116.197.135.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.197.135.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32707
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.197.135.157.		IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031101 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 12 02:07:18 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

157.135.197.116.in-addr.arpa domain name pointer ns1.harsen.co.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.135.197.116.in-addr.arpa	name = ns1.harsen.co.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
77.243.19.251	attack	Nov 23 23:34:33 mxgate1 postfix/postscreen[26248]: CONNECT from [77.243.19.251]:12494 to [176.31.12.44]:25 Nov 23 23:34:33 mxgate1 postfix/dnsblog[26270]: addr 77.243.19.251 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 23 23:34:33 mxgate1 postfix/dnsblog[26272]: addr 77.243.19.251 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 23 23:34:33 mxgate1 postfix/dnsblog[26272]: addr 77.243.19.251 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 23 23:34:33 mxgate1 postfix/dnsblog[26271]: addr 77.243.19.251 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 23 23:34:33 mxgate1 postfix/dnsblog[26934]: addr 77.243.19.251 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 23 23:34:39 mxgate1 postfix/postscreen[26248]: DNSBL rank 5 for [77.243.19.251]:12494 Nov x@x Nov 23 23:34:40 mxgate1 postfix/postscreen[26248]: HANGUP after 0.28 from [77.243.19.251]:12494 in tests after SMTP handshake Nov 23 23:34:40 mxgate1 postfix/postscreen[26248]: DISCONNECT [77.243.19.2........ -------------------------------	2019-11-24 08:03:39
41.180.68.214	attack	Nov 23 19:05:34 linuxvps sshd\[54357\]: Invalid user 123 from 41.180.68.214 Nov 23 19:05:34 linuxvps sshd\[54357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.180.68.214 Nov 23 19:05:36 linuxvps sshd\[54357\]: Failed password for invalid user 123 from 41.180.68.214 port 58508 ssh2 Nov 23 19:13:38 linuxvps sshd\[59550\]: Invalid user Illusionen@123 from 41.180.68.214 Nov 23 19:13:38 linuxvps sshd\[59550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.180.68.214	2019-11-24 08:18:43
222.186.42.4	attack	2019-11-24T01:22:06.003912scmdmz1 sshd\[23085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root 2019-11-24T01:22:08.368979scmdmz1 sshd\[23085\]: Failed password for root from 222.186.42.4 port 1092 ssh2 2019-11-24T01:22:15.116954scmdmz1 sshd\[23085\]: Failed password for root from 222.186.42.4 port 1092 ssh2 ...	2019-11-24 08:22:29
51.75.123.195	attackspam	Nov 23 14:10:52 hanapaa sshd\[23290\]: Invalid user topher from 51.75.123.195 Nov 23 14:10:52 hanapaa sshd\[23290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.ip-51-75-123.eu Nov 23 14:10:55 hanapaa sshd\[23290\]: Failed password for invalid user topher from 51.75.123.195 port 36702 ssh2 Nov 23 14:17:11 hanapaa sshd\[23812\]: Invalid user test0000 from 51.75.123.195 Nov 23 14:17:11 hanapaa sshd\[23812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.ip-51-75-123.eu	2019-11-24 08:20:01
222.186.31.204	attackspambots	Nov 24 00:45:21 minden010 sshd[1326]: Failed password for root from 222.186.31.204 port 18259 ssh2 Nov 24 00:46:26 minden010 sshd[1830]: Failed password for root from 222.186.31.204 port 45424 ssh2 ...	2019-11-24 08:02:48
132.148.20.24	attackspam	3389BruteforceFW23	2019-11-24 08:19:10
185.176.27.6	attack	Nov 24 00:56:43 mc1 kernel: \[5839643.696534\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=29428 PROTO=TCP SPT=47411 DPT=58142 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 00:57:56 mc1 kernel: \[5839716.665783\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=35740 PROTO=TCP SPT=47411 DPT=43545 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 01:02:48 mc1 kernel: \[5840008.268841\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=31694 PROTO=TCP SPT=47411 DPT=45342 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-24 08:24:55
