114.127.245.9 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telekomunikasi Selular Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 114.127.245.9 on Port 445(SMB)	2019-12-13 17:16:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.127.245.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6222
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.127.245.9.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019053100 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 31 13:41:51 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 9.245.127.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 9.245.127.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.49.230.81	attackspambots	\[2019-12-18 07:13:58\] NOTICE\[2839\] chan_sip.c: Registration from '"808" \' failed for '37.49.230.81:5294' - Wrong password \[2019-12-18 07:13:58\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-18T07:13:58.085-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="808",SessionID="0x7f0fb4287008",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.81/5294",Challenge="36e89487",ReceivedChallenge="36e89487",ReceivedHash="196886df6a842e039194c5c1a0c3832c" \[2019-12-18 07:13:58\] NOTICE\[2839\] chan_sip.c: Registration from '"808" \' failed for '37.49.230.81:5294' - Wrong password \[2019-12-18 07:13:58\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-18T07:13:58.210-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="808",SessionID="0x7f0fb4123628",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.2	2019-12-18 20:29:26
212.112.98.146	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.98.146 user=root Failed password for root from 212.112.98.146 port 53546 ssh2 Invalid user ruthi from 212.112.98.146 port 65094 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.98.146 Failed password for invalid user ruthi from 212.112.98.146 port 65094 ssh2	2019-12-18 20:19:19
14.189.75.213	attackspambots	1576650285 - 12/18/2019 07:24:45 Host: 14.189.75.213/14.189.75.213 Port: 445 TCP Blocked	2019-12-18 20:42:51
45.167.76.7	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 06:25:15.	2019-12-18 20:51:17
41.72.197.182	attack	--- report --- Dec 18 06:30:30 sshd: Connection from 41.72.197.182 port 53270	2019-12-18 20:55:58
51.255.124.11	attackspambots	$f2bV_matches	2019-12-18 20:21:55
45.143.220.87	attack	Scanning random ports - tries to find possible vulnerable services	2019-12-18 20:24:38
46.151.210.60	attack	Dec 18 09:25:17 server sshd\[19375\]: Failed password for invalid user dwane from 46.151.210.60 port 51920 ssh2 Dec 18 15:27:23 server sshd\[25163\]: Invalid user kiddoo from 46.151.210.60 Dec 18 15:27:23 server sshd\[25163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.151.210.60 Dec 18 15:27:25 server sshd\[25163\]: Failed password for invalid user kiddoo from 46.151.210.60 port 57230 ssh2 Dec 18 15:36:05 server sshd\[27711\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.151.210.60 user=root ...	2019-12-18 20:52:36
14.162.162.44	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 06:25:11.	2019-12-18 20:58:36
106.12.23.198	attack	Dec 18 13:25:54 ns37 sshd[27936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.23.198	2019-12-18 20:30:15
182.61.11.3	attack	Dec 18 09:51:44 ncomp sshd[22185]: Invalid user takazumi from 182.61.11.3 Dec 18 09:51:44 ncomp sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.11.3 Dec 18 09:51:44 ncomp sshd[22185]: Invalid user takazumi from 182.61.11.3 Dec 18 09:51:46 ncomp sshd[22185]: Failed password for invalid user takazumi from 182.61.11.3 port 41324 ssh2	2019-12-18 20:26:02
14.253.148.114	attackspambots	Unauthorized connection attempt from IP address 14.253.148.114 on Port 445(SMB)	2019-12-18 20:53:51
208.116.58.42	attackbots	firewall-block, port(s): 445/tcp	2019-12-18 20:40:26
94.78.209.230	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 06:25:16.	2019-12-18 20:45:13
223.150.99.190	attackbotsspam	[portscan] Port scan	2019-12-18 20:29:50

最近上报的IP列表

188.246.185.130	48.128.128.67	250.241.97.111	42.189.91.171
91.130.235.108	222.108.142.32	246.19.101.110	185.234.218.31
171.99.173.147	48.211.236.52	137.101.30.219	151.58.237.192
23.187.61.195	232.252.169.155	115.73.223.41	200.216.61.122
139.224.189.177	7.70.207.241	181.60.82.195	125.136.77.84