121.226.4.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
121.226.43.188	attack	Unauthorised access (Jul 18) SRC=121.226.43.188 LEN=40 TTL=50 ID=65231 TCP DPT=23 WINDOW=50294 SYN	2020-07-19 07:57:36
121.226.45.49	attackspambots	Aug 28 19:45:56 localhost kernel: [773772.221082] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32277 DF PROTO=TCP SPT=55398 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 28 19:45:56 localhost kernel: [773772.221112] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32277 DF PROTO=TCP SPT=55398 DPT=1433 SEQ=3045286876 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405A00103030201010402) Aug 28 19:45:59 localhost kernel: [773775.319290] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32573 DF PROTO=TCP SPT=55398 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 28 19:45:59 localhost kernel: [773775.319321] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST	2019-08-29 15:29:04

类型

评论内容

时间

121.226.43.188

attack

Unauthorised access (Jul 18) SRC=121.226.43.188 LEN=40 TTL=50 ID=65231 TCP DPT=23 WINDOW=50294 SYN

2020-07-19 07:57:36

121.226.45.49

attackspambots

Aug 28 19:45:56 localhost kernel: [773772.221082] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32277 DF PROTO=TCP SPT=55398 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 28 19:45:56 localhost kernel: [773772.221112] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32277 DF PROTO=TCP SPT=55398 DPT=1433 SEQ=3045286876 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405A00103030201010402) 
Aug 28 19:45:59 localhost kernel: [773775.319290] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=45 ID=32573 DF PROTO=TCP SPT=55398 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 28 19:45:59 localhost kernel: [773775.319321] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=121.226.45.49 DST

2019-08-29 15:29:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.226.4.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24789
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.226.4.145.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 20:19:17 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 145.4.226.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.4.226.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
223.247.140.89	attackspambots	Dec 18 05:18:50 hpm sshd\[9078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.140.89 user=root Dec 18 05:18:53 hpm sshd\[9078\]: Failed password for root from 223.247.140.89 port 57390 ssh2 Dec 18 05:27:15 hpm sshd\[9965\]: Invalid user cmdpmf from 223.247.140.89 Dec 18 05:27:15 hpm sshd\[9965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.140.89 Dec 18 05:27:17 hpm sshd\[9965\]: Failed password for invalid user cmdpmf from 223.247.140.89 port 35844 ssh2	2019-12-18 23:45:41
123.206.81.59	attackbotsspam	Dec 18 16:10:23 srv01 sshd[1045]: Invalid user temp from 123.206.81.59 port 43990 Dec 18 16:10:23 srv01 sshd[1045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.81.59 Dec 18 16:10:23 srv01 sshd[1045]: Invalid user temp from 123.206.81.59 port 43990 Dec 18 16:10:25 srv01 sshd[1045]: Failed password for invalid user temp from 123.206.81.59 port 43990 ssh2 Dec 18 16:17:13 srv01 sshd[1503]: Invalid user (OL> from 123.206.81.59 port 36036 ...	2019-12-18 23:29:40
109.116.196.174	attack	Dec 18 16:30:41 ArkNodeAT sshd\[25803\]: Invalid user server from 109.116.196.174 Dec 18 16:30:41 ArkNodeAT sshd\[25803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 Dec 18 16:30:42 ArkNodeAT sshd\[25803\]: Failed password for invalid user server from 109.116.196.174 port 59426 ssh2	2019-12-18 23:44:46
49.88.112.55	attack	v+ssh-bruteforce	2019-12-18 23:54:42
148.72.150.74	attackspambots	Dec 18 15:36:56 grey postfix/smtpd\[23209\]: NOQUEUE: reject: RCPT from unknown\[148.72.150.74\]: 554 5.7.1 Service unavailable\; Client host \[148.72.150.74\] blocked using ix.dnsbl.manitu.net\; Your e-mail service was detected by test.port25.me $NiX Spam$ as spamming at Wed, 18 Dec 2019 13:05:23 +0100. Your admin should visit http://www.dnsbl.manitu.net/lookup.php\?value=148.72.150.74\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-18 23:53:10
120.194.7.10	attack	Attempts against Pop3/IMAP	2019-12-18 23:31:04
222.186.173.215	attackbots	Dec 18 16:20:19 v22018076622670303 sshd\[6493\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Dec 18 16:20:21 v22018076622670303 sshd\[6493\]: Failed password for root from 222.186.173.215 port 52664 ssh2 Dec 18 16:20:25 v22018076622670303 sshd\[6493\]: Failed password for root from 222.186.173.215 port 52664 ssh2 ...	2019-12-18 23:21:19
223.197.250.72	attack	Dec 18 15:14:01 pi sshd\[9429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.250.72 user=root Dec 18 15:14:04 pi sshd\[9429\]: Failed password for root from 223.197.250.72 port 54648 ssh2 Dec 18 15:24:36 pi sshd\[10137\]: Invalid user website8 from 223.197.250.72 port 48832 Dec 18 15:24:36 pi sshd\[10137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.250.72 Dec 18 15:24:38 pi sshd\[10137\]: Failed password for invalid user website8 from 223.197.250.72 port 48832 ssh2 ...	2019-12-18 23:28:47
223.197.151.55	attack	$f2bV_matches	2019-12-18 23:26:03
120.188.34.0	attackspambots	1576679850 - 12/18/2019 15:37:30 Host: 120.188.34.0/120.188.34.0 Port: 445 TCP Blocked	2019-12-18 23:23:48
217.61.17.7	attack	Dec 18 05:36:02 tdfoods sshd\[8134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.17.7 user=mysql Dec 18 05:36:05 tdfoods sshd\[8134\]: Failed password for mysql from 217.61.17.7 port 58412 ssh2 Dec 18 05:41:10 tdfoods sshd\[8664\]: Invalid user test from 217.61.17.7 Dec 18 05:41:10 tdfoods sshd\[8664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.17.7 Dec 18 05:41:13 tdfoods sshd\[8664\]: Failed password for invalid user test from 217.61.17.7 port 40304 ssh2	2019-12-18 23:50:02
92.118.37.53	attackbots	12/18/2019-10:30:40.780041 92.118.37.53 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-19 00:00:24
149.202.43.72	attackbotsspam	SS5,WP GET /wp-login.php	2019-12-18 23:34:24
45.55.173.232	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-12-18 23:43:14
178.128.202.35	attack	Dec 18 16:44:40 MK-Soft-VM7 sshd[31098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.202.35 Dec 18 16:44:42 MK-Soft-VM7 sshd[31098]: Failed password for invalid user ts3 from 178.128.202.35 port 50186 ssh2 ...	2019-12-18 23:47:44

最近上报的IP列表

121.226.4.163	121.226.4.169	121.226.4.166	121.226.4.172
121.226.4.178	121.226.4.190	121.226.4.187	114.104.180.174
121.226.4.174	121.226.4.193	121.226.4.170	121.226.4.195
121.226.4.182	121.226.4.20	121.226.4.197	121.226.4.180
121.226.4.205	114.104.180.203	121.226.4.206	121.226.4.209