211.75.1.214 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port Scan: TCP/445	2019-09-10 19:18:47
attackbotsspam	SMB Server BruteForce Attack	2019-08-22 08:27:08

相同子网IP讨论:

IP	类型	评论内容	时间
211.75.13.207	attackbots	Logfile match	2020-07-18 17:16:44
211.75.132.184	attackspambots	Port probing on unauthorized port 445	2020-07-18 06:07:31
211.75.163.89	attackspam	TCP (SYN) 211.75.163.89:48850 -> port 80, len 44	2020-07-13 03:34:33
211.75.193.168	attackbots	445/tcp 1433/tcp... [2020-04-26/06-24]6pkt,2pt.(tcp)	2020-06-25 05:41:50
211.75.111.83	attack	DATE:2020-06-07 05:46:56, IP:211.75.111.83, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-06-07 19:26:48
211.75.193.168	attackspambots	Port scan: Attack repeated for 24 hours	2020-05-17 03:38:28
211.75.196.111	attack	May 13 20:03:06 rotator sshd\[13294\]: Invalid user contador from 211.75.196.111May 13 20:03:08 rotator sshd\[13294\]: Failed password for invalid user contador from 211.75.196.111 port 52452 ssh2May 13 20:06:01 rotator sshd\[14075\]: Invalid user tester from 211.75.196.111May 13 20:06:03 rotator sshd\[14075\]: Failed password for invalid user tester from 211.75.196.111 port 34746 ssh2May 13 20:08:57 rotator sshd\[14118\]: Invalid user adminstat from 211.75.196.111May 13 20:09:00 rotator sshd\[14118\]: Failed password for invalid user adminstat from 211.75.196.111 port 45272 ssh2 ...	2020-05-14 04:36:28
211.75.196.111	attackbotsspam	Invalid user shaleigh from 211.75.196.111 port 46874	2020-05-13 05:43:34
211.75.161.29	attackspam	23/tcp [2020-05-10]1pkt	2020-05-11 05:30:12
211.75.196.110	attack	May 3 23:27:52 lock-38 sshd[1885400]: Failed password for invalid user test from 211.75.196.110 port 58226 ssh2 May 3 23:27:53 lock-38 sshd[1885400]: Disconnected from invalid user test 211.75.196.110 port 58226 [preauth] May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Failed password for invalid user ddd from 211.75.196.110 port 36674 ssh2 ...	2020-05-04 07:59:23
211.75.141.43	attackbots	Unauthorized connection attempt from IP address 211.75.141.43 on Port 445(SMB)	2020-04-03 20:25:36
211.75.136.205	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-13 03:00:44
211.75.136.208	attack	Oct 18 19:28:19 ms-srv sshd[37534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.136.208 user=root Oct 18 19:28:21 ms-srv sshd[37534]: Failed password for invalid user root from 211.75.136.208 port 33573 ssh2	2020-03-09 05:33:34
211.75.174.135	attack	Jan 31 00:37:50 ms-srv sshd[25933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.174.135 Jan 31 00:37:52 ms-srv sshd[25933]: Failed password for invalid user daarun from 211.75.174.135 port 46304 ssh2	2020-03-09 05:31:44
211.75.194.80	attack	Nov 22 07:40:56 ms-srv sshd[8626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.194.80 Nov 22 07:40:58 ms-srv sshd[8626]: Failed password for invalid user wonder from 211.75.194.80 port 36586 ssh2	2020-03-09 05:30:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.75.1.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2454
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.75.1.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 22 08:26:58 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

214.1.75.211.in-addr.arpa domain name pointer 211-75-1-214.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
214.1.75.211.in-addr.arpa	name = 211-75-1-214.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.70.38.187	attackspam	Oct 5 22:35:32 haigwepa sshd[26004]: Failed password for root from 193.70.38.187 port 35094 ssh2 ...	2020-10-06 04:41:59
112.85.42.151	attack	Oct 5 22:30:45 hidden sshd[1585]: Failed password for hidden from 112.85.42.151 port 15578 ssh2 Oct 5 22:30:51 hidden sshd[1585]: Failed password for hidden from 112.85.42.151 port 15578 ssh2 Oct 5 22:30:56 hidden sshd[1585]: Failed password for hidden from 112.85.42.151 port 15578 ssh2 Oct 5 22:30:59 hidden sshd[1585]: Failed password for hidden from 112.85.42.151 port 15578 ssh2 Oct 5 22:31:04 hidden sshd[1585]: Failed password for hidden from 112.85.42.151 port 15578 ssh2	2020-10-06 04:47:24
122.194.229.54	attackbots	Oct 5 22:26:06 nas sshd[27636]: Failed password for root from 122.194.229.54 port 36874 ssh2 Oct 5 22:26:10 nas sshd[27636]: Failed password for root from 122.194.229.54 port 36874 ssh2 Oct 5 22:26:13 nas sshd[27636]: Failed password for root from 122.194.229.54 port 36874 ssh2 Oct 5 22:26:17 nas sshd[27636]: Failed password for root from 122.194.229.54 port 36874 ssh2 ...	2020-10-06 04:27:36
106.75.8.155	attackspambots	TCP (SYN) 106.75.8.155:58914 -> port 8080, len 44	2020-10-06 04:47:43
220.85.104.202	attack	SSH login attempts.	2020-10-06 04:28:17
71.95.252.231	attackbotsspam	DATE:2020-10-05 12:21:14, IP:71.95.252.231, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-10-06 04:32:44
218.92.0.172	attack	$f2bV_matches	2020-10-06 04:33:15
187.63.66.69	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-08-28/10-04]5pkt,1pt.(tcp)	2020-10-06 04:40:14
103.119.58.28	attackbotsspam	20/10/4@16:41:46: FAIL: Alarm-Telnet address from=103.119.58.28 ...	2020-10-06 04:22:46
111.231.202.118	attack	Oct 5 21:32:45 ns382633 sshd\[17705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.118 user=root Oct 5 21:32:47 ns382633 sshd\[17705\]: Failed password for root from 111.231.202.118 port 54040 ssh2 Oct 5 21:45:00 ns382633 sshd\[19280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.118 user=root Oct 5 21:45:02 ns382633 sshd\[19280\]: Failed password for root from 111.231.202.118 port 43158 ssh2 Oct 5 21:50:11 ns382633 sshd\[20056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.118 user=root	2020-10-06 04:29:31
184.169.104.176	attackbotsspam	Brute forcing email accounts	2020-10-06 04:24:54
49.51.9.134	attack	Port scan denied	2020-10-06 04:49:59
140.143.30.33	attack	prod11 ...	2020-10-06 04:18:42
137.119.55.25	attackbotsspam	2020-10-05T13:23:57.149844sorsha.thespaminator.com sshd[22923]: Invalid user pi from 137.119.55.25 port 45068 2020-10-05T13:23:57.219381sorsha.thespaminator.com sshd[22921]: Invalid user pi from 137.119.55.25 port 45160 ...	2020-10-06 04:27:07
171.217.92.33	attackbots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-06 04:46:04

最近上报的IP列表

177.125.40.145	61.235.74.247	115.189.153.202	186.169.75.109
193.109.65.70	106.13.38.86	48.151.92.40	165.100.216.232
45.6.72.17	153.3.139.224	86.120.209.52	195.207.82.173
188.104.21.128	168.235.96.82	13.155.61.2	54.65.46.179
83.135.87.72	175.241.58.117	61.141.65.41	187.87.204.202