42.59.102.178	attack	badbot	2019-11-24 08:04:03
185.216.33.16	attack	Nov 23 22:58:44 pl3server sshd[10144]: reveeclipse mapping checking getaddrinfo for no-rdns.free.clues.ro [185.216.33.16] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 23 22:58:44 pl3server sshd[10144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.33.16 user=r.r Nov 23 22:58:46 pl3server sshd[10144]: Failed password for r.r from 185.216.33.16 port 56386 ssh2 Nov 23 22:58:46 pl3server sshd[10144]: Received disconnect from 185.216.33.16: 11: Normal Shutdown, Thank you for playing [preauth] Nov 23 23:40:21 pl3server sshd[26688]: reveeclipse mapping checking getaddrinfo for no-rdns.free.clues.ro [185.216.33.16] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 23 23:40:21 pl3server sshd[26688]: Invalid user odoo from 185.216.33.16 Nov 23 23:40:21 pl3server sshd[26688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.33.16 Nov 23 23:40:23 pl3server sshd[26688]: Failed password for invalid use........ -------------------------------	2019-11-24 08:13:20
106.13.52.234	attackspambots	Brute-force attempt banned	2019-11-24 08:09:03
61.93.201.198	attackbots	Nov 23 23:57:38 srv01 sshd[11146]: Invalid user ident from 61.93.201.198 port 52802 Nov 23 23:57:38 srv01 sshd[11146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.93.201.198 Nov 23 23:57:38 srv01 sshd[11146]: Invalid user ident from 61.93.201.198 port 52802 Nov 23 23:57:39 srv01 sshd[11146]: Failed password for invalid user ident from 61.93.201.198 port 52802 ssh2 Nov 24 00:04:13 srv01 sshd[13064]: Invalid user micheaela from 61.93.201.198 port 42373 ...	2019-11-24 08:02:24
84.76.174.85	attackspambots	Nov 23 23:38:27 mxgate1 postfix/postscreen[27649]: CONNECT from [84.76.174.85]:19374 to [176.31.12.44]:25 Nov 23 23:38:27 mxgate1 postfix/dnsblog[27651]: addr 84.76.174.85 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 23 23:38:27 mxgate1 postfix/dnsblog[27653]: addr 84.76.174.85 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 23 23:38:27 mxgate1 postfix/dnsblog[27653]: addr 84.76.174.85 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 23 23:38:27 mxgate1 postfix/dnsblog[27650]: addr 84.76.174.85 listed by domain bl.spamcop.net as 127.0.0.2 Nov 23 23:38:27 mxgate1 postfix/dnsblog[27654]: addr 84.76.174.85 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 23 23:38:28 mxgate1 postfix/dnsblog[27652]: addr 84.76.174.85 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 23 23:38:33 mxgate1 postfix/postscreen[27649]: DNSBL rank 6 for [84.76.174.85]:19374 Nov x@x Nov 23 23:38:35 mxgate1 postfix/postscreen[27649]: HANGUP after 1.8 from [84.76.174.85]:19374 in ........ -------------------------------	2019-11-24 08:10:47
104.248.146.1	attack	104.248.146.1 - - \[23/Nov/2019:23:44:12 +0100\] "POST /wp-login.php HTTP/1.0" 200 4474 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.146.1 - - \[23/Nov/2019:23:44:16 +0100\] "POST /wp-login.php HTTP/1.0" 200 4287 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.146.1 - - \[23/Nov/2019:23:44:18 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-24 08:17:35
199.116.115.138	attackspambots	Automatic report - Banned IP Access	2019-11-24 08:17:10
51.254.59.113	attack	Fail2Ban Ban Triggered	2019-11-24 08:07:07

最近上报的IP列表

116.197.134.199	116.197.170.92	116.2.165.209	116.20.243.153
116.202.10.0	116.202.101.77	116.202.102.186	116.202.102.210
116.202.103.182	116.202.105.42	116.202.109.242	116.202.11.159
116.202.116.111	116.202.122.186	116.202.126.71	116.202.127.12
116.202.127.27	116.202.127.9	95.158.47.31	116.202.128.160