112.111.0.245 - IPInfo

基本信息:

城市(city): Fuzhou

省份(region): Fujian

国家(country): China

运营商(isp): Fuzhou City Fujian Provincial Network of Cncgroup

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 21 05:30:55 h2646465 sshd[32603]: Invalid user admin from 112.111.0.245 Aug 21 05:30:55 h2646465 sshd[32603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Aug 21 05:30:55 h2646465 sshd[32603]: Invalid user admin from 112.111.0.245 Aug 21 05:30:57 h2646465 sshd[32603]: Failed password for invalid user admin from 112.111.0.245 port 39880 ssh2 Aug 21 05:51:33 h2646465 sshd[2879]: Invalid user elk from 112.111.0.245 Aug 21 05:51:33 h2646465 sshd[2879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Aug 21 05:51:33 h2646465 sshd[2879]: Invalid user elk from 112.111.0.245 Aug 21 05:51:34 h2646465 sshd[2879]: Failed password for invalid user elk from 112.111.0.245 port 46649 ssh2 Aug 21 05:56:07 h2646465 sshd[3492]: Invalid user mongodb from 112.111.0.245 ...	2020-08-21 15:20:32
attackbotsspam	(sshd) Failed SSH login from 112.111.0.245 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 6 13:55:33 elude sshd[23700]: Invalid user ftp from 112.111.0.245 port 49235 May 6 13:55:36 elude sshd[23700]: Failed password for invalid user ftp from 112.111.0.245 port 49235 ssh2 May 6 13:58:43 elude sshd[24129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 user=root May 6 13:58:45 elude sshd[24129]: Failed password for root from 112.111.0.245 port 51028 ssh2 May 6 14:01:16 elude sshd[24531]: Invalid user mauro from 112.111.0.245 port 46423	2020-05-06 21:58:58
attack	" "	2020-05-06 05:27:47
attack	May 2 14:12:16 vmd17057 sshd[9533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 May 2 14:12:18 vmd17057 sshd[9533]: Failed password for invalid user fred from 112.111.0.245 port 40732 ssh2 ...	2020-05-02 23:30:18
attack	Nov 28 10:04:46 woltan sshd[30179]: Failed password for invalid user angeltveit from 112.111.0.245 port 50058 ssh2	2020-03-10 06:14:19
attackbots	SSH brute force	2020-03-09 08:22:25
attack	Jan 19 11:00:30 firewall sshd[1060]: Invalid user carl from 112.111.0.245 Jan 19 11:00:31 firewall sshd[1060]: Failed password for invalid user carl from 112.111.0.245 port 58906 ssh2 Jan 19 11:03:25 firewall sshd[1101]: Invalid user style from 112.111.0.245 ...	2020-01-19 22:16:50
attackbots	Unauthorized connection attempt detected from IP address 112.111.0.245 to port 2220 [J]	2020-01-18 13:32:05
attackbots	Unauthorized connection attempt detected from IP address 112.111.0.245 to port 2220 [J]	2020-01-07 19:27:55
attack	Dec 31 07:41:48 srv-ubuntu-dev3 sshd[14448]: Invalid user ikemoto from 112.111.0.245 Dec 31 07:41:48 srv-ubuntu-dev3 sshd[14448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 31 07:41:48 srv-ubuntu-dev3 sshd[14448]: Invalid user ikemoto from 112.111.0.245 Dec 31 07:41:50 srv-ubuntu-dev3 sshd[14448]: Failed password for invalid user ikemoto from 112.111.0.245 port 41821 ssh2 Dec 31 07:44:59 srv-ubuntu-dev3 sshd[14688]: Invalid user scul from 112.111.0.245 Dec 31 07:44:59 srv-ubuntu-dev3 sshd[14688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 31 07:44:59 srv-ubuntu-dev3 sshd[14688]: Invalid user scul from 112.111.0.245 Dec 31 07:45:01 srv-ubuntu-dev3 sshd[14688]: Failed password for invalid user scul from 112.111.0.245 port 17241 ssh2 ...	2019-12-31 16:40:20
