105.227.116.68

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.227.116.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60135
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.227.116.68.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 21:02:47 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

68.116.227.105.in-addr.arpa domain name pointer 105-227-116-68.south.dsl.telkomsa.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.116.227.105.in-addr.arpa	name = 105-227-116-68.south.dsl.telkomsa.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
37.70.217.215	attack	2020-07-18T22:44:01.693674snf-827550 sshd[5605]: Invalid user br from 37.70.217.215 port 38024 2020-07-18T22:44:03.536874snf-827550 sshd[5605]: Failed password for invalid user br from 37.70.217.215 port 38024 ssh2 2020-07-18T22:48:15.101176snf-827550 sshd[6414]: Invalid user tomato from 37.70.217.215 port 47792 ...	2020-07-19 07:41:34
49.88.112.60	attackspam	Jul 19 00:25:30 server sshd[15004]: Failed password for root from 49.88.112.60 port 63760 ssh2 Jul 19 00:48:15 server sshd[35241]: Failed password for root from 49.88.112.60 port 26157 ssh2 Jul 19 00:48:17 server sshd[35241]: Failed password for root from 49.88.112.60 port 26157 ssh2	2020-07-19 07:49:30
106.13.93.252	attackspambots	$f2bV_matches	2020-07-19 07:31:17
154.0.171.165	attackbots	blogonese.net 154.0.171.165 [18/Jul/2020:21:48:13 +0200] "POST /wp-login.php HTTP/1.1" 200 6021 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" blogonese.net 154.0.171.165 [18/Jul/2020:21:48:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4051 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-19 07:39:19
62.14.242.34	attack	2020-07-18T19:05:52.075711vps2034 sshd[15887]: Invalid user user1 from 62.14.242.34 port 40434 2020-07-18T19:05:52.082319vps2034 sshd[15887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.242.14.62.static.jazztel.es 2020-07-18T19:05:52.075711vps2034 sshd[15887]: Invalid user user1 from 62.14.242.34 port 40434 2020-07-18T19:05:54.208578vps2034 sshd[15887]: Failed password for invalid user user1 from 62.14.242.34 port 40434 ssh2 2020-07-18T19:09:46.565804vps2034 sshd[25437]: Invalid user work from 62.14.242.34 port 47748 ...	2020-07-19 07:31:50
116.31.140.37	attackbots	[Sun Jul 19 02:48:04.926186 2020] [:error] [pid 22715:tid 140632588613376] [client 116.31.140.37:58965] [client 116.31.140.37] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XxNR9Fcr71isoJ1NnSUOZgAAAcI"] ...	2020-07-19 07:52:39
154.221.31.153	attackspam	Jul 19 02:00:16 lukav-desktop sshd\[10244\]: Invalid user cdc from 154.221.31.153 Jul 19 02:00:16 lukav-desktop sshd\[10244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.221.31.153 Jul 19 02:00:17 lukav-desktop sshd\[10244\]: Failed password for invalid user cdc from 154.221.31.153 port 39198 ssh2 Jul 19 02:08:50 lukav-desktop sshd\[3862\]: Invalid user postgres from 154.221.31.153 Jul 19 02:08:50 lukav-desktop sshd\[3862\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.221.31.153	2020-07-19 07:46:03
24.142.34.181	attack	Jul 19 01:37:24 ns381471 sshd[12499]: Failed password for mysql from 24.142.34.181 port 39104 ssh2 Jul 19 01:40:52 ns381471 sshd[12813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.142.34.181	2020-07-19 07:51:55
101.4.110.154	attack	[MK-VM3] Blocked by UFW	2020-07-19 08:01:53
64.227.35.132	attackspambots	none	2020-07-19 07:43:17
14.221.177.238	attackspambots	Failed password for invalid user git from 14.221.177.238 port 54566 ssh2	2020-07-19 07:59:04
222.186.173.226	attackbotsspam	Jul 19 01:24:02 server sshd[5683]: Failed none for root from 222.186.173.226 port 37753 ssh2 Jul 19 01:24:04 server sshd[5683]: Failed password for root from 222.186.173.226 port 37753 ssh2 Jul 19 01:24:08 server sshd[5683]: Failed password for root from 222.186.173.226 port 37753 ssh2	2020-07-19 07:32:58
194.26.29.107	attackspam	Unauthorized connection attempt IP: 194.26.29.107 Ports affected Simple Mail Transfer (25) HTTP protocol over TLS/SSL (443) Message Submission (587) IMAP over TLS protocol (993) Abuse Confidence rating 78% ASN Details AS23470 RELIABLESITE Russia (RU) CIDR 194.26.29.0/24 Log Date: 18/07/2020 10:12:50 PM UTC	2020-07-19 07:27:18
191.96.59.96	attack	SQL Injection Attempt.	2020-07-19 07:23:26
159.65.137.122	attackspam	Invalid user saulo from 159.65.137.122 port 41620	2020-07-19 07:56:45

最近上报的IP列表

105.227.115.155	105.227.120.220	105.227.118.80	194.108.255.77
105.227.123.41	105.227.125.70	105.227.122.211	105.227.127.14
105.227.14.181	105.227.141.60	105.227.13.45	105.227.130.167
105.227.143.131	105.227.140.67	105.227.140.44	101.200.36.219
105.227.15.176	105.227.15.213	105.227.153.21	105.227.152.93