222.233.53.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 18:18:08
attackspambots	firewall-block, port(s): 445/tcp	2019-07-16 10:35:42

相同子网IP讨论:

IP	类型	评论内容	时间
222.233.53.132	attackbots	Brute force SMTP login attempted. ...	2020-03-31 04:17:07
222.233.53.132	attackbots	Unauthorized connection attempt detected from IP address 222.233.53.132 to port 2220 [J]	2020-01-30 03:40:00
222.233.53.132	attackbots	Invalid user cron from 222.233.53.132 port 48562	2020-01-17 05:15:20
222.233.53.132	attackspambots	Jan 5 03:18:01 gw1 sshd[25392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 Jan 5 03:18:03 gw1 sshd[25392]: Failed password for invalid user jeu from 222.233.53.132 port 35412 ssh2 ...	2020-01-05 06:26:37
222.233.53.132	attackspambots	SSH Brute Force	2020-01-03 15:22:00
222.233.53.132	attack	Dec 31 11:18:07 server sshd\[3147\]: Invalid user jammu from 222.233.53.132 Dec 31 11:18:07 server sshd\[3147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 Dec 31 11:18:09 server sshd\[3147\]: Failed password for invalid user jammu from 222.233.53.132 port 44480 ssh2 Dec 31 19:08:00 server sshd\[7340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 user=root Dec 31 19:08:03 server sshd\[7340\]: Failed password for root from 222.233.53.132 port 37936 ssh2 ...	2020-01-01 00:18:39
222.233.53.132	attackspambots	Dec 22 12:26:52 markkoudstaal sshd[9853]: Failed password for root from 222.233.53.132 port 52988 ssh2 Dec 22 12:34:37 markkoudstaal sshd[10547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 Dec 22 12:34:39 markkoudstaal sshd[10547]: Failed password for invalid user adm from 222.233.53.132 port 59668 ssh2	2019-12-22 20:04:48
222.233.53.132	attack	detected by Fail2Ban	2019-12-21 06:53:46
222.233.53.132	attack	2019-12-07T09:59:46.309554 sshd[11384]: Invalid user cn from 222.233.53.132 port 49592 2019-12-07T09:59:46.323613 sshd[11384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 2019-12-07T09:59:46.309554 sshd[11384]: Invalid user cn from 222.233.53.132 port 49592 2019-12-07T09:59:48.622634 sshd[11384]: Failed password for invalid user cn from 222.233.53.132 port 49592 ssh2 2019-12-07T10:06:53.947006 sshd[11536]: Invalid user cornelius123 from 222.233.53.132 port 59074 ...	2019-12-07 18:03:44
222.233.53.132	attack	detected by Fail2Ban	2019-12-02 04:18:13
222.233.53.132	attackbots	$f2bV_matches	2019-12-01 00:21:14
222.233.53.132	attackbotsspam	Invalid user lucchesi from 222.233.53.132 port 46350	2019-11-29 16:46:11
222.233.53.132	attackspam	Nov 28 13:00:49 eddieflores sshd\[6322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 user=root Nov 28 13:00:50 eddieflores sshd\[6322\]: Failed password for root from 222.233.53.132 port 59564 ssh2 Nov 28 13:04:29 eddieflores sshd\[6813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 user=sshd Nov 28 13:04:31 eddieflores sshd\[6813\]: Failed password for sshd from 222.233.53.132 port 38030 ssh2 Nov 28 13:08:01 eddieflores sshd\[7071\]: Invalid user teamspeak2 from 222.233.53.132 Nov 28 13:08:01 eddieflores sshd\[7071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132	2019-11-29 07:19:50
222.233.53.132	attackspam	Nov 23 06:22:44 php1 sshd\[14329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 user=root Nov 23 06:22:47 php1 sshd\[14329\]: Failed password for root from 222.233.53.132 port 39438 ssh2 Nov 23 06:26:41 php1 sshd\[14950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 user=backup Nov 23 06:26:42 php1 sshd\[14950\]: Failed password for backup from 222.233.53.132 port 46410 ssh2 Nov 23 06:30:29 php1 sshd\[15287\]: Invalid user guest from 222.233.53.132	2019-11-24 06:10:11
222.233.53.132	attackbotsspam	Nov 21 00:12:31 lnxmail61 sshd[26085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132 Nov 21 00:12:31 lnxmail61 sshd[26085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.233.53.132	2019-11-21 07:55:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.233.53.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39084
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.233.53.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 10:35:35 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.53.233.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.53.233.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
