211.75.1.214 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port Scan: TCP/445	2019-09-10 19:18:47
attackbotsspam	SMB Server BruteForce Attack	2019-08-22 08:27:08

相同子网IP讨论:

IP	类型	评论内容	时间
211.75.13.207	attackbots	Logfile match	2020-07-18 17:16:44
211.75.132.184	attackspambots	Port probing on unauthorized port 445	2020-07-18 06:07:31
211.75.163.89	attackspam	TCP (SYN) 211.75.163.89:48850 -> port 80, len 44	2020-07-13 03:34:33
211.75.193.168	attackbots	445/tcp 1433/tcp... [2020-04-26/06-24]6pkt,2pt.(tcp)	2020-06-25 05:41:50
211.75.111.83	attack	DATE:2020-06-07 05:46:56, IP:211.75.111.83, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-06-07 19:26:48
211.75.193.168	attackspambots	Port scan: Attack repeated for 24 hours	2020-05-17 03:38:28
211.75.196.111	attack	May 13 20:03:06 rotator sshd\[13294\]: Invalid user contador from 211.75.196.111May 13 20:03:08 rotator sshd\[13294\]: Failed password for invalid user contador from 211.75.196.111 port 52452 ssh2May 13 20:06:01 rotator sshd\[14075\]: Invalid user tester from 211.75.196.111May 13 20:06:03 rotator sshd\[14075\]: Failed password for invalid user tester from 211.75.196.111 port 34746 ssh2May 13 20:08:57 rotator sshd\[14118\]: Invalid user adminstat from 211.75.196.111May 13 20:09:00 rotator sshd\[14118\]: Failed password for invalid user adminstat from 211.75.196.111 port 45272 ssh2 ...	2020-05-14 04:36:28
211.75.196.111	attackbotsspam	Invalid user shaleigh from 211.75.196.111 port 46874	2020-05-13 05:43:34
211.75.161.29	attackspam	23/tcp [2020-05-10]1pkt	2020-05-11 05:30:12
211.75.196.110	attack	May 3 23:27:52 lock-38 sshd[1885400]: Failed password for invalid user test from 211.75.196.110 port 58226 ssh2 May 3 23:27:53 lock-38 sshd[1885400]: Disconnected from invalid user test 211.75.196.110 port 58226 [preauth] May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Failed password for invalid user ddd from 211.75.196.110 port 36674 ssh2 ...	2020-05-04 07:59:23
211.75.141.43	attackbots	Unauthorized connection attempt from IP address 211.75.141.43 on Port 445(SMB)	2020-04-03 20:25:36
211.75.136.205	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-13 03:00:44
211.75.136.208	attack	Oct 18 19:28:19 ms-srv sshd[37534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.136.208 user=root Oct 18 19:28:21 ms-srv sshd[37534]: Failed password for invalid user root from 211.75.136.208 port 33573 ssh2	2020-03-09 05:33:34
211.75.174.135	attack	Jan 31 00:37:50 ms-srv sshd[25933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.174.135 Jan 31 00:37:52 ms-srv sshd[25933]: Failed password for invalid user daarun from 211.75.174.135 port 46304 ssh2	2020-03-09 05:31:44
211.75.194.80	attack	Nov 22 07:40:56 ms-srv sshd[8626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.194.80 Nov 22 07:40:58 ms-srv sshd[8626]: Failed password for invalid user wonder from 211.75.194.80 port 36586 ssh2	2020-03-09 05:30:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.75.1.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2454
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.75.1.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 22 08:26:58 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

