121.140.169.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Korea Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
121.140.169.90	attackspambots	Jun 25 12:41:33 nextcloud sshd\[5605\]: Invalid user oleta from 121.140.169.90 Jun 25 12:41:33 nextcloud sshd\[5605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.140.169.90 Jun 25 12:41:35 nextcloud sshd\[5605\]: Failed password for invalid user oleta from 121.140.169.90 port 45016 ssh2 ...	2019-06-25 22:12:55

类型

评论内容

时间

121.140.169.90

attackspambots

Jun 25 12:41:33 nextcloud sshd\[5605\]: Invalid user oleta from 121.140.169.90
Jun 25 12:41:33 nextcloud sshd\[5605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.140.169.90
Jun 25 12:41:35 nextcloud sshd\[5605\]: Failed password for invalid user oleta from 121.140.169.90 port 45016 ssh2
...

2019-06-25 22:12:55

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.140.169.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14980
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.140.169.157.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 17 23:12:00 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 157.169.140.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 157.169.140.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
41.201.8.10	attackspam	1588161788 - 04/29/2020 14:03:08 Host: 41.201.8.10/41.201.8.10 Port: 445 TCP Blocked	2020-04-29 21:33:38
94.177.163.134	attackbotsspam	[Aegis] @ 2019-07-26 00:56:53 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2020-04-29 21:57:15
103.4.217.96	attack	Apr 29 15:31:44 server sshd[19954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.96 Apr 29 15:31:45 server sshd[19954]: Failed password for invalid user vg from 103.4.217.96 port 45500 ssh2 Apr 29 15:37:03 server sshd[20521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.4.217.96 ...	2020-04-29 21:43:58
194.179.47.5	attackbotsspam	Unauthorized connection attempt from IP address 194.179.47.5 on Port 445(SMB)	2020-04-29 21:37:43
51.91.11.62	attack	Apr 29 15:06:09 legacy sshd[9995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.11.62 Apr 29 15:06:10 legacy sshd[9995]: Failed password for invalid user wangy from 51.91.11.62 port 56622 ssh2 Apr 29 15:10:26 legacy sshd[10074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.11.62 ...	2020-04-29 21:20:40
212.3.131.192	attackbotsspam	Unauthorised access (Apr 29) SRC=212.3.131.192 LEN=52 PREC=0x20 TTL=116 ID=24901 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-29 21:36:13
198.27.80.123	attack	198.27.80.123 - - [29/Apr/2020:15:24:44 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [29/Apr/2020:15:25:13 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [29/Apr/2020:15:25:35 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [29/Apr/2020:15:25:39 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [29/Apr/2020:15:25:56 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar ...	2020-04-29 21:37:29
51.38.230.10	attackbots	Apr 29 15:31:06 OPSO sshd\[22494\]: Invalid user zjz from 51.38.230.10 port 40906 Apr 29 15:31:06 OPSO sshd\[22494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.230.10 Apr 29 15:31:09 OPSO sshd\[22494\]: Failed password for invalid user zjz from 51.38.230.10 port 40906 ssh2 Apr 29 15:35:02 OPSO sshd\[23590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.230.10 user=root Apr 29 15:35:05 OPSO sshd\[23590\]: Failed password for root from 51.38.230.10 port 52578 ssh2	2020-04-29 21:47:52
222.186.173.226	attackspambots	Apr 29 15:47:19 home sshd[22711]: Failed password for root from 222.186.173.226 port 3386 ssh2 Apr 29 15:47:34 home sshd[22711]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 3386 ssh2 [preauth] Apr 29 15:47:45 home sshd[22760]: Failed password for root from 222.186.173.226 port 40278 ssh2 ...	2020-04-29 21:48:50
185.141.207.83	attackbots	0,09-10/02 [bc00/m03] PostRequest-Spammer scoring: Durban01	2020-04-29 21:31:28
170.79.87.132	attackbotsspam	Lines containing failures of 170.79.87.132 Apr 29 13:43:40 shared10 sshd[1309]: Invalid user jenkins from 170.79.87.132 port 57488 Apr 29 13:43:40 shared10 sshd[1309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.79.87.132 Apr 29 13:43:41 shared10 sshd[1309]: Failed password for invalid user jenkins from 170.79.87.132 port 57488 ssh2 Apr 29 13:43:42 shared10 sshd[1309]: Received disconnect from 170.79.87.132 port 57488:11: Bye Bye [preauth] Apr 29 13:43:42 shared10 sshd[1309]: Disconnected from invalid user jenkins 170.79.87.132 port 57488 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=170.79.87.132	2020-04-29 21:54:52
13.92.102.213	attack	Apr 29 15:13:59 host sshd[26589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.102.213 user=root Apr 29 15:14:01 host sshd[26589]: Failed password for root from 13.92.102.213 port 35690 ssh2 ...	2020-04-29 21:33:58
61.143.165.75	attack	Apr 29 14:03:03 debian-2gb-nbg1-2 kernel: \[10420705.711924\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=61.143.165.75 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=108 ID=27903 DF PROTO=TCP SPT=51357 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2020-04-29 21:40:03
223.16.99.28	attackbots	445/tcp [2020-04-29]1pkt	2020-04-29 21:42:52
51.37.32.58	attackspam	Apr 29 14:02:46 * sshd[23020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.37.32.58	2020-04-29 22:00:57

最近上报的IP列表

81.213.71.35	102.150.134.135	188.230.192.173	61.8.101.149
81.152.79.39	185.125.174.236	86.81.36.46	217.138.6.146
31.247.128.17	157.131.220.45	41.175.231.106	133.43.56.92
2002:73e2:e4bf::73e2:e4bf	1.243.36.46	126.98.118.204	73.251.43.134
66.123.202.10	206.205.161.142	178.173.235.158	95.118.83.23