105.119.38.34 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Nigeria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.119.38.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21099
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.119.38.34.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023112203 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 23 10:13:56 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

Host 34.38.119.105.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.38.119.105.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
91.137.8.221	attackbotsspam	Sep 6 20:46:36 php1 sshd\[30667\]: Invalid user password from 91.137.8.221 Sep 6 20:46:36 php1 sshd\[30667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 6 20:46:38 php1 sshd\[30667\]: Failed password for invalid user password from 91.137.8.221 port 55510 ssh2 Sep 6 20:50:39 php1 sshd\[31021\]: Invalid user frappe from 91.137.8.221 Sep 6 20:50:39 php1 sshd\[31021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221	2019-09-07 15:01:37
37.187.90.62	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-09-07 15:03:02
217.112.128.201	attackbotsspam	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-09-07 15:27:31
106.52.89.128	attackspam	$f2bV_matches	2019-09-07 14:52:15
43.249.55.140	attackspambots	DATE:2019-09-07 02:38:08, IP:43.249.55.140, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-09-07 14:49:54
91.194.211.40	attackbots	Sep 7 05:37:58 DAAP sshd[11989]: Invalid user factorio from 91.194.211.40 port 37662 ...	2019-09-07 15:00:22
129.144.183.126	attackspam	Sep 6 14:32:59 kapalua sshd\[16009\]: Invalid user 1234 from 129.144.183.126 Sep 6 14:32:59 kapalua sshd\[16009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-183-126.compute.oraclecloud.com Sep 6 14:33:01 kapalua sshd\[16009\]: Failed password for invalid user 1234 from 129.144.183.126 port 36504 ssh2 Sep 6 14:38:22 kapalua sshd\[16591\]: Invalid user password from 129.144.183.126 Sep 6 14:38:22 kapalua sshd\[16591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-129-144-183-126.compute.oraclecloud.com	2019-09-07 14:41:28
78.84.12.76	attack	[Sat Sep 07 03:39:21.089807 2019] [:error] [pid 206218] [client 78.84.12.76:45393] [client 78.84.12.76] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XXNQmXD1zuld8o4xRLE-IQAAAAM"] ...	2019-09-07 14:47:24
209.97.167.163	attackbotsspam	Sep 7 09:15:02 s64-1 sshd[19978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.163 Sep 7 09:15:04 s64-1 sshd[19978]: Failed password for invalid user ark from 209.97.167.163 port 36828 ssh2 Sep 7 09:21:15 s64-1 sshd[20052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.163 ...	2019-09-07 15:26:05
104.131.111.64	attackbots	blacklist username jenkins Invalid user jenkins from 104.131.111.64 port 38633	2019-09-07 15:19:58
192.227.252.25	attack	Sep 7 09:58:12 site3 sshd\[142375\]: Invalid user ubuntu from 192.227.252.25 Sep 7 09:58:12 site3 sshd\[142375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.25 Sep 7 09:58:14 site3 sshd\[142375\]: Failed password for invalid user ubuntu from 192.227.252.25 port 58536 ssh2 Sep 7 10:03:47 site3 sshd\[142443\]: Invalid user gituser from 192.227.252.25 Sep 7 10:03:47 site3 sshd\[142443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.25 ...	2019-09-07 15:18:57
94.177.175.17	attackbotsspam	Sep 7 07:18:51 hb sshd\[8990\]: Invalid user web1 from 94.177.175.17 Sep 7 07:18:51 hb sshd\[8990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.175.17 Sep 7 07:18:54 hb sshd\[8990\]: Failed password for invalid user web1 from 94.177.175.17 port 40802 ssh2 Sep 7 07:23:05 hb sshd\[9353\]: Invalid user webpass from 94.177.175.17 Sep 7 07:23:05 hb sshd\[9353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.175.17	2019-09-07 15:29:17
218.245.1.169	attack	Sep 6 21:06:38 web9 sshd\[17461\]: Invalid user p@ssw0rd from 218.245.1.169 Sep 6 21:06:38 web9 sshd\[17461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.245.1.169 Sep 6 21:06:40 web9 sshd\[17461\]: Failed password for invalid user p@ssw0rd from 218.245.1.169 port 61501 ssh2 Sep 6 21:14:39 web9 sshd\[19059\]: Invalid user 12345 from 218.245.1.169 Sep 6 21:14:39 web9 sshd\[19059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.245.1.169	2019-09-07 15:22:42
77.247.109.72	attack	\[2019-09-07 02:15:03\] NOTICE\[1827\] chan_sip.c: Registration from '"200" \' failed for '77.247.109.72:6292' - Wrong password \[2019-09-07 02:15:03\] SECURITY\[1849\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-07T02:15:03.458-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="200",SessionID="0x7fd9a819fa08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.72/6292",Challenge="1c730616",ReceivedChallenge="1c730616",ReceivedHash="c25bd75613c6eade4ee3d28482904f39" \[2019-09-07 02:15:03\] NOTICE\[1827\] chan_sip.c: Registration from '"200" \' failed for '77.247.109.72:6292' - Wrong password \[2019-09-07 02:15:03\] SECURITY\[1849\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-07T02:15:03.626-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="200",SessionID="0x7fd9a81cb558",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.2	2019-09-07 14:36:55
122.225.200.114	attackspambots	$f2bV_matches	2019-09-07 14:43:16

最近上报的IP列表

105.119.27.59	105.119.244.11	105.119.191.245	105.119.159.33
105.119.240.154	105.12.120.85	105.119.9.54	105.119.34.1
105.119.163.247	105.119.253.251	105.119.118.127	105.12.104.79
105.119.252.80	105.119.209.13	105.119.156.94	105.119.132.88
105.119.60.161	105.119.171.122	105.119.13.41	105.119.168.65