81.214.187.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Turk Telekomunikasyon Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 81.214.187.194 on Port 445(SMB)	2020-02-28 09:07:00
attackbots	Unauthorized connection attempt from IP address 81.214.187.194 on Port 445(SMB)	2019-06-29 07:21:55

相同子网IP讨论:

IP	类型	评论内容	时间
81.214.187.144	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 18:26:16
81.214.187.162	attackbotsspam	Unauthorized connection attempt from IP address 81.214.187.162 on Port 445(SMB)	2019-07-02 04:07:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.214.187.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63444
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.214.187.194.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 29 07:21:50 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

194.187.214.81.in-addr.arpa domain name pointer 81.214.187.194.dynamic.ttnet.com.tr.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
194.187.214.81.in-addr.arpa	name = 81.214.187.194.dynamic.ttnet.com.tr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
188.173.97.144	attackbotsspam	Sep 9 06:28:09 onepixel sshd[2776730]: Failed password for invalid user tomcat from 188.173.97.144 port 59068 ssh2 Sep 9 06:31:59 onepixel sshd[2777357]: Invalid user admin from 188.173.97.144 port 33236 Sep 9 06:31:59 onepixel sshd[2777357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.97.144 Sep 9 06:31:59 onepixel sshd[2777357]: Invalid user admin from 188.173.97.144 port 33236 Sep 9 06:32:00 onepixel sshd[2777357]: Failed password for invalid user admin from 188.173.97.144 port 33236 ssh2	2020-09-09 14:37:46
58.213.84.234	attack	Sep 8 20:39:47 pixelmemory sshd[351658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.84.234 user=root Sep 8 20:39:49 pixelmemory sshd[351658]: Failed password for root from 58.213.84.234 port 55618 ssh2 Sep 8 20:44:02 pixelmemory sshd[352250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.84.234 user=root Sep 8 20:44:04 pixelmemory sshd[352250]: Failed password for root from 58.213.84.234 port 35096 ssh2 Sep 8 20:48:13 pixelmemory sshd[353014]: Invalid user maximus from 58.213.84.234 port 42800 ...	2020-09-09 14:28:25
84.17.59.81	attackbotsspam	0,62-01/01 [bc02/m45] PostRequest-Spammer scoring: maputo01_x2b	2020-09-09 14:48:36
107.175.150.83	attackbots	SSH bruteforce	2020-09-09 15:01:49
45.142.120.215	attack	Sep 9 00:47:27 marvibiene postfix/smtpd[2154]: warning: unknown[45.142.120.215]: SASL LOGIN authentication failed: VXNlcm5hbWU6 Sep 9 01:43:32 marvibiene postfix/smtpd[3941]: warning: unknown[45.142.120.215]: SASL LOGIN authentication failed: VXNlcm5hbWU6	2020-09-09 15:06:55
51.79.86.181	attack	Sep 9 14:34:14 localhost sshd[2747836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.86.181 user=root Sep 9 14:34:16 localhost sshd[2747836]: Failed password for root from 51.79.86.181 port 44640 ssh2 ...	2020-09-09 15:07:58
222.244.162.3	attackspambots	Automatic report - Port Scan Attack	2020-09-09 14:42:36
165.227.86.199	attackspam	Time: Tue Sep 8 20:20:25 2020 +0200 IP: 165.227.86.199 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 8 20:01:47 ca-3-ams1 sshd[47043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.86.199 user=root Sep 8 20:01:49 ca-3-ams1 sshd[47043]: Failed password for root from 165.227.86.199 port 47758 ssh2 Sep 8 20:16:55 ca-3-ams1 sshd[47806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.86.199 user=root Sep 8 20:16:56 ca-3-ams1 sshd[47806]: Failed password for root from 165.227.86.199 port 40318 ssh2 Sep 8 20:20:22 ca-3-ams1 sshd[47993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.86.199 user=root	2020-09-09 14:31:52
84.92.92.196	attackspambots	Sep 9 03:00:00 ns308116 sshd[11324]: Invalid user Doonside from 84.92.92.196 port 37024 Sep 9 03:00:00 ns308116 sshd[11324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.92.92.196 Sep 9 03:00:02 ns308116 sshd[11324]: Failed password for invalid user Doonside from 84.92.92.196 port 37024 ssh2 Sep 9 03:07:08 ns308116 sshd[17635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.92.92.196 user=root Sep 9 03:07:10 ns308116 sshd[17635]: Failed password for root from 84.92.92.196 port 48058 ssh2 ...	2020-09-09 15:00:33
51.83.132.89	attackbotsspam	Sep 7 05:10:13 myhostname sshd[6636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.132.89 user=r.r Sep 7 05:10:16 myhostname sshd[6636]: Failed password for r.r from 51.83.132.89 port 51007 ssh2 Sep 7 05:10:16 myhostname sshd[6636]: Received disconnect from 51.83.132.89 port 51007:11: Bye Bye [preauth] Sep 7 05:10:16 myhostname sshd[6636]: Disconnected from 51.83.132.89 port 51007 [preauth] Sep 7 05:23:51 myhostname sshd[16095]: Invalid user server from 51.83.132.89 Sep 7 05:23:51 myhostname sshd[16095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.132.89 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.83.132.89	2020-09-09 14:57:08
64.225.116.59	attack	Sep 7 01:02:26 rs-7 sshd[51969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.116.59 user=r.r Sep 7 01:02:28 rs-7 sshd[51969]: Failed password for r.r from 64.225.116.59 port 34362 ssh2 Sep 7 01:02:28 rs-7 sshd[51969]: Received disconnect from 64.225.116.59 port 34362:11: Bye Bye [preauth] Sep 7 01:02:28 rs-7 sshd[51969]: Disconnected from 64.225.116.59 port 34362 [preauth] Sep 7 01:12:25 rs-7 sshd[54253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.116.59 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=64.225.116.59	2020-09-09 15:02:05
73.6.227.20	attackspam	6x Failed Password	2020-09-09 14:35:41
187.176.185.65	attack	Port scanning [2 denied]	2020-09-09 14:32:39
178.217.117.203	attackspam	(LocalIPAttack) Local IP Attack From 178.217.117.203 (PL/Poland/pub-117.203.rewolucja-net.pl): 1 in the last 3600 secs	2020-09-09 14:38:03
134.209.106.187	attackbotsspam	...	2020-09-09 15:10:58

最近上报的IP列表

23.220.31.89	149.115.58.191	58.215.121.36	118.60.139.190
88.131.101.105	27.5.242.115	168.195.208.80	34.101.34.191
173.248.177.65	187.87.14.247	1.47.141.80	5.58.48.170
81.169.2.2	193.112.100.146	192.126.187.105	185.3.111.202
117.215.222.199	211.214.160.164	125.159.61.166	196.41.14.226