attackspam	Dec 23 22:46:45 marvibiene sshd[12043]: Invalid user asterisk from 112.111.0.245 port 58912 Dec 23 22:46:45 marvibiene sshd[12043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 23 22:46:45 marvibiene sshd[12043]: Invalid user asterisk from 112.111.0.245 port 58912 Dec 23 22:46:46 marvibiene sshd[12043]: Failed password for invalid user asterisk from 112.111.0.245 port 58912 ssh2 ...	2019-12-24 08:42:04
attackspam	Dec 20 23:44:46 Ubuntu-1404-trusty-64-minimal sshd\[31737\]: Invalid user goukon from 112.111.0.245 Dec 20 23:44:46 Ubuntu-1404-trusty-64-minimal sshd\[31737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 20 23:44:48 Ubuntu-1404-trusty-64-minimal sshd\[31737\]: Failed password for invalid user goukon from 112.111.0.245 port 14885 ssh2 Dec 20 23:58:10 Ubuntu-1404-trusty-64-minimal sshd\[5169\]: Invalid user dsjustforfun from 112.111.0.245 Dec 20 23:58:10 Ubuntu-1404-trusty-64-minimal sshd\[5169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245	2019-12-21 07:27:21
attackspambots	Dec 20 01:13:55 vtv3 sshd[30837]: Failed password for root from 112.111.0.245 port 32149 ssh2 Dec 20 01:18:47 vtv3 sshd[772]: Failed password for root from 112.111.0.245 port 52396 ssh2 Dec 20 01:38:09 vtv3 sshd[9899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 20 01:38:11 vtv3 sshd[9899]: Failed password for invalid user server from 112.111.0.245 port 10554 ssh2 Dec 20 01:43:01 vtv3 sshd[12084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 20 01:53:13 vtv3 sshd[16760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 20 01:53:15 vtv3 sshd[16760]: Failed password for invalid user asuka from 112.111.0.245 port 50375 ssh2 Dec 20 01:58:09 vtv3 sshd[19066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245	2019-12-20 07:11:58
attack	Dec 12 06:57:14 mockhub sshd[8756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Dec 12 06:57:16 mockhub sshd[8756]: Failed password for invalid user karupp from 112.111.0.245 port 64086 ssh2 ...	2019-12-13 02:12:54
attackspambots	2019-12-11T07:36:35.150636abusebot-2.cloudsearch.cf sshd\[16394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 user=daemon	2019-12-11 18:51:02
attackbotsspam	$f2bV_matches	2019-12-06 08:25:06
attackspam	ssh brute force	2019-12-02 23:26:27
attackbotsspam	Nov 28 05:51:01 mail sshd[2668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Nov 28 05:51:03 mail sshd[2668]: Failed password for invalid user xxxxxxx from 112.111.0.245 port 63973 ssh2 Nov 28 05:54:57 mail sshd[4111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245	2019-11-28 13:59:41
attackspam	Nov 23 10:09:34 [host] sshd[3867]: Invalid user Digital2017 from 112.111.0.245 Nov 23 10:09:34 [host] sshd[3867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Nov 23 10:09:36 [host] sshd[3867]: Failed password for invalid user Digital2017 from 112.111.0.245 port 50794 ssh2	2019-11-23 19:09:37
attackbotsspam	Nov 10 14:16:34 odroid64 sshd\[32514\]: Invalid user temp from 112.111.0.245 Nov 10 14:16:34 odroid64 sshd\[32514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 ...	2019-11-21 20:36:24
attack	Invalid user yx from 112.111.0.245 port 33120	2019-11-14 20:20:50
attackbots	Nov 4 11:29:20 vpxxxxxxx22308 sshd[20068]: Invalid user ftp from 112.111.0.245 Nov 4 11:29:20 vpxxxxxxx22308 sshd[20068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 Nov 4 11:29:21 vpxxxxxxx22308 sshd[20068]: Failed password for invalid user ftp from 112.111.0.245 port 8684 ssh2 Nov 4 11:33:57 vpxxxxxxx22308 sshd[20854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.0.245 user=lp Nov 4 11:33:59 vpxxxxxxx22308 sshd[20854]: Failed password for lp from 112.111.0.245 port 26231 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.111.0.245	2019-11-07 18:49:00