188.165.241.103	attackbotsspam	Nov 16 20:50:21 eventyay sshd[10555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.241.103 Nov 16 20:50:24 eventyay sshd[10555]: Failed password for invalid user huperz from 188.165.241.103 port 50848 ssh2 Nov 16 20:53:52 eventyay sshd[10662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.241.103 ...	2019-11-17 05:59:58
105.112.98.59	attack	Unauthorized connection attempt from IP address 105.112.98.59 on Port 445(SMB)	2019-11-17 05:50:50
27.109.116.18	attackspam	A spam email was sent from this SMTP server. This kind of spam emails had the following features.: - They attempted to camouflage the SMTP server with a KDDI's legitimate server. - The domain of URLs in the messages was best-self.info (103.212.223.59).	2019-11-17 05:37:08
222.163.220.74	attackbotsspam	Unauthorised access (Nov 16) SRC=222.163.220.74 LEN=40 TTL=49 ID=7058 TCP DPT=8080 WINDOW=61307 SYN Unauthorised access (Nov 16) SRC=222.163.220.74 LEN=40 TTL=49 ID=53113 TCP DPT=8080 WINDOW=44886 SYN Unauthorised access (Nov 15) SRC=222.163.220.74 LEN=40 TTL=49 ID=38180 TCP DPT=8080 WINDOW=44886 SYN Unauthorised access (Nov 15) SRC=222.163.220.74 LEN=40 TTL=46 ID=3880 TCP DPT=8080 WINDOW=43776 SYN Unauthorised access (Nov 14) SRC=222.163.220.74 LEN=40 TTL=49 ID=15637 TCP DPT=8080 WINDOW=44886 SYN	2019-11-17 05:35:17
92.118.37.83	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 93 - port: 2027 proto: TCP cat: Misc Attack	2019-11-17 06:12:20
177.38.242.45	attackbotsspam	Automatic report - Banned IP Access	2019-11-17 06:03:25
81.241.235.191	attack	Nov 16 18:06:46 sd-53420 sshd\[15899\]: Invalid user elvis from 81.241.235.191 Nov 16 18:06:46 sd-53420 sshd\[15899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.235.191 Nov 16 18:06:48 sd-53420 sshd\[15899\]: Failed password for invalid user elvis from 81.241.235.191 port 59716 ssh2 Nov 16 18:09:58 sd-53420 sshd\[16825\]: Invalid user pelegri from 81.241.235.191 Nov 16 18:09:58 sd-53420 sshd\[16825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.235.191 ...	2019-11-17 06:13:12
169.197.108.38	attackspam	Unauthorized access on Port 443 [https]	2019-11-17 05:39:59
193.82.231.28	attackbotsspam	Automatic report - Port Scan Attack	2019-11-17 06:06:30
154.8.217.73	attackbotsspam	Nov 16 15:24:59 ns382633 sshd\[783\]: Invalid user webadmin from 154.8.217.73 port 34672 Nov 16 15:24:59 ns382633 sshd\[783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.217.73 Nov 16 15:25:01 ns382633 sshd\[783\]: Failed password for invalid user webadmin from 154.8.217.73 port 34672 ssh2 Nov 16 15:44:30 ns382633 sshd\[4316\]: Invalid user hawker from 154.8.217.73 port 42348 Nov 16 15:44:30 ns382633 sshd\[4316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.217.73	2019-11-17 06:11:15
149.147.125.103	attackbots	Unauthorized connection attempt from IP address 149.147.125.103 on Port 445(SMB)	2019-11-17 05:48:33
46.55.161.219	attackbotsspam	A spam email was sent from this SMTP server. This kind of spam emails had the following features.: - They attempted to camouflage the SMTP server with a KDDI's legitimate server. - The domain of URLs in the messages was best-self.info (103.212.223.59).	2019-11-17 06:10:06
150.223.12.208	attackspam	Nov 16 19:18:54 amit sshd\[14502\]: Invalid user admin from 150.223.12.208 Nov 16 19:18:54 amit sshd\[14502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.12.208 Nov 16 19:18:56 amit sshd\[14502\]: Failed password for invalid user admin from 150.223.12.208 port 57168 ssh2 ...	2019-11-17 06:08:50
96.57.28.210	attack	sshd jail - ssh hack attempt	2019-11-17 06:10:35
113.162.190.106	attack	Nov 16 15:45:03 MK-Soft-VM4 sshd[23122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.162.190.106 Nov 16 15:45:04 MK-Soft-VM4 sshd[23122]: Failed password for invalid user admin from 113.162.190.106 port 58872 ssh2 ...	2019-11-17 05:52:32

最近上报的IP列表

164.132.204.211	101.36.150.142	185.42.224.5	139.159.151.82
123.59.195.113	37.6.171.128	124.127.38.135	122.114.192.181
118.89.228.153	213.55.224.237	223.111.160.251	104.45.148.145
223.111.224.194	93.32.228.70	191.240.69.156	81.177.140.31
39.98.206.255	1.40.213.89	185.153.198.204	106.52.198.75