211.140.94.24 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	trying to access non-authorized port	2020-05-01 00:33:12

相同子网IP讨论:

IP	类型	评论内容	时间
211.140.94.8	attack	Unauthorized connection attempt detected from IP address 211.140.94.8 to port 23	2020-04-28 01:17:32
211.140.94.26	attackspambots	Unauthorized connection attempt detected from IP address 211.140.94.26 to port 12345	2020-01-02 19:31:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.140.94.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.140.94.24.			IN	A

;; AUTHORITY SECTION:
.			314	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020043000 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 00:33:04 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

24.94.140.211.in-addr.arpa has no PTR record

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 24.94.140.211.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
145.239.10.217	attackbotsspam	Oct 13 05:46:27 ns41 sshd[5121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.10.217	2019-10-13 18:26:16
134.209.90.220	attack	Oct 6 10:54:00 uapps sshd[15665]: User r.r from 134.209.90.220 not allowed because not listed in AllowUsers Oct 6 10:54:00 uapps sshd[15665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.90.220 user=r.r Oct 6 10:54:01 uapps sshd[15665]: Failed password for invalid user r.r from 134.209.90.220 port 39356 ssh2 Oct 6 10:54:01 uapps sshd[15665]: Received disconnect from 134.209.90.220: 11: Bye Bye [preauth] Oct 6 11:02:38 uapps sshd[15811]: User r.r from 134.209.90.220 not allowed because not listed in AllowUsers Oct 6 11:02:38 uapps sshd[15811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.90.220 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.209.90.220	2019-10-13 18:09:23
23.91.70.42	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-13 18:00:07
119.28.105.127	attackspam	Automatic report - Banned IP Access	2019-10-13 18:29:49
58.62.207.50	attackspam	Oct 10 00:42:52 reporting1 sshd[7270]: User r.r from 58.62.207.50 not allowed because not listed in AllowUsers Oct 10 00:42:52 reporting1 sshd[7270]: Failed password for invalid user r.r from 58.62.207.50 port 30903 ssh2 Oct 10 00:58:55 reporting1 sshd[16483]: User r.r from 58.62.207.50 not allowed because not listed in AllowUsers Oct 10 00:58:55 reporting1 sshd[16483]: Failed password for invalid user r.r from 58.62.207.50 port 30905 ssh2 Oct 10 01:02:31 reporting1 sshd[19530]: User r.r from 58.62.207.50 not allowed because not listed in AllowUsers Oct 10 01:02:31 reporting1 sshd[19530]: Failed password for invalid user r.r from 58.62.207.50 port 30906 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=58.62.207.50	2019-10-13 18:32:20
51.15.46.184	attackbotsspam	Oct 13 11:35:32 jane sshd[577]: Failed password for root from 51.15.46.184 port 43758 ssh2 ...	2019-10-13 18:02:17
50.21.182.207	attackbotsspam	2019-10-13T15:22:59.201729enmeeting.mahidol.ac.th sshd\[26939\]: User root from 50.21.182.207 not allowed because not listed in AllowUsers 2019-10-13T15:22:59.332476enmeeting.mahidol.ac.th sshd\[26939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.21.182.207 user=root 2019-10-13T15:23:01.477057enmeeting.mahidol.ac.th sshd\[26939\]: Failed password for invalid user root from 50.21.182.207 port 52860 ssh2 ...	2019-10-13 18:17:46
46.101.48.191	attackspambots	Oct 13 10:17:05 vps sshd[30246]: Failed password for root from 46.101.48.191 port 49592 ssh2 Oct 13 10:30:37 vps sshd[30791]: Failed password for root from 46.101.48.191 port 39685 ssh2 ...	2019-10-13 18:19:30
51.254.114.105	attack	Oct 13 09:01:27 SilenceServices sshd[28050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.114.105 Oct 13 09:01:29 SilenceServices sshd[28050]: Failed password for invalid user 123 from 51.254.114.105 port 58285 ssh2 Oct 13 09:08:01 SilenceServices sshd[29771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.114.105	2019-10-13 18:14:52
58.87.124.196	attackspambots	Oct 12 17:40:57 hanapaa sshd\[18322\]: Invalid user Password!@\# from 58.87.124.196 Oct 12 17:40:57 hanapaa sshd\[18322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.124.196 Oct 12 17:40:59 hanapaa sshd\[18322\]: Failed password for invalid user Password!@\# from 58.87.124.196 port 57767 ssh2 Oct 12 17:46:31 hanapaa sshd\[18743\]: Invalid user Baby2017 from 58.87.124.196 Oct 12 17:46:31 hanapaa sshd\[18743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.124.196	2019-10-13 18:24:05
195.210.46.37	attack	Automatic report - XMLRPC Attack	2019-10-13 17:51:45
119.62.40.174	attack	" "	2019-10-13 17:50:04
181.48.68.54	attackbots	2019-10-13T03:46:25.252947abusebot-5.cloudsearch.cf sshd\[649\]: Invalid user da from 181.48.68.54 port 37370	2019-10-13 18:27:05
157.230.124.145	attackbots	Oct 12 15:25:59 newdogma sshd[14574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.124.145 user=r.r Oct 12 15:26:00 newdogma sshd[14574]: Failed password for r.r from 157.230.124.145 port 38272 ssh2 Oct 12 15:26:01 newdogma sshd[14574]: Received disconnect from 157.230.124.145 port 38272:11: Bye Bye [preauth] Oct 12 15:26:01 newdogma sshd[14574]: Disconnected from 157.230.124.145 port 38272 [preauth] Oct 12 15:38:35 newdogma sshd[14730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.124.145 user=r.r Oct 12 15:38:37 newdogma sshd[14730]: Failed password for r.r from 157.230.124.145 port 57066 ssh2 Oct 12 15:38:37 newdogma sshd[14730]: Received disconnect from 157.230.124.145 port 57066:11: Bye Bye [preauth] Oct 12 15:38:37 newdogma sshd[14730]: Disconnected from 157.230.124.145 port 57066 [preauth] Oct 12 15:42:03 newdogma sshd[14754]: pam_unix(sshd:auth): authenticatio........ -------------------------------	2019-10-13 17:53:50
134.175.84.31	attack	Oct 13 09:26:02 localhost sshd\[15265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 user=root Oct 13 09:26:04 localhost sshd\[15265\]: Failed password for root from 134.175.84.31 port 43554 ssh2 Oct 13 09:32:49 localhost sshd\[15443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 user=root Oct 13 09:32:51 localhost sshd\[15443\]: Failed password for root from 134.175.84.31 port 54700 ssh2 Oct 13 09:38:13 localhost sshd\[15583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 user=root ...	2019-10-13 18:04:03

最近上报的IP列表

240.246.138.37	235.27.233.2	145.143.43.93	204.214.51.184
197.89.67.153	193.32.163.53	182.129.252.237	180.214.238.86
180.137.132.247	178.124.148.211	162.243.144.167	162.243.141.142
244.24.39.48	134.255.130.69	128.74.131.113	124.195.190.126
124.160.119.91	122.55.79.113	121.61.104.156	145.59.49.80