81.214.220.73 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Turk Telekomunikasyon Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 81.214.220.73 to port 23 [J]	2020-01-16 04:18:43
attackspambots	Automatic report - Port Scan Attack	2019-11-20 15:42:41

相同子网IP讨论:

IP	类型	评论内容	时间
81.214.220.194	attackbotsspam	Automatic report - Port Scan Attack	2019-08-14 11:28:14

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.214.220.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28667
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.214.220.73.			IN	A

;; AUTHORITY SECTION:
.			146	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112000 1800 900 604800 86400

;; Query time: 586 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 20 15:45:55 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

73.220.214.81.in-addr.arpa domain name pointer 81.214.220.73.dynamic.ttnet.com.tr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
73.220.214.81.in-addr.arpa	name = 81.214.220.73.dynamic.ttnet.com.tr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
8.208.11.95	attackspambots	proto=tcp . spt=52993 . dpt=3389 . src=8.208.11.95 . dst=xx.xx.4.1 . (listed on rbldns-ru) (1450)	2019-09-21 07:40:19
213.169.39.218	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-09-21 07:40:42
5.39.90.29	attack	Sep 20 21:29:48 vps691689 sshd[27499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.90.29 Sep 20 21:29:50 vps691689 sshd[27499]: Failed password for invalid user dx from 5.39.90.29 port 56488 ssh2 Sep 20 21:33:46 vps691689 sshd[27532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.90.29 ...	2019-09-21 07:47:08
178.217.40.208	attackspam	proto=tcp . spt=47804 . dpt=25 . (listed on Blocklist de Sep 20) (1452)	2019-09-21 07:33:38
49.88.112.90	attackbotsspam	Sep 20 19:29:17 plusreed sshd[25217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.90 user=root Sep 20 19:29:19 plusreed sshd[25217]: Failed password for root from 49.88.112.90 port 29486 ssh2 ...	2019-09-21 07:31:05
145.239.0.72	attackbotsspam	\[2019-09-21 01:16:28\] NOTICE\[28964\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '145.239.0.72:49244' \(callid: 2052651319-1545488846-1323134879\) - Failed to authenticate \[2019-09-21 01:16:28\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-09-21T01:16:28.360+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="2052651319-1545488846-1323134879",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/145.239.0.72/49244",Challenge="1569021388/9708fec912cef4c7b5e47e0b2dfaae77",Response="f947cf3fa3601096fcb913b07f17169a",ExpectedResponse="" \[2019-09-21 01:16:28\] NOTICE\[14660\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '145.239.0.72:49244' \(callid: 2052651319-1545488846-1323134879\) - Failed to authenticate \[2019-09-21 01:16:28\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeRespo	2019-09-21 07:28:49
185.2.5.69	attackbotsspam	185.2.5.69 - - [20/Sep/2019:22:09:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.2.5.69 - - [20/Sep/2019:22:09:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.2.5.69 - - [20/Sep/2019:22:09:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.2.5.69 - - [20/Sep/2019:22:09:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1530 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.2.5.69 - - [20/Sep/2019:22:09:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.2.5.69 - - [20/Sep/2019:22:09:59 +0200] "POST /wp-login.php HTTP/1.1" 200 1525 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-21 07:55:21
152.208.53.76	attackbots	Sep 20 23:44:40 microserver sshd[23786]: Invalid user joseph from 152.208.53.76 port 42128 Sep 20 23:44:40 microserver sshd[23786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.208.53.76 Sep 20 23:44:42 microserver sshd[23786]: Failed password for invalid user joseph from 152.208.53.76 port 42128 ssh2 Sep 20 23:45:01 microserver sshd[23808]: Invalid user david from 152.208.53.76 port 43048 Sep 20 23:45:01 microserver sshd[23808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.208.53.76 Sep 21 00:27:08 microserver sshd[31158]: Invalid user feng from 152.208.53.76 port 48926 Sep 21 00:27:08 microserver sshd[31158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.208.53.76 Sep 21 00:27:10 microserver sshd[31158]: Failed password for invalid user feng from 152.208.53.76 port 48926 ssh2 Sep 21 00:27:24 microserver sshd[31166]: Invalid user emma from 152.208.53.76 port 50006 Sep 21	2019-09-21 07:49:18
192.227.252.30	attack	Sep 20 13:26:35 sachi sshd\[24099\]: Invalid user Lunixx from 192.227.252.30 Sep 20 13:26:35 sachi sshd\[24099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.30 Sep 20 13:26:38 sachi sshd\[24099\]: Failed password for invalid user Lunixx from 192.227.252.30 port 35338 ssh2 Sep 20 13:35:07 sachi sshd\[24778\]: Invalid user train1 from 192.227.252.30 Sep 20 13:35:07 sachi sshd\[24778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.30	2019-09-21 07:50:07
162.247.74.202	attack	Sep 21 05:47:26 webhost01 sshd[4064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.202 Sep 21 05:47:27 webhost01 sshd[4064]: Failed password for invalid user admin1 from 162.247.74.202 port 55898 ssh2 ...	2019-09-21 07:35:59
24.14.192.156	attackspambots	Telnetd brute force attack detected by fail2ban	2019-09-21 07:39:13
186.31.116.78	attackspambots	Sep 21 01:18:18 lnxmysql61 sshd[2987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.31.116.78 Sep 21 01:18:18 lnxmysql61 sshd[2987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.31.116.78	2019-09-21 07:54:33
118.200.41.3	attackspam	Sep 21 01:08:36 mail sshd\[21925\]: Failed password for invalid user web1 from 118.200.41.3 port 39596 ssh2 Sep 21 01:13:11 mail sshd\[22590\]: Invalid user mcc from 118.200.41.3 port 52936 Sep 21 01:13:11 mail sshd\[22590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.200.41.3 Sep 21 01:13:13 mail sshd\[22590\]: Failed password for invalid user mcc from 118.200.41.3 port 52936 ssh2 Sep 21 01:17:53 mail sshd\[23111\]: Invalid user contact from 118.200.41.3 port 38052 Sep 21 01:17:53 mail sshd\[23111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.200.41.3	2019-09-21 07:29:50
185.244.25.184	attackspambots	185.244.25.184 - - [21/Sep/2019:03:23:51 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 404 7724 "-" "curl/7.3.2" ...	2019-09-21 07:31:55
89.33.8.34	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-21 08:05:53

最近上报的IP列表

49.87.135.29	37.114.137.144	180.121.74.11	68.15.11.3
52.167.51.60	36.4.212.137	46.34.133.72	110.18.0.94
123.121.93.193	168.232.129.235	37.49.230.28	182.254.188.93
114.217.97.43	192.184.14.100	87.14.174.146	161.153.233.162
111.1.175.107	240.153.111.135	183.92.234.66	82.94.228.134