80.94.211.221 - IPInfo

基本信息:

城市(city): Helsingborg

省份(region): Skåne

国家(country): Sweden

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.94.211.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2012
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.94.211.221.			IN	A

;; AUTHORITY SECTION:
.			2531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 14:40:36 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

221.211.94.80.in-addr.arpa domain name pointer se-host-80-94-211-221.oresundskraft.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
221.211.94.80.in-addr.arpa	name = se-host-80-94-211-221.oresundskraft.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.132.53.115	attack	Oct 3 07:09:08 localhost sshd[114827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root Oct 3 07:09:10 localhost sshd[114827]: Failed password for root from 185.132.53.115 port 53634 ssh2 Oct 3 07:09:23 localhost sshd[114849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root Oct 3 07:09:25 localhost sshd[114849]: Failed password for root from 185.132.53.115 port 52950 ssh2 Oct 3 07:09:39 localhost sshd[114881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root Oct 3 07:09:40 localhost sshd[114881]: Failed password for root from 185.132.53.115 port 52288 ssh2 ...	2020-10-03 15:45:46
200.152.70.103	attack	1433/tcp 445/tcp 445/tcp [2020-09-05/10-02]3pkt	2020-10-03 15:16:08
142.93.47.124	attack	8986/tcp 32222/tcp 7000/tcp... [2020-08-07/10-02]177pkt,96pt.(tcp)	2020-10-03 15:28:31
51.91.120.67	attackspam	Triggered by Fail2Ban at Ares web server	2020-10-03 15:15:47
196.217.31.201	attackbots	DATE:2020-10-02 22:36:15, IP:196.217.31.201, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-03 15:25:31
198.27.124.207	attack	Oct 2 21:37:13 web9 sshd\[25064\]: Invalid user work from 198.27.124.207 Oct 2 21:37:13 web9 sshd\[25064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.124.207 Oct 2 21:37:14 web9 sshd\[25064\]: Failed password for invalid user work from 198.27.124.207 port 50104 ssh2 Oct 2 21:41:06 web9 sshd\[25502\]: Invalid user deploy from 198.27.124.207 Oct 2 21:41:06 web9 sshd\[25502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.124.207	2020-10-03 15:51:25
58.118.205.199	attackbotsspam	1433/tcp 1433/tcp [2020-09-26/10-02]2pkt	2020-10-03 15:33:57
189.7.129.60	attack	Oct 3 07:34:50 scw-gallant-ride sshd[8936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60	2020-10-03 15:51:46
118.69.195.215	attack	Oct 3 11:36:01 lunarastro sshd[30367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.69.195.215 Oct 3 11:36:03 lunarastro sshd[30367]: Failed password for invalid user back from 118.69.195.215 port 45246 ssh2	2020-10-03 15:35:34
84.19.90.117	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 84.19.90.117 (CZ/-/90-117.eri.cz): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/02 22:38:43 [error] 70998#0: 409 [client 84.19.90.117] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "16016711236.848210"] [ref "o0,14v21,14"], client: 84.19.90.117, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-03 15:29:54
119.45.187.6	attackbotsspam	$f2bV_matches	2020-10-03 15:16:40
31.170.235.6	attack	445/tcp [2020-10-02]1pkt	2020-10-03 15:52:14
51.210.182.187	attackspambots	Invalid user school from 51.210.182.187 port 51484	2020-10-03 15:19:54
217.23.1.87	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-03T02:43:15Z and 2020-10-03T02:55:50Z	2020-10-03 15:44:52
88.202.190.149	attackspam	8181/tcp 7547/tcp 5353/udp... [2020-08-09/10-02]10pkt,9pt.(tcp),1pt.(udp)	2020-10-03 15:27:58

最近上报的IP列表

174.12.107.155	183.60.37.39	18.65.46.36	40.63.242.0
102.241.108.144	83.44.196.76	49.28.152.192	148.185.100.204
133.215.132.62	124.241.113.25	206.71.163.148	202.163.251.30
58.56.3.13	217.61.48.90	152.90.225.43	197.193.152.116
191.98.154.127	107.18.75.142	61.3.82.152	132.106.222.240