1.20.207.149 - IPInfo

基本信息:

城市(city): Si Racha

省份(region): Chon Buri

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.20.207.86	attack	hack	2021-02-14 19:26:32
1.20.207.55	attackspam	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-12 14:53:37
1.20.207.30	attack	Port scan detected on ports: 8291[TCP], 8291[TCP], 8291[TCP]	2020-04-22 23:43:01
1.20.207.94	attackspambots	Unauthorized connection attempt from IP address 1.20.207.94 on Port 445(SMB)	2020-01-03 18:41:58
1.20.207.105	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-02 16:16:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.207.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12131
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.207.149.			IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030300 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 03 22:39:21 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 149.207.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.207.20.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
128.199.79.37	attackspambots	$f2bV_matches	2019-10-08 03:41:32
168.121.43.233	attackspam	Automatic report - Port Scan Attack	2019-10-08 04:00:25
138.68.178.64	attackbotsspam	Oct 7 21:35:03 markkoudstaal sshd[23765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64 Oct 7 21:35:04 markkoudstaal sshd[23765]: Failed password for invalid user Danke-123 from 138.68.178.64 port 46390 ssh2 Oct 7 21:39:15 markkoudstaal sshd[24297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64	2019-10-08 03:46:19
107.179.95.9	attackbots	2019-10-07T10:35:18.9361151495-001 sshd\[39599\]: Failed password for invalid user Parola@1234 from 107.179.95.9 port 44010 ssh2 2019-10-07T10:52:23.8040861495-001 sshd\[40827\]: Invalid user Immobilien123 from 107.179.95.9 port 57693 2019-10-07T10:52:23.8121221495-001 sshd\[40827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.179.95.9 2019-10-07T10:52:26.1372811495-001 sshd\[40827\]: Failed password for invalid user Immobilien123 from 107.179.95.9 port 57693 ssh2 2019-10-07T11:00:50.9075081495-001 sshd\[41453\]: Invalid user P@SSWORD_123 from 107.179.95.9 port 50419 2019-10-07T11:00:50.9183651495-001 sshd\[41453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.179.95.9 ...	2019-10-08 03:40:55
222.186.52.107	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-10-08 03:40:00
185.176.27.242	attackbots	Oct 7 21:52:22 mc1 kernel: \[1764342.592915\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=3190 PROTO=TCP SPT=59373 DPT=246 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 21:53:00 mc1 kernel: \[1764381.330896\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=12038 PROTO=TCP SPT=59373 DPT=566 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 7 21:54:03 mc1 kernel: \[1764443.649628\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=27427 PROTO=TCP SPT=59373 DPT=248 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-08 03:58:40
159.203.87.17	attack	Oct 7 01:34:45 mailserver sshd[3484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.87.17 user=r.r Oct 7 01:34:47 mailserver sshd[3484]: Failed password for r.r from 159.203.87.17 port 46136 ssh2 Oct 7 01:34:47 mailserver sshd[3484]: Received disconnect from 159.203.87.17 port 46136:11: Bye Bye [preauth] Oct 7 01:34:47 mailserver sshd[3484]: Disconnected from 159.203.87.17 port 46136 [preauth] Oct 7 01:40:45 mailserver sshd[3985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.87.17 user=r.r Oct 7 01:40:47 mailserver sshd[3985]: Failed password for r.r from 159.203.87.17 port 44696 ssh2 Oct 7 01:40:47 mailserver sshd[3985]: Received disconnect from 159.203.87.17 port 44696:11: Bye Bye [preauth] Oct 7 01:40:47 mailserver sshd[3985]: Disconnected from 159.203.87.17 port 44696 [preauth] Oct 7 01:52:05 mailserver sshd[4806]: pam_unix(sshd:auth): authentication failu........ -------------------------------	2019-10-08 03:31:12
222.186.175.212	attack	Oct 7 16:01:01 debian sshd\[16618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Oct 7 16:01:03 debian sshd\[16618\]: Failed password for root from 222.186.175.212 port 33628 ssh2 Oct 7 16:01:07 debian sshd\[16618\]: Failed password for root from 222.186.175.212 port 33628 ssh2 ...	2019-10-08 04:05:25
189.172.79.33	attackbotsspam	Oct 7 21:53:45 herz-der-gamer sshd[25184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.172.79.33 user=root Oct 7 21:53:47 herz-der-gamer sshd[25184]: Failed password for root from 189.172.79.33 port 54476 ssh2 ...	2019-10-08 04:11:07
51.75.19.175	attackspambots	Oct 7 07:35:52 Tower sshd[23158]: Connection from 51.75.19.175 port 46950 on 192.168.10.220 port 22 Oct 7 07:35:53 Tower sshd[23158]: Failed password for root from 51.75.19.175 port 46950 ssh2 Oct 7 07:35:53 Tower sshd[23158]: Received disconnect from 51.75.19.175 port 46950:11: Bye Bye [preauth] Oct 7 07:35:53 Tower sshd[23158]: Disconnected from authenticating user root 51.75.19.175 port 46950 [preauth]	2019-10-08 03:31:58
76.74.170.93	attackbots	Oct 7 09:45:29 wbs sshd\[9779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.170.93 user=root Oct 7 09:45:31 wbs sshd\[9779\]: Failed password for root from 76.74.170.93 port 42410 ssh2 Oct 7 09:49:45 wbs sshd\[10124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.170.93 user=root Oct 7 09:49:47 wbs sshd\[10124\]: Failed password for root from 76.74.170.93 port 34584 ssh2 Oct 7 09:54:05 wbs sshd\[10480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.170.93 user=root	2019-10-08 03:57:09
122.114.79.98	attackspam	2019-10-07T21:53:52.8068051240 sshd\[26730\]: Invalid user zimbra from 122.114.79.98 port 59618 2019-10-07T21:53:52.8098331240 sshd\[26730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.79.98 2019-10-07T21:53:55.1029661240 sshd\[26730\]: Failed password for invalid user zimbra from 122.114.79.98 port 59618 ssh2 ...	2019-10-08 04:06:12
81.171.107.175	attackbotsspam	\[2019-10-07 15:29:02\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.107.175:51231' - Wrong password \[2019-10-07 15:29:02\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T15:29:02.257-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5824",SessionID="0x7fc3ac76b1b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.107.175/51231",Challenge="03e842d7",ReceivedChallenge="03e842d7",ReceivedHash="f9a0658a2730d57a3f9704b8cfe483ec" \[2019-10-07 15:34:03\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.107.175:55637' - Wrong password \[2019-10-07 15:34:03\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-07T15:34:03.295-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6712",SessionID="0x7fc3ac5226d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171	2019-10-08 03:37:21
85.185.149.28	attackspam	SSH Brute-Force attacks	2019-10-08 03:42:04
183.54.205.116	attackbotsspam	$f2bV_matches	2019-10-08 03:48:53

最近上报的IP列表

1.20.203.76	1.20.207.53	1.20.216.248	1.20.227.214
1.20.229.103	1.20.232.155	1.202.113.159	1.202.113.161
1.202.113.177	1.202.113.207	1.202.113.217	1.202.113.222
1.202.113.254	1.202.113.45	1.202.113.55	1.202.113.59
1.202.113.87	171.62.188.241	1.202.113.88	1.202.113.95

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表