119.149.136.46

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): LG HelloVision Corp.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH brute-force attempt	2020-09-30 00:24:40
attackspambots	SSH/22 MH Probe, BF, Hack -	2020-09-22 17:56:37

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.149.136.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9342
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.149.136.46.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092101 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 22 17:56:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 46.136.149.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.136.149.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.36.84.180	attackspam	Unauthorized connection attempt detected from IP address 103.36.84.180 to port 22	2020-01-10 03:26:55
58.58.92.186	attackspam	Unauthorized connection attempt from IP address 58.58.92.186 on Port 445(SMB)	2020-01-10 03:46:53
5.104.200.102	attackspambots	1578587081 - 01/09/2020 17:24:41 Host: 5.104.200.102/5.104.200.102 Port: 445 TCP Blocked	2020-01-10 03:56:59
51.159.18.78	attackbotsspam	Jan 9 14:24:40 karger wordpress(buerg)[979]: XML-RPC authentication failure for admin from 51.159.18.78 Jan 9 14:50:03 karger wordpress(buerg)[979]: XML-RPC authentication failure for admin from 51.159.18.78 Jan 9 15:00:44 karger wordpress(buerg)[979]: XML-RPC authentication failure for admin from 51.159.18.78 ...	2020-01-10 03:37:09
123.148.242.127	attackspam	China government hacker	2020-01-10 03:29:10
128.199.253.75	attackspam	2020-01-09T13:45:04.7561361495-001 sshd[57653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.75 user=root 2020-01-09T13:45:06.2453791495-001 sshd[57653]: Failed password for root from 128.199.253.75 port 51612 ssh2 2020-01-09T13:48:30.2923741495-001 sshd[57789]: Invalid user zmz from 128.199.253.75 port 53894 2020-01-09T13:48:30.3039871495-001 sshd[57789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.75 2020-01-09T13:48:30.2923741495-001 sshd[57789]: Invalid user zmz from 128.199.253.75 port 53894 2020-01-09T13:48:32.4053391495-001 sshd[57789]: Failed password for invalid user zmz from 128.199.253.75 port 53894 ssh2 2020-01-09T13:51:58.1436241495-001 sshd[57951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.75 user=root 2020-01-09T13:52:00.4659401495-001 sshd[57951]: Failed password for root from 128.199.253.75 port 56178 ...	2020-01-10 03:52:48
181.171.20.168	attack	Jan 9 15:15:35 ip-172-31-62-245 sshd\[14647\]: Invalid user testftp9 from 181.171.20.168\ Jan 9 15:15:37 ip-172-31-62-245 sshd\[14647\]: Failed password for invalid user testftp9 from 181.171.20.168 port 47773 ssh2\ Jan 9 15:19:57 ip-172-31-62-245 sshd\[14707\]: Invalid user debian from 181.171.20.168\ Jan 9 15:19:58 ip-172-31-62-245 sshd\[14707\]: Failed password for invalid user debian from 181.171.20.168 port 18560 ssh2\ Jan 9 15:24:24 ip-172-31-62-245 sshd\[14787\]: Invalid user admin from 181.171.20.168\	2020-01-10 03:20:46
93.29.187.145	attackspam	Jan 9 10:02:39 ws22vmsma01 sshd[40935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145 Jan 9 10:02:40 ws22vmsma01 sshd[40935]: Failed password for invalid user cislvertenzedei from 93.29.187.145 port 46286 ssh2 ...	2020-01-10 03:49:50
106.13.88.44	attackbotsspam	Jan 9 16:40:34 firewall sshd[6618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 Jan 9 16:40:34 firewall sshd[6618]: Invalid user mva from 106.13.88.44 Jan 9 16:40:37 firewall sshd[6618]: Failed password for invalid user mva from 106.13.88.44 port 53078 ssh2 ...	2020-01-10 03:59:05
51.15.229.114	attackbotsspam	Unauthorized connection attempt detected from IP address 51.15.229.114 to port 22	2020-01-10 03:47:52
189.209.174.163	attack	Automatic report - Port Scan Attack	2020-01-10 03:23:48
180.124.237.60	attackspam	Jan 9 13:54:15 mxgate1 postfix/postscreen[1105]: CONNECT from [180.124.237.60]:6815 to [176.31.12.44]:25 Jan 9 13:54:15 mxgate1 postfix/dnsblog[1163]: addr 180.124.237.60 listed by domain zen.spamhaus.org as 127.0.0.11 Jan 9 13:54:15 mxgate1 postfix/dnsblog[1163]: addr 180.124.237.60 listed by domain zen.spamhaus.org as 127.0.0.4 Jan 9 13:54:15 mxgate1 postfix/dnsblog[1163]: addr 180.124.237.60 listed by domain zen.spamhaus.org as 127.0.0.3 Jan 9 13:54:15 mxgate1 postfix/dnsblog[1164]: addr 180.124.237.60 listed by domain cbl.abuseat.org as 127.0.0.2 Jan 9 13:54:15 mxgate1 postfix/dnsblog[1160]: addr 180.124.237.60 listed by domain b.barracudacentral.org as 127.0.0.2 Jan 9 13:54:21 mxgate1 postfix/postscreen[1105]: DNSBL rank 4 for [180.124.237.60]:6815 Jan x@x Jan 9 13:54:25 mxgate1 postfix/postscreen[1105]: DISCONNECT [180.124.237.60]:6815 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=180.124.237.60	2020-01-10 03:42:38
198.108.67.39	attackspambots	10023/tcp 4643/tcp 7071/tcp... [2019-11-09/2020-01-08]103pkt,101pt.(tcp)	2020-01-10 03:59:36
58.236.139.20	attackspambots	Jan 9 08:47:51 php1 sshd\[23244\]: Invalid user user from 58.236.139.20 Jan 9 08:47:51 php1 sshd\[23244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 9 08:47:53 php1 sshd\[23244\]: Failed password for invalid user user from 58.236.139.20 port 61557 ssh2 Jan 9 08:50:13 php1 sshd\[23441\]: Invalid user postgres from 58.236.139.20 Jan 9 08:50:13 php1 sshd\[23441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20	2020-01-10 03:28:25
78.183.152.201	attackbotsspam	Jan 9 13:54:00 srv1 sshd[26318]: Address 78.183.152.201 maps to 78.183.152.201.dynamic.ttnet.com.tr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 9 13:54:00 srv1 sshd[26318]: Invalid user admin from 78.183.152.201 Jan 9 13:54:01 srv1 sshd[26318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.183.152.201 Jan 9 13:54:03 srv1 sshd[26318]: Failed password for invalid user admin from 78.183.152.201 port 64776 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.183.152.201	2020-01-10 03:40:19

最近上报的IP列表

81.30.208.171	49.73.43.197	146.185.130.195	41.225.238.252
180.117.163.90	29.119.10.179	181.169.74.100	213.227.209.123
112.133.232.71	110.130.179.176	87.92.249.217	91.193.205.231
139.155.20.7	84.178.177.212	40.127.91.91	213.154.76.3
139.180.208.42	128.199.20.26	118.70.72.185	39.73.238.63