119.205.114.2 - IPInfo

基本信息:

城市(city): Yanggu

省份(region): Gangwon-do

国家(country): South Korea

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): Korea Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Feb 12 13:48:05 ns382633 sshd\[26754\]: Invalid user hadoop from 119.205.114.2 port 60858 Feb 12 13:48:05 ns382633 sshd\[26754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2 Feb 12 13:48:07 ns382633 sshd\[26754\]: Failed password for invalid user hadoop from 119.205.114.2 port 60858 ssh2 Feb 12 14:39:45 ns382633 sshd\[2788\]: Invalid user zei from 119.205.114.2 port 50460 Feb 12 14:39:45 ns382633 sshd\[2788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2	2020-02-13 05:17:48
attack	failed root login	2019-12-09 17:34:07
attackspambots	Dec 8 09:54:43 mockhub sshd[5521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2 Dec 8 09:54:45 mockhub sshd[5521]: Failed password for invalid user helmar from 119.205.114.2 port 45550 ssh2 ...	2019-12-09 02:13:30

类型

评论内容

时间

attackbotsspam

Feb 12 13:48:05 ns382633 sshd\[26754\]: Invalid user hadoop from 119.205.114.2 port 60858
Feb 12 13:48:05 ns382633 sshd\[26754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2
Feb 12 13:48:07 ns382633 sshd\[26754\]: Failed password for invalid user hadoop from 119.205.114.2 port 60858 ssh2
Feb 12 14:39:45 ns382633 sshd\[2788\]: Invalid user zei from 119.205.114.2 port 50460
Feb 12 14:39:45 ns382633 sshd\[2788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2

2020-02-13 05:17:48

attack

failed root login

2019-12-09 17:34:07

attackspambots

Dec  8 09:54:43 mockhub sshd[5521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.114.2
Dec  8 09:54:45 mockhub sshd[5521]: Failed password for invalid user helmar from 119.205.114.2 port 45550 ssh2
...

2019-12-09 02:13:30

相同子网IP讨论:

IP	类型	评论内容	时间
119.205.114.7	attack	SSH/22 MH Probe, BF, Hack -	2020-02-13 01:45:50

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.205.114.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5846
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.205.114.2.			IN	A

;; AUTHORITY SECTION:
.			2031	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 08 21:20:32 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 2.114.205.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 2.114.205.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
174.138.41.70	attackbots	2020-08-28T21:17:08.862693ionos.janbro.de sshd[85433]: Invalid user eth from 174.138.41.70 port 38258 2020-08-28T21:17:11.446513ionos.janbro.de sshd[85433]: Failed password for invalid user eth from 174.138.41.70 port 38258 ssh2 2020-08-28T21:19:15.902301ionos.janbro.de sshd[85438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.41.70 user=root 2020-08-28T21:19:17.984315ionos.janbro.de sshd[85438]: Failed password for root from 174.138.41.70 port 49054 ssh2 2020-08-28T21:21:19.790853ionos.janbro.de sshd[85442]: Invalid user administrator from 174.138.41.70 port 59848 2020-08-28T21:21:19.976274ionos.janbro.de sshd[85442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.41.70 2020-08-28T21:21:19.790853ionos.janbro.de sshd[85442]: Invalid user administrator from 174.138.41.70 port 59848 2020-08-28T21:21:21.748054ionos.janbro.de sshd[85442]: Failed password for invalid user administrator from ...	2020-08-29 07:56:45
120.86.127.45	attackbots	Aug 29 01:24:13 sso sshd[16216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.86.127.45 Aug 29 01:24:15 sso sshd[16216]: Failed password for invalid user kte from 120.86.127.45 port 40126 ssh2 ...	2020-08-29 07:41:42
140.143.56.61	attackspam	Aug 28 23:26:31 *** sshd[26162]: Invalid user wanghao from 140.143.56.61	2020-08-29 08:19:26
175.175.121.230	attackspam	Portscan detected	2020-08-29 07:59:12
46.38.235.173	attackspambots	Aug 29 01:21:12 vpn01 sshd[31899]: Failed password for root from 46.38.235.173 port 33308 ssh2 ...	2020-08-29 07:55:27
96.78.175.36	attackspam	Aug 28 23:41:20 electroncash sshd[12689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 Aug 28 23:41:20 electroncash sshd[12689]: Invalid user testbed from 96.78.175.36 port 42161 Aug 28 23:41:22 electroncash sshd[12689]: Failed password for invalid user testbed from 96.78.175.36 port 42161 ssh2 Aug 28 23:45:04 electroncash sshd[13683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 user=root Aug 28 23:45:06 electroncash sshd[13683]: Failed password for root from 96.78.175.36 port 45987 ssh2 ...	2020-08-29 07:57:11
212.83.186.26	attack	Aug 29 00:29:09 eventyay sshd[20584]: Failed password for root from 212.83.186.26 port 19191 ssh2 Aug 29 00:32:37 eventyay sshd[20659]: Failed password for root from 212.83.186.26 port 54842 ssh2 Aug 29 00:36:11 eventyay sshd[20737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.83.186.26 ...	2020-08-29 08:17:27
187.114.34.99	attackspam	Automatic report - Port Scan Attack	2020-08-29 07:41:13
180.76.107.10	attack	2020-08-29T00:05:45+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-08-29 08:10:45
2.36.136.146	attack	Aug 29 01:21:37 server sshd[31235]: Failed password for invalid user alvin from 2.36.136.146 port 51130 ssh2 Aug 29 01:24:19 server sshd[32623]: Failed password for invalid user ashutosh from 2.36.136.146 port 43316 ssh2 Aug 29 01:27:06 server sshd[33948]: Failed password for invalid user ben from 2.36.136.146 port 35494 ssh2	2020-08-29 08:08:13
69.70.68.42	attack	2020-08-29T00:45:55.935088cyberdyne sshd[1835574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.70.68.42 2020-08-29T00:45:55.929415cyberdyne sshd[1835574]: Invalid user usuario from 69.70.68.42 port 33339 2020-08-29T00:45:57.887975cyberdyne sshd[1835574]: Failed password for invalid user usuario from 69.70.68.42 port 33339 ssh2 2020-08-29T00:49:43.792034cyberdyne sshd[1835716]: Invalid user developer from 69.70.68.42 port 45443 ...	2020-08-29 07:42:17
119.45.54.166	attackbotsspam	"$f2bV_matches"	2020-08-29 08:08:56
188.226.167.212	attack	$f2bV_matches	2020-08-29 07:49:51
185.220.101.200	attackbotsspam	Bruteforce detected by fail2ban	2020-08-29 07:51:53
110.166.254.83	attack	2020-08-28T21:19:42.153402shield sshd\[29003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.166.254.83 user=root 2020-08-28T21:19:43.608437shield sshd\[29003\]: Failed password for root from 110.166.254.83 port 54167 ssh2 2020-08-28T21:22:58.363758shield sshd\[29654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.166.254.83 user=root 2020-08-28T21:23:00.726865shield sshd\[29654\]: Failed password for root from 110.166.254.83 port 40550 ssh2 2020-08-28T21:26:32.725931shield sshd\[30360\]: Invalid user cd from 110.166.254.83 port 55166	2020-08-29 08:12:19

最近上报的IP列表

70.164.177.75	172.96.30.173	47.79.243.249	148.66.132.169
220.177.137.74	216.120.107.142	154.5.230.208	54.240.13.38
102.156.133.30	156.195.214.253	130.70.34.247	52.224.121.164
214.0.208.214	220.187.219.50	202.166.198.138	27.79.216.24
42.196.212.224	219.107.169.182	139.37.131.56	41.77.221.91