119.112.20.165

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
119.112.205.254	attack	Fail2Ban - FTP Abuse Attempt	2019-12-04 17:30:46
119.112.207.94	attack	Unauthorised access (Sep 27) SRC=119.112.207.94 LEN=40 TTL=49 ID=40882 TCP DPT=8080 WINDOW=41535 SYN Unauthorised access (Sep 27) SRC=119.112.207.94 LEN=40 TTL=49 ID=7142 TCP DPT=8080 WINDOW=7339 SYN Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=29758 TCP DPT=8080 WINDOW=7339 SYN Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=64745 TCP DPT=8080 WINDOW=41535 SYN Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=58393 TCP DPT=8080 WINDOW=43537 SYN Unauthorised access (Sep 25) SRC=119.112.207.94 LEN=40 TTL=49 ID=9066 TCP DPT=8080 WINDOW=43537 SYN Unauthorised access (Sep 24) SRC=119.112.207.94 LEN=40 TTL=48 ID=14136 TCP DPT=8080 WINDOW=36543 SYN	2019-09-28 02:37:25

类型

评论内容

时间

119.112.205.254

attack

Fail2Ban - FTP Abuse Attempt

2019-12-04 17:30:46

119.112.207.94

attack

Unauthorised access (Sep 27) SRC=119.112.207.94 LEN=40 TTL=49 ID=40882 TCP DPT=8080 WINDOW=41535 SYN 
Unauthorised access (Sep 27) SRC=119.112.207.94 LEN=40 TTL=49 ID=7142 TCP DPT=8080 WINDOW=7339 SYN 
Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=29758 TCP DPT=8080 WINDOW=7339 SYN 
Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=64745 TCP DPT=8080 WINDOW=41535 SYN 
Unauthorised access (Sep 26) SRC=119.112.207.94 LEN=40 TTL=49 ID=58393 TCP DPT=8080 WINDOW=43537 SYN 
Unauthorised access (Sep 25) SRC=119.112.207.94 LEN=40 TTL=49 ID=9066 TCP DPT=8080 WINDOW=43537 SYN 
Unauthorised access (Sep 24) SRC=119.112.207.94 LEN=40 TTL=48 ID=14136 TCP DPT=8080 WINDOW=36543 SYN

