111.229.242.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Faster Internet Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Oct 7 21:43:42 server sshd[18445]: Failed password for root from 111.229.242.119 port 51892 ssh2 Oct 7 21:47:28 server sshd[20480]: Failed password for root from 111.229.242.119 port 41676 ssh2 Oct 7 21:51:10 server sshd[22673]: Failed password for root from 111.229.242.119 port 59696 ssh2	2020-10-08 05:46:21
attack	Oct 6 20:51:39 django-0 sshd[14580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.119 user=root Oct 6 20:51:41 django-0 sshd[14580]: Failed password for root from 111.229.242.119 port 54798 ssh2 ...	2020-10-07 14:01:11
attack	Aug 29 08:15:58 lanister sshd[28280]: Invalid user newuser from 111.229.242.119 Aug 29 08:15:58 lanister sshd[28280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.119 Aug 29 08:15:58 lanister sshd[28280]: Invalid user newuser from 111.229.242.119 Aug 29 08:16:00 lanister sshd[28280]: Failed password for invalid user newuser from 111.229.242.119 port 40396 ssh2	2020-08-30 03:55:05
attackspam	bruteforce detected	2020-08-28 03:40:31

相同子网IP讨论:

IP	类型	评论内容	时间
111.229.242.156	attack	Aug 29 15:54:53 lukav-desktop sshd\[13645\]: Invalid user konstantin from 111.229.242.156 Aug 29 15:54:53 lukav-desktop sshd\[13645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.156 Aug 29 15:54:55 lukav-desktop sshd\[13645\]: Failed password for invalid user konstantin from 111.229.242.156 port 35210 ssh2 Aug 29 16:02:03 lukav-desktop sshd\[13693\]: Invalid user ams from 111.229.242.156 Aug 29 16:02:03 lukav-desktop sshd\[13693\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.156	2020-08-30 01:31:44
111.229.242.156	attackspambots	Aug 26 23:15:48 eventyay sshd[32147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.156 Aug 26 23:15:51 eventyay sshd[32147]: Failed password for invalid user dmy from 111.229.242.156 port 54776 ssh2 Aug 26 23:21:11 eventyay sshd[32305]: Failed password for root from 111.229.242.156 port 40570 ssh2 ...	2020-08-27 06:06:04
111.229.242.156	attackspam	frenzy	2020-08-15 13:05:53
111.229.242.146	attack	bruteforce detected	2020-08-12 13:10:55
111.229.242.146	attackspam	2020-08-08 09:21:50.333355-0500 localhost sshd[595]: Failed password for root from 111.229.242.146 port 55418 ssh2	2020-08-08 23:22:38
111.229.242.146	attackspambots	Jul 30 21:26:15 sip sshd[7529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146 Jul 30 21:26:17 sip sshd[7529]: Failed password for invalid user hackingtools from 111.229.242.146 port 55770 ssh2 Jul 30 21:34:39 sip sshd[10722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146	2020-07-31 04:04:44
111.229.242.146	attackbots	Invalid user ubuntu from 111.229.242.146 port 51968	2020-07-30 13:47:10
111.229.242.146	attackspambots	Invalid user ubuntu from 111.229.242.146 port 51968	2020-07-29 13:21:25
111.229.242.146	attackspam	2020-07-19T19:37:02.182279n23.at sshd[29739]: Invalid user elastic from 111.229.242.146 port 59732 2020-07-19T19:37:04.276329n23.at sshd[29739]: Failed password for invalid user elastic from 111.229.242.146 port 59732 ssh2 2020-07-19T19:47:23.251036n23.at sshd[38015]: Invalid user sge from 111.229.242.146 port 50430 ...	2020-07-20 04:22:05
111.229.242.146	attack	Invalid user steam from 111.229.242.146 port 45486	2020-07-18 20:16:32
111.229.242.146	attackspambots	Invalid user opal from 111.229.242.146 port 41454	2020-07-18 06:48:02
111.229.242.146	attackspam	Jul 12 14:42:34 home sshd[15854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146 Jul 12 14:42:37 home sshd[15854]: Failed password for invalid user antonina from 111.229.242.146 port 44360 ssh2 Jul 12 14:46:43 home sshd[16727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146 ...	2020-07-12 23:38:51
111.229.242.146	attack	$f2bV_matches	2020-07-06 14:11:01
111.229.242.146	attackbotsspam	Jun 25 02:32:49 sticky sshd\[23143\]: Invalid user x from 111.229.242.146 port 53684 Jun 25 02:32:49 sticky sshd\[23143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146 Jun 25 02:32:50 sticky sshd\[23143\]: Failed password for invalid user x from 111.229.242.146 port 53684 ssh2 Jun 25 02:37:21 sticky sshd\[23202\]: Invalid user ftpuser from 111.229.242.146 port 48206 Jun 25 02:37:21 sticky sshd\[23202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.242.146 Jun 25 02:37:23 sticky sshd\[23202\]: Failed password for invalid user ftpuser from 111.229.242.146 port 48206 ssh2	2020-06-25 08:40:44
111.229.242.156	attackspambots	Jun 18 13:09:41 ip-172-31-61-156 sshd[12418]: Invalid user dejan from 111.229.242.156 ...	2020-06-19 01:21:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.229.242.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.229.242.119.		IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082702 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 03:40:28 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 119.242.229.111.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.242.229.111.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
188.214.132.73	attack	NAME : BALTICSERVERS-LT-DEDICATED CIDR : 188.214.132.0/25 SYN Flood DDoS Attack Lithuania - block certain countries :) IP: 188.214.132.73 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-03 07:07:53
111.61.100.67	attackbotsspam	22/tcp 22/tcp [2019-08-02]2pkt	2019-08-03 06:41:47
92.98.82.168	attack	2323/tcp 23/tcp [2019-07-31/08-01]2pkt	2019-08-03 06:16:22
61.160.247.47	attack	2375/tcp 1433/tcp 3306/tcp... [2019-07-31/08-02]9pkt,3pt.(tcp)	2019-08-03 06:37:28
117.93.23.252	attackbots	leo_www	2019-08-03 06:24:54
197.253.6.249	attackspam	2019-08-02T22:39:00.072061abusebot-2.cloudsearch.cf sshd\[24826\]: Invalid user iroda from 197.253.6.249 port 50763	2019-08-03 06:40:39
180.114.168.66	attackbotsspam	23/tcp [2019-08-02]1pkt	2019-08-03 06:58:00
200.61.187.49	attack	Automatic report - Banned IP Access	2019-08-03 06:33:44
125.231.83.220	attackbots	" "	2019-08-03 06:54:53
120.224.101.134	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-03 06:36:18
5.188.86.139	attack	Port scan on 6 port(s): 7921 7922 7929 8000 8005 8006	2019-08-03 06:46:33
41.67.59.14	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-08-03 06:44:19
81.22.45.100	attack	Aug 2 22:23:37 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.100 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58100 PROTO=TCP SPT=56397 DPT=26822 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-03 07:06:34
162.247.74.74	attackspambots	k+ssh-bruteforce	2019-08-03 06:22:36
114.239.177.20	attackbotsspam	Brute force attempt	2019-08-03 06:55:37

最近上报的IP列表

65.185.239.3	91.244.85.75	14.184.176.116	201.198.47.216
195.146.10.115	187.178.163.87	109.153.156.79	190.74.230.47
66.145.139.234	184.154.249.167	163.78.87.70	170.27.25.192
2.224.189.30	205.39.236.18	181.233.214.191	13.74.46.65
192.241.139.236	61.33.161.205	21.16.11.230	180.248.41.243