220.89.48.232 - IPInfo

基本信息:

城市(city): Gyeongsan-si

省份(region): Gyeongsangbuk-do

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.89.48.232
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;220.89.48.232.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024122200 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 22 23:58:04 CST 2024
;; MSG SIZE  rcvd: 106

HOST信息:

Host 232.48.89.220.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 232.48.89.220.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
122.190.94.170	attackspam	port scan and connect, tcp 23 (telnet)	2019-08-25 02:48:33
51.254.140.108	attackbotsspam	Aug 24 05:28:39 auw2 sshd\[4884\]: Invalid user peewee from 51.254.140.108 Aug 24 05:28:39 auw2 sshd\[4884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.ip-51-254-140.eu Aug 24 05:28:40 auw2 sshd\[4884\]: Failed password for invalid user peewee from 51.254.140.108 port 43210 ssh2 Aug 24 05:32:47 auw2 sshd\[5282\]: Invalid user elisa from 51.254.140.108 Aug 24 05:32:47 auw2 sshd\[5282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.ip-51-254-140.eu	2019-08-25 02:34:00
125.234.167.69	attackspam	Brute force attempt	2019-08-25 02:34:57
64.32.11.102	attackspambots	81/tcp 88/tcp 1080/tcp... [2019-08-20/23]35pkt,13pt.(tcp)	2019-08-25 02:37:58
139.59.25.230	attackbots	Aug 24 07:19:08 web1 sshd\[17520\]: Invalid user ftpd from 139.59.25.230 Aug 24 07:19:08 web1 sshd\[17520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.25.230 Aug 24 07:19:10 web1 sshd\[17520\]: Failed password for invalid user ftpd from 139.59.25.230 port 56968 ssh2 Aug 24 07:24:01 web1 sshd\[17978\]: Invalid user wu from 139.59.25.230 Aug 24 07:24:01 web1 sshd\[17978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.25.230	2019-08-25 02:37:33
162.218.64.59	attack	Aug 24 08:01:16 lcdev sshd\[3829\]: Invalid user divya from 162.218.64.59 Aug 24 08:01:16 lcdev sshd\[3829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.218.64.59 Aug 24 08:01:18 lcdev sshd\[3829\]: Failed password for invalid user divya from 162.218.64.59 port 45171 ssh2 Aug 24 08:05:38 lcdev sshd\[4214\]: Invalid user maya from 162.218.64.59 Aug 24 08:05:38 lcdev sshd\[4214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.218.64.59	2019-08-25 02:58:07
185.211.245.170	attack	Aug 24 20:47:09 relay postfix/smtpd\[26191\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 20:50:51 relay postfix/smtpd\[7630\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 20:50:58 relay postfix/smtpd\[29700\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 21:01:22 relay postfix/smtpd\[29700\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 21:01:31 relay postfix/smtpd\[23439\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-25 03:05:34
40.112.255.39	attack	Aug 24 02:31:44 kapalua sshd\[28973\]: Invalid user manoel from 40.112.255.39 Aug 24 02:31:44 kapalua sshd\[28973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.255.39 Aug 24 02:31:46 kapalua sshd\[28973\]: Failed password for invalid user manoel from 40.112.255.39 port 40064 ssh2 Aug 24 02:36:34 kapalua sshd\[29413\]: Invalid user sammy from 40.112.255.39 Aug 24 02:36:34 kapalua sshd\[29413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.255.39	2019-08-25 03:00:45
185.81.154.162	attackbots	Splunk® : port scan detected: Aug 24 07:22:49 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=185.81.154.162 DST=104.248.11.191 LEN=52 TOS=0x02 PREC=0x00 TTL=112 ID=21660 DF PROTO=TCP SPT=60921 DPT=3389 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-08-25 03:04:24
80.173.177.132	attackbots	Aug 24 13:23:50 rpi sshd[7721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.173.177.132 Aug 24 13:23:52 rpi sshd[7721]: Failed password for invalid user changeme from 80.173.177.132 port 33284 ssh2	2019-08-25 02:29:01
219.250.188.46	attackbotsspam	Aug 24 20:02:09 eventyay sshd[9741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.250.188.46 Aug 24 20:02:11 eventyay sshd[9741]: Failed password for invalid user johnathan from 219.250.188.46 port 43986 ssh2 Aug 24 20:07:35 eventyay sshd[9885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.250.188.46 ...	2019-08-25 02:21:38
185.122.203.164	attack	Looking for /mknshop.ru/mknshop.sql, Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2019-08-25 02:24:29
111.250.84.216	attackbotsspam	Aug 23 13:34:27 localhost kernel: [319482.624594] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=111.250.84.216 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=44286 PROTO=TCP SPT=63460 DPT=37215 WINDOW=53211 RES=0x00 SYN URGP=0 Aug 23 13:34:27 localhost kernel: [319482.624622] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=111.250.84.216 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=44286 PROTO=TCP SPT=63460 DPT=37215 SEQ=758669438 ACK=0 WINDOW=53211 RES=0x00 SYN URGP=0 Aug 24 07:23:20 localhost kernel: [383615.413681] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=111.250.84.216 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=42427 PROTO=TCP SPT=63460 DPT=37215 WINDOW=53211 RES=0x00 SYN URGP=0 Aug 24 07:23:20 localhost kernel: [383615.413707] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=111.250.84.216 DST=[mungedIP2] LEN=40 TOS=0x00 PR	2019-08-25 02:50:04
113.215.223.108	attackbotsspam	Aug 24 14:05:41 plusreed sshd[13129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.215.223.108 user=root Aug 24 14:05:43 plusreed sshd[13129]: Failed password for root from 113.215.223.108 port 60148 ssh2 Aug 24 14:05:45 plusreed sshd[13129]: Failed password for root from 113.215.223.108 port 60148 ssh2 Aug 24 14:05:41 plusreed sshd[13129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.215.223.108 user=root Aug 24 14:05:43 plusreed sshd[13129]: Failed password for root from 113.215.223.108 port 60148 ssh2 Aug 24 14:05:45 plusreed sshd[13129]: Failed password for root from 113.215.223.108 port 60148 ssh2 Aug 24 14:05:41 plusreed sshd[13129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.215.223.108 user=root Aug 24 14:05:43 plusreed sshd[13129]: Failed password for root from 113.215.223.108 port 60148 ssh2 Aug 24 14:05:45 plusreed sshd[13129]: Failed password for root fr	2019-08-25 02:36:32
220.130.190.13	attackbotsspam	Aug 24 17:08:44 v22019058497090703 sshd[12694]: Failed password for root from 220.130.190.13 port 24303 ssh2 Aug 24 17:13:28 v22019058497090703 sshd[13124]: Failed password for root from 220.130.190.13 port 14012 ssh2 ...	2019-08-25 02:20:44

最近上报的IP列表

63.172.210.12	175.135.36.48	100.204.161.246	56.2.224.47
101.68.172.52	177.239.60.97	147.54.89.42	101.22.111.56
20.55.151.88	4.223.11.6	176.121.51.75	231.175.201.61
174.3.79.205	104.189.61.139	99.19.242.88	114.1.97.80
25.175.240.130	70.176.186.107	204.208.249.145	137.30.28.208