119.140.161.221

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
119.140.161.204	attack	Jul 6 05:39:17 lnxmail61 postfix/smtpd[5699]: lost connection after RCPT from unknown[119.140.161.204] Jul 6 05:39:20 lnxmail61 postfix/smtpd[1017]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:20 lnxmail61 postfix/smtpd[1017]: lost connection after AUTH from unknown[119.140.161.204] Jul 6 05:39:29 lnxmail61 postfix/smtpd[5699]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:29 lnxmail61 postfix/smtpd[5699]: lost connection after AUTH from unknown[119.140.161.204]	2019-07-06 18:48:35

类型

评论内容

时间

119.140.161.204

attack

Jul  6 05:39:17 lnxmail61 postfix/smtpd[5699]: lost connection after RCPT from unknown[119.140.161.204]
Jul  6 05:39:20 lnxmail61 postfix/smtpd[1017]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6
Jul  6 05:39:20 lnxmail61 postfix/smtpd[1017]: lost connection after AUTH from unknown[119.140.161.204]
Jul  6 05:39:29 lnxmail61 postfix/smtpd[5699]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6
Jul  6 05:39:29 lnxmail61 postfix/smtpd[5699]: lost connection after AUTH from unknown[119.140.161.204]

2019-07-06 18:48:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.140.161.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8052
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.140.161.221.		IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 12:07:03 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 221.161.140.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.161.140.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
27.72.165.226	attackbots	8291/tcp [2019-07-02]1pkt	2019-07-02 18:39:38
114.248.207.33	attackbots	Jul 2 12:07:59 new sshd[28653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.248.207.33 user=r.r Jul 2 12:08:01 new sshd[28653]: Failed password for r.r from 114.248.207.33 port 57754 ssh2 Jul 2 12:08:04 new sshd[28653]: Failed password for r.r from 114.248.207.33 port 57754 ssh2 Jul 2 12:08:07 new sshd[28653]: Failed password for r.r from 114.248.207.33 port 57754 ssh2 Jul 2 12:08:09 new sshd[28653]: Failed password for r.r from 114.248.207.33 port 57754 ssh2 Jul 2 12:08:11 new sshd[28653]: Failed password for r.r from 114.248.207.33 port 57754 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.248.207.33	2019-07-02 19:06:19
109.94.120.195	attackbots	" "	2019-07-02 19:07:33
5.62.19.38	attackspam	\[2019-07-02 12:20:44\] NOTICE\[4808\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2704' \(callid: 31157255-158441753-1837956550\) - Failed to authenticate \[2019-07-02 12:20:44\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-07-02T12:20:44.687+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="31157255-158441753-1837956550",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/5.62.19.38/2704",Challenge="1562062844/5eabb610bb6f336a24d8166adb21b86a",Response="dd4b5c9f85b6960a8060e15118d5d9ac",ExpectedResponse="" \[2019-07-02 12:20:44\] NOTICE\[11540\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '5.62.19.38:2704' \(callid: 31157255-158441753-1837956550\) - Failed to authenticate \[2019-07-02 12:20:44\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV=	2019-07-02 18:52:32
118.24.117.153	attackspambots	Feb 23 06:51:39 motanud sshd\[10757\]: Invalid user test from 118.24.117.153 port 52540 Feb 23 06:51:39 motanud sshd\[10757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.117.153 Feb 23 06:51:41 motanud sshd\[10757\]: Failed password for invalid user test from 118.24.117.153 port 52540 ssh2	2019-07-02 18:44:28
120.236.16.252	attackbots	Jul 2 08:58:45 ubuntu-2gb-nbg1-dc3-1 sshd[16500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.236.16.252 Jul 2 08:58:48 ubuntu-2gb-nbg1-dc3-1 sshd[16500]: Failed password for invalid user lines from 120.236.16.252 port 49828 ssh2 ...	2019-07-02 19:18:41
117.92.16.61	attackspam	Brute force attempt	2019-07-02 19:23:49
188.166.216.84	attack	SSH Bruteforce	2019-07-02 19:04:01
200.23.239.131	attackspambots	Jul 1 23:46:53 web1 postfix/smtpd[4863]: warning: unknown[200.23.239.131]: SASL PLAIN authentication failed: authentication failure ...	2019-07-02 18:37:25
1.164.7.94	attackspam	445/tcp [2019-07-02]1pkt	2019-07-02 18:45:02
79.143.187.223	attackbotsspam	2019-07-02T17:32:09.202907enmeeting.mahidol.ac.th sshd\[12188\]: Invalid user www from 79.143.187.223 port 38372 2019-07-02T17:32:09.216627enmeeting.mahidol.ac.th sshd\[12188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi40243.contabo.host 2019-07-02T17:32:11.597514enmeeting.mahidol.ac.th sshd\[12188\]: Failed password for invalid user www from 79.143.187.223 port 38372 ssh2 ...	2019-07-02 18:56:03
118.24.102.248	attack	Mar 2 01:56:49 motanud sshd\[18730\]: Invalid user la from 118.24.102.248 port 40468 Mar 2 01:56:49 motanud sshd\[18730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.102.248 Mar 2 01:56:51 motanud sshd\[18730\]: Failed password for invalid user la from 118.24.102.248 port 40468 ssh2	2019-07-02 18:51:07
80.248.6.141	attackbots	Automated report - ssh fail2ban: Jul 2 05:16:03 authentication failure Jul 2 05:16:05 wrong password, user=yulia, port=51808, ssh2 Jul 2 05:46:59 authentication failure	2019-07-02 18:34:29
151.106.59.130	attackbots	Jul 2 05:46:41 mail postfix/smtpd\[9434\]: NOQUEUE: reject: RCPT from mail.whitelearn.com\[151.106.59.130\]: 554 5.7.1 Service unavailable\; Client host \[151.106.59.130\] blocked using zen.spamhaus.org\; https://www.spamhaus.org/sbl/query/SBLCSS\; from=\ to=\ proto=ESMTP helo=\\	2019-07-02 18:43:54
118.24.126.229	attack	Jan 19 11:10:21 motanud sshd\[27734\]: Invalid user anunciata from 118.24.126.229 port 57022 Jan 19 11:10:21 motanud sshd\[27734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.126.229 Jan 19 11:10:23 motanud sshd\[27734\]: Failed password for invalid user anunciata from 118.24.126.229 port 57022 ssh2	2019-07-02 18:38:20

最近上报的IP列表

77.68.144.112	119.140.161.230	119.140.161.241	119.140.161.242
119.140.161.247	119.140.161.248	119.140.161.253	119.140.161.41
119.140.161.43	119.140.161.54	119.140.161.60	119.140.161.67
119.140.161.7	119.140.161.77	119.140.161.82	119.140.162.104
119.140.162.109	119.140.162.115	119.140.162.125	119.140.162.139