120.142.1.74 - IPInfo

基本信息:

城市(city): Eunpyeong-gu

省份(region): Seoul

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
120.142.100.34	attack	445/tcp 445/tcp [2020-08-31]2pkt	2020-08-31 21:46:43
120.142.161.9	attack	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-21 05:09:24
120.142.160.8	attack	2223/tcp [2020-02-19]1pkt	2020-02-19 22:56:34
120.142.161.81	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/120.142.161.81/ KR - 1H : (65) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN10036 IP : 120.142.161.81 CIDR : 120.142.160.0/21 PREFIX COUNT : 519 UNIQUE IP COUNT : 856064 WYKRYTE ATAKI Z ASN10036 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-17 01:01:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.142.1.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23418
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.142.1.74.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 03 08:22:31 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 74.1.142.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.1.142.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
41.80.154.130	attack	2019-11-20 13:50:56 H=([41.80.154.130]) [41.80.154.130]:10929 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=41.80.154.130) 2019-11-20 13:51:01 unexpected disconnection while reading SMTP command from ([41.80.154.130]) [41.80.154.130]:10929 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-11-20 15:36:42 H=([41.80.154.130]) [41.80.154.130]:10278 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=41.80.154.130) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.80.154.130	2019-11-21 01:33:31
89.150.56.170	attackbots	Automatic report - Banned IP Access	2019-11-21 01:37:26
42.112.170.96	attackspam	2019-11-20 15:28:57 H=([42.112.170.96]) [42.112.170.96]:9988 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=42.112.170.96) 2019-11-20 15:28:58 unexpected disconnection while reading SMTP command from ([42.112.170.96]) [42.112.170.96]:9988 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-11-20 15:35:15 H=([42.112.170.96]) [42.112.170.96]:49461 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=42.112.170.96) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.112.170.96	2019-11-21 01:14:37
148.70.201.162	attack	Nov 20 16:46:22 jane sshd[20798]: Failed password for root from 148.70.201.162 port 48564 ssh2 ...	2019-11-21 01:27:22
46.105.112.107	attackbotsspam	2019-11-20 15:44:07,531 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 46.105.112.107 2019-11-20 16:14:37,453 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 46.105.112.107 2019-11-20 16:46:01,144 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 46.105.112.107 2019-11-20 17:17:12,635 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 46.105.112.107 2019-11-20 17:52:08,569 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 46.105.112.107 ...	2019-11-21 01:16:26
27.254.90.106	attackspambots	Nov 20 18:15:16 markkoudstaal sshd[20399]: Failed password for root from 27.254.90.106 port 37985 ssh2 Nov 20 18:19:42 markkoudstaal sshd[20782]: Failed password for root from 27.254.90.106 port 56124 ssh2	2019-11-21 01:28:09
123.206.90.149	attack	Nov 20 15:43:55 icinga sshd[24285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.90.149 Nov 20 15:43:57 icinga sshd[24285]: Failed password for invalid user ojrind from 123.206.90.149 port 53382 ssh2 ...	2019-11-21 01:29:41
190.233.58.153	attack	2019-11-20 15:27:04 H=([190.233.58.153]) [190.233.58.153]:56068 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=190.233.58.153) 2019-11-20 15:27:05 unexpected disconnection while reading SMTP command from ([190.233.58.153]) [190.233.58.153]:56068 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-11-20 15:37:59 H=([190.233.58.153]) [190.233.58.153]:43685 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=190.233.58.153) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.233.58.153	2019-11-21 01:42:07
106.12.88.165	attack	Nov 20 06:42:27 wbs sshd\[21761\]: Invalid user kewl from 106.12.88.165 Nov 20 06:42:27 wbs sshd\[21761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.165 Nov 20 06:42:29 wbs sshd\[21761\]: Failed password for invalid user kewl from 106.12.88.165 port 33664 ssh2 Nov 20 06:46:26 wbs sshd\[22071\]: Invalid user olsnes from 106.12.88.165 Nov 20 06:46:26 wbs sshd\[22071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.165	2019-11-21 01:20:49
106.51.80.198	attackbotsspam	Nov 20 23:02:20 vibhu-HP-Z238-Microtower-Workstation sshd\[14400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.80.198 user=root Nov 20 23:02:22 vibhu-HP-Z238-Microtower-Workstation sshd\[14400\]: Failed password for root from 106.51.80.198 port 47806 ssh2 Nov 20 23:06:26 vibhu-HP-Z238-Microtower-Workstation sshd\[15347\]: Invalid user borg from 106.51.80.198 Nov 20 23:06:26 vibhu-HP-Z238-Microtower-Workstation sshd\[15347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.80.198 Nov 20 23:06:28 vibhu-HP-Z238-Microtower-Workstation sshd\[15347\]: Failed password for invalid user borg from 106.51.80.198 port 54546 ssh2 ...	2019-11-21 01:36:41
186.156.177.115	attack	Nov 20 16:57:39 localhost sshd\[21198\]: Invalid user ishimaru from 186.156.177.115 port 40446 Nov 20 16:57:39 localhost sshd\[21198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.156.177.115 Nov 20 16:57:40 localhost sshd\[21198\]: Failed password for invalid user ishimaru from 186.156.177.115 port 40446 ssh2	2019-11-21 01:41:37
185.45.22.133	attack	PHI,WP GET /wp-login.php	2019-11-21 01:44:07
222.186.173.180	attackbots	Nov 20 18:12:22 localhost sshd\[30958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Nov 20 18:12:23 localhost sshd\[30958\]: Failed password for root from 222.186.173.180 port 49022 ssh2 Nov 20 18:12:26 localhost sshd\[30958\]: Failed password for root from 222.186.173.180 port 49022 ssh2	2019-11-21 01:17:32
1.54.29.44	attackspambots	DATE:2019-11-20 15:43:41, IP:1.54.29.44, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-11-21 01:35:42
63.88.23.165	attackbotsspam	63.88.23.165 was recorded 13 times by 8 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 13, 106, 432	2019-11-21 01:38:11

最近上报的IP列表

120.129.177.161	43.6.59.49	94.139.81.237	83.88.235.82
89.87.158.70	77.6.173.9	154.115.221.43	141.47.220.55
152.13.13.100	186.22.120.80	220.209.79.210	43.140.235.180
91.73.51.167	239.1.64.190	103.76.165.102	84.29.190.105
14.238.96.82	90.244.0.40	80.3.78.44	77.244.120.181