211.203.205.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 211.203.205.42:38935 -> port 80, len 44	2020-07-14 18:09:11

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.203.205.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51190
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.203.205.42.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 14 18:09:08 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 42.205.203.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.205.203.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.29.148.201	attack	Invalid user assaad from 14.29.148.201 port 49294	2020-05-26 03:38:17
182.61.3.223	attackbots	(sshd) Failed SSH login from 182.61.3.223 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 25 22:21:38 s1 sshd[22092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.3.223 user=root May 25 22:21:40 s1 sshd[22092]: Failed password for root from 182.61.3.223 port 56268 ssh2 May 25 22:37:08 s1 sshd[22716]: Invalid user student1 from 182.61.3.223 port 33178 May 25 22:37:10 s1 sshd[22716]: Failed password for invalid user student1 from 182.61.3.223 port 33178 ssh2 May 25 22:40:34 s1 sshd[22909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.3.223 user=root	2020-05-26 03:50:45
36.111.182.133	attack	Invalid user test from 36.111.182.133 port 40878	2020-05-26 03:36:51
27.128.201.88	attackbotsspam	$f2bV_matches	2020-05-26 03:37:48
36.133.14.243	attackbotsspam	Lines containing failures of 36.133.14.243 May 25 02:12:35 nexus sshd[13445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.14.243 user=r.r May 25 02:12:37 nexus sshd[13445]: Failed password for r.r from 36.133.14.243 port 51904 ssh2 May 25 02:12:37 nexus sshd[13445]: Received disconnect from 36.133.14.243 port 51904:11: Bye Bye [preauth] May 25 02:12:37 nexus sshd[13445]: Disconnected from 36.133.14.243 port 51904 [preauth] May 25 02:17:22 nexus sshd[13472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.14.243 user=r.r May 25 02:17:24 nexus sshd[13472]: Failed password for r.r from 36.133.14.243 port 47148 ssh2 May 25 02:17:24 nexus sshd[13472]: Received disconnect from 36.133.14.243 port 47148:11: Bye Bye [preauth] May 25 02:17:24 nexus sshd[13472]: Disconnected from 36.133.14.243 port 47148 [preauth] May 25 02:21:02 nexus sshd[13518]: pam_unix(sshd:auth): authentication........ ------------------------------	2020-05-26 03:36:29
180.71.58.82	attackspam	Invalid user dev6 from 180.71.58.82 port 42719	2020-05-26 03:52:06
139.199.209.89	attack	May 25 17:49:21 sso sshd[23340]: Failed password for root from 139.199.209.89 port 36574 ssh2 May 25 17:52:21 sso sshd[23672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 ...	2020-05-26 04:00:00
189.240.225.205	attackspambots	May 26 03:01:58 NG-HHDC-SVS-001 sshd[1801]: Invalid user tour from 189.240.225.205 ...	2020-05-26 03:45:25
41.111.135.199	attackbots	May 25 20:36:48 ns382633 sshd\[28849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.111.135.199 user=root May 25 20:36:49 ns382633 sshd\[28849\]: Failed password for root from 41.111.135.199 port 38070 ssh2 May 25 20:58:48 ns382633 sshd\[1069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.111.135.199 user=root May 25 20:58:50 ns382633 sshd\[1069\]: Failed password for root from 41.111.135.199 port 56820 ssh2 May 25 21:02:07 ns382633 sshd\[1976\]: Invalid user admin from 41.111.135.199 port 60884 May 25 21:02:07 ns382633 sshd\[1976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.111.135.199	2020-05-26 03:34:05
113.161.160.24	attack	Invalid user tit0nich from 113.161.160.24 port 33874	2020-05-26 04:10:57
163.172.24.40	attackspam	$f2bV_matches	2020-05-26 03:55:34
140.249.213.243	attack	May 25 09:42:46 web1 sshd\[14248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root May 25 09:42:48 web1 sshd\[14248\]: Failed password for root from 140.249.213.243 port 45338 ssh2 May 25 09:50:47 web1 sshd\[14962\]: Invalid user noemi from 140.249.213.243 May 25 09:50:47 web1 sshd\[14962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 25 09:50:48 web1 sshd\[14962\]: Failed password for invalid user noemi from 140.249.213.243 port 41922 ssh2	2020-05-26 03:59:17
201.62.73.92	attackbotsspam	Invalid user host from 201.62.73.92 port 39972	2020-05-26 03:44:01
220.102.43.235	attack	2020-05-25T17:00:28.132093ns386461 sshd\[25791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=flh9aae043.kng.mesh.ad.jp user=root 2020-05-25T17:00:30.239026ns386461 sshd\[25791\]: Failed password for root from 220.102.43.235 port 14655 ssh2 2020-05-25T17:05:17.236323ns386461 sshd\[30272\]: Invalid user elizabethhalper from 220.102.43.235 port 9806 2020-05-25T17:05:17.241240ns386461 sshd\[30272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=flh9aae043.kng.mesh.ad.jp 2020-05-25T17:05:19.534414ns386461 sshd\[30272\]: Failed password for invalid user elizabethhalper from 220.102.43.235 port 9806 ssh2 ...	2020-05-26 03:40:51
187.18.108.73	attackbots	SSH invalid-user multiple login try	2020-05-26 03:47:27

最近上报的IP列表

176.149.136.104	39.59.58.172	58.26.87.94	114.40.157.8
162.38.65.49	113.162.184.214	27.115.127.210	35.229.138.243
165.22.115.81	61.69.79.170	147.135.208.33	112.30.194.160
108.49.208.92	51.83.33.202	88.190.79.80	113.246.195.99
122.216.76.76	107.184.113.162	92.124.162.39	109.173.64.123