212.112.118.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kyrgyzstan

运营商(isp): AKNET Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Feb 3 14:29:35 grey postfix/smtpd\[28850\]: NOQUEUE: reject: RCPT from unknown\[212.112.118.194\]: 554 5.7.1 Service unavailable\; Client host \[212.112.118.194\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=212.112.118.194\; from=\ to=\ proto=ESMTP helo=\<212-112-118-194.aknet.kg\> ...	2020-02-03 22:17:51

类型

评论内容

时间

attackspam

Feb  3 14:29:35 grey postfix/smtpd\[28850\]: NOQUEUE: reject: RCPT from unknown\[212.112.118.194\]: 554 5.7.1 Service unavailable\; Client host \[212.112.118.194\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=212.112.118.194\; from=\ to=\ proto=ESMTP helo=\<212-112-118-194.aknet.kg\>
...

2020-02-03 22:17:51

相同子网IP讨论:

IP	类型	评论内容	时间
212.112.118.169	attack	Unauthorized connection attempt detected from IP address 212.112.118.169 to port 23 [T]	2020-08-16 04:02:09
212.112.118.165	attackbots	Unauthorized connection attempt from IP address 212.112.118.165 on Port 445(SMB)	2020-03-09 09:10:58
212.112.118.45	attackspam	Honeypot attack, port: 445, PTR: 212-112-118-45.aknet.kg.	2020-01-27 22:41:54
212.112.118.2	attackbotsspam	Oct 30 12:45:51 mxgate1 postfix/postscreen[24367]: CONNECT from [212.112.118.2]:31093 to [176.31.12.44]:25 Oct 30 12:45:51 mxgate1 postfix/dnsblog[24368]: addr 212.112.118.2 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 30 12:45:51 mxgate1 postfix/dnsblog[24368]: addr 212.112.118.2 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 30 12:45:51 mxgate1 postfix/dnsblog[24371]: addr 212.112.118.2 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 30 12:45:51 mxgate1 postfix/dnsblog[24369]: addr 212.112.118.2 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 30 12:45:51 mxgate1 postfix/postscreen[24367]: PREGREET 22 after 0.14 from [212.112.118.2]:31093: EHLO [212.112.118.2] Oct 30 12:45:51 mxgate1 postfix/postscreen[24367]: DNSBL rank 4 for [212.112.118.2]:31093 Oct x@x Oct 30 12:45:51 mxgate1 postfix/postscreen[24367]: HANGUP after 0.42 from [212.112.118.2]:31093 in tests after SMTP handshake Oct 30 12:45:51 mxgate1 postfix/postscreen[24367]: DISCONNECT [212......... -------------------------------	2019-10-30 23:08:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.112.118.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.112.118.194.		IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 22:17:44 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

