121.157.146.57

基本信息:

城市(city): Gwangju

省份(region): Gyeonggi-do

国家(country): South Korea

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port probing on unauthorized port 23	2020-05-30 06:07:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.157.146.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.157.146.57.			IN	A

;; AUTHORITY SECTION:
.			505	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052901 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 30 06:07:10 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 57.146.157.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 57.146.157.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.109.3.222	attackbots	Unauthorized connection attempt detected from IP address 62.109.3.222 to port 22 [T]	2020-05-29 12:38:24
37.49.226.183	attack	May 28 18:27:41 hanapaa sshd\[25221\]: Invalid user administrator from 37.49.226.183 May 28 18:27:41 hanapaa sshd\[25221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.226.183 May 28 18:27:43 hanapaa sshd\[25221\]: Failed password for invalid user administrator from 37.49.226.183 port 44976 ssh2 May 28 18:28:06 hanapaa sshd\[25260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.226.183 user=root May 28 18:28:08 hanapaa sshd\[25260\]: Failed password for root from 37.49.226.183 port 56054 ssh2	2020-05-29 12:35:06
51.83.40.227	attack	May 29 06:32:56 vps687878 sshd\[4563\]: Failed password for root from 51.83.40.227 port 55242 ssh2 May 29 06:35:36 vps687878 sshd\[4918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.40.227 user=root May 29 06:35:38 vps687878 sshd\[4918\]: Failed password for root from 51.83.40.227 port 48344 ssh2 May 29 06:38:20 vps687878 sshd\[5074\]: Invalid user raymond from 51.83.40.227 port 41454 May 29 06:38:20 vps687878 sshd\[5074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.40.227 ...	2020-05-29 13:12:27
114.7.197.82	attack	114.7.197.82 - - [29/May/2020:05:55:25 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 114.7.197.82 - - [29/May/2020:05:55:28 +0200] "POST /wp-login.php HTTP/1.1" 200 6293 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 114.7.197.82 - - [29/May/2020:05:55:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-29 13:10:43
51.89.68.141	attack	(sshd) Failed SSH login from 51.89.68.141 (FR/France/ip141.ip-51-89-68.eu): 5 in the last 3600 secs	2020-05-29 13:11:12
62.173.147.229	attack	[2020-05-29 00:49:22] NOTICE[1157][C-0000a551] chan_sip.c: Call from '' (62.173.147.229:52682) to extension '011111116614627706' rejected because extension not found in context 'public'. [2020-05-29 00:49:22] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-29T00:49:22.044-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011111116614627706",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.147.229/52682",ACLName="no_extension_match" [2020-05-29 00:51:41] NOTICE[1157][C-0000a553] chan_sip.c: Call from '' (62.173.147.229:51216) to extension '011222216614627706' rejected because extension not found in context 'public'. [2020-05-29 00:51:41] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-29T00:51:41.151-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011222216614627706",SessionID="0x7f5f10678288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAdd ...	2020-05-29 12:52:00
58.87.90.156	attackspam	May 29 05:55:39 jane sshd[7632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.90.156 May 29 05:55:41 jane sshd[7632]: Failed password for invalid user kevin from 58.87.90.156 port 56884 ssh2 ...	2020-05-29 13:01:17
106.53.102.196	attack	May 29 06:13:52 srv-ubuntu-dev3 sshd[36297]: Invalid user sulochana from 106.53.102.196 May 29 06:13:52 srv-ubuntu-dev3 sshd[36297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.102.196 May 29 06:13:52 srv-ubuntu-dev3 sshd[36297]: Invalid user sulochana from 106.53.102.196 May 29 06:13:54 srv-ubuntu-dev3 sshd[36297]: Failed password for invalid user sulochana from 106.53.102.196 port 52720 ssh2 May 29 06:18:27 srv-ubuntu-dev3 sshd[37127]: Invalid user demo01 from 106.53.102.196 May 29 06:18:27 srv-ubuntu-dev3 sshd[37127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.102.196 May 29 06:18:27 srv-ubuntu-dev3 sshd[37127]: Invalid user demo01 from 106.53.102.196 May 29 06:18:29 srv-ubuntu-dev3 sshd[37127]: Failed password for invalid user demo01 from 106.53.102.196 port 47300 ssh2 May 29 06:22:47 srv-ubuntu-dev3 sshd[38001]: Invalid user ggutierrez from 106.53.102.196 ...	2020-05-29 12:51:16
192.241.151.77	attackspam	192.241.151.77 - - \[29/May/2020:06:27:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 6388 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.241.151.77 - - \[29/May/2020:06:27:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 6384 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.241.151.77 - - \[29/May/2020:06:27:14 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-29 13:08:32
49.233.132.81	attackbotsspam	Failed password for invalid user natalia from 49.233.132.81 port 33744 ssh2	2020-05-29 12:38:49
45.95.168.82	attackbots	scan z	2020-05-29 13:14:34
112.85.42.229	attack	May 29 06:29:39 home sshd[15365]: Failed password for root from 112.85.42.229 port 44474 ssh2 May 29 06:29:42 home sshd[15365]: Failed password for root from 112.85.42.229 port 44474 ssh2 May 29 06:29:44 home sshd[15365]: Failed password for root from 112.85.42.229 port 44474 ssh2 ...	2020-05-29 12:39:41
51.15.207.74	attackbots	prod11 ...	2020-05-29 12:55:48
93.174.89.20	attack	SmallBizIT.US 3 packets to tcp(23,28,64)	2020-05-29 13:07:16
27.255.77.207	attackspambots	(country_code/South/-) SMTP Bruteforcing attempts	2020-05-29 12:59:16

最近上报的IP列表

173.121.216.224	88.71.181.44	189.20.52.169	122.255.2.53
101.61.52.48	125.24.140.239	109.144.47.252	212.226.143.231
220.153.123.58	237.149.106.6	85.24.48.41	112.173.154.204
99.205.234.228	196.65.186.34	126.67.165.56	124.188.211.202
32.39.171.37	174.201.16.173	177.89.222.30	177.34.50.211