85.221.108.179

基本信息:

城市(city): Bardu

省份(region): unknown

国家(country): Norway

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.221.108.179
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.221.108.179.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011602 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 08:11:00 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 179.108.221.85.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 179.108.221.85.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.62.239.77	attackspam	Repeated brute force against a port	2019-10-19 05:26:28
92.119.160.10	attackbots	Oct 18 22:46:16 h2177944 kernel: \[4307503.245884\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=56947 PROTO=TCP SPT=59151 DPT=9336 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 22:49:43 h2177944 kernel: \[4307709.785764\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=34229 PROTO=TCP SPT=59151 DPT=9213 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 22:51:24 h2177944 kernel: \[4307810.944807\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=21657 PROTO=TCP SPT=59151 DPT=8625 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 22:53:10 h2177944 kernel: \[4307917.020911\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39119 PROTO=TCP SPT=59151 DPT=8618 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 22:55:46 h2177944 kernel: \[4308073.140198\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.10 DST=85.214.117.9	2019-10-19 04:56:03
113.229.2.181	attackbotsspam	Unauthorised access (Oct 18) SRC=113.229.2.181 LEN=40 TTL=49 ID=36707 TCP DPT=23 WINDOW=38467 SYN Unauthorised access (Oct 18) SRC=113.229.2.181 LEN=40 TTL=49 ID=16950 TCP DPT=8080 WINDOW=5563 SYN Unauthorised access (Oct 17) SRC=113.229.2.181 LEN=40 TTL=49 ID=32064 TCP DPT=8080 WINDOW=63850 SYN Unauthorised access (Oct 17) SRC=113.229.2.181 LEN=40 TTL=49 ID=61833 TCP DPT=8080 WINDOW=23105 SYN Unauthorised access (Oct 17) SRC=113.229.2.181 LEN=40 TTL=49 ID=47030 TCP DPT=8080 WINDOW=63850 SYN Unauthorised access (Oct 16) SRC=113.229.2.181 LEN=40 TTL=49 ID=3095 TCP DPT=8080 WINDOW=40523 SYN Unauthorised access (Oct 15) SRC=113.229.2.181 LEN=40 TTL=49 ID=8159 TCP DPT=8080 WINDOW=23105 SYN	2019-10-19 04:56:51
200.169.223.98	attackspambots	Oct 18 20:42:00 game-panel sshd[21648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 Oct 18 20:42:02 game-panel sshd[21648]: Failed password for invalid user arianna from 200.169.223.98 port 34636 ssh2 Oct 18 20:46:50 game-panel sshd[21757]: Failed password for root from 200.169.223.98 port 46184 ssh2	2019-10-19 04:52:36
46.38.144.57	attack	Brute Force attack - banned by Fail2Ban	2019-10-19 05:10:47
120.150.216.161	attack	Oct 18 10:55:44 friendsofhawaii sshd\[19519\]: Invalid user end from 120.150.216.161 Oct 18 10:55:44 friendsofhawaii sshd\[19519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=arn1285831.lnk.telstra.net Oct 18 10:55:46 friendsofhawaii sshd\[19519\]: Failed password for invalid user end from 120.150.216.161 port 49184 ssh2 Oct 18 11:01:39 friendsofhawaii sshd\[19991\]: Invalid user pas\$w0rd! from 120.150.216.161 Oct 18 11:01:39 friendsofhawaii sshd\[19991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=arn1285831.lnk.telstra.net	2019-10-19 05:17:11
221.229.219.188	attackspam	Oct 18 22:55:02 * sshd[32760]: Failed password for root from 221.229.219.188 port 60255 ssh2	2019-10-19 05:04:34
202.47.51.150	attackspambots	202.47.51.150 - - [18/Oct/2019:15:52:20 -0400] "GET /?page=products&action=view&manufacturerID=36&productID=../../../../../../etc/passwd%00&linkID=13130 HTTP/1.1" 302 - "https://simplexlock.com/?page=products&action=view&manufacturerID=36&productID=../../../../../../etc/passwd%00&linkID=13130" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 05:01:12
