222.105.75.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 222.105.75.119 to port 4567 [J]	2020-01-14 16:26:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.105.75.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53803
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.105.75.119.			IN	A

;; AUTHORITY SECTION:
.			175	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 14 16:26:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 119.75.105.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.75.105.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
202.75.62.141	attack	Port Scan detected from 202.75.62.141 (MY/Malaysia/ww5.netkl.org). 4 hits in the last 46 seconds	2019-10-25 19:12:12
187.189.125.125	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-25 18:39:52
86.35.166.239	attackspambots	Automatic report - Banned IP Access	2019-10-25 18:41:22
157.230.208.92	attackspambots	Oct 25 03:46:42 marvibiene sshd[49520]: Invalid user volkmar from 157.230.208.92 port 46546 Oct 25 03:46:42 marvibiene sshd[49520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.208.92 Oct 25 03:46:42 marvibiene sshd[49520]: Invalid user volkmar from 157.230.208.92 port 46546 Oct 25 03:46:44 marvibiene sshd[49520]: Failed password for invalid user volkmar from 157.230.208.92 port 46546 ssh2 ...	2019-10-25 19:07:06
54.38.184.10	attackspam	Oct 25 06:47:23 vpn01 sshd[29286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.10 Oct 25 06:47:25 vpn01 sshd[29286]: Failed password for invalid user abeler from 54.38.184.10 port 44000 ssh2 ...	2019-10-25 19:11:43
119.29.10.25	attack	Oct 25 08:10:23 MK-Soft-VM5 sshd[18203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Oct 25 08:10:26 MK-Soft-VM5 sshd[18203]: Failed password for invalid user semik from 119.29.10.25 port 33430 ssh2 ...	2019-10-25 18:45:06
81.0.34.218	attack	2019-10-21 x@x 2019-10-21 15:31:32 unexpected disconnection while reading SMTP command from (static.218.34.0.81.ibercom.com) [81.0.34.218]:6886 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.0.34.218	2019-10-25 18:42:09
109.252.240.202	attackbotsspam	Oct 25 07:02:34 taivassalofi sshd[45914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.252.240.202 Oct 25 07:02:36 taivassalofi sshd[45914]: Failed password for invalid user austral1a from 109.252.240.202 port 19003 ssh2 ...	2019-10-25 18:42:46
5.172.16.66	attackspambots	Chat Spam	2019-10-25 19:06:35
123.21.33.151	attack	2019-10-25T03:42:11.513956shield sshd\[7894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.21.33.151 user=ftp 2019-10-25T03:42:13.969834shield sshd\[7894\]: Failed password for ftp from 123.21.33.151 port 7441 ssh2 2019-10-25T03:46:59.691124shield sshd\[9027\]: Invalid user user from 123.21.33.151 port 42310 2019-10-25T03:46:59.695552shield sshd\[9027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.21.33.151 2019-10-25T03:47:01.358021shield sshd\[9027\]: Failed password for invalid user user from 123.21.33.151 port 42310 ssh2	2019-10-25 18:59:40
192.228.100.16	attackspambots	2019-10-25 11:32:26,181 [snip] proftpd[29588] [snip] (192.228.100.16[192.228.100.16]): USER root: no such user found from 192.228.100.16 [192.228.100.16] to ::ffff:[snip]:22 2019-10-25 11:32:27,283 [snip] proftpd[29592] [snip] (192.228.100.16[192.228.100.16]): USER DUP: no such user found from 192.228.100.16 [192.228.100.16] to ::ffff:[snip]:22 2019-10-25 11:32:28,387 [snip] proftpd[29594] [snip] (192.228.100.16[192.228.100.16]): USER minecraft: no such user found from 192.228.100.16 [192.228.100.16] to ::ffff:[snip]:22[...]	2019-10-25 18:48:12
195.16.41.170	attackspambots	Oct 25 09:58:18 ovpn sshd\[5450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.16.41.170 user=root Oct 25 09:58:20 ovpn sshd\[5450\]: Failed password for root from 195.16.41.170 port 49840 ssh2 Oct 25 10:17:09 ovpn sshd\[9016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.16.41.170 user=root Oct 25 10:17:11 ovpn sshd\[9016\]: Failed password for root from 195.16.41.170 port 51670 ssh2 Oct 25 10:20:53 ovpn sshd\[9768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.16.41.170 user=root	2019-10-25 19:08:07
165.22.130.168	attackspam	Oct 21 06:49:43 nirvana postfix/smtpd[14164]: connect from unknown[165.22.130.168] Oct 21 06:49:44 nirvana postfix/smtpd[14164]: warning: unknown[165.22.130.168]: SASL LOGIN authentication failed: authentication failure Oct 21 06:49:44 nirvana postfix/smtpd[14164]: disconnect from unknown[165.22.130.168] Oct 21 06:55:21 nirvana postfix/smtpd[21609]: connect from unknown[165.22.130.168] Oct 21 06:55:22 nirvana postfix/smtpd[21609]: warning: unknown[165.22.130.168]: SASL LOGIN authentication failed: authentication failure Oct 21 06:55:22 nirvana postfix/smtpd[21609]: disconnect from unknown[165.22.130.168] Oct 21 06:56:35 nirvana postfix/smtpd[21609]: connect from unknown[165.22.130.168] Oct 21 06:56:36 nirvana postfix/smtpd[21609]: warning: unknown[165.22.130.168]: SASL LOGIN authentication failed: authentication failure Oct 21 06:56:36 nirvana postfix/smtpd[21609]: disconnect from unknown[165.22.130.168] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=165.22	2019-10-25 18:35:16
37.17.73.249	attackbots	Lines containing failures of 37.17.73.249 Oct 21 17:51:17 dns01 sshd[20953]: Invalid user ccapp from 37.17.73.249 port 34312 Oct 21 17:51:17 dns01 sshd[20953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.17.73.249 Oct 21 17:51:20 dns01 sshd[20953]: Failed password for invalid user ccapp from 37.17.73.249 port 34312 ssh2 Oct 21 17:51:20 dns01 sshd[20953]: Received disconnect from 37.17.73.249 port 34312:11: Bye Bye [preauth] Oct 21 17:51:20 dns01 sshd[20953]: Disconnected from invalid user ccapp 37.17.73.249 port 34312 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.17.73.249	2019-10-25 18:44:47
104.168.140.99	attack	port scan and connect, tcp 5432 (postgresql)	2019-10-25 18:56:55

最近上报的IP列表

183.115.121.8	183.96.238.131	181.114.128.82	178.140.194.11
175.184.167.147	175.18.189.150	168.181.123.131	143.255.241.88
134.249.96.246	123.191.138.102	123.30.109.198	118.81.237.240
112.197.235.131	111.38.107.146	154.28.2.98	110.153.71.169
92.85.70.38	234.6.7.252	88.226.93.86	82.140.103.18