191.108.80.5 - IPInfo

基本信息:

城市(city): Sincelejo

省份(region): Sucre

国家(country): Colombia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.108.80.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.108.80.5.			IN	A

;; AUTHORITY SECTION:
.			130	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100901 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 10 08:54:52 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 5.80.108.191.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.80.108.191.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.50.177.42	attackbots	Aug 8 16:11:58 roki-contabo sshd\[9407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 user=root Aug 8 16:12:00 roki-contabo sshd\[9407\]: Failed password for root from 198.50.177.42 port 38538 ssh2 Aug 8 16:28:43 roki-contabo sshd\[9847\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 user=root Aug 8 16:28:46 roki-contabo sshd\[9847\]: Failed password for root from 198.50.177.42 port 58240 ssh2 Aug 8 16:35:49 roki-contabo sshd\[10032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 user=root ...	2020-08-09 04:08:54
190.113.157.155	attackbotsspam	Aug 8 21:04:58 rocket sshd[32068]: Failed password for root from 190.113.157.155 port 51694 ssh2 Aug 8 21:09:29 rocket sshd[436]: Failed password for root from 190.113.157.155 port 53292 ssh2 ...	2020-08-09 04:18:42
167.172.239.118	attackbots	Lines containing failures of 167.172.239.118 Aug 3 07:03:16 shared07 sshd[17955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.239.118 user=r.r Aug 3 07:03:18 shared07 sshd[17955]: Failed password for r.r from 167.172.239.118 port 55268 ssh2 Aug 3 07:03:18 shared07 sshd[17955]: Received disconnect from 167.172.239.118 port 55268:11: Bye Bye [preauth] Aug 3 07:03:18 shared07 sshd[17955]: Disconnected from authenticating user r.r 167.172.239.118 port 55268 [preauth] Aug 3 07:15:52 shared07 sshd[23155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.239.118 user=r.r Aug 3 07:15:55 shared07 sshd[23155]: Failed password for r.r from 167.172.239.118 port 32946 ssh2 Aug 3 07:15:55 shared07 sshd[23155]: Received disconnect from 167.172.239.118 port 32946:11: Bye Bye [preauth] Aug 3 07:15:55 shared07 sshd[23155]: Disconnected from authenticating user r.r 167.172.239.118 p........ ------------------------------	2020-08-09 03:57:31
40.74.93.70	attackspam	(smtpauth) Failed SMTP AUTH login from 40.74.93.70 (JP/Japan/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-08 16:38:25 login authenticator failed for (hq4rED7) [40.74.93.70]: 535 Incorrect authentication data (set_id=export)	2020-08-09 04:27:09
193.112.43.52	attack	Aug 3 10:56:04 our-server-hostname sshd[18627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.43.52 user=r.r Aug 3 10:56:07 our-server-hostname sshd[18627]: Failed password for r.r from 193.112.43.52 port 45606 ssh2 Aug 3 11:19:44 our-server-hostname sshd[24593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.43.52 user=r.r Aug 3 11:19:46 our-server-hostname sshd[24593]: Failed password for r.r from 193.112.43.52 port 59136 ssh2 Aug 3 11:38:10 our-server-hostname sshd[28787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.43.52 user=r.r Aug 3 11:38:12 our-server-hostname sshd[28787]: Failed password for r.r from 193.112.43.52 port 51318 ssh2 Aug 3 11:44:20 our-server-hostname sshd[31189]: Invalid user dqwkqk7417 from 193.112.43.52 Aug 3 11:44:20 our-server-hostname sshd[31189]: pam_unix(sshd:auth): authentication ........ -------------------------------	2020-08-09 04:10:51
61.177.172.41	attack	[MK-Root1] SSH login failed	2020-08-09 03:55:52
114.67.171.58	attack	2020-08-08T13:06:12.603316shield sshd\[16721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.171.58 user=root 2020-08-08T13:06:15.151825shield sshd\[16721\]: Failed password for root from 114.67.171.58 port 51846 ssh2 2020-08-08T13:10:44.899208shield sshd\[17378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.171.58 user=root 2020-08-08T13:10:46.454041shield sshd\[17378\]: Failed password for root from 114.67.171.58 port 42232 ssh2 2020-08-08T13:15:16.133622shield sshd\[18160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.171.58 user=root	2020-08-09 04:05:53
