189.244.106.119

基本信息:

城市(city): Torreon

省份(region): Chiapas

国家(country): Mexico

运营商(isp): Uninet S.A. de C.V.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port probing on unauthorized port 23	2020-02-09 04:59:59

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.244.106.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15982
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.244.106.119.		IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 145 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 09 04:59:56 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

119.106.244.189.in-addr.arpa domain name pointer dsl-189-244-106-119-dyn.prod-infinitum.com.mx.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.106.244.189.in-addr.arpa	name = dsl-189-244-106-119-dyn.prod-infinitum.com.mx.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
43.243.128.213	attack	2019-10-27T13:04:43.898075scmdmz1 sshd\[24673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.243.128.213 user=root 2019-10-27T13:04:46.128190scmdmz1 sshd\[24673\]: Failed password for root from 43.243.128.213 port 50633 ssh2 2019-10-27T13:09:22.051100scmdmz1 sshd\[25029\]: Invalid user aplmgr01 from 43.243.128.213 port 39385 ...	2019-10-27 20:23:40
132.232.32.82	attackbots	132.232.32.82 - - \[27/Oct/2019:13:09:10 +0100\] "POST /3857fb94/admin.php HTTP/1.1" 302 236 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:52.0$ Gecko/20100101 Firefox/52.0" 132.232.32.82 - - \[27/Oct/2019:13:09:10 +0100\] "POST /3857fb94/admin.php HTTP/1.1" 302 236 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:52.0$ Gecko/20100101 Firefox/52.0" 132.232.32.82 - - \[27/Oct/2019:13:09:11 +0100\] "POST /3857fb94/admin.php HTTP/1.1" 302 236 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:52.0$ Gecko/20100101 Firefox/52.0" 132.232.32.82 - - \[27/Oct/2019:13:09:14 +0100\] "POST /index.php HTTP/1.1" 302 227 "-" "Mozilla/5.0 $X11\; Linux x86_64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/56.0.2924.87 Safari/537.36" 132.232.32.82 - - \[27/Oct/2019:13:09:15 +0100\] "POST /bbs.php HTTP/1.1" 302 225 "-" "Mozilla/5.0 $X11\; Linux x86_64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/56.0.2924.87 Safari/537.36" 132.232.32.82 - - \[27/Oct/2019:13:09:16 +0100\] "POST /for ...	2019-10-27 20:26:43
104.236.124.45	attackspam	$f2bV_matches	2019-10-27 20:34:55
183.103.35.206	attackspambots	2019-10-27T12:09:32.876377abusebot-5.cloudsearch.cf sshd\[896\]: Invalid user robert from 183.103.35.206 port 40438	2019-10-27 20:17:53
72.89.234.162	attackbots	Oct 27 12:08:45 *** sshd[4309]: Invalid user sma from 72.89.234.162	2019-10-27 20:56:33
54.37.204.154	attack	Oct 27 13:10:55 SilenceServices sshd[17943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154 Oct 27 13:10:56 SilenceServices sshd[17943]: Failed password for invalid user osborne from 54.37.204.154 port 51116 ssh2 Oct 27 13:15:40 SilenceServices sshd[19241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154	2019-10-27 20:20:15
129.28.88.12	attack	Oct 27 02:35:54 eddieflores sshd\[31502\]: Invalid user Passw0rt12 from 129.28.88.12 Oct 27 02:35:54 eddieflores sshd\[31502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.88.12 Oct 27 02:35:56 eddieflores sshd\[31502\]: Failed password for invalid user Passw0rt12 from 129.28.88.12 port 44863 ssh2 Oct 27 02:41:24 eddieflores sshd\[31974\]: Invalid user passw0rd from 129.28.88.12 Oct 27 02:41:24 eddieflores sshd\[31974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.88.12	2019-10-27 20:53:40
139.155.0.12	attackbots	Oct 27 13:03:43 tux-35-217 sshd\[26742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.0.12 user=root Oct 27 13:03:45 tux-35-217 sshd\[26742\]: Failed password for root from 139.155.0.12 port 39890 ssh2 Oct 27 13:08:55 tux-35-217 sshd\[26762\]: Invalid user testdev from 139.155.0.12 port 47238 Oct 27 13:08:55 tux-35-217 sshd\[26762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.0.12 ...	2019-10-27 20:45:44
5.249.144.206	attack	Oct 27 13:32:07 vps647732 sshd[4947]: Failed password for root from 5.249.144.206 port 48326 ssh2 ...	2019-10-27 20:53:23
49.88.112.115	attackbots	2019-10-27T13:07:45.304348lon01.zurich-datacenter.net sshd\[25941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root 2019-10-27T13:07:47.854029lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2 2019-10-27T13:07:50.512434lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2 2019-10-27T13:07:53.106486lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2 2019-10-27T13:09:37.960083lon01.zurich-datacenter.net sshd\[25977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root ...	2019-10-27 20:15:20
23.254.224.186	attackspambots	23.254.224.186 has been banned for [spam] ...	2019-10-27 20:15:58
118.179.137.154	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-27 20:42:22
82.149.204.178	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-27 20:47:23
222.186.175.154	attackspam	Oct 27 08:52:30 plusreed sshd[31492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Oct 27 08:52:31 plusreed sshd[31492]: Failed password for root from 222.186.175.154 port 6856 ssh2 ...	2019-10-27 20:55:34
85.240.40.120	attackbots	2019-10-27T12:08:55.734174abusebot-5.cloudsearch.cf sshd\[882\]: Invalid user bjorn from 85.240.40.120 port 43604	2019-10-27 20:46:54

最近上报的IP列表

110.53.79.252	145.190.70.130	98.7.239.126	199.13.1.243
183.25.179.62	197.204.162.222	209.239.73.112	250.63.209.128
182.60.247.221	93.168.107.13	94.39.126.93	216.58.211.187
35.0.208.70	156.252.50.118	68.232.244.252	83.211.189.109
108.182.48.126	199.58.168.228	69.120.94.199	95.141.230.33