120.229.146.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.229.146.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26458
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.229.146.145.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400

;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 04:48:01 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

b'Host 145.146.229.120.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.146.229.120.in-addr.arpa: REFUSED

最新评论:

IP	类型	评论内容	时间
80.6.35.239	attackspambots	80.6.35.239 - - [20/Sep/2020:20:24:50 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 80.6.35.239 - - [20/Sep/2020:20:24:51 +0100] "POST /wp-login.php HTTP/1.1" 200 7652 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 80.6.35.239 - - [20/Sep/2020:20:31:07 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-09-21 04:30:32
51.38.191.126	attack	2020-09-20T15:15:22.092508mail.thespaminator.com sshd[29852]: Invalid user ftp-user from 51.38.191.126 port 52200 2020-09-20T15:15:23.498876mail.thespaminator.com sshd[29852]: Failed password for invalid user ftp-user from 51.38.191.126 port 52200 ssh2 ...	2020-09-21 04:14:23
2.57.122.214	attackbots	Failed password for root from 2.57.122.214 port 33298 ssh2	2020-09-21 04:15:49
39.36.44.112	attackbots	Automatic report - Port Scan Attack	2020-09-21 04:23:20
61.177.172.61	attackspambots	Sep 20 21:15:02 sd-69548 sshd[2437365]: Unable to negotiate with 61.177.172.61 port 36921: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Sep 20 21:58:43 sd-69548 sshd[2440419]: Unable to negotiate with 61.177.172.61 port 64748: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-09-21 04:00:29
45.14.224.249	attackspam	Sep 20 21:53:13 ip106 sshd[28689]: Failed password for root from 45.14.224.249 port 43616 ssh2 ...	2020-09-21 03:57:50
123.180.59.165	attack	Sep 20 18:37:34 nirvana postfix/smtpd[7276]: connect from unknown[123.180.59.165] Sep 20 18:37:36 nirvana postfix/smtpd[7276]: lost connection after EHLO from unknown[123.180.59.165] Sep 20 18:37:36 nirvana postfix/smtpd[7276]: disconnect from unknown[123.180.59.165] Sep 20 18:41:01 nirvana postfix/smtpd[7276]: connect from unknown[123.180.59.165] Sep 20 18:41:05 nirvana postfix/smtpd[7276]: warning: unknown[123.180.59.165]: SASL LOGIN authentication failed: authentication failure Sep 20 18:41:06 nirvana postfix/smtpd[7276]: warning: unknown[123.180.59.165]: SASL LOGIN authentication failed: authentication failure Sep 20 18:41:07 nirvana postfix/smtpd[7276]: warning: unknown[123.180.59.165]: SASL LOGIN authentication failed: authentication failure Sep 20 18:41:08 nirvana postfix/smtpd[7276]: warning: unknown[123.180.59.165]: SASL LOGIN authentication failed: authentication failure Sep 20 18:41:09 nirvana postfix/smtpd[7276]: warning: unknown[123.180.59.165]: SASL LOGIN ........ -------------------------------	2020-09-21 04:20:38
112.85.42.74	attackspam	Sep 20 13:08:13 dignus sshd[32248]: Failed password for root from 112.85.42.74 port 10102 ssh2 Sep 20 13:08:17 dignus sshd[32248]: Failed password for root from 112.85.42.74 port 10102 ssh2 Sep 20 13:09:49 dignus sshd[32460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.74 user=root Sep 20 13:09:51 dignus sshd[32460]: Failed password for root from 112.85.42.74 port 43067 ssh2 Sep 20 13:09:54 dignus sshd[32460]: Failed password for root from 112.85.42.74 port 43067 ssh2 ...	2020-09-21 04:12:51
195.140.187.40	attackbots	Newsletter E-Mail Spam (Confirmed) [C2A525F6716EFDA0CD]	2020-09-21 04:29:40
195.54.166.118	attack	RDP brute forcing (r)	2020-09-21 04:23:53
31.154.224.188	attack	Sep 20 12:38:57 foo sshd[15286]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:38:57 foo sshd[15286]: Invalid user admin from 31.154.224.188 Sep 20 12:38:57 foo sshd[15286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:38:59 foo sshd[15286]: Failed password for invalid user admin from 31.154.224.188 port 39127 ssh2 Sep 20 12:38:59 foo sshd[15286]: Received disconnect from 31.154.224.188: 11: Bye Bye [preauth] Sep 20 12:39:01 foo sshd[15288]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:39:01 foo sshd[15288]: Invalid user admin from 31.154.224.188 Sep 20 12:39:01 foo sshd[15288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:39:03 foo sshd[15288]: Failed pa........ -------------------------------	2020-09-21 04:27:48
190.5.242.114	attackbotsspam	Sep 20 21:11:54 vpn01 sshd[32167]: Failed password for root from 190.5.242.114 port 55472 ssh2 ...	2020-09-21 04:06:51
114.141.150.110	attackspam	(sshd) Failed SSH login from 114.141.150.110 (US/United States/-): 5 in the last 3600 secs	2020-09-21 03:56:21
27.113.68.229	attackbotsspam	Found on CINS badguys / proto=6 . srcport=54130 . dstport=23 . (2350)	2020-09-21 04:10:30
209.141.34.104	attack	srvr2: (mod_security) mod_security (id:920350) triggered by 209.141.34.104 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/20 21:45:24 [error] 7235#0: 49761 [client 209.141.34.104] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160063112458.029310"] [ref "o0,12v21,12"], client: 209.141.34.104, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-21 04:03:06

最近上报的IP列表

240.210.57.40	156.182.174.51	221.87.111.55	70.177.184.87
233.47.50.117	244.151.245.46	85.251.57.220	208.80.188.32
217.13.99.137	122.247.243.94	121.158.166.224	221.186.196.56
26.232.193.60	143.86.66.74	161.10.61.127	94.241.97.242
3.255.95.57	192.75.197.47	114.207.64.97	145.34.166.179