123.145.107.117

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Chongqing Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Telnet Server BruteForce Attack	2019-08-26 09:53:25

相同子网IP讨论:

IP	类型	评论内容	时间
123.145.107.63	attack	Invalid user postgres from 123.145.107.63 port 57537	2020-05-13 20:08:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.145.107.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35092
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.145.107.117.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 09:53:20 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 117.107.145.123.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 117.107.145.123.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.85.42.178	attack	Apr 10 02:06:14 ns382633 sshd\[4932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Apr 10 02:06:16 ns382633 sshd\[4932\]: Failed password for root from 112.85.42.178 port 10347 ssh2 Apr 10 02:06:19 ns382633 sshd\[4932\]: Failed password for root from 112.85.42.178 port 10347 ssh2 Apr 10 02:06:23 ns382633 sshd\[4932\]: Failed password for root from 112.85.42.178 port 10347 ssh2 Apr 10 02:06:26 ns382633 sshd\[4932\]: Failed password for root from 112.85.42.178 port 10347 ssh2	2020-04-10 08:12:58
121.229.57.220	attackspam	Apr 10 02:10:46 mail sshd[31128]: Invalid user deploy from 121.229.57.220 Apr 10 02:10:46 mail sshd[31128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.57.220 Apr 10 02:10:46 mail sshd[31128]: Invalid user deploy from 121.229.57.220 Apr 10 02:10:48 mail sshd[31128]: Failed password for invalid user deploy from 121.229.57.220 port 40944 ssh2 Apr 10 02:22:24 mail sshd[16891]: Invalid user admin from 121.229.57.220 ...	2020-04-10 08:22:59
177.45.93.8	attackspam	Apr 9 17:47:49 web1 sshd[20604]: Address 177.45.93.8 maps to 177-45-93-8.user.ajato.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Apr 9 17:47:49 web1 sshd[20604]: Invalid user debian from 177.45.93.8 Apr 9 17:47:49 web1 sshd[20604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.45.93.8 Apr 9 17:47:51 web1 sshd[20604]: Failed password for invalid user debian from 177.45.93.8 port 58656 ssh2 Apr 9 17:47:51 web1 sshd[20604]: Received disconnect from 177.45.93.8: 11: Bye Bye [preauth] Apr 9 18:03:10 web1 sshd[21972]: Address 177.45.93.8 maps to 177-45-93-8.user.ajato.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Apr 9 18:03:10 web1 sshd[21972]: Invalid user deploy from 177.45.93.8 Apr 9 18:03:10 web1 sshd[21972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.45.93.8 Apr 9 18:03:13 web1 sshd[21972]: Failed pa........ -------------------------------	2020-04-10 08:06:40
51.68.44.74	attackbotsspam	Apr 10 01:36:42 cvbnet sshd[17411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.74 Apr 10 01:36:44 cvbnet sshd[17411]: Failed password for invalid user spark from 51.68.44.74 port 59494 ssh2 ...	2020-04-10 07:52:48
112.215.113.11	attack	Apr 9 23:46:11 sigma sshd\[3857\]: Invalid user jeffrey from 112.215.113.11Apr 9 23:46:13 sigma sshd\[3857\]: Failed password for invalid user jeffrey from 112.215.113.11 port 38082 ssh2 ...	2020-04-10 08:08:13
124.158.183.18	attackspam	Apr 10 00:24:50 legacy sshd[7564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.183.18 Apr 10 00:24:52 legacy sshd[7564]: Failed password for invalid user ubuntu from 124.158.183.18 port 40672 ssh2 Apr 10 00:29:09 legacy sshd[7650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.183.18 ...	2020-04-10 08:12:32
49.233.169.58	attackbots	SSH login attempts with user(s): osm, mysql.	2020-04-10 08:26:15
106.13.227.131	attack	Apr 9 23:53:35 meumeu sshd[22166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.227.131 Apr 9 23:53:36 meumeu sshd[22166]: Failed password for invalid user patricia from 106.13.227.131 port 20216 ssh2 Apr 9 23:55:21 meumeu sshd[22409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.227.131 ...	2020-04-10 08:00:48
51.91.108.15	attackbots	Apr 9 23:37:25 lock-38 sshd[798782]: Failed password for invalid user test from 51.91.108.15 port 53896 ssh2 Apr 9 23:50:39 lock-38 sshd[799212]: Invalid user facturacion from 51.91.108.15 port 39010 Apr 9 23:50:39 lock-38 sshd[799212]: Invalid user facturacion from 51.91.108.15 port 39010 Apr 9 23:50:39 lock-38 sshd[799212]: Failed password for invalid user facturacion from 51.91.108.15 port 39010 ssh2 Apr 9 23:54:56 lock-38 sshd[799359]: Invalid user deploy from 51.91.108.15 port 47188 ...	2020-04-10 08:29:46
112.13.198.138	attackspam	Apr 9 23:56:53 mail sshd[7147]: Invalid user es from 112.13.198.138 Apr 9 23:56:53 mail sshd[7147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.198.138 Apr 9 23:56:53 mail sshd[7147]: Invalid user es from 112.13.198.138 Apr 9 23:56:54 mail sshd[7147]: Failed password for invalid user es from 112.13.198.138 port 2660 ssh2 Apr 10 00:13:25 mail sshd[9804]: Invalid user admin from 112.13.198.138 ...	2020-04-10 07:55:36
200.89.159.52	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-10 07:57:14
222.186.15.18	attack	Apr 10 02:09:47 OPSO sshd\[31437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Apr 10 02:09:50 OPSO sshd\[31437\]: Failed password for root from 222.186.15.18 port 20971 ssh2 Apr 10 02:09:52 OPSO sshd\[31437\]: Failed password for root from 222.186.15.18 port 20971 ssh2 Apr 10 02:09:54 OPSO sshd\[31437\]: Failed password for root from 222.186.15.18 port 20971 ssh2 Apr 10 02:12:16 OPSO sshd\[31993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-04-10 08:22:14
120.28.109.188	attackspambots	[ssh] SSH attack	2020-04-10 07:56:54
13.233.142.157	attackbots	Apr 10 02:46:36 tuotantolaitos sshd[18489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.233.142.157 Apr 10 02:46:38 tuotantolaitos sshd[18489]: Failed password for invalid user duanxd from 13.233.142.157 port 37776 ssh2 ...	2020-04-10 08:01:58
115.159.48.220	attackbots	Apr 10 00:52:55 lukav-desktop sshd\[27015\]: Invalid user admin from 115.159.48.220 Apr 10 00:52:55 lukav-desktop sshd\[27015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.48.220 Apr 10 00:52:58 lukav-desktop sshd\[27015\]: Failed password for invalid user admin from 115.159.48.220 port 39136 ssh2 Apr 10 00:55:10 lukav-desktop sshd\[10303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.48.220 user=root Apr 10 00:55:13 lukav-desktop sshd\[10303\]: Failed password for root from 115.159.48.220 port 53068 ssh2	2020-04-10 08:07:47

最近上报的IP列表

114.39.147.19	5.54.241.133	189.153.132.217	3.15.141.147
183.196.90.14	198.236.62.83	24.209.196.126	114.26.149.181
84.209.36.47	41.230.199.89	178.128.210.191	159.148.4.228
202.132.239.174	196.218.47.92	181.196.254.101	181.23.85.202
111.255.168.89	83.53.110.214	143.0.142.167	51.235.215.255