219.77.64.116 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 5555, PTR: n219077064116.netvigator.com.	2020-02-11 10:04:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.77.64.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36314
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.77.64.116.			IN	A

;; AUTHORITY SECTION:
.			124	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021100 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 10:04:19 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

116.64.77.219.in-addr.arpa domain name pointer n219077064116.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.64.77.219.in-addr.arpa	name = n219077064116.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
80.82.70.118	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-07-30 03:35:25
125.22.76.76	attackspam	2019-07-29T18:49:30.293180abusebot-3.cloudsearch.cf sshd\[20458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.22.76.76 user=root	2019-07-30 03:16:20
170.130.187.26	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-30 03:06:16
37.49.230.216	attack	Honeypot attack, port: 81, PTR: PTR record not found	2019-07-30 03:04:33
46.123.255.234	attackbots	Lines containing failures of 46.123.255.234 Jul 29 19:27:20 server01 postfix/smtpd[21228]: connect from APN-123-255-234-gprs.simobil.net[46.123.255.234] Jul x@x Jul x@x Jul 29 19:27:22 server01 postfix/policy-spf[21236]: : Policy action=PREPEND Received-SPF: none (wardroplaw.com: No applicable sender policy available) receiver=x@x Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.123.255.234	2019-07-30 02:55:01
37.52.197.74	attackbots	Jul 29 19:40:22 php sshd[14077]: Bad protocol version identification '' from 37.52.197.74 port 33102 Jul 29 19:40:25 php sshd[14078]: Invalid user nexthink from 37.52.197.74 port 33161 Jul 29 19:40:25 php sshd[14078]: Connection closed by 37.52.197.74 port 33161 [preauth] Jul 29 19:40:28 php sshd[14132]: Invalid user osbash from 37.52.197.74 port 33244 Jul 29 19:40:28 php sshd[14132]: Connection closed by 37.52.197.74 port 33244 [preauth] Jul 29 19:40:31 php sshd[14134]: Invalid user pi from 37.52.197.74 port 33435 Jul 29 19:40:32 php sshd[14134]: Connection closed by 37.52.197.74 port 33435 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.52.197.74	2019-07-30 02:58:41
1.64.224.86	attack	Honeypot attack, port: 23, PTR: 1-64-224-086.static.netvigator.com.	2019-07-30 03:11:22
113.173.47.150	attack	Jul 29 19:33:32 shared04 sshd[1128]: Invalid user admin from 113.173.47.150 Jul 29 19:33:32 shared04 sshd[1128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.47.150 Jul 29 19:33:33 shared04 sshd[1128]: Failed password for invalid user admin from 113.173.47.150 port 33900 ssh2 Jul 29 19:33:34 shared04 sshd[1128]: Connection closed by 113.173.47.150 port 33900 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.173.47.150	2019-07-30 03:27:16
49.70.89.237	attackbots	Jul 29 13:25:53 eola postfix/smtpd[4100]: connect from unknown[49.70.89.237] Jul 29 13:25:54 eola postfix/smtpd[4362]: connect from unknown[49.70.89.237] Jul 29 13:25:55 eola postfix/smtpd[4362]: NOQUEUE: reject: RCPT from unknown[49.70.89.237]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=<9eLx1V> Jul 29 13:25:55 eola postfix/smtpd[4100]: NOQUEUE: reject: RCPT from unknown[49.70.89.237]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Jul 29 13:25:55 eola postfix/smtpd[4362]: disconnect from unknown[49.70.89.237] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Jul 29 13:25:55 eola postfix/smtpd[4100]: disconnect from unknown[49.70.89.237] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Jul 29 13:25:55 eola postfix/smtpd[4362]: connect from unknown[49.70.89.237] Jul 29 13:25:55 eola postfix/smtpd[4100]: connect from unknown[49.70.89.237] Jul 29 13:25:56 eola postfix/smtpd[4100]: lost con........ -------------------------------	2019-07-30 03:07:10
81.22.45.254	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2019-07-30 03:22:53
59.100.246.170	attackbots	Jul 29 19:17:10 MK-Soft-VM7 sshd\[13450\]: Invalid user fcweb from 59.100.246.170 port 37765 Jul 29 19:17:10 MK-Soft-VM7 sshd\[13450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.100.246.170 Jul 29 19:17:12 MK-Soft-VM7 sshd\[13450\]: Failed password for invalid user fcweb from 59.100.246.170 port 37765 ssh2 ...	2019-07-30 03:35:57
193.110.239.214	attackbotsspam	[portscan] Port scan	2019-07-30 03:25:50
180.126.237.38	attack	20 attempts against mh-ssh on pluto.magehost.pro	2019-07-30 02:54:25
54.255.244.179	attack	2019-07-29T19:02:28.399368abusebot-5.cloudsearch.cf sshd\[380\]: Invalid user ewqdsacxz from 54.255.244.179 port 50208	2019-07-30 03:23:09
93.125.2.189	attack	Brute force attempt	2019-07-30 02:59:07

最近上报的IP列表

5.196.87.158	37.6.136.198	177.43.139.203	181.193.48.229
111.229.49.165	105.107.121.193	79.62.228.135	113.254.113.241
49.81.88.83	154.156.43.14	156.200.102.25	218.106.122.66
85.228.104.57	185.156.177.214	80.143.160.204	10.30.217.3
107.77.233.150	25.188.114.162	140.158.185.39	31.62.200.1