61.133.232.253	attack	2019-10-18T21:08:01.564475abusebot-5.cloudsearch.cf sshd\[25729\]: Invalid user yjlo from 61.133.232.253 port 5662 2019-10-18T21:08:01.569928abusebot-5.cloudsearch.cf sshd\[25729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.253	2019-10-19 05:31:36
113.89.96.64	attack	Oct 18 18:26:55 indra sshd[639372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.96.64 user=r.r Oct 18 18:26:57 indra sshd[639372]: Failed password for r.r from 113.89.96.64 port 56261 ssh2 Oct 18 18:26:57 indra sshd[639372]: Received disconnect from 113.89.96.64: 11: Bye Bye [preauth] Oct 18 18:33:48 indra sshd[640478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.96.64 user=r.r Oct 18 18:33:50 indra sshd[640478]: Failed password for r.r from 113.89.96.64 port 54892 ssh2 Oct 18 18:33:50 indra sshd[640478]: Received disconnect from 113.89.96.64: 11: Bye Bye [preauth] Oct 18 18:39:57 indra sshd[641412]: Invalid user test2 from 113.89.96.64 Oct 18 18:39:57 indra sshd[641412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.96.64 Oct 18 18:39:59 indra sshd[641412]: Failed password for invalid user test2 from 113.89.96.64 port........ -------------------------------	2019-10-19 05:03:55
45.142.195.5	attack	Oct 18 21:12:59 heicom postfix/smtpd\[22505\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 18 21:13:48 heicom postfix/smtpd\[22558\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 18 21:14:36 heicom postfix/smtpd\[22505\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 18 21:15:26 heicom postfix/smtpd\[22558\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 18 21:16:15 heicom postfix/smtpd\[22505\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure ...	2019-10-19 05:26:06
213.229.1.12	attack	Oct 19 00:00:31 taivassalofi sshd[100323]: Failed password for root from 213.229.1.12 port 33546 ssh2 Oct 19 00:04:11 taivassalofi sshd[100378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.229.1.12 ...	2019-10-19 05:06:41
122.116.140.68	attackbots	Automatic report - Banned IP Access	2019-10-19 05:30:53
182.177.202.31	attackbotsspam	Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: CONNECT from [182.177.202.31]:63001 to [176.31.12.44]:25 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19433]: addr 182.177.202.31 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19433]: addr 182.177.202.31 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19482]: addr 182.177.202.31 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19437]: addr 182.177.202.31 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/dnsblog[19436]: addr 182.177.202.31 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: PREGREET 23 after 0.21 from [182.177.202.31]:63001: EHLO [182.177.197.22] Oct 18 21:32:51 mxgate1 postfix/postscreen[19432]: DNSBL rank 5 for [182.177.202.31]:63001 Oct x@x Oct 18 21:32:53 mxgate1 postfix/postscreen[19432]: HANGUP after 1.7........ -------------------------------	2019-10-19 05:21:08
106.12.42.110	attack	Oct 18 10:25:44 php1 sshd\[14203\]: Invalid user hax from 106.12.42.110 Oct 18 10:25:44 php1 sshd\[14203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.42.110 Oct 18 10:25:46 php1 sshd\[14203\]: Failed password for invalid user hax from 106.12.42.110 port 44570 ssh2 Oct 18 10:30:34 php1 sshd\[14616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.42.110 user=root Oct 18 10:30:35 php1 sshd\[14616\]: Failed password for root from 106.12.42.110 port 54258 ssh2	2019-10-19 04:55:20

最近上报的IP列表

82.20.219.32	52.217.105.29	27.200.60.221	217.17.69.183
77.236.148.77	83.209.100.238	199.115.235.184	55.208.48.195
206.196.220.177	201.54.45.114	126.46.238.20	214.50.134.244
213.28.101.167	133.167.65.48	132.123.65.247	116.20.195.118
224.68.253.53	27.225.173.22	228.224.196.34	127.208.244.64