219.145.221.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanxi (SN) Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 219.145.221.106 to port 1433	2020-05-30 04:42:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.145.221.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25748
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.145.221.106.		IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052901 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 30 04:42:43 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 106.221.145.219.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 106.221.145.219.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
134.73.161.65	attack	Aug 12 02:29:57 sanyalnet-cloud-vps2 sshd[21642]: Connection from 134.73.161.65 port 45248 on 45.62.253.138 port 22 Aug 12 02:29:59 sanyalnet-cloud-vps2 sshd[21642]: Invalid user fanny from 134.73.161.65 port 45248 Aug 12 02:29:59 sanyalnet-cloud-vps2 sshd[21642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.161.65 Aug 12 02:30:00 sanyalnet-cloud-vps2 sshd[21642]: Failed password for invalid user fanny from 134.73.161.65 port 45248 ssh2 Aug 12 02:30:00 sanyalnet-cloud-vps2 sshd[21642]: Received disconnect from 134.73.161.65 port 45248:11: Bye Bye [preauth] Aug 12 02:30:01 sanyalnet-cloud-vps2 sshd[21642]: Disconnected from 134.73.161.65 port 45248 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.73.161.65	2019-08-12 11:13:41
5.39.67.154	attackspam	Aug 12 04:43:42 SilenceServices sshd[8656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.67.154 Aug 12 04:43:44 SilenceServices sshd[8656]: Failed password for invalid user technicom from 5.39.67.154 port 52040 ssh2 Aug 12 04:47:51 SilenceServices sshd[12238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.67.154	2019-08-12 10:57:46
77.247.109.35	attackspam	\[2019-08-11 22:44:50\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:44:50.709-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900441519470519",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/63684",ACLName="no_extension_match" \[2019-08-11 22:47:06\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:47:06.633-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441519470519",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/57253",ACLName="no_extension_match" \[2019-08-11 22:48:14\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:48:14.662-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441519470519",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/58874",ACLName="no_ex	2019-08-12 10:49:03
5.135.198.62	attackbots	Aug 12 05:02:43 SilenceServices sshd[22953]: Failed password for root from 5.135.198.62 port 58485 ssh2 Aug 12 05:06:38 SilenceServices sshd[25913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.198.62 Aug 12 05:06:39 SilenceServices sshd[25913]: Failed password for invalid user xxx from 5.135.198.62 port 54626 ssh2	2019-08-12 11:14:49
37.114.185.211	attackspambots	Aug 12 05:46:58 srv-4 sshd\[6477\]: Invalid user admin from 37.114.185.211 Aug 12 05:46:58 srv-4 sshd\[6477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.114.185.211 Aug 12 05:47:00 srv-4 sshd\[6477\]: Failed password for invalid user admin from 37.114.185.211 port 59784 ssh2 ...	2019-08-12 11:22:33
91.187.123.233	attackspambots	445/tcp 445/tcp 445/tcp [2019-06-12/08-11]3pkt	2019-08-12 10:44:51
201.55.33.90	attackspam	Aug 12 06:05:58 server sshd\[13112\]: Invalid user jesse from 201.55.33.90 port 60774 Aug 12 06:05:58 server sshd\[13112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.55.33.90 Aug 12 06:06:01 server sshd\[13112\]: Failed password for invalid user jesse from 201.55.33.90 port 60774 ssh2 Aug 12 06:12:21 server sshd\[18775\]: Invalid user test from 201.55.33.90 port 53088 Aug 12 06:12:21 server sshd\[18775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.55.33.90	2019-08-12 11:12:25
219.139.205.29	attack	SSH/22 MH Probe, BF, Hack -	2019-08-12 11:08:59
54.37.232.137	attackbots	Aug 12 05:39:05 pkdns2 sshd\[48684\]: Invalid user angry from 54.37.232.137Aug 12 05:39:08 pkdns2 sshd\[48684\]: Failed password for invalid user angry from 54.37.232.137 port 43538 ssh2Aug 12 05:43:27 pkdns2 sshd\[48870\]: Invalid user darla from 54.37.232.137Aug 12 05:43:29 pkdns2 sshd\[48870\]: Failed password for invalid user darla from 54.37.232.137 port 36398 ssh2Aug 12 05:47:43 pkdns2 sshd\[49063\]: Invalid user admin from 54.37.232.137Aug 12 05:47:45 pkdns2 sshd\[49063\]: Failed password for invalid user admin from 54.37.232.137 port 57498 ssh2 ...	2019-08-12 10:58:43
202.138.242.6	attack	Unauthorized connection attempt from IP address 202.138.242.6 on Port 25(SMTP)	2019-08-12 10:43:30
104.140.188.42	attack	Honeypot attack, port: 81, PTR: cbfd1.rederatural.com.	2019-08-12 10:44:00
167.71.156.71	attackbotsspam	Aug 12 04:47:45 web sshd\[22936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.156.71 user=root Aug 12 04:47:46 web sshd\[22936\]: Failed password for root from 167.71.156.71 port 48906 ssh2 Aug 12 04:47:48 web sshd\[22938\]: Invalid user admin from 167.71.156.71 Aug 12 04:47:48 web sshd\[22938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.156.71 Aug 12 04:47:50 web sshd\[22938\]: Failed password for invalid user admin from 167.71.156.71 port 36622 ssh2 ...	2019-08-12 11:06:37
167.179.76.246	attack	12.08.2019 02:47:35 Recursive DNS scan	2019-08-12 11:03:45
114.47.227.15	attack	Honeypot attack, port: 23, PTR: 114-47-227-15.dynamic-ip.hinet.net.	2019-08-12 10:48:12
49.88.112.80	attackspambots	Aug 11 22:47:23 ny01 sshd[15122]: Failed password for root from 49.88.112.80 port 21431 ssh2 Aug 11 22:47:31 ny01 sshd[15132]: Failed password for root from 49.88.112.80 port 28708 ssh2	2019-08-12 11:02:01

最近上报的IP列表

117.61.13.23	166.49.27.65	201.155.104.95	41.153.182.161
200.188.19.33	190.215.117.149	190.210.246.215	190.122.223.64
190.94.135.31	189.32.255.44	187.115.40.54	78.106.63.56
159.203.168.167	142.183.26.113	196.61.217.242	193.70.12.236
104.236.38.182	188.162.41.196	173.244.223.122	186.137.192.30