111.231.219.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Faster Internet Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Mar 18 13:00:11 combo sshd[19901]: Failed password for invalid user ldapuser from 111.231.219.142 port 51472 ssh2 Mar 18 13:05:55 combo sshd[20418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 user=root Mar 18 13:05:56 combo sshd[20418]: Failed password for root from 111.231.219.142 port 54643 ssh2 ...	2020-03-19 04:38:46
attack	Nov 30 21:04:31 woltan sshd[5452]: Failed password for invalid user ckp-debica from 111.231.219.142 port 35592 ssh2	2020-03-10 08:04:37
attackbots	Unauthorized connection attempt detected from IP address 111.231.219.142 to port 2220 [J]	2020-02-05 19:06:01
attack	Dec 31 08:37:19 dedicated sshd[30112]: Invalid user support from 111.231.219.142 port 41462	2019-12-31 16:52:52
attackspambots	Nov 16 20:05:09 icinga sshd[7174]: Failed password for root from 111.231.219.142 port 52387 ssh2 Nov 16 20:32:22 icinga sshd[9783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 ...	2019-11-17 03:46:12
attackbotsspam	(sshd) Failed SSH login from 111.231.219.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Nov 14 16:05:17 s1 sshd[22122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 user=root Nov 14 16:05:19 s1 sshd[22122]: Failed password for root from 111.231.219.142 port 57364 ssh2 Nov 14 16:27:56 s1 sshd[22908]: Invalid user www-sftp-shared from 111.231.219.142 port 53585 Nov 14 16:27:58 s1 sshd[22908]: Failed password for invalid user www-sftp-shared from 111.231.219.142 port 53585 ssh2 Nov 14 16:34:09 s1 sshd[23108]: Invalid user postgres from 111.231.219.142 port 43729	2019-11-15 03:43:27
attackbots	Nov 6 10:06:53 firewall sshd[32646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Nov 6 10:06:53 firewall sshd[32646]: Invalid user ts3srv from 111.231.219.142 Nov 6 10:06:55 firewall sshd[32646]: Failed password for invalid user ts3srv from 111.231.219.142 port 39712 ssh2 ...	2019-11-06 21:52:24
attack	Nov 4 13:41:27 localhost sshd\[90155\]: Invalid user waken from 111.231.219.142 port 34486 Nov 4 13:41:27 localhost sshd\[90155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Nov 4 13:41:29 localhost sshd\[90155\]: Failed password for invalid user waken from 111.231.219.142 port 34486 ssh2 Nov 4 13:48:00 localhost sshd\[90316\]: Invalid user p4$$w0rd$1 from 111.231.219.142 port 53146 Nov 4 13:48:00 localhost sshd\[90316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 ...	2019-11-04 22:08:55
attack	$f2bV_matches	2019-10-31 21:27:29
attack	2019-10-28T05:57:52.631410 sshd[23493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 user=root 2019-10-28T05:57:54.467951 sshd[23493]: Failed password for root from 111.231.219.142 port 47735 ssh2 2019-10-28T06:04:01.896212 sshd[23622]: Invalid user cybaek from 111.231.219.142 port 37492 2019-10-28T06:04:01.909265 sshd[23622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 2019-10-28T06:04:01.896212 sshd[23622]: Invalid user cybaek from 111.231.219.142 port 37492 2019-10-28T06:04:04.071447 sshd[23622]: Failed password for invalid user cybaek from 111.231.219.142 port 37492 ssh2 ...	2019-10-28 15:01:24
attackbots	2019-10-17T14:29:52.366220abusebot-8.cloudsearch.cf sshd\[2380\]: Invalid user 1QAZZAQ!@ from 111.231.219.142 port 37790	2019-10-18 02:04:27
attackspambots	Oct 17 07:41:00 MK-Soft-VM3 sshd[14179]: Failed password for root from 111.231.219.142 port 32772 ssh2 ...	2019-10-17 14:26:21
attack	Oct 14 03:44:15 ny01 sshd[16613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Oct 14 03:44:17 ny01 sshd[16613]: Failed password for invalid user 1234@Abcd from 111.231.219.142 port 39238 ssh2 Oct 14 03:50:18 ny01 sshd[17141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142	2019-10-14 16:26:41
attackspambots	Oct 6 06:54:24 saschabauer sshd[20186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Oct 6 06:54:26 saschabauer sshd[20186]: Failed password for invalid user Admin!@ from 111.231.219.142 port 46029 ssh2	2019-10-06 13:51:27
attackbotsspam	ssh failed login	2019-10-03 04:16:14
