219.251.106.21

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-11-25 20:52:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> 219.251.106.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38735
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.251.106.21.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Mon Nov 25 20:58:22 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 21.106.251.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.106.251.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.110.17.179	attack	20 attempts against mh-ssh on flame.magehost.pro	2019-08-01 06:28:12
179.90.88.222	attack	Jul 31 20:45:29 dns01 sshd[24669]: Invalid user admin from 179.90.88.222 Jul 31 20:45:29 dns01 sshd[24669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.90.88.222 Jul 31 20:45:32 dns01 sshd[24669]: Failed password for invalid user admin from 179.90.88.222 port 31803 ssh2 Jul 31 20:45:33 dns01 sshd[24669]: Connection closed by 179.90.88.222 port 31803 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.90.88.222	2019-08-01 06:50:44
52.189.232.109	attackspam	Jul 31 23:02:06 MK-Soft-VM6 sshd\[1640\]: Invalid user admin from 52.189.232.109 port 40874 Jul 31 23:02:06 MK-Soft-VM6 sshd\[1640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.189.232.109 Jul 31 23:02:08 MK-Soft-VM6 sshd\[1640\]: Failed password for invalid user admin from 52.189.232.109 port 40874 ssh2 ...	2019-08-01 07:08:12
49.69.175.78	attack	Automatic report - Port Scan Attack	2019-08-01 06:32:35
190.111.232.7	attack	Jun 8 22:29:18 server sshd\[90772\]: Invalid user pi from 190.111.232.7 Jun 8 22:29:18 server sshd\[90770\]: Invalid user pi from 190.111.232.7 Jun 8 22:29:18 server sshd\[90772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.232.7 Jun 8 22:29:18 server sshd\[90770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.232.7 Jun 8 22:29:19 server sshd\[90772\]: Failed password for invalid user pi from 190.111.232.7 port 53800 ssh2 Jun 8 22:29:19 server sshd\[90770\]: Failed password for invalid user pi from 190.111.232.7 port 53796 ssh2 ...	2019-08-01 06:33:05
156.224.129.127	attackspam	Jul 31 20:31:22 mxgate1 postfix/postscreen[3428]: CONNECT from [156.224.129.127]:49086 to [176.31.12.44]:25 Jul 31 20:31:22 mxgate1 postfix/dnsblog[3449]: addr 156.224.129.127 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 31 20:31:28 mxgate1 postfix/postscreen[3428]: DNSBL rank 2 for [156.224.129.127]:49086 Jul x@x Jul 31 20:31:29 mxgate1 postfix/postscreen[3428]: DISCONNECT [156.224.129.127]:49086 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.224.129.127	2019-08-01 06:26:43
41.218.192.121	attack	Jul 31 20:45:00 MK-Soft-Root1 sshd\[26635\]: Invalid user admin from 41.218.192.121 port 54745 Jul 31 20:45:00 MK-Soft-Root1 sshd\[26635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.218.192.121 Jul 31 20:45:01 MK-Soft-Root1 sshd\[26635\]: Failed password for invalid user admin from 41.218.192.121 port 54745 ssh2 ...	2019-08-01 06:51:17
5.135.135.116	attackbots	Aug 1 00:56:22 SilenceServices sshd[11131]: Failed password for root from 5.135.135.116 port 59461 ssh2 Aug 1 01:01:18 SilenceServices sshd[14405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116 Aug 1 01:01:19 SilenceServices sshd[14405]: Failed password for invalid user maggi from 5.135.135.116 port 57499 ssh2	2019-08-01 07:02:22
190.111.249.177	attackbots	Jun 16 10:32:15 ubuntu sshd[25963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.249.177 Jun 16 10:32:16 ubuntu sshd[25963]: Failed password for invalid user test from 190.111.249.177 port 33998 ssh2 Jun 16 10:34:58 ubuntu sshd[26032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.249.177 Jun 16 10:35:00 ubuntu sshd[26032]: Failed password for invalid user admin from 190.111.249.177 port 44722 ssh2	2019-08-01 06:24:58
50.62.176.85	attackbotsspam	fail2ban honeypot	2019-08-01 06:47:26
149.56.10.119	attackbotsspam	Jul 31 22:21:15 MK-Soft-VM3 sshd\[17989\]: Invalid user vincent from 149.56.10.119 port 45018 Jul 31 22:21:15 MK-Soft-VM3 sshd\[17989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.10.119 Jul 31 22:21:18 MK-Soft-VM3 sshd\[17989\]: Failed password for invalid user vincent from 149.56.10.119 port 45018 ssh2 ...	2019-08-01 06:35:08
187.120.133.206	attackspam	libpam_shield report: forced login attempt	2019-08-01 06:43:39
185.220.102.4	attackbotsspam	Jul 31 23:07:39 srv03 sshd\[10717\]: Invalid user admin from 185.220.102.4 port 45961 Jul 31 23:07:39 srv03 sshd\[10717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.4 Jul 31 23:07:41 srv03 sshd\[10717\]: Failed password for invalid user admin from 185.220.102.4 port 45961 ssh2	2019-08-01 07:05:40
190.104.214.188	attackspam	Apr 20 06:47:06 ubuntu sshd[32452]: Failed password for invalid user adine from 190.104.214.188 port 51516 ssh2 Apr 20 06:50:13 ubuntu sshd[32572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.104.214.188 Apr 20 06:50:16 ubuntu sshd[32572]: Failed password for invalid user diag from 190.104.214.188 port 48866 ssh2 Apr 20 06:53:11 ubuntu sshd[32642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.104.214.188	2019-08-01 06:54:46
190.111.232.202	attackspam	Jul 2 15:58:45 dallas01 sshd[15632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.232.202 Jul 2 15:58:48 dallas01 sshd[15632]: Failed password for invalid user samba from 190.111.232.202 port 57470 ssh2 Jul 2 16:01:32 dallas01 sshd[17002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.232.202	2019-08-01 06:39:29

最近上报的IP列表

134.209.148.235	64.68.229.166	106.54.185.14	77.81.76.5
63.142.215.228	49.228.130.159	252.34.30.186	180.159.99.17
168.228.165.227	46.28.131.130	39.35.144.18	36.65.238.59
220.143.25.171	219.91.183.109	219.85.159.132	182.253.114.43
182.239.83.180	180.214.233.83	171.254.104.175	171.7.236.31