52.254.85.5	attack	Multiple SSH authentication failures from 52.254.85.5	2020-08-09 04:28:12
188.107.231.202	attackspam	Aug 7 08:19:20 hidden sshd[54666]: Invalid user pi from 188.107.231.202 port 59870 Aug 7 08:19:20 hidden sshd[54665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.107.231.202 Aug 7 08:19:22 hidden sshd[54665]: Failed password for invalid user pi from 188.107.231.202 port 59868 ssh2	2020-08-09 04:20:12
212.70.149.35	attackbots	2020-08-08 23:28:24 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=roland@org.ua\)2020-08-08 23:28:42 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=arnold@org.ua\)2020-08-08 23:29:01 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=harvey@org.ua\) ...	2020-08-09 04:30:52
200.73.132.43	attackbots	Aug 3 14:12:35 server2 sshd[31984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.132.43 user=r.r Aug 3 14:12:38 server2 sshd[31984]: Failed password for r.r from 200.73.132.43 port 58624 ssh2 Aug 3 14:12:38 server2 sshd[31984]: Received disconnect from 200.73.132.43: 11: Bye Bye [preauth] Aug 3 14:32:20 server2 sshd[3626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.132.43 user=r.r Aug 3 14:32:22 server2 sshd[3626]: Failed password for r.r from 200.73.132.43 port 60552 ssh2 Aug 3 14:32:22 server2 sshd[3626]: Received disconnect from 200.73.132.43: 11: Bye Bye [preauth] Aug 3 14:36:07 server2 sshd[4479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.132.43 user=r.r Aug 3 14:3 .... truncated .... Aug 3 14:12:35 server2 sshd[31984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser........ -------------------------------	2020-08-09 04:08:35
59.45.76.90	attackspambots	Aug 8 14:42:07 hidden sshd[65277]: Failed password for hidden from 59.45.76.90 port 58511 ssh2 Aug 8 14:46:43 hidden sshd[11391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.76.90 user=root Aug 8 14:46:45 hidden sshd[11391]: Failed password for hidden from 59.45.76.90 port 27618 ssh2 Aug 8 14:55:56 hidden sshd[33214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.76.90 user=root Aug 8 14:55:57 hidden sshd[33214]: Failed password for hidden from 59.45.76.90 port 22324 ssh2	2020-08-09 04:24:46
204.93.169.50	attackspambots	Aug 7 09:35:27 hidden sshd[58854]: Failed password for hidden from 204.93.169.50 port 44096 ssh2 Aug 7 09:41:00 hidden sshd[59023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.93.169.50 user=root Aug 7 09:41:03 hidden sshd[59023]: Failed password for hidden from 204.93.169.50 port 35926 ssh2	2020-08-09 04:05:23
219.146.242.110	attackbots	Lines containing failures of 219.146.242.110 Aug 3 10:08:37 nexus sshd[8995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.146.242.110 user=r.r Aug 3 10:08:39 nexus sshd[8995]: Failed password for r.r from 219.146.242.110 port 32894 ssh2 Aug 3 10:08:39 nexus sshd[8995]: Received disconnect from 219.146.242.110 port 32894:11: Bye Bye [preauth] Aug 3 10:08:39 nexus sshd[8995]: Disconnected from 219.146.242.110 port 32894 [preauth] Aug 3 10:15:07 nexus sshd[9043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.146.242.110 user=r.r Aug 3 10:15:09 nexus sshd[9043]: Failed password for r.r from 219.146.242.110 port 56736 ssh2 Aug 3 10:15:09 nexus sshd[9043]: Received disconnect from 219.146.242.110 port 56736:11: Bye Bye [preauth] Aug 3 10:15:09 nexus sshd[9043]: Disconnected from 219.146.242.110 port 56736 [preauth] Aug 3 10:17:03 nexus sshd[9052]: pam_unix(sshd:auth): authe........ ------------------------------	2020-08-09 04:02:41
221.6.105.62	attackspam	2020-08-08 10:34:01.278753-0500 localhost sshd[2078]: Failed password for root from 221.6.105.62 port 30363 ssh2	2020-08-09 03:55:23

最近上报的IP列表

56.250.7.161	198.98.243.30	109.155.80.20	117.197.218.57
74.160.2.10	48.179.253.69	57.137.62.9	122.153.65.27
212.173.173.30	8.240.20.149	86.6.68.80	57.134.214.98
4.156.106.75	191.16.202.119	63.19.36.167	225.59.22.146
49.18.223.98	67.237.83.22	222.41.254.109	105.156.172.33