105.213.85.199

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.85.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.85.199.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:18:21 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

199.85.213.105.in-addr.arpa domain name pointer 105-213-85-199.access.mtnbusiness.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.85.213.105.in-addr.arpa	name = 105-213-85-199.access.mtnbusiness.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
134.122.81.124	attack	Invalid user jackie from 134.122.81.124 port 37786	2020-04-13 15:21:41
192.162.101.91	attack	192.162.101.91 - - \[13/Apr/2020:05:56:04 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 854 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36" 192.162.101.91 - - \[13/Apr/2020:05:56:04 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 855 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36" 192.162.101.91 - - \[13/Apr/2020:05:56:05 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 854 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36"	2020-04-13 14:55:14
183.88.217.46	attackspambots	Dovecot Invalid User Login Attempt.	2020-04-13 15:19:39
115.112.61.218	attackspambots	Apr 13 05:47:11 v22018086721571380 sshd[2185]: Failed password for invalid user admin from 115.112.61.218 port 52124 ssh2 Apr 13 05:56:11 v22018086721571380 sshd[4163]: Failed password for invalid user dong123 from 115.112.61.218 port 53914 ssh2	2020-04-13 14:49:04
122.144.196.122	attackspambots	Apr 13 03:56:26 scw-6657dc sshd[9109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.196.122 user=root Apr 13 03:56:26 scw-6657dc sshd[9109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.196.122 user=root Apr 13 03:56:27 scw-6657dc sshd[9109]: Failed password for root from 122.144.196.122 port 50420 ssh2 ...	2020-04-13 14:40:52
212.32.245.156	attack	(pop3d) Failed POP3 login from 212.32.245.156 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 13 08:26:09 ir1 dovecot[566034]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=212.32.245.156, lip=5.63.12.44, session=	2020-04-13 14:48:23
123.28.27.4	attack	1586750190 - 04/13/2020 05:56:30 Host: 123.28.27.4/123.28.27.4 Port: 445 TCP Blocked	2020-04-13 14:40:38
101.99.20.59	attack	Apr 13 05:47:19 tuxlinux sshd[19538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59 user=root Apr 13 05:47:22 tuxlinux sshd[19538]: Failed password for root from 101.99.20.59 port 51634 ssh2 Apr 13 05:47:19 tuxlinux sshd[19538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.20.59 user=root Apr 13 05:47:22 tuxlinux sshd[19538]: Failed password for root from 101.99.20.59 port 51634 ssh2 Apr 13 06:03:25 tuxlinux sshd[19840]: Invalid user frank from 101.99.20.59 port 45066 ...	2020-04-13 15:11:19
188.161.202.34	attackbotsspam	VoIP Brute Force - 188.161.202.34 - Auto Report ...	2020-04-13 15:17:36
80.211.34.124	attackspambots	$f2bV_matches	2020-04-13 15:05:20
213.148.198.36	attackspam	Apr 13 08:55:39 gw1 sshd[2611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.148.198.36 Apr 13 08:55:41 gw1 sshd[2611]: Failed password for invalid user abcd from 213.148.198.36 port 36414 ssh2 ...	2020-04-13 15:16:17
212.81.57.120	attack	SpamScore above: 10.0	2020-04-13 15:04:18
84.42.240.51	attack	[MonApr1305:55:19.9007072020][:error][pid2418:tid47172219053824][client84.42.240.51:52986][client84.42.240.51]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"wp-config\\\\\\\\.php"atARGS:img.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"3545"][id"381206"][rev"3"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:AccesstoWordPressconfigurationfileblocked"][data"wp-config.php"][severity"CRITICAL"][hostname"darani.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XpPip05bFmXaJTG4bVX0kQAAAAA"][MonApr1305:56:30.2581962020][:error][pid2418:tid47172320012032][client84.42.240.51:54388][client84.42.240.51]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php$\?\\\\\\\\.$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|tmp\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1254"][id"390597"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attemptto	2020-04-13 14:39:48
100.21.17.85	attackspam	Apr 13 08:01:33 silence02 sshd[15462]: Failed password for root from 100.21.17.85 port 52178 ssh2 Apr 13 08:05:41 silence02 sshd[15842]: Failed password for www-data from 100.21.17.85 port 35214 ssh2	2020-04-13 14:50:41
171.103.57.210	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-04-13 15:03:34

最近上报的IP列表

105.213.85.30	105.213.85.218	105.213.85.58	105.213.85.239
105.213.85.34	105.213.85.202	105.213.85.31	105.213.85.193
105.213.90.170	105.213.90.178	105.213.90.205	105.213.90.215
105.213.90.22	105.213.90.229	105.213.90.227	105.213.90.237
105.213.90.24	105.213.90.241	105.213.90.200	105.213.90.5