119.65.107.152

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): LG POWERCOMM

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.65.107.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1645
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.65.107.152.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 23:40:35 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 152.107.65.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 152.107.65.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
42.224.1.184	attackspam	" "	2020-09-22 03:36:04
170.130.187.18	attack	TCP (SYN) 170.130.187.18:57639 -> port 1433, len 44	2020-09-22 03:19:37
52.187.65.64	attack	52.187.65.64 - - \[21/Sep/2020:14:29:47 +0200\] "POST /wp-login.php HTTP/1.0" 200 8786 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 52.187.65.64 - - \[21/Sep/2020:14:29:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 8612 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 52.187.65.64 - - \[21/Sep/2020:14:29:52 +0200\] "POST /wp-login.php HTTP/1.0" 200 8607 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-22 03:08:53
211.80.102.185	attackbotsspam	Sep 21 21:26:55 mout sshd[32110]: Invalid user test from 211.80.102.185 port 6078	2020-09-22 03:33:19
125.25.83.71	attack	Automatic report - Banned IP Access	2020-09-22 02:59:06
125.42.4.7	attackspam	Found on Alienvault / proto=6 . srcport=38058 . dstport=23 . (2292)	2020-09-22 03:18:35
182.151.58.230	attackbotsspam	Sep 20 21:03:08 server sshd[11187]: Failed password for root from 182.151.58.230 port 53384 ssh2 Sep 20 21:04:41 server sshd[11955]: Failed password for root from 182.151.58.230 port 46954 ssh2 Sep 20 21:06:17 server sshd[13014]: Failed password for root from 182.151.58.230 port 40520 ssh2	2020-09-22 02:58:07
155.4.113.161	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 155.4.113.161 (SE/Sweden/h-113-161.A328.priv.bahnhof.se): 5 in the last 3600 secs	2020-09-22 03:21:32
217.76.75.189	attackspam	Automatic report - Port Scan Attack	2020-09-22 03:32:18
195.54.160.183	attack	(sshd) Failed SSH login from 195.54.160.183 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 14:52:17 optimus sshd[28179]: Invalid user admin from 195.54.160.183 Sep 21 14:52:18 optimus sshd[28179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.183 Sep 21 14:52:19 optimus sshd[28179]: Failed password for invalid user admin from 195.54.160.183 port 11609 ssh2 Sep 21 14:52:21 optimus sshd[28196]: Invalid user alfa from 195.54.160.183 Sep 21 14:52:21 optimus sshd[28196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.183	2020-09-22 03:00:19
142.4.211.222	attackspam	142.4.211.222 - - [21/Sep/2020:16:50:30 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.211.222 - - [21/Sep/2020:16:50:31 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.211.222 - - [21/Sep/2020:16:50:31 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-22 03:20:13
212.18.22.236	attack	(sshd) Failed SSH login from 212.18.22.236 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 09:31:58 idl1-dfw sshd[1903489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.18.22.236 user=root Sep 21 09:32:00 idl1-dfw sshd[1903489]: Failed password for root from 212.18.22.236 port 56968 ssh2 Sep 21 09:38:12 idl1-dfw sshd[1908195]: Invalid user ubuntu from 212.18.22.236 port 34812 Sep 21 09:38:14 idl1-dfw sshd[1908195]: Failed password for invalid user ubuntu from 212.18.22.236 port 34812 ssh2 Sep 21 09:42:29 idl1-dfw sshd[1911714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.18.22.236 user=root	2020-09-22 03:15:49
194.180.224.130	attack	Sep 21 21:08:21 vm0 sshd[19314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.130 ...	2020-09-22 03:12:16
113.193.63.170	attackspambots	(smtpauth) Failed SMTP AUTH login from 113.193.63.170 (IN/India/-): 5 in the last 3600 secs	2020-09-22 03:01:27
84.1.30.70	attackspambots	DATE:2020-09-21 18:02:04, IP:84.1.30.70, PORT:ssh SSH brute force auth (docker-dc)	2020-09-22 03:33:34

最近上报的IP列表

40.107.72.127	187.119.13.63	185.234.218.122	135.246.210.60
109.120.62.226	213.190.92.91	57.10.238.82	62.46.181.184
143.210.70.20	119.169.61.150	73.246.202.50	125.46.34.223
76.237.121.195	174.207.249.187	55.40.54.19	107.6.183.164
59.186.22.171	32.163.178.73	85.93.20.34	113.134.128.42