attackspambots	Oct 2 09:54:28 areeb-Workstation sshd[3121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Oct 2 09:54:30 areeb-Workstation sshd[3121]: Failed password for invalid user nate from 111.231.219.142 port 58899 ssh2 ...	2019-10-02 14:10:40
attackbots	$f2bV_matches_ltvn	2019-09-29 08:59:42
attack	Invalid user alex from 111.231.219.142 port 38912	2019-07-28 07:47:59
attackspambots	Invalid user alex from 111.231.219.142 port 38912	2019-07-24 17:42:55
attack	Jul 18 02:16:03 mail sshd\[13786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 user=root Jul 18 02:16:05 mail sshd\[13786\]: Failed password for root from 111.231.219.142 port 48042 ssh2 Jul 18 02:21:34 mail sshd\[14717\]: Invalid user teamspeak from 111.231.219.142 port 46362 Jul 18 02:21:34 mail sshd\[14717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Jul 18 02:21:37 mail sshd\[14717\]: Failed password for invalid user teamspeak from 111.231.219.142 port 46362 ssh2	2019-07-18 08:27:54
attackspambots	Jul 5 01:58:57 mail sshd\[17675\]: Invalid user admin from 111.231.219.142 port 41507 Jul 5 01:58:57 mail sshd\[17675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Jul 5 01:58:59 mail sshd\[17675\]: Failed password for invalid user admin from 111.231.219.142 port 41507 ssh2 Jul 5 02:01:38 mail sshd\[18611\]: Invalid user webadmin from 111.231.219.142 port 53908 Jul 5 02:01:38 mail sshd\[18611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142	2019-07-05 08:17:01
attack	Jul 4 15:14:49 lnxmail61 sshd[22859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142	2019-07-04 23:10:33
attackspam	Jul 1 23:05:12 MK-Soft-VM3 sshd\[12857\]: Invalid user jason from 111.231.219.142 port 48303 Jul 1 23:05:12 MK-Soft-VM3 sshd\[12857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.219.142 Jul 1 23:05:14 MK-Soft-VM3 sshd\[12857\]: Failed password for invalid user jason from 111.231.219.142 port 48303 ssh2 ...	2019-07-02 10:08:30
attackspam	Jun 24 09:15:34 hostnameghostname sshd[11399]: Invalid user weblogic from 111.231.219.142 Jun 24 09:15:36 hostnameghostname sshd[11399]: Failed password for invalid user weblogic from 111.231.219.142 port 58825 ssh2 Jun 24 09:17:54 hostnameghostname sshd[11704]: Invalid user murai2 from 111.231.219.142 Jun 24 09:17:56 hostnameghostname sshd[11704]: Failed password for invalid user murai2 from 111.231.219.142 port 37626 ssh2 Jun 24 09:19:36 hostnameghostname sshd[11961]: Invalid user pentecote from 111.231.219.142 Jun 24 09:19:38 hostnameghostname sshd[11961]: Failed password for invalid user pentecote from 111.231.219.142 port 44631 ssh2 Jun 24 09:21:14 hostnameghostname sshd[12226]: Invalid user view from 111.231.219.142 Jun 24 09:21:16 hostnameghostname sshd[12226]: Failed password for invalid user view from 111.231.219.142 port 51629 ssh2 Jun 24 09:24:28 hostnameghostname sshd[12736]: Invalid user proxyuser from 111.231.219.142 Jun 24 09:24:31 hostnameghostname sshd[1........ ------------------------------	2019-06-24 20:46:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.231.219.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33043
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.231.219.142.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 24 20:45:58 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 142.219.231.111.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 142.219.231.111.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.116.181.99	attackbotsspam	Wordpress attack	2020-09-04 07:38:40
157.0.134.164	attackspam	Ssh brute force	2020-09-04 08:03:10
114.35.32.167	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-04 07:38:54
113.184.85.236	attackbotsspam	Sep 3 18:47:12 mellenthin postfix/smtpd[20781]: NOQUEUE: reject: RCPT from unknown[113.184.85.236]: 554 5.7.1 Service unavailable; Client host [113.184.85.236] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/113.184.85.236; from= to= proto=ESMTP helo=	2020-09-04 07:58:14
45.148.122.161	attackbotsspam	UDP 45.148.122.161:41469 -> port 177, len 56	2020-09-04 07:33:30
185.176.27.174	attack	ET DROP Dshield Block Listed Source group 1 - port: 33388 proto: tcp cat: Misc Attackbytes: 60	2020-09-04 07:57:07
