112.164.137.145

基本信息:

城市(city): Suncheon

省份(region): Jeollanam-do

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Korea Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
112.164.137.153	attackspam	Unauthorised access (Sep 15) SRC=112.164.137.153 LEN=40 TTL=52 ID=60994 TCP DPT=8080 WINDOW=24209 SYN	2019-09-16 02:19:10
112.164.137.44	attackspam	Unauthorised access (Jul 2) SRC=112.164.137.44 LEN=40 TTL=51 ID=47169 TCP DPT=8080 WINDOW=65057 SYN Unauthorised access (Jul 2) SRC=112.164.137.44 LEN=40 TTL=51 ID=8855 TCP DPT=8080 WINDOW=39489 SYN	2019-07-03 00:32:29

类型

评论内容

时间

112.164.137.153

attackspam

Unauthorised access (Sep 15) SRC=112.164.137.153 LEN=40 TTL=52 ID=60994 TCP DPT=8080 WINDOW=24209 SYN

2019-09-16 02:19:10

112.164.137.44

attackspam

Unauthorised access (Jul  2) SRC=112.164.137.44 LEN=40 TTL=51 ID=47169 TCP DPT=8080 WINDOW=65057 SYN 
Unauthorised access (Jul  2) SRC=112.164.137.44 LEN=40 TTL=51 ID=8855 TCP DPT=8080 WINDOW=39489 SYN

2019-07-03 00:32:29

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.164.137.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15866
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.164.137.145.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon May 06 00:03:02 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 145.137.164.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 145.137.164.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.210.151.21	attack	\[2019-11-25 10:22:02\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T10:22:02.150-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="761400441204918031",SessionID="0x7f26c445f668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/52623",ACLName="no_extension_match" \[2019-11-25 10:22:08\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T10:22:08.187-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="301700441204918031",SessionID="0x7f26c4ab1d88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/61377",ACLName="no_extension_match" \[2019-11-25 10:22:14\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-25T10:22:14.254-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="908200441204918031",SessionID="0x7f26c4b7dbd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/53731",ACLNam	2019-11-25 23:37:09
1.0.136.125	attackspam	firewall-block, port(s): 23/tcp	2019-11-26 00:06:11
139.217.223.143	attackspam	F2B jail: sshd. Time: 2019-11-25 16:15:14, Reported by: VKReport	2019-11-25 23:21:46
176.57.217.251	attack	Fail2Ban Ban Triggered	2019-11-25 23:33:47
106.251.118.123	attack	2019-11-25T15:44:33.494780abusebot-5.cloudsearch.cf sshd\[28443\]: Invalid user test from 106.251.118.123 port 42770	2019-11-25 23:44:48
176.178.138.229	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/176.178.138.229/ FR - 1H : (50) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN5410 IP : 176.178.138.229 CIDR : 176.128.0.0/10 PREFIX COUNT : 23 UNIQUE IP COUNT : 7094784 ATTACKS DETECTED ASN5410 : 1H - 1 3H - 2 6H - 3 12H - 3 24H - 4 DateTime : 2019-11-25 15:40:52 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-25 23:26:09
218.92.0.170	attackspambots	Nov 25 17:03:48 sso sshd[4699]: Failed password for root from 218.92.0.170 port 6888 ssh2 Nov 25 17:03:51 sso sshd[4699]: Failed password for root from 218.92.0.170 port 6888 ssh2 ...	2019-11-26 00:08:19
37.59.224.39	attackspam	2019-11-25T15:30:39.646285shield sshd\[24752\]: Invalid user rajamal from 37.59.224.39 port 33320 2019-11-25T15:30:39.651425shield sshd\[24752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 2019-11-25T15:30:42.054505shield sshd\[24752\]: Failed password for invalid user rajamal from 37.59.224.39 port 33320 ssh2 2019-11-25T15:37:00.230893shield sshd\[26462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 user=root 2019-11-25T15:37:02.272545shield sshd\[26462\]: Failed password for root from 37.59.224.39 port 51180 ssh2	2019-11-25 23:41:19
218.92.0.131	attackspambots	Nov 25 16:43:59 dcd-gentoo sshd[2123]: User root from 218.92.0.131 not allowed because none of user's groups are listed in AllowGroups Nov 25 16:44:02 dcd-gentoo sshd[2123]: error: PAM: Authentication failure for illegal user root from 218.92.0.131 Nov 25 16:43:59 dcd-gentoo sshd[2123]: User root from 218.92.0.131 not allowed because none of user's groups are listed in AllowGroups Nov 25 16:44:02 dcd-gentoo sshd[2123]: error: PAM: Authentication failure for illegal user root from 218.92.0.131 Nov 25 16:43:59 dcd-gentoo sshd[2123]: User root from 218.92.0.131 not allowed because none of user's groups are listed in AllowGroups Nov 25 16:44:02 dcd-gentoo sshd[2123]: error: PAM: Authentication failure for illegal user root from 218.92.0.131 Nov 25 16:44:02 dcd-gentoo sshd[2123]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.131 port 18492 ssh2 ...	2019-11-25 23:53:52
222.186.173.142	attackbots	Nov 25 16:16:31 dev0-dcde-rnet sshd[7891]: Failed password for root from 222.186.173.142 port 43904 ssh2 Nov 25 16:16:44 dev0-dcde-rnet sshd[7891]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 43904 ssh2 [preauth] Nov 25 16:16:53 dev0-dcde-rnet sshd[7893]: Failed password for root from 222.186.173.142 port 52530 ssh2	2019-11-25 23:22:11
192.42.116.26	attack	$f2bV_matches	2019-11-25 23:39:08
194.180.224.100	attack	Nov 25 10:57:34 bilbo sshd[32434]: User root from 194.180.224.100 not allowed because not listed in AllowUsers Nov 25 10:57:34 bilbo sshd[32436]: User root from 194.180.224.100 not allowed because not listed in AllowUsers Nov 25 10:57:36 bilbo sshd[32438]: User root from 194.180.224.100 not allowed because not listed in AllowUsers Nov 25 10:57:37 bilbo sshd[32440]: Invalid user admin from 194.180.224.100 ...	2019-11-25 23:59:33
222.186.175.155	attackspam	Nov 25 10:21:44 TORMINT sshd\[26099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Nov 25 10:21:46 TORMINT sshd\[26099\]: Failed password for root from 222.186.175.155 port 19444 ssh2 Nov 25 10:21:55 TORMINT sshd\[26099\]: Failed password for root from 222.186.175.155 port 19444 ssh2 ...	2019-11-25 23:27:33
151.80.60.151	attackspambots	Nov 25 05:24:41 auw2 sshd\[16885\]: Invalid user cryer from 151.80.60.151 Nov 25 05:24:41 auw2 sshd\[16885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu Nov 25 05:24:43 auw2 sshd\[16885\]: Failed password for invalid user cryer from 151.80.60.151 port 53156 ssh2 Nov 25 05:30:57 auw2 sshd\[17390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root Nov 25 05:31:00 auw2 sshd\[17390\]: Failed password for root from 151.80.60.151 port 33952 ssh2	2019-11-25 23:32:30
77.126.13.177	attackspambots	Brute force SMTP login attempts.	2019-11-25 23:36:56

最近上报的IP列表

125.149.15.250	187.182.34.235	185.228.137.125	140.143.171.188
92.47.205.176	179.214.192.141	104.18.100.194	104.248.155.157
59.65.30.117	37.187.92.29	188.16.64.217	130.45.96.1
103.14.19.159	129.158.140.159	193.187.172.177	123.17.82.119
4.193.114.119	149.86.74.15	107.212.224.22	103.208.27.246