117.145.186.214

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.145.186.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34043
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.145.186.214.		IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 19:55:53 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 214.186.145.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 117.145.186.214.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
37.189.34.65	attack	Jun 23 14:19:37 serwer sshd\[16695\]: Invalid user anna from 37.189.34.65 port 35738 Jun 23 14:19:37 serwer sshd\[16695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.189.34.65 Jun 23 14:19:39 serwer sshd\[16695\]: Failed password for invalid user anna from 37.189.34.65 port 35738 ssh2 ...	2020-06-23 20:33:07
41.168.8.197	attack	Jun 23 01:07:53 server6 sshd[19354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.168.8.197 user=r.r Jun 23 01:07:54 server6 sshd[19354]: Failed password for r.r from 41.168.8.197 port 41328 ssh2 Jun 23 01:07:54 server6 sshd[19354]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:21:34 server6 sshd[29470]: Failed password for invalid user sharon from 41.168.8.197 port 50742 ssh2 Jun 23 01:21:34 server6 sshd[29470]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:25:32 server6 sshd[5965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.168.8.197 user=r.r Jun 23 01:25:34 server6 sshd[5965]: Failed password for r.r from 41.168.8.197 port 56600 ssh2 Jun 23 01:25:34 server6 sshd[5965]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:29:28 server6 sshd[12067]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2020-06-23 20:49:18
45.13.119.31	attack	(sshd) Failed SSH login from 45.13.119.31 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 23 14:16:57 amsweb01 sshd[4981]: Invalid user uftp from 45.13.119.31 port 39796 Jun 23 14:16:59 amsweb01 sshd[4981]: Failed password for invalid user uftp from 45.13.119.31 port 39796 ssh2 Jun 23 14:21:50 amsweb01 sshd[6008]: Invalid user simon from 45.13.119.31 port 47466 Jun 23 14:21:52 amsweb01 sshd[6008]: Failed password for invalid user simon from 45.13.119.31 port 47466 ssh2 Jun 23 14:24:37 amsweb01 sshd[6646]: Invalid user syed from 45.13.119.31 port 34344	2020-06-23 20:41:32
165.84.180.31	attackspam	Jun 23 08:08:52 Host-KEWR-E sshd[25054]: Connection closed by 165.84.180.31 port 33139 [preauth] ...	2020-06-23 20:55:05
128.199.180.33	attackbots	Jun 23 14:00:16 server sshd[14539]: Failed password for invalid user vcc from 128.199.180.33 port 10529 ssh2 Jun 23 14:04:21 server sshd[18930]: Failed password for invalid user steamcmd from 128.199.180.33 port 4278 ssh2 Jun 23 14:08:35 server sshd[23562]: Failed password for invalid user kwinfo from 128.199.180.33 port 62002 ssh2	2020-06-23 21:09:52
91.214.176.228	attackbotsspam	Jun 23 02:39:55 srv05 sshd[27940]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:39:57 srv05 sshd[27940]: Failed password for invalid user sandbox from 91.214.176.228 port 57618 ssh2 Jun 23 02:39:57 srv05 sshd[27940]: Received disconnect from 91.214.176.228: 11: Bye Bye [preauth] Jun 23 02:55:38 srv05 sshd[28899]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:55:40 srv05 sshd[28899]: Failed password for invalid user wch from 91.214.176.228 port 38898 ssh2 Jun 23 02:55:40 srv05 sshd[28899]: Received disconnect from 91.214.176.228: 11: Bye Bye [preauth] Jun 23 02:58:38 srv05 sshd[29080]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:58:38 srv05 sshd[29080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser........ -------------------------------	2020-06-23 21:01:32
157.50.213.95	attack	1592914118 - 06/23/2020 14:08:38 Host: 157.50.213.95/157.50.213.95 Port: 445 TCP Blocked	2020-06-23 21:05:52
181.215.182.57	attackbotsspam	Jun 23 14:30:37 lnxmysql61 sshd[28858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.215.182.57 Jun 23 14:30:37 lnxmysql61 sshd[28858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.215.182.57	2020-06-23 20:53:04
116.198.162.65	attackspambots	Jun 23 14:05:50 mail sshd[11782]: Failed password for root from 116.198.162.65 port 56704 ssh2 ...	2020-06-23 20:39:19
45.148.10.97	attackspambots	port scan and connect, tcp 465 (smtps)	2020-06-23 20:47:24
114.119.166.115	attackbotsspam	[Tue Jun 23 19:09:19.034084 2020] [:error] [pid 5996:tid 140192818956032] [client 114.119.166.115:38666] [client 114.119.166.115] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "XvHw76umFxd0Crm1ySno3AAAAe8"] ...	2020-06-23 20:33:34
92.118.161.45	attackspam	port scan and connect, tcp 80 (http)	2020-06-23 20:37:55
111.229.252.207	attack	Jun 23 14:55:09 OPSO sshd\[5905\]: Invalid user waldo from 111.229.252.207 port 40746 Jun 23 14:55:09 OPSO sshd\[5905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.252.207 Jun 23 14:55:11 OPSO sshd\[5905\]: Failed password for invalid user waldo from 111.229.252.207 port 40746 ssh2 Jun 23 14:56:29 OPSO sshd\[6098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.252.207 user=root Jun 23 14:56:31 OPSO sshd\[6098\]: Failed password for root from 111.229.252.207 port 52732 ssh2	2020-06-23 21:06:16
120.92.11.9	attackbots	Jun 23 06:01:55 server1 sshd\[14460\]: Invalid user yt from 120.92.11.9 Jun 23 06:01:55 server1 sshd\[14460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.11.9 Jun 23 06:01:57 server1 sshd\[14460\]: Failed password for invalid user yt from 120.92.11.9 port 43195 ssh2 Jun 23 06:06:10 server1 sshd\[17423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.11.9 user=root Jun 23 06:06:12 server1 sshd\[17423\]: Failed password for root from 120.92.11.9 port 54255 ssh2 ...	2020-06-23 20:32:43
121.235.46.190	attackspam	121.235.46.190 - - [23/Jun/2020:06:09:05 -0600] "GET /phpmyadmin/ HTTP/1.1" 303 470 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" ...	2020-06-23 20:44:59

最近上报的IP列表

121.101.185.46	121.101.185.54	121.101.185.58	121.101.185.66
121.101.185.70	121.101.185.78	121.101.185.74	121.101.185.82
121.101.185.98	121.101.185.86	121.101.186.122	121.101.186.126
121.101.186.14	121.101.186.113	121.101.186.142	121.101.186.18
121.101.186.201	121.101.186.162	121.101.186.194	117.145.187.98