188.226.167.212	attackbots	Sep 3 14:33:14 NPSTNNYC01T sshd[8063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 Sep 3 14:33:17 NPSTNNYC01T sshd[8063]: Failed password for invalid user radio from 188.226.167.212 port 60932 ssh2 Sep 3 14:40:18 NPSTNNYC01T sshd[8593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 ...	2020-09-04 07:39:50
209.45.91.26	attack	Lines containing failures of 209.45.91.26 (max 1000) Sep 2 10:22:39 mxbb sshd[12671]: Invalid user marcio from 209.45.91.26 port 34568 Sep 2 10:22:40 mxbb sshd[12671]: Failed password for invalid user marcio from 209.45.91.26 port 34568 ssh2 Sep 2 10:22:41 mxbb sshd[12671]: Received disconnect from 209.45.91.26 port 34568:11: Bye Bye [preauth] Sep 2 10:22:41 mxbb sshd[12671]: Disconnected from 209.45.91.26 port 34568 [preauth] Sep 2 10:29:01 mxbb sshd[12751]: Failed password for r.r from 209.45.91.26 port 48534 ssh2 Sep 2 10:29:01 mxbb sshd[12751]: Received disconnect from 209.45.91.26 port 48534:11: Bye Bye [preauth] Sep 2 10:29:01 mxbb sshd[12751]: Disconnected from 209.45.91.26 port 48534 [preauth] Sep 2 10:31:25 mxbb sshd[12819]: Failed password for ftp from 209.45.91.26 port 19562 ssh2 Sep 2 10:31:25 mxbb sshd[12819]: Received disconnect from 209.45.91.26 port 19562:11: Bye Bye [preauth] Sep 2 10:31:25 mxbb sshd[12819]: Disconnected from 209.45.91.26 port ........ ------------------------------	2020-09-04 07:36:19
31.16.207.26	attack	Sep 2 04:40:22 cumulus sshd[14368]: Invalid user pi from 31.16.207.26 port 46578 Sep 2 04:40:22 cumulus sshd[14367]: Invalid user pi from 31.16.207.26 port 46576 Sep 2 04:40:23 cumulus sshd[14368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.16.207.26 Sep 2 04:40:23 cumulus sshd[14367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.16.207.26 Sep 2 04:40:25 cumulus sshd[14368]: Failed password for invalid user pi from 31.16.207.26 port 46578 ssh2 Sep 2 04:40:25 cumulus sshd[14367]: Failed password for invalid user pi from 31.16.207.26 port 46576 ssh2 Sep 2 04:40:25 cumulus sshd[14368]: Connection closed by 31.16.207.26 port 46578 [preauth] Sep 2 04:40:25 cumulus sshd[14367]: Connection closed by 31.16.207.26 port 46576 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.16.207.26	2020-09-04 07:40:33
182.75.159.22	attackspam	Sep 3 18:47:25 mellenthin postfix/smtpd[19006]: NOQUEUE: reject: RCPT from unknown[182.75.159.22]: 554 5.7.1 Service unavailable; Client host [182.75.159.22] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/182.75.159.22; from= to= proto=ESMTP helo=	2020-09-04 07:46:15
67.6.254.157	attack	SSH/22 MH Probe, BF, Hack -	2020-09-04 08:02:52
166.62.80.165	attack	/wp-login.php	2020-09-04 07:57:47
112.85.42.73	attackspambots	Sep 4 00:28:38 ajax sshd[14444]: Failed password for root from 112.85.42.73 port 62703 ssh2 Sep 4 00:28:41 ajax sshd[14444]: Failed password for root from 112.85.42.73 port 62703 ssh2	2020-09-04 07:31:42
185.147.215.8	attack	[2020-09-03 19:48:26] NOTICE[1194] chan_sip.c: Registration from '' failed for '185.147.215.8:49776' - Wrong password [2020-09-03 19:48:26] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T19:48:26.394-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6874",SessionID="0x7f2ddc0bf9a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8/49776",Challenge="031c16e8",ReceivedChallenge="031c16e8",ReceivedHash="dcda2c999308f71a4d767de10da94e8d" [2020-09-03 19:49:08] NOTICE[1194] chan_sip.c: Registration from '' failed for '185.147.215.8:64653' - Wrong password [2020-09-03 19:49:08] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T19:49:08.665-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5372",SessionID="0x7f2ddc0e4da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8 ...	2020-09-04 07:51:38
200.21.174.58	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-04 07:47:22

最近上报的IP列表

122.246.34.162	39.107.98.206	189.24.37.221	182.253.117.34
180.245.223.22	168.195.210.192	82.112.42.141	122.97.94.197
149.202.149.53	74.118.198.104	40.77.167.25	152.0.41.184
186.0.89.178	217.58.65.35	195.158.9.235	222.186.58.48
186.225.220.178	191.242.52.83	168.195.210.45	177.221.109.237