94.21.41.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hungary

运营商(isp): DIGI Tavkozlesi es Szolgaltato Kft.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Brute Force	2019-08-11 00:30:44
attack	Aug 10 05:52:41 eventyay sshd[6472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.41.85 Aug 10 05:52:43 eventyay sshd[6472]: Failed password for invalid user andrea from 94.21.41.85 port 43433 ssh2 Aug 10 05:57:16 eventyay sshd[7455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.41.85 ...	2019-08-10 11:58:44
attack	Aug 8 12:51:14 rb06 sshd[23214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu Aug 8 12:51:16 rb06 sshd[23214]: Failed password for invalid user biovhostnamealy from 94.21.41.85 port 59243 ssh2 Aug 8 12:51:16 rb06 sshd[23214]: Received disconnect from 94.21.41.85: 11: Bye Bye [preauth] Aug 8 12:55:34 rb06 sshd[23292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu Aug 8 12:55:36 rb06 sshd[23292]: Failed password for invalid user maureen from 94.21.41.85 port 54576 ssh2 Aug 8 12:55:36 rb06 sshd[23292]: Received disconnect from 94.21.41.85: 11: Bye Bye [preauth] Aug 8 12:59:49 rb06 sshd[839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu Aug 8 12:59:51 rb06 sshd[839]: Failed password for invalid user sl from 94.21.41.85 port 49833 ssh2 Aug 8 12:59:51 r........ -------------------------------	2019-08-09 04:50:43

类型

评论内容

时间

attackspambots

SSH Brute Force

2019-08-11 00:30:44

attack

Aug 10 05:52:41 eventyay sshd[6472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.41.85
Aug 10 05:52:43 eventyay sshd[6472]: Failed password for invalid user andrea from 94.21.41.85 port 43433 ssh2
Aug 10 05:57:16 eventyay sshd[7455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.41.85
...

2019-08-10 11:58:44

attack

Aug  8 12:51:14 rb06 sshd[23214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu
Aug  8 12:51:16 rb06 sshd[23214]: Failed password for invalid user biovhostnamealy from 94.21.41.85 port 59243 ssh2
Aug  8 12:51:16 rb06 sshd[23214]: Received disconnect from 94.21.41.85: 11: Bye Bye [preauth]
Aug  8 12:55:34 rb06 sshd[23292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu
Aug  8 12:55:36 rb06 sshd[23292]: Failed password for invalid user maureen from 94.21.41.85 port 54576 ssh2
Aug  8 12:55:36 rb06 sshd[23292]: Received disconnect from 94.21.41.85: 11: Bye Bye [preauth]
Aug  8 12:59:49 rb06 sshd[839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-21-41-85.pool.digikabel.hu
Aug  8 12:59:51 rb06 sshd[839]: Failed password for invalid user sl from 94.21.41.85 port 49833 ssh2
Aug  8 12:59:51 r........
-------------------------------

2019-08-09 04:50:43

相同子网IP讨论:

IP	类型	评论内容	时间
94.21.41.122	attack	vps1:sshd-InvalidUser	2019-08-22 13:18:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.21.41.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49371
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.21.41.85.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 04:50:38 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

