211.200.220.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Mar 14 19:27:38 ms-srv sshd[53556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.200.220.142 user=root Mar 14 19:27:39 ms-srv sshd[53556]: Failed password for invalid user root from 211.200.220.142 port 49970 ssh2	2020-02-16 02:09:15

类型

评论内容

时间

attackbotsspam

Mar 14 19:27:38 ms-srv sshd[53556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.200.220.142  user=root
Mar 14 19:27:39 ms-srv sshd[53556]: Failed password for invalid user root from 211.200.220.142 port 49970 ssh2

2020-02-16 02:09:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.200.220.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6345
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.200.220.142.		IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021500 1800 900 604800 86400

;; Query time: 331 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 02:09:11 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 142.220.200.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.220.200.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
93.149.157.144	attack	TCP (SYN) 93.149.157.144:17442 -> port 23, len 44	2020-06-02 14:55:27
51.255.171.172	attack	2020-06-02T06:12:57.165952shield sshd\[671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-51-255-171.eu user=root 2020-06-02T06:12:59.374870shield sshd\[671\]: Failed password for root from 51.255.171.172 port 59458 ssh2 2020-06-02T06:16:25.301627shield sshd\[1299\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-51-255-171.eu user=root 2020-06-02T06:16:27.063831shield sshd\[1299\]: Failed password for root from 51.255.171.172 port 35510 ssh2 2020-06-02T06:20:03.858135shield sshd\[2181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-51-255-171.eu user=root	2020-06-02 15:31:26
92.81.222.217	attackbotsspam	Bruteforce detected by fail2ban	2020-06-02 15:17:36
128.199.225.104	attack	$f2bV_matches	2020-06-02 15:35:40
94.102.50.137	attack	Fail2Ban Ban Triggered	2020-06-02 15:09:42
220.246.32.14	attackbotsspam	220.246.32.14 - - \[02/Jun/2020:05:51:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 5508 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 220.246.32.14 - - \[02/Jun/2020:05:51:33 +0200\] "POST /wp-login.php HTTP/1.0" 200 5345 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 220.246.32.14 - - \[02/Jun/2020:05:51:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5344 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-06-02 15:14:54
198.46.189.106	attackbots	$f2bV_matches	2020-06-02 15:27:25
128.14.134.134	attack	nginx/IPasHostname/a4a6f	2020-06-02 15:32:40
192.99.28.247	attackbotsspam	Jun 2 08:51:05 server sshd[3255]: Failed password for root from 192.99.28.247 port 37398 ssh2 Jun 2 08:54:38 server sshd[3400]: Failed password for root from 192.99.28.247 port 40913 ssh2 ...	2020-06-02 15:00:06
164.132.46.197	attackbots	Jun 2 05:01:29 *** sshd[16739]: User root from 164.132.46.197 not allowed because not listed in AllowUsers	2020-06-02 15:22:34
198.108.67.40	attackbots	TCP (SYN) 198.108.67.40:6403 -> port 12308, len 44	2020-06-02 15:02:23
222.186.175.154	attackbotsspam	Jun 2 09:29:07 legacy sshd[17039]: Failed password for root from 222.186.175.154 port 53774 ssh2 Jun 2 09:29:11 legacy sshd[17039]: Failed password for root from 222.186.175.154 port 53774 ssh2 Jun 2 09:29:19 legacy sshd[17039]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 53774 ssh2 [preauth] ...	2020-06-02 15:34:54
202.158.62.240	attackbotsspam	Jun 2 11:24:49 itv-usvr-02 sshd[31041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.62.240 user=root Jun 2 11:27:43 itv-usvr-02 sshd[31143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.62.240 user=root Jun 2 11:30:33 itv-usvr-02 sshd[31228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.62.240 user=root	2020-06-02 15:12:15
5.253.86.207	attackbots	Jun 2 05:05:47 pi sshd[17267]: Failed password for root from 5.253.86.207 port 38012 ssh2	2020-06-02 15:19:53
112.85.42.186	attack	Jun 2 08:35:23 piServer sshd[5011]: Failed password for root from 112.85.42.186 port 63514 ssh2 Jun 2 08:37:25 piServer sshd[5209]: Failed password for root from 112.85.42.186 port 28981 ssh2 Jun 2 08:37:28 piServer sshd[5209]: Failed password for root from 112.85.42.186 port 28981 ssh2 ...	2020-06-02 15:07:27

最近上报的IP列表

28.134.170.180	200.118.188.29	44.0.200.248	64.147.230.53
134.56.203.67	192.241.238.20	78.152.127.72	241.190.101.119
10.13.13.199	77.222.139.14	129.64.228.147	193.213.8.223
121.200.58.208	178.142.248.242	115.117.222.170	118.40.66.67
138.155.90.158	236.43.128.4	199.254.231.184	142.44.169.137