214.1.75.211.in-addr.arpa domain name pointer 211-75-1-214.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
214.1.75.211.in-addr.arpa	name = 211-75-1-214.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
162.213.36.141	attackbots	suspicious action Tue, 03 Mar 2020 10:20:25 -0300	2020-03-04 05:13:37
162.213.248.88	attackspambots	suspicious action Tue, 03 Mar 2020 10:20:12 -0300	2020-03-04 05:26:48
213.32.92.57	attack	$f2bV_matches	2020-03-04 05:36:51
159.65.74.2	attack	[munged]::80 159.65.74.2 - - [03/Mar/2020:20:04:37 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-" [munged]::80 159.65.74.2 - - [03/Mar/2020:20:04:52 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-" [munged]::80 159.65.74.2 - - [03/Mar/2020:20:04:52 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-" [munged]::80 159.65.74.2 - - [03/Mar/2020:20:05:08 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-" [munged]::80 159.65.74.2 - - [03/Mar/2020:20:05:08 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-" [munged]::80 159.65.74.2 - - [03/Mar/2020:20:05:24 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-"	2020-03-04 05:21:10
176.102.48.105	attack	REQUESTED PAGE: /wp-admin/admin.php?page=miwoftp&option=com_miwoftp&action=download&item=../wp-config.php&order=name&srt=yes	2020-03-04 05:30:52
45.151.254.218	attackbotsspam	03.03.2020 20:46:39 Connection to port 5060 blocked by firewall	2020-03-04 05:04:04
156.96.148.17	attackspam	2020-03-04T06:40:17.828783luisaranguren sshd[3689589]: Failed password for root from 156.96.148.17 port 33394 ssh2 2020-03-04T06:40:21.275482luisaranguren sshd[3689589]: Disconnected from authenticating user root 156.96.148.17 port 33394 [preauth] ...	2020-03-04 05:01:05
192.241.219.42	attack	192.241.219.42 - - - [03/Mar/2020:15:01:49 +0000] "GET /portal/redlion HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-03-04 05:20:14
104.248.227.130	attack	[ssh] SSH attack	2020-03-04 05:05:43
222.186.175.148	attackbotsspam	Mar 3 21:26:44 localhost sshd[109782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Mar 3 21:26:47 localhost sshd[109782]: Failed password for root from 222.186.175.148 port 6652 ssh2 Mar 3 21:26:50 localhost sshd[109782]: Failed password for root from 222.186.175.148 port 6652 ssh2 Mar 3 21:26:44 localhost sshd[109782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Mar 3 21:26:47 localhost sshd[109782]: Failed password for root from 222.186.175.148 port 6652 ssh2 Mar 3 21:26:50 localhost sshd[109782]: Failed password for root from 222.186.175.148 port 6652 ssh2 Mar 3 21:26:44 localhost sshd[109782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Mar 3 21:26:47 localhost sshd[109782]: Failed password for root from 222.186.175.148 port 6652 ssh2 Mar 3 21:26:50 localhost sshd ...	2020-03-04 05:28:37
109.94.182.9	attackbots	REQUESTED PAGE: /wp-admin/admin.php?page=miwoftp&option=com_miwoftp&action=download&dir=/&item=wp-config.php&order=name&srt=yes	2020-03-04 05:03:27
50.235.70.202	attackbotsspam	Mar 3 10:52:10 hanapaa sshd\[21824\]: Invalid user tsbot from 50.235.70.202 Mar 3 10:52:10 hanapaa sshd\[21824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.235.70.202 Mar 3 10:52:12 hanapaa sshd\[21824\]: Failed password for invalid user tsbot from 50.235.70.202 port 22298 ssh2 Mar 3 11:02:10 hanapaa sshd\[22983\]: Invalid user webuser from 50.235.70.202 Mar 3 11:02:10 hanapaa sshd\[22983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.235.70.202	2020-03-04 05:19:59
51.77.140.36	attackbotsspam	Mar 3 20:31:32 h2646465 sshd[16168]: Invalid user abdullah from 51.77.140.36 Mar 3 20:31:32 h2646465 sshd[16168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.36 Mar 3 20:31:32 h2646465 sshd[16168]: Invalid user abdullah from 51.77.140.36 Mar 3 20:31:33 h2646465 sshd[16168]: Failed password for invalid user abdullah from 51.77.140.36 port 51594 ssh2 Mar 3 20:53:22 h2646465 sshd[23156]: Invalid user PlcmSpIp from 51.77.140.36 Mar 3 20:53:22 h2646465 sshd[23156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.36 Mar 3 20:53:22 h2646465 sshd[23156]: Invalid user PlcmSpIp from 51.77.140.36 Mar 3 20:53:23 h2646465 sshd[23156]: Failed password for invalid user PlcmSpIp from 51.77.140.36 port 49884 ssh2 Mar 3 21:04:02 h2646465 sshd[26964]: Invalid user steam from 51.77.140.36 ...	2020-03-04 05:28:11
87.16.92.225	attack	Potential Command Injection Attempt	2020-03-04 05:36:32
103.114.104.62	attackspambots	SSH bruteforce	2020-03-04 05:31:34

最近上报的IP列表

177.125.40.145	61.235.74.247	115.189.153.202	186.169.75.109
193.109.65.70	106.13.38.86	48.151.92.40	165.100.216.232
45.6.72.17	153.3.139.224	86.120.209.52	195.207.82.173
188.104.21.128	168.235.96.82	13.155.61.2	54.65.46.179
83.135.87.72	175.241.58.117	61.141.65.41	187.87.204.202