85.41.21.94.in-addr.arpa domain name pointer 94-21-41-85.pool.digikabel.hu.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
85.41.21.94.in-addr.arpa	name = 94-21-41-85.pool.digikabel.hu.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
67.191.194.94	attackbots	Sep 1 16:47:46 dev0-dcfr-rnet sshd[7614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.191.194.94 Sep 1 16:47:48 dev0-dcfr-rnet sshd[7614]: Failed password for invalid user admin from 67.191.194.94 port 51222 ssh2 Sep 1 16:47:50 dev0-dcfr-rnet sshd[7614]: Failed password for invalid user admin from 67.191.194.94 port 51222 ssh2 Sep 1 16:47:52 dev0-dcfr-rnet sshd[7614]: Failed password for invalid user admin from 67.191.194.94 port 51222 ssh2	2019-09-02 00:11:15
5.249.149.87	attack	2019-09-01T14:13:09.7274921240 sshd\[30630\]: Invalid user asd from 5.249.149.87 port 53834 2019-09-01T14:13:09.7302571240 sshd\[30630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.149.87 2019-09-01T14:13:12.0414491240 sshd\[30630\]: Failed password for invalid user asd from 5.249.149.87 port 53834 ssh2 ...	2019-09-02 00:00:21
202.162.208.202	attack	Sep 1 14:17:14 [host] sshd[31274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.162.208.202 user=man Sep 1 14:17:15 [host] sshd[31274]: Failed password for man from 202.162.208.202 port 50411 ssh2 Sep 1 14:22:04 [host] sshd[31375]: Invalid user bank from 202.162.208.202	2019-09-02 00:03:07
138.68.186.24	attack	2019-09-01T18:07:48.347796 sshd[23266]: Invalid user test from 138.68.186.24 port 60500 2019-09-01T18:07:48.362560 sshd[23266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.186.24 2019-09-01T18:07:48.347796 sshd[23266]: Invalid user test from 138.68.186.24 port 60500 2019-09-01T18:07:50.476485 sshd[23266]: Failed password for invalid user test from 138.68.186.24 port 60500 ssh2 2019-09-01T18:13:31.231058 sshd[23487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.186.24 user=root 2019-09-01T18:13:32.431719 sshd[23487]: Failed password for root from 138.68.186.24 port 47572 ssh2 ...	2019-09-02 00:14:14
103.96.75.195	attackbotsspam	Sep 1 03:02:57 localhost kernel: [1059193.516065] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.96.75.195 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=54181 DPT=6379 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 1 03:02:57 localhost kernel: [1059193.516091] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.96.75.195 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=54181 DPT=6379 SEQ=241547978 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 1 03:04:13 localhost kernel: [1059269.743993] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.96.75.195 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=58104 DPT=6380 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 1 03:04:13 localhost kernel: [1059269.744021] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=103.96.75.195 DST=[mungedIP2] LEN=40 TOS=0x00 PR	2019-09-02 01:04:19
103.121.117.180	attackspambots	2019-09-01T12:22:48.639951 sshd[17045]: Invalid user tucker from 103.121.117.180 port 16640 2019-09-01T12:22:48.654534 sshd[17045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.121.117.180 2019-09-01T12:22:48.639951 sshd[17045]: Invalid user tucker from 103.121.117.180 port 16640 2019-09-01T12:22:50.354204 sshd[17045]: Failed password for invalid user tucker from 103.121.117.180 port 16640 ssh2 2019-09-01T12:27:56.740821 sshd[17091]: Invalid user hz from 103.121.117.180 port 38955 ...	2019-09-02 00:18:52
142.93.81.77	attackbotsspam	Aug 31 10:01:13 itv-usvr-01 sshd[26849]: Invalid user admin from 142.93.81.77 Aug 31 10:01:13 itv-usvr-01 sshd[26849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.81.77 Aug 31 10:01:13 itv-usvr-01 sshd[26849]: Invalid user admin from 142.93.81.77 Aug 31 10:01:15 itv-usvr-01 sshd[26849]: Failed password for invalid user admin from 142.93.81.77 port 58580 ssh2	2019-09-02 01:00:21
101.128.203.211	attack	Sep 1 05:36:33 tdfoods sshd\[7539\]: Invalid user jenkins from 101.128.203.211 Sep 1 05:36:33 tdfoods sshd\[7539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.203.128.101.dy.bbexcite.jp Sep 1 05:36:35 tdfoods sshd\[7539\]: Failed password for invalid user jenkins from 101.128.203.211 port 38614 ssh2 Sep 1 05:46:25 tdfoods sshd\[8499\]: Invalid user setup from 101.128.203.211 Sep 1 05:46:25 tdfoods sshd\[8499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.203.128.101.dy.bbexcite.jp	2019-09-02 00:33:32
119.29.52.46	attack	Sep 1 15:07:37 XXX sshd[53707]: Invalid user brandt from 119.29.52.46 port 33658	2019-09-02 00:35:53
45.55.12.248	attackspambots	Aug 29 13:26:22 itv-usvr-01 sshd[8001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.12.248 user=mysql Aug 29 13:26:23 itv-usvr-01 sshd[8001]: Failed password for mysql from 45.55.12.248 port 36626 ssh2	2019-09-02 00:53:52
201.22.95.52	attack	Sep 1 15:32:17 eventyay sshd[32559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.95.52 Sep 1 15:32:19 eventyay sshd[32559]: Failed password for invalid user herbert from 201.22.95.52 port 45328 ssh2 Sep 1 15:38:06 eventyay sshd[1386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.95.52 ...	2019-09-02 00:38:55
206.189.76.64	attackbots	Sep 1 17:42:51 lnxded64 sshd[6172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.76.64 Sep 1 17:42:53 lnxded64 sshd[6172]: Failed password for invalid user deep from 206.189.76.64 port 33478 ssh2 Sep 1 17:48:12 lnxded64 sshd[7357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.76.64	2019-09-01 23:59:22
128.199.255.146	attackbotsspam	Sep 1 17:47:29 ubuntu-2gb-nbg1-dc3-1 sshd[20114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.255.146 Sep 1 17:47:31 ubuntu-2gb-nbg1-dc3-1 sshd[20114]: Failed password for invalid user bestyrer from 128.199.255.146 port 34674 ssh2 ...	2019-09-01 23:53:44
165.22.58.108	attackbotsspam	Sep 1 15:53:21 localhost sshd\[3593\]: Invalid user thiago from 165.22.58.108 port 39652 Sep 1 15:53:21 localhost sshd\[3593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.58.108 Sep 1 15:53:23 localhost sshd\[3593\]: Failed password for invalid user thiago from 165.22.58.108 port 39652 ssh2 Sep 1 15:58:06 localhost sshd\[3746\]: Invalid user legal3 from 165.22.58.108 port 55934 Sep 1 15:58:06 localhost sshd\[3746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.58.108 ...	2019-09-02 00:07:41
129.204.40.157	attack	2019-09-01T22:54:16.700834enmeeting.mahidol.ac.th sshd\[18797\]: User root from 129.204.40.157 not allowed because not listed in AllowUsers 2019-09-01T22:54:16.822363enmeeting.mahidol.ac.th sshd\[18797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.157 user=root 2019-09-01T22:54:18.460393enmeeting.mahidol.ac.th sshd\[18797\]: Failed password for invalid user root from 129.204.40.157 port 42776 ssh2 ...	2019-09-02 00:41:04

最近上报的IP列表

106.87.49.175	195.158.250.202	192.161.162.186	2a02:ab88:cbf:da80:115e:d4d3:f3ea:bdf
202.179.185.138	37.47.43.203	245.164.15.53	104.168.246.59
190.137.7.190	178.246.145.117	58.84.43.180	11.24.90.207
238.61.21.121	248.116.247.214	248.73.177.134	95.198.129.197
141.67.220.6	78.140.29.24	30.113.116.234	108.240.38.152