222.252.104.75

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Hanoi Post and Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 222.252.104.75 on Port 445(SMB)	2020-03-28 13:54:52

相同子网IP讨论:

IP	类型	评论内容	时间
222.252.104.84	attackspam	Chat Spam	2019-10-05 05:21:59
222.252.104.255	attackbotsspam	Sun, 21 Jul 2019 07:35:48 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 23:48:10
222.252.104.96	attack	2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed 2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104......... ------------------------------	2019-06-29 17:21:20

类型

评论内容

时间

222.252.104.84

attackspam

Chat Spam

2019-10-05 05:21:59

222.252.104.255

attackbotsspam

Sun, 21 Jul 2019 07:35:48 +0000 likely compromised host or open proxy. ddos rate spidering

2019-07-21 23:48:10

222.252.104.96

attack

2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.96]:56143 F=: Sender verify failed
2019-06-29 11:38:05 H=([185.180.222.147]) [222.252.104.........
------------------------------

2019-06-29 17:21:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.252.104.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49483
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.252.104.75.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032801 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 28 13:54:39 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

75.104.252.222.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.104.252.222.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
128.199.163.233	attackbots	Jun 9 10:18:14 debian kernel: [589651.272738] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=128.199.163.233 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=23657 PROTO=TCP SPT=47438 DPT=28355 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-09 17:58:34
203.171.25.198	attackbotsspam	20/6/8@23:50:20: FAIL: Alarm-Network address from=203.171.25.198 ...	2020-06-09 17:44:20
106.54.242.120	attack	2020-06-09T08:36:17.6183761240 sshd\[10631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 user=root 2020-06-09T08:36:19.8615361240 sshd\[10631\]: Failed password for root from 106.54.242.120 port 43010 ssh2 2020-06-09T08:45:44.7015851240 sshd\[11145\]: Invalid user zhangzhitong from 106.54.242.120 port 55710 2020-06-09T08:45:44.7063791240 sshd\[11145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-06-09 17:33:42
50.116.17.38	attackbotsspam	UDP 50.116.17.38:34579 -> port 1900, len 125	2020-06-09 17:22:51
49.88.112.71	attackspambots	2020-06-09T03:47:26.430951abusebot-7.cloudsearch.cf sshd[2168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root 2020-06-09T03:47:28.529778abusebot-7.cloudsearch.cf sshd[2168]: Failed password for root from 49.88.112.71 port 60343 ssh2 2020-06-09T03:47:31.140989abusebot-7.cloudsearch.cf sshd[2168]: Failed password for root from 49.88.112.71 port 60343 ssh2 2020-06-09T03:47:26.430951abusebot-7.cloudsearch.cf sshd[2168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root 2020-06-09T03:47:28.529778abusebot-7.cloudsearch.cf sshd[2168]: Failed password for root from 49.88.112.71 port 60343 ssh2 2020-06-09T03:47:31.140989abusebot-7.cloudsearch.cf sshd[2168]: Failed password for root from 49.88.112.71 port 60343 ssh2 2020-06-09T03:47:26.430951abusebot-7.cloudsearch.cf sshd[2168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.8 ...	2020-06-09 17:26:47
46.83.43.27	attackbots	Jun 9 11:11:38 minden010 postfix/smtpd[10906]: NOQUEUE: reject: RCPT from p2e532b1b.dip0.t-ipconnect.de[46.83.43.27]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo= Jun 9 11:11:41 minden010 postfix/smtpd[26132]: NOQUEUE: reject: RCPT from p2e532b1b.dip0.t-ipconnect.de[46.83.43.27]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 9 11:15:15 minden010 postfix/smtpd[10924]: NOQUEUE: reject: RCPT from p2e532b1b.dip0.t-ipconnect.de[46.83.43.27]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 9 11:15:15 minden010 postfix/smtpd[12775]: NOQUEUE: reject: RCPT from p2e532b1b.dip0.t-ipconnect.de[46.83.43.27]: 450 4.7.1 : Helo command rejected: Host not found; from= to ...	2020-06-09 17:59:12
216.254.186.76	attackbots	2020-06-09 03:37:08.083330-0500 localhost sshd[63958]: Failed password for invalid user angela from 216.254.186.76 port 50291 ssh2	2020-06-09 17:33:26
112.215.241.141	attackbotsspam	Automatic report - Port Scan Attack	2020-06-09 17:28:27
178.17.170.91	attackbots	xmlrpc attack	2020-06-09 17:31:36
212.83.183.57	attack	"fail2ban match"	2020-06-09 17:50:51
51.68.226.159	attack	2020-06-09T04:30:57.035515morrigan.ad5gb.com sshd[16606]: Invalid user samba1 from 51.68.226.159 port 40460 2020-06-09T04:30:59.335944morrigan.ad5gb.com sshd[16606]: Failed password for invalid user samba1 from 51.68.226.159 port 40460 ssh2 2020-06-09T04:31:00.193677morrigan.ad5gb.com sshd[16606]: Disconnected from invalid user samba1 51.68.226.159 port 40460 [preauth]	2020-06-09 17:42:58
185.175.93.37	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-06-09 17:27:39
190.196.64.93	attack	SSH brute-force: detected 8 distinct username(s) / 11 distinct password(s) within a 24-hour window.	2020-06-09 17:49:35
112.85.42.174	attackbots	Jun 9 11:11:32 vps sshd[484986]: Failed password for root from 112.85.42.174 port 30351 ssh2 Jun 9 11:11:34 vps sshd[484986]: Failed password for root from 112.85.42.174 port 30351 ssh2 Jun 9 11:11:38 vps sshd[484986]: Failed password for root from 112.85.42.174 port 30351 ssh2 Jun 9 11:11:41 vps sshd[484986]: Failed password for root from 112.85.42.174 port 30351 ssh2 Jun 9 11:11:44 vps sshd[484986]: Failed password for root from 112.85.42.174 port 30351 ssh2 ...	2020-06-09 17:20:48
222.186.175.169	attackspam	" "	2020-06-09 17:41:19

最近上报的IP列表

2.134.182.228	202.9.210.198	179.118.26.127	77.43.186.230
118.137.5.59	129.204.125.51	113.163.184.135	52.160.111.245
113.87.89.139	84.16.224.21	180.241.46.111	115.48.137.108
242.4.92.205	167.1.160.254	45.129.28.161	176.123.6.98
172.69.234.135	118.161.174.121	171.224.201.27	102.42.247.140