相同子网IP讨论:

IP	类型	评论内容	时间
112.111.0.2	attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:14:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.111.0.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.111.0.245.			IN	A

;; AUTHORITY SECTION:
.			126	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110700 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 18:48:51 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 245.0.111.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.0.111.112.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
222.186.173.142	attackspam	May 1 17:18:05 firewall sshd[17586]: Failed password for root from 222.186.173.142 port 21810 ssh2 May 1 17:18:08 firewall sshd[17586]: Failed password for root from 222.186.173.142 port 21810 ssh2 May 1 17:18:12 firewall sshd[17586]: Failed password for root from 222.186.173.142 port 21810 ssh2 ...	2020-05-02 04:20:50
1.1.210.217	attackbotsspam	445/tcp [2020-05-01]1pkt	2020-05-02 04:06:08
118.251.60.210	attackspam	23/tcp 23/tcp [2020-05-01]2pkt	2020-05-02 04:03:44
223.229.176.178	attack	Unauthorized connection attempt from IP address 223.229.176.178 on Port 445(SMB)	2020-05-02 04:08:17
197.45.209.84	attackspambots	Unauthorized connection attempt from IP address 197.45.209.84 on Port 445(SMB)	2020-05-02 04:02:47
216.24.85.226	attackbots	Unauthorized connection attempt detected from IP address 216.24.85.226 to port 23	2020-05-02 03:44:56
182.188.175.104	attackspam	Attempted connection to port 21.	2020-05-02 03:47:34
139.198.191.217	attackspambots	May 1 14:08:21 server1 sshd\[25930\]: Failed password for invalid user hmn from 139.198.191.217 port 34502 ssh2 May 1 14:11:57 server1 sshd\[27027\]: Invalid user aruna from 139.198.191.217 May 1 14:11:57 server1 sshd\[27027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 May 1 14:11:59 server1 sshd\[27027\]: Failed password for invalid user aruna from 139.198.191.217 port 58860 ssh2 May 1 14:15:57 server1 sshd\[28190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 user=root ...	2020-05-02 04:21:20
103.101.162.180	attack	SQL Injection Attempts	2020-05-02 03:57:38
211.21.168.163	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-02 04:07:07
116.96.77.73	attackbotsspam	Unauthorized connection attempt from IP address 116.96.77.73 on Port 445(SMB)	2020-05-02 03:43:19
177.105.66.146	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-02 04:03:13
47.240.37.88	attackbotsspam	Automatic report - XMLRPC Attack	2020-05-02 04:04:43
150.136.11.100	attackspam	May 1 16:56:55 tuxlinux sshd[21532]: Invalid user git from 150.136.11.100 port 64298 May 1 16:56:55 tuxlinux sshd[21532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.11.100 May 1 16:56:55 tuxlinux sshd[21532]: Invalid user git from 150.136.11.100 port 64298 May 1 16:56:55 tuxlinux sshd[21532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.11.100 May 1 16:56:55 tuxlinux sshd[21532]: Invalid user git from 150.136.11.100 port 64298 May 1 16:56:55 tuxlinux sshd[21532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.11.100 May 1 16:56:57 tuxlinux sshd[21532]: Failed password for invalid user git from 150.136.11.100 port 64298 ssh2 ...	2020-05-02 04:01:59
193.93.79.16	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-05-02 04:17:56

最近上报的IP列表

92.126.212.218	185.106.31.4	35.220.153.167	37.27.89.63
54.238.178.213	142.93.212.69	5.189.141.4	185.106.31.112
183.157.172.22	54.36.148.48	203.210.36.198	125.83.106.213
14.111.93.252	219.92.93.244	84.209.67.208	59.23.78.173
79.22.190.243	157.245.224.80	143.255.104.67	117.253.50.241