必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.109.226
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64796
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.109.226.		IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:16:27 CST 2022
;; MSG SIZE  rcvd: 108
HOST信息:
226.109.213.105.in-addr.arpa domain name pointer 105-213-109-226.access.mtnbusiness.co.za.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
226.109.213.105.in-addr.arpa	name = 105-213-109-226.access.mtnbusiness.co.za.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
222.217.68.117 attack
MultiHost/MultiPort Probe, Scan, Hack -
2019-10-13 03:10:23
112.64.32.118 attack
Oct 12 20:06:24 localhost sshd\[18816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118  user=root
Oct 12 20:06:27 localhost sshd\[18816\]: Failed password for root from 112.64.32.118 port 46730 ssh2
Oct 12 20:11:02 localhost sshd\[19287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118  user=root
2019-10-13 02:34:23
138.68.50.18 attack
Lines containing failures of 138.68.50.18
Oct  8 10:54:58 shared10 sshd[25902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18  user=r.r
Oct  8 10:55:00 shared10 sshd[25902]: Failed password for r.r from 138.68.50.18 port 39356 ssh2
Oct  8 10:55:00 shared10 sshd[25902]: Received disconnect from 138.68.50.18 port 39356:11: Bye Bye [preauth]
Oct  8 10:55:00 shared10 sshd[25902]: Disconnected from authenticating user r.r 138.68.50.18 port 39356 [preauth]
Oct  8 11:15:17 shared10 sshd[2113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18  user=r.r
Oct  8 11:15:19 shared10 sshd[2113]: Failed password for r.r from 138.68.50.18 port 54370 ssh2
Oct  8 11:15:20 shared10 sshd[2113]: Received disconnect from 138.68.50.18 port 54370:11: Bye Bye [preauth]
Oct  8 11:15:20 shared10 sshd[2113]: Disconnected from authenticating user r.r 138.68.50.18 port 54370 [preauth]
Oct  8 11:1........
------------------------------
2019-10-13 02:31:24
112.85.42.186 attackbots
Oct 13 00:39:49 areeb-Workstation sshd[29700]: Failed password for root from 112.85.42.186 port 34997 ssh2
Oct 13 00:39:52 areeb-Workstation sshd[29700]: Failed password for root from 112.85.42.186 port 34997 ssh2
...
2019-10-13 03:14:07
14.207.56.62 attackspam
Automatic report - XMLRPC Attack
2019-10-13 03:12:52
51.75.52.195 attackbotsspam
Oct 12 20:20:44 SilenceServices sshd[15368]: Failed password for root from 51.75.52.195 port 47588 ssh2
Oct 12 20:24:07 SilenceServices sshd[16268]: Failed password for root from 51.75.52.195 port 57954 ssh2
2019-10-13 02:37:52
158.69.117.126 attackspam
Lines containing failures of 158.69.117.126
/var/log/apache/pucorp.org.log:2019-10-12T15:29:40.615524+02:00 edughostname sshd[22354]: Received disconnect from 158.69.117.126 port 44832:11: Normal Shutdown, Thank you for playing [preauth]
/var/log/apache/pucorp.org.log:2019-10-12T15:29:40.616350+02:00 edughostname sshd[22354]: Disconnected from authenticating user r.r 158.69.117.126 port 44832 [preauth]
/var/log/apache/pucorp.org.log:2019-10-12T15:30:06.160551+02:00 edughostname sshd[22427]: Received disconnect from 158.69.117.126 port 35832:11: Normal Shutdown, Thank you for playing [preauth]
/var/log/apache/pucorp.org.log:2019-10-12T15:30:06.161228+02:00 edughostname sshd[22427]: Disconnected from authenticating user r.r 158.69.117.126 port 35832 [preauth]
/var/log/apache/pucorp.org.log:2019-10-12T15:30:34.236040+02:00 edughostname sshd[22544]: Received disconnect from 158.69.117.126 port 55094:11: Normal Shutdown, Thank you for playing [preauth]
/var/log/apache/pucorp.........
------------------------------
2019-10-13 03:08:48
209.177.94.56 attackspam
2019-10-10T14:34:11.576000shiva sshd[13954]: Unable to negotiate whostnameh 209.177.94.56 port 64540: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
2019-10-10T14:34:14.876242shiva sshd[13956]: Unable to negotiate whostnameh 209.177.94.56 port 49932: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
2019-10-10T14:34:18.284267shiva sshd[13958]: Unable to negotiate whostnameh 209.177.94.56 port 51617: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
2019-10-10T14:34:21.598907shiva sshd[13974]: Unable to negotiate whostnameh 209.177.94.56 port 53264: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie........
------------------------------
2019-10-13 03:13:36
206.189.151.204 attack
WordPress login Brute force / Web App Attack on client site.
2019-10-13 03:00:22
75.179.31.49 attackbots
CLDAP port
2019-10-13 03:07:23
114.221.138.187 attackspam
Oct 10 03:39:21 rb06 sshd[4354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.221.138.187  user=r.r
Oct 10 03:39:24 rb06 sshd[4354]: Failed password for r.r from 114.221.138.187 port 19895 ssh2
Oct 10 03:39:24 rb06 sshd[4354]: Received disconnect from 114.221.138.187: 11: Bye Bye [preauth]
Oct 10 03:43:24 rb06 sshd[4721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.221.138.187  user=r.r
Oct 10 03:43:26 rb06 sshd[4721]: Failed password for r.r from 114.221.138.187 port 38260 ssh2
Oct 10 03:43:26 rb06 sshd[4721]: Received disconnect from 114.221.138.187: 11: Bye Bye [preauth]
Oct 10 03:47:34 rb06 sshd[4807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.221.138.187  user=r.r
Oct 10 03:47:36 rb06 sshd[4807]: Failed password for r.r from 114.221.138.187 port 56623 ssh2
Oct 10 03:47:36 rb06 sshd[4807]: Received disconnect from 114.221.1........
-------------------------------
2019-10-13 03:04:09
46.101.76.236 attackbotsspam
Oct 12 20:40:15 xeon sshd[28105]: Failed password for root from 46.101.76.236 port 41150 ssh2
2019-10-13 02:57:02
159.203.201.169 attackbots
10/12/2019-10:10:47.962155 159.203.201.169 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-10-13 03:15:29
61.69.78.78 attackspambots
Automatic report - SSH Brute-Force Attack
2019-10-13 02:50:07
51.38.185.121 attack
SSH brute-force: detected 33 distinct usernames within a 24-hour window.
2019-10-13 02:55:51

最近上报的IP列表

105.213.109.40 105.213.109.41 105.213.109.43 105.213.109.44
105.213.109.56 105.213.109.49 105.213.109.71 105.213.110.102
105.213.109.94 105.213.110.106 105.213.110.113 105.213.110.124
105.213.110.142 105.213.110.152 105.213.110.178 105.213.110.16
105.213.110.184 105.213.110.151 105.213.110.189 105.213.110.195