9.148	112.196.9.88	167.86.85.194
187.40.30.123	218.76.101.25	105.112.46.161	31.146.102.123
122.241.227.25	182.127.20.130	183.89.211.2	88.230.185.23
95.68.118.133	192.99.5.228	52.247.106.200	105.101.95.168