2019-09-28 02:37:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.112.20.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.112.20.165.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 17:52:53 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 165.20.112.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 165.20.112.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
38.240.10.23	attackspam	fell into ViewStateTrap:nairobi	2019-11-08 23:55:28
159.203.201.140	attackspam	Connection by 159.203.201.140 on port: 179 got caught by honeypot at 11/8/2019 1:40:32 PM	2019-11-08 23:53:22
123.231.44.71	attackbots	web-1 [ssh_2] SSH Attack	2019-11-09 00:20:46
27.128.229.22	attack	Nov 8 21:25:30 areeb-Workstation sshd[11458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.229.22 Nov 8 21:25:32 areeb-Workstation sshd[11458]: Failed password for invalid user 123asd from 27.128.229.22 port 41446 ssh2 ...	2019-11-09 00:16:43
219.151.22.20	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-09 00:02:35
170.81.134.73	attackspambots	Brute force attempt	2019-11-08 23:50:24
49.88.112.115	attack	Nov 8 05:54:05 php1 sshd\[530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 8 05:54:06 php1 sshd\[530\]: Failed password for root from 49.88.112.115 port 34291 ssh2 Nov 8 05:54:08 php1 sshd\[530\]: Failed password for root from 49.88.112.115 port 34291 ssh2 Nov 8 05:54:11 php1 sshd\[530\]: Failed password for root from 49.88.112.115 port 34291 ssh2 Nov 8 05:55:05 php1 sshd\[611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root	2019-11-09 00:07:37
68.183.190.34	attackbots	Nov 8 05:28:59 web1 sshd\[26966\]: Invalid user test from 68.183.190.34 Nov 8 05:28:59 web1 sshd\[26966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.34 Nov 8 05:29:02 web1 sshd\[26966\]: Failed password for invalid user test from 68.183.190.34 port 37472 ssh2 Nov 8 05:33:28 web1 sshd\[27351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.34 user=root Nov 8 05:33:30 web1 sshd\[27351\]: Failed password for root from 68.183.190.34 port 47146 ssh2	2019-11-08 23:36:45
78.128.113.121	attackbotsspam	2019-11-08T17:08:05.451692mail01 postfix/smtpd[24046]: warning: unknown[78.128.113.121]: SASL PLAIN authentication failed: 2019-11-08T17:08:11.201789mail01 postfix/smtpd[8857]: warning: unknown[78.128.113.121]: SASL PLAIN authentication failed: 2019-11-08T17:08:12.202636mail01 postfix/smtpd[10457]: warning: unknown[78.128.113.121]: SASL PLAIN authentication failed:	2019-11-09 00:14:05
140.115.51.109	attackspambots	Nov 8 16:56:42 SilenceServices sshd[26698]: Failed password for root from 140.115.51.109 port 34742 ssh2 Nov 8 16:56:51 SilenceServices sshd[26825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.115.51.109 Nov 8 16:56:54 SilenceServices sshd[26825]: Failed password for invalid user apimobile from 140.115.51.109 port 51584 ssh2	2019-11-09 00:05:59
125.212.207.205	attack	Nov 8 16:11:20 h2812830 sshd[7001]: Invalid user wk from 125.212.207.205 port 60592 Nov 8 16:11:20 h2812830 sshd[7001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 Nov 8 16:11:20 h2812830 sshd[7001]: Invalid user wk from 125.212.207.205 port 60592 Nov 8 16:11:22 h2812830 sshd[7001]: Failed password for invalid user wk from 125.212.207.205 port 60592 ssh2 Nov 8 16:34:04 h2812830 sshd[8037]: Invalid user 12345 from 125.212.207.205 port 44492 ...	2019-11-08 23:40:03
217.77.221.85	attackbotsspam	Nov 8 16:29:36 markkoudstaal sshd[28382]: Failed password for root from 217.77.221.85 port 52825 ssh2 Nov 8 16:33:40 markkoudstaal sshd[28733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.77.221.85 Nov 8 16:33:42 markkoudstaal sshd[28733]: Failed password for invalid user br from 217.77.221.85 port 44050 ssh2	2019-11-08 23:44:15
23.228.96.18	attackbotsspam	$f2bV_matches	2019-11-08 23:38:25
139.228.196.191	attackbotsspam	Brute force attempt	2019-11-09 00:11:35
14.111.93.172	attack	Lines containing failures of 14.111.93.172 Nov 8 12:25:52 cdb sshd[27989]: Invalid user wade from 14.111.93.172 port 60648 Nov 8 12:25:52 cdb sshd[27989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.172 Nov 8 12:25:54 cdb sshd[27989]: Failed password for invalid user wade from 14.111.93.172 port 60648 ssh2 Nov 8 12:25:55 cdb sshd[27989]: Received disconnect from 14.111.93.172 port 60648:11: Bye Bye [preauth] Nov 8 12:25:55 cdb sshd[27989]: Disconnected from invalid user wade 14.111.93.172 port 60648 [preauth] Nov 8 12:42:16 cdb sshd[28995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.172 user=r.r Nov 8 12:42:18 cdb sshd[28995]: Failed password for r.r from 14.111.93.172 port 54298 ssh2 Nov 8 12:42:18 cdb sshd[28995]: Received disconnect from 14.111.93.172 port 54298:11: Bye Bye [preauth] Nov 8 12:42:18 cdb sshd[28995]: Disconnected from authenticating use........ ------------------------------	2019-11-09 00:20:05

最近上报的IP列表

119.112.201.108	119.112.202.194	119.112.202.37	119.112.202.204
119.112.203.14	119.112.204.244	119.112.205.194	119.112.205.249
119.112.205.164	119.112.205.235	119.112.206.111	116.30.101.100
119.112.206.49	119.112.203.74	119.112.207.96	119.112.21.206
119.112.211.255	119.112.213.15	116.30.120.141	119.112.214.154