105.226.138.115

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): Telkom SA Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	HTTP/80/443/8080 Probe, BF, WP, Hack -	2020-04-20 05:00:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.226.138.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.226.138.115.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 05:00:08 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

115.138.226.105.in-addr.arpa domain name pointer 105-226-138-115.north.dsl.telkomsa.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
115.138.226.105.in-addr.arpa	name = 105-226-138-115.north.dsl.telkomsa.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
172.105.219.236	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-07-05 15:16:17
60.212.42.56	attackbotsspam	$f2bV_matches	2019-07-05 15:23:20
190.38.215.58	attackspambots	445/tcp 445/tcp [2019-07-04]2pkt	2019-07-05 15:49:26
107.170.240.64	attackspambots	" "	2019-07-05 15:27:41
45.40.203.242	attack	Jul 5 02:38:47 srv03 sshd\[23460\]: Invalid user zs from 45.40.203.242 port 50250 Jul 5 02:38:47 srv03 sshd\[23460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.203.242 Jul 5 02:38:50 srv03 sshd\[23460\]: Failed password for invalid user zs from 45.40.203.242 port 50250 ssh2	2019-07-05 15:39:20
5.62.19.38	attack	\[2019-07-05 08:42:37\] NOTICE\[9010\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2669' $callid: 1607899011-1218836479-350376500$ - Failed to authenticate \[2019-07-05 08:42:37\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-07-05T08:42:37.281+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1607899011-1218836479-350376500",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/5.62.19.38/2669",Challenge="1562308957/67e1a425429539186f67546dabcc0ce7",Response="8878be6b4cabada3dbc8b1b47f6cc2d4",ExpectedResponse="" \[2019-07-05 08:42:37\] NOTICE\[5109\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2669' $callid: 1607899011-1218836479-350376500$ - Failed to authenticate \[2019-07-05 08:42:37\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",Eve	2019-07-05 15:03:48
139.162.115.221	attackspambots	firewall-block, port(s): 9000/tcp	2019-07-05 15:48:23
179.171.34.129	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-05 15:45:15
164.132.57.16	attack	Jul 5 05:14:42 lnxmail61 sshd[16257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.57.16	2019-07-05 15:49:48
125.161.141.73	attack	9527/tcp 9527/tcp 9527/tcp... [2019-07-04]4pkt,1pt.(tcp)	2019-07-05 15:39:48
180.244.141.184	attack	firewall-block, port(s): 23/tcp	2019-07-05 15:44:39
176.213.157.199	attack	HTTP/80/443 Probe, BF, WP, Hack -	2019-07-05 15:40:28
185.159.82.9	attackbotsspam	Jul505:59:55server2kernel:Firewall:\UDP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=185.159.82.9DST=136.243.224.51LEN=68TOS=0x00PREC=0x00TTL=112ID=29808PROTO=UDPSPT=52046DPT=25LEN=48Jul506:00:00server2kernel:Firewall:\UDP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=185.159.82.9DST=136.243.224.51LEN=58TOS=0x00PREC=0x00TTL=112ID=7964PROTO=UDPSPT=52046DPT=25LEN=38Jul506:00:05server2kernel:Firewall:\UDP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=185.159.82.9DST=136.243.224.51LEN=40TOS=0x00PREC=0x00TTL=112ID=18865PROTO=UDPSPT=52046DPT=25LEN=20Jul506:00:10server2kernel:Firewall:\UDP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=185.159.82.9DST=136.243.224.51LEN=78TOS=0x00PREC=0x00TTL=112ID=30474PROTO=UDPSPT=52046DPT=25LEN=58Jul506:00:15server2kernel:Firewall:\UDP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=185.159.82.9DST=136.243.224.51LEN=36TOS=0x00PREC=0x00TTL=112ID=9231PROTO=	2019-07-05 15:22:56
201.216.193.65	attackbots	Jul 5 08:46:14 tuxlinux sshd[49988]: Invalid user amon from 201.216.193.65 port 56129 Jul 5 08:46:14 tuxlinux sshd[49988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.216.193.65 Jul 5 08:46:14 tuxlinux sshd[49988]: Invalid user amon from 201.216.193.65 port 56129 Jul 5 08:46:14 tuxlinux sshd[49988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.216.193.65 Jul 5 08:46:14 tuxlinux sshd[49988]: Invalid user amon from 201.216.193.65 port 56129 Jul 5 08:46:14 tuxlinux sshd[49988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.216.193.65 Jul 5 08:46:16 tuxlinux sshd[49988]: Failed password for invalid user amon from 201.216.193.65 port 56129 ssh2 ...	2019-07-05 15:06:44
54.38.82.14	attackbots	Jul 5 01:53:39 vps200512 sshd\[24786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 user=root Jul 5 01:53:41 vps200512 sshd\[24786\]: Failed password for root from 54.38.82.14 port 45201 ssh2 Jul 5 01:53:41 vps200512 sshd\[24788\]: Invalid user admin from 54.38.82.14 Jul 5 01:53:41 vps200512 sshd\[24788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 Jul 5 01:53:44 vps200512 sshd\[24788\]: Failed password for invalid user admin from 54.38.82.14 port 42133 ssh2	2019-07-05 15:33:30

最近上报的IP列表

103.131.71.81	102.42.132.40	188.15.23.187	201.182.72.250
189.78.81.201	119.155.14.27	66.81.131.135	224.236.31.111
178.135.33.101	30.9.10.151	127.52.121.84	177.255.205.99
234.225.78.244	102.40.92.26	191.240.207.11	132.181.225.122
136.205.79.54	204.69.81.254	23.212.93.145	153.109.163.209