105.225.6.128 - IPInfo

基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Telkom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
105.225.61.52	attackspambots	Unauthorized connection attempt detected from IP address 105.225.61.52 to port 23 [J]	2020-02-23 19:02:56
105.225.61.206	attack	Automatic report - Port Scan Attack	2019-11-18 23:41:12
105.225.62.204	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 18:17:15,791 INFO [amun_request_handler] PortScan Detected on Port: 445 (105.225.62.204)	2019-09-17 07:20:57
105.225.67.43	attack	2019-07-03 18:32:27 H=(105-225-67-43.south.dsl.telkomsa.net) [105.225.67.43]:29141 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=105.225.67.43) 2019-07-03 18:32:28 unexpected disconnection while reading SMTP command from (105-225-67-43.south.dsl.telkomsa.net) [105.225.67.43]:29141 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-03 18:48:00 H=(105-225-67-43.south.dsl.telkomsa.net) [105.225.67.43]:34443 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=105.225.67.43) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.225.67.43	2019-07-06 14:58:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.6.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63273
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.225.6.128.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023012300 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 23 16:05:44 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

128.6.225.105.in-addr.arpa domain name pointer 105-225-6-128.north.dsl.telkomsa.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
128.6.225.105.in-addr.arpa	name = 105-225-6-128.north.dsl.telkomsa.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.154.168.201	attack	Sep 5 11:33:32 gw1 sshd[11032]: Failed password for root from 45.154.168.201 port 49650 ssh2 Sep 5 11:33:43 gw1 sshd[11032]: error: maximum authentication attempts exceeded for root from 45.154.168.201 port 49650 ssh2 [preauth] ...	2020-09-05 16:11:26
79.141.175.115	attackbots	Spam	2020-09-05 16:04:19
183.87.157.202	attackspam	(sshd) Failed SSH login from 183.87.157.202 (IN/India/202-157-87-183.mysipl.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 00:57:28 optimus sshd[31875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 user=root Sep 5 00:57:31 optimus sshd[31875]: Failed password for root from 183.87.157.202 port 51856 ssh2 Sep 5 01:13:19 optimus sshd[4271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 user=root Sep 5 01:13:21 optimus sshd[4271]: Failed password for root from 183.87.157.202 port 52242 ssh2 Sep 5 01:17:31 optimus sshd[5645]: Invalid user admin from 183.87.157.202	2020-09-05 15:32:46
51.75.52.118	attackspambots	Sep 4 20:46:04 auw2 sshd\[7832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.52.118 user=root Sep 4 20:46:07 auw2 sshd\[7832\]: Failed password for root from 51.75.52.118 port 45696 ssh2 Sep 4 20:46:09 auw2 sshd\[7832\]: Failed password for root from 51.75.52.118 port 45696 ssh2 Sep 4 20:46:12 auw2 sshd\[7832\]: Failed password for root from 51.75.52.118 port 45696 ssh2 Sep 4 20:46:14 auw2 sshd\[7832\]: Failed password for root from 51.75.52.118 port 45696 ssh2	2020-09-05 15:44:47
140.143.211.45	attackspambots	Invalid user link from 140.143.211.45 port 46424	2020-09-05 16:00:27
218.155.81.199	attackbotsspam	Sep 4 19:00:49 mxgate1 postfix/postscreen[26039]: CONNECT from [218.155.81.199]:39775 to [176.31.12.44]:25 Sep 4 19:00:49 mxgate1 postfix/dnsblog[26044]: addr 218.155.81.199 listed by domain zen.spamhaus.org as 127.0.0.4 Sep 4 19:00:49 mxgate1 postfix/dnsblog[26044]: addr 218.155.81.199 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 4 19:00:49 mxgate1 postfix/dnsblog[26040]: addr 218.155.81.199 listed by domain cbl.abuseat.org as 127.0.0.2 Sep 4 19:00:49 mxgate1 postfix/dnsblog[26042]: addr 218.155.81.199 listed by domain b.barracudacentral.org as 127.0.0.2 Sep 4 19:00:49 mxgate1 postfix/dnsblog[26043]: addr 218.155.81.199 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Sep 4 19:00:55 mxgate1 postfix/postscreen[26039]: DNSBL rank 5 for [218.155.81.199]:39775 Sep x@x Sep 4 19:00:56 mxgate1 postfix/postscreen[26039]: HANGUP after 1.2 from [218.155.81.199]:39775 in tests after SMTP handshake Sep 4 19:00:56 mxgate1 postfix/postscreen[26039]: DISCONNECT [218.1........ -------------------------------	2020-09-05 16:03:08
151.80.149.75	attackbotsspam	Invalid user plex from 151.80.149.75 port 41810	2020-09-05 16:07:48
27.155.41.8	attack	Automatic report - Port Scan Attack	2020-09-05 16:12:03
200.117.185.116	attack	Honeypot attack, port: 445, PTR: host116.200-117-185.telecom.net.ar.	2020-09-05 16:03:29
103.146.63.44	attackbots	$f2bV_matches	2020-09-05 15:53:14
170.130.63.95	attack	Registration form abuse	2020-09-05 15:39:46
64.213.148.44	attack	21 attempts against mh-ssh on cloud	2020-09-05 15:48:47
182.190.198.174	attack	Sep 4 18:49:15 mellenthin postfix/smtpd[32584]: NOQUEUE: reject: RCPT from unknown[182.190.198.174]: 554 5.7.1 Service unavailable; Client host [182.190.198.174] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/182.190.198.174; from= to= proto=ESMTP helo=<[182.190.198.174]>	2020-09-05 15:47:56
112.85.42.174	attackspambots	Sep 5 04:33:12 vps46666688 sshd[25883]: Failed password for root from 112.85.42.174 port 19583 ssh2 Sep 5 04:33:26 vps46666688 sshd[25883]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 19583 ssh2 [preauth] ...	2020-09-05 15:35:16
193.228.91.123	attack	Sep 2 02:33:20 h2855990 sshd[751133]: Did not receive identification string from 193.228.91.123 port 48716 Sep 2 02:33:37 h2855990 sshd[751135]: Received disconnect from 193.228.91.123 port 42246:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 02:33:37 h2855990 sshd[751135]: Disconnected from 193.228.91.123 port 42246 [preauth] Sep 2 02:34:01 h2855990 sshd[751142]: Received disconnect from 193.228.91.123 port 41384:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 02:34:01 h2855990 sshd[751142]: Disconnected from 193.228.91.123 port 41384 [preauth] Sep 2 02:34:27 h2855990 sshd[751224]: Received disconnect from 193.228.91.123 port 40524:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 02:34:27 h2855990 sshd[751224]: Disconnected from 193.228.91.123 port 40524 [preauth] Sep 2 02:34:53 h2855990 sshd[751228]: Received disconnect from 193.228.91.123 port 39682:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 02:34:53 h2855990 sshd[751228]: Di	2020-09-05 16:03:52

最近上报的IP列表

87.208.115.33	142.75.89.157	126.123.65.55	121.202.108.107
138.59.141.188	21.253.126.213	245.222.108.76	35.2.80.225
121.158.187.185	223.130.30.26	218.230.155.141	153.227.121.144
218.143.119.1	187.203.187.186	0.135.1.6	43.104.170.252
32.117.123.250	46.22.161.138	185.156.233.90	63.159.222.149