194.118.112.212.in-addr.arpa domain name pointer 212-112-118-194.aknet.kg.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
194.118.112.212.in-addr.arpa	name = 212-112-118-194.aknet.kg.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
187.188.188.231	attackspambots	2020/06/09 12:08:21 [error] 4063#0: 4341 An error occurred in mail zmauth: user not found:berrington_alma@fathog.com while SSL handshaking to lookup handler, client: 187.188.188.231:35044, server: 45.79.145.195:993, login: "berrington_alma@*fathog.com"	2020-06-09 20:53:11
134.209.178.175	attackbotsspam	Jun 9 12:08:09 ws26vmsma01 sshd[107647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.178.175 Jun 9 12:08:12 ws26vmsma01 sshd[107647]: Failed password for invalid user jackholdem from 134.209.178.175 port 41196 ssh2 ...	2020-06-09 21:12:26
95.217.165.224	attack	Jun 9 07:40:25 xxxxxxx5185820 sshd[24386]: Invalid user namebob from 95.217.165.224 port 57600 Jun 9 07:40:28 xxxxxxx5185820 sshd[24386]: Failed password for invalid user namebob from 95.217.165.224 port 57600 ssh2 Jun 9 07:40:28 xxxxxxx5185820 sshd[24386]: Received disconnect from 95.217.165.224 port 57600:11: Bye Bye [preauth] Jun 9 07:40:28 xxxxxxx5185820 sshd[24386]: Disconnected from 95.217.165.224 port 57600 [preauth] Jun 9 07:46:42 xxxxxxx5185820 sshd[25278]: Failed password for r.r from 95.217.165.224 port 48480 ssh2 Jun 9 07:46:42 xxxxxxx5185820 sshd[25278]: Received disconnect from 95.217.165.224 port 48480:11: Bye Bye [preauth] Jun 9 07:46:42 xxxxxxx5185820 sshd[25278]: Disconnected from 95.217.165.224 port 48480 [preauth] Jun 9 07:48:28 xxxxxxx5185820 sshd[25478]: Failed password for r.r from 95.217.165.224 port 49240 ssh2 Jun 9 07:48:28 xxxxxxx5185820 sshd[25478]: Received disconnect from 95.217.165.224 port 49240:11: Bye Bye [preauth] Jun 9 07:48........ -------------------------------	2020-06-09 21:11:29
222.186.31.127	attack	Jun 9 12:00:57 ip-172-31-62-245 sshd\[18130\]: Failed password for root from 222.186.31.127 port 32012 ssh2\ Jun 9 12:04:05 ip-172-31-62-245 sshd\[18170\]: Failed password for root from 222.186.31.127 port 50216 ssh2\ Jun 9 12:05:38 ip-172-31-62-245 sshd\[18195\]: Failed password for root from 222.186.31.127 port 61312 ssh2\ Jun 9 12:08:38 ip-172-31-62-245 sshd\[18228\]: Failed password for root from 222.186.31.127 port 40344 ssh2\ Jun 9 12:08:40 ip-172-31-62-245 sshd\[18228\]: Failed password for root from 222.186.31.127 port 40344 ssh2\	2020-06-09 20:43:01
220.253.8.137	attackspambots	Jun 9 14:37:57 srv-ubuntu-dev3 sshd[61045]: Invalid user navette from 220.253.8.137 Jun 9 14:37:57 srv-ubuntu-dev3 sshd[61045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.253.8.137 Jun 9 14:37:57 srv-ubuntu-dev3 sshd[61045]: Invalid user navette from 220.253.8.137 Jun 9 14:37:59 srv-ubuntu-dev3 sshd[61045]: Failed password for invalid user navette from 220.253.8.137 port 45196 ssh2 Jun 9 14:42:43 srv-ubuntu-dev3 sshd[61725]: Invalid user qbf77101 from 220.253.8.137 Jun 9 14:42:43 srv-ubuntu-dev3 sshd[61725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.253.8.137 Jun 9 14:42:43 srv-ubuntu-dev3 sshd[61725]: Invalid user qbf77101 from 220.253.8.137 Jun 9 14:42:45 srv-ubuntu-dev3 sshd[61725]: Failed password for invalid user qbf77101 from 220.253.8.137 port 48740 ssh2 Jun 9 14:47:25 srv-ubuntu-dev3 sshd[62505]: Invalid user admin from 220.253.8.137 ...	2020-06-09 20:49:53
123.16.234.71	attack	" "	2020-06-09 21:13:02
207.154.218.129	attack	Jun 9 14:08:16 sshd\[6794\]: Invalid user ste from 207.154.218.129Jun 9 14:08:19 sshd\[6794\]: Failed password for invalid user ste from 207.154.218.129 port 52196 ssh2 ...	2020-06-09 21:05:04
27.121.43.33	attack	Fail2Ban Ban Triggered	2020-06-09 21:04:47
51.254.143.190	attackspambots	(sshd) Failed SSH login from 51.254.143.190 (FR/France/190.ip-51-254-143.eu): 5 in the last 3600 secs	2020-06-09 20:50:55
117.2.164.136	attackbotsspam	" "	2020-06-09 20:58:06
104.44.133.124	attackbotsspam	RDP Brute-Force (honeypot 8)	2020-06-09 20:56:50
49.234.10.48	attack	Jun 9 13:03:51 ajax sshd[12689]: Failed password for root from 49.234.10.48 port 33516 ssh2 Jun 9 13:08:40 ajax sshd[13394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.10.48	2020-06-09 20:45:33
45.237.31.97	attack	(smtpauth) Failed SMTP AUTH login from 45.237.31.97 (BR/Brazil/45-237-31-97.itelecominternet.net.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-09 16:38:12 plain authenticator failed for 45-237-31-97.itelecominternet.net.br [45.237.31.97]: 535 Incorrect authentication data (set_id=info)	2020-06-09 20:59:05
35.202.177.121	attack	Jun 9 13:57:58 m2 sshd[18183]: Failed password for r.r from 35.202.177.121 port 60828 ssh2 Jun 9 14:11:36 m2 sshd[19729]: Invalid user mqb from 35.202.177.121 Jun 9 14:11:38 m2 sshd[19729]: Failed password for invalid user mqb from 35.202.177.121 port 44730 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=35.202.177.121	2020-06-09 21:07:17
85.202.161.108	attackspambots	Jun 9 14:14:31 server sshd[28898]: Failed password for root from 85.202.161.108 port 49824 ssh2 Jun 9 14:18:34 server sshd[29243]: Failed password for root from 85.202.161.108 port 44338 ssh2 Jun 9 14:22:29 server sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.202.161.108 Jun 9 14:22:32 server sshd[29624]: Failed password for invalid user admin from 85.202.161.108 port 39042 ssh2 ...	2020-06-09 20:32:18

最近上报的IP列表

131.250.22.203	123.132.45.170	193.205.201.18	108.133.100.233
188.163.76.98	216.221.38.167	219.9.142.227	161.0.72.47
168.5.30.172	42.40.242.246	170.243.208.29	180.7.245.159
139.86.159.205	139.67.248.82	178.204.165.54	123.21.18.252
134.243.68.243	75.96.138.179	88.247.90.69	61.23.149.154