105.213.85.199

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.85.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.85.199.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:18:21 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

199.85.213.105.in-addr.arpa domain name pointer 105-213-85-199.access.mtnbusiness.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.85.213.105.in-addr.arpa	name = 105-213-85-199.access.mtnbusiness.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.227.184.173	attackbotsspam	Honeypot hit.	2019-07-17 18:51:01
118.25.7.83	attack	Jul 17 12:23:16 eventyay sshd[17098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.7.83 Jul 17 12:23:18 eventyay sshd[17098]: Failed password for invalid user elias from 118.25.7.83 port 39306 ssh2 Jul 17 12:26:33 eventyay sshd[17864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.7.83 ...	2019-07-17 18:39:05
185.40.4.46	attackbots	Multiport scan : 545 ports scanned 1 25 101 105 107 109 120 124 128 130 153 154 156 163 180 187 199 200 300 400 401 402 405 408 411 448 464 501 502 503 505 506 522 537 548 555 556 557 563 610 620 625 627 635 636 665 666 681 701 702 704 705 708 709 711 777 780 799 802 805 818 820 847 850 862 880 881 883 885 886 887 889 893 902 911 922 990 992 994 997 1000 1001 1002 1004 1010 1011 1012 1023 1028 1032 1065 1123 1180 1185 1194 1200 1213 .....	2019-07-17 18:48:15
43.248.35.145	attack	" "	2019-07-17 18:35:16
202.29.39.1	attackbots	IP attempted unauthorised action	2019-07-17 19:08:00
128.199.52.45	attack	Jul 17 12:03:28 rpi sshd[16016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 Jul 17 12:03:30 rpi sshd[16016]: Failed password for invalid user student from 128.199.52.45 port 46192 ssh2	2019-07-17 18:32:24
187.111.221.229	attack	Jul 17 07:53:24 vdcadm1 sshd[25388]: reveeclipse mapping checking getaddrinfo for 187-111-221-229.virt.com.br [187.111.221.229] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 07:53:24 vdcadm1 sshd[25388]: User r.r from 187.111.221.229 not allowed because listed in DenyUsers Jul 17 07:53:33 vdcadm1 sshd[25391]: reveeclipse mapping checking getaddrinfo for 187-111-221-229.virt.com.br [187.111.221.229] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 07:53:33 vdcadm1 sshd[25391]: User r.r from 187.111.221.229 not allowed because listed in DenyUsers Jul 17 07:53:41 vdcadm1 sshd[25393]: reveeclipse mapping checking getaddrinfo for 187-111-221-229.virt.com.br [187.111.221.229] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 07:53:41 vdcadm1 sshd[25393]: User r.r from 187.111.221.229 not allowed because listed in DenyUsers Jul 17 07:53:41 vdcadm1 sshd[25394]: Received disconnect from 187.111.221.229: 11: disconnected by user Jul 17 07:53:46 vdcadm1 sshd[25398]: reveeclipse mapping checking g........ -------------------------------	2019-07-17 18:15:21
80.82.77.139	attack	Scanning random ports - tries to find possible vulnerable services	2019-07-17 18:18:55
36.77.62.161	attack	2019-07-17 x@x 2019-07-17 x@x 2019-07-17 x@x 2019-07-17 x@x 2019-07-17 08:52:25 dovecot_plain authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:11803: 535 Incorrect authentication data (set_id=ground) 2019-07-17 08:52:32 dovecot_login authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:11803: 535 Incorrect authentication data (set_id=ground) 2019-07-17 08:52:39 dovecot_plain authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:13309: 535 Incorrect authentication data (set_id=ground) 2019-07-17 08:52:41 dovecot_login authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:13309: 535 Incorrect authentication data (set_id=ground) 2019-07-17 x@x 2019-07-17 x@x 2019-07-17 x@x 2019-07-17 x@x 2019-07-17 08:52:55 dovecot_plain authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:16121: 535 Incorrect authentication data (set_id=ground) 2019-07-17 08:52:58 dovecot_login authenticator failed for (DESKTOP-Q9BLRSV) [36.77.62.161]:16121: 535 Incorrect authent........ ------------------------------	2019-07-17 18:06:02
189.80.12.242	attack	ENG,WP GET //wp-login.php	2019-07-17 18:51:57
46.41.149.207	attackspam	schuetzenmusikanten.de 46.41.149.207 \[17/Jul/2019:08:06:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5684 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 46.41.149.207 \[17/Jul/2019:08:06:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5650 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-17 18:57:23
112.237.51.217	attack	Telnet Server BruteForce Attack	2019-07-17 19:04:45
54.177.78.30	attack	xmlrpc attack	2019-07-17 19:10:30
51.68.215.113	attack	Jul 17 11:44:51 eventyay sshd[7391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.215.113 Jul 17 11:44:53 eventyay sshd[7391]: Failed password for invalid user mj from 51.68.215.113 port 45760 ssh2 Jul 17 11:50:09 eventyay sshd[8642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.215.113 ...	2019-07-17 18:31:12
181.127.167.131	attackspambots	2019-07-17T11:30:00.062222lon01.zurich-datacenter.net sshd\[27996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.127.167.131 user=redis 2019-07-17T11:30:01.956827lon01.zurich-datacenter.net sshd\[27996\]: Failed password for redis from 181.127.167.131 port 58092 ssh2 2019-07-17T11:30:04.391678lon01.zurich-datacenter.net sshd\[27996\]: Failed password for redis from 181.127.167.131 port 58092 ssh2 2019-07-17T11:30:06.758528lon01.zurich-datacenter.net sshd\[27996\]: Failed password for redis from 181.127.167.131 port 58092 ssh2 2019-07-17T11:30:08.541462lon01.zurich-datacenter.net sshd\[27996\]: Failed password for redis from 181.127.167.131 port 58092 ssh2 ...	2019-07-17 18:13:07

最近上报的IP列表

105.213.85.30	105.213.85.218	105.213.85.58	105.213.85.239
105.213.85.34	105.213.85.202	105.213.85.31	105.213.85.193
105.213.90.170	105.213.90.178	105.213.90.205	105.213.90.215
105.213.90.22	105.213.90.229	105.213.90.227	105.213.90.237
105.213.90.24	105.213.90.241	105.213.90.200	105.213.90.5