145.248.92.242

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.248.92.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23274
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.248.92.242.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 03:04:09 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 242.92.248.145.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.92.248.145.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.175.99.105	attack	proto=tcp . spt=34635 . dpt=25 . Found on Dark List de (363)	2020-04-30 06:00:56
185.147.215.13	attack	[2020-04-29 18:02:33] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.13:59070' - Wrong password [2020-04-29 18:02:33] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-29T18:02:33.731-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1794",SessionID="0x7f6c080ab528",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.13/59070",Challenge="36c1a19b",ReceivedChallenge="36c1a19b",ReceivedHash="d3b7892731fd25c6e6d7aba231bc7ce0" [2020-04-29 18:03:06] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.13:54904' - Wrong password [2020-04-29 18:03:06] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-29T18:03:06.191-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1463",SessionID="0x7f6c080ab528",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-04-30 06:09:09
122.225.230.10	attackspambots	SSH Invalid Login	2020-04-30 05:50:28
86.57.234.172	attack	SSH Invalid Login	2020-04-30 05:46:28
118.169.41.62	attackspam	trying to access non-authorized port	2020-04-30 06:09:40
154.8.178.29	attackspam	Apr 29 23:38:36 [host] sshd[15852]: Invalid user a Apr 29 23:38:36 [host] sshd[15852]: pam_unix(sshd: Apr 29 23:38:38 [host] sshd[15852]: Failed passwor	2020-04-30 05:48:19
182.75.248.254	attack	SSH Invalid Login	2020-04-30 05:57:42
142.93.211.44	attack	2020-04-29T21:35:33.117992shield sshd\[13821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.44 user=root 2020-04-29T21:35:35.090865shield sshd\[13821\]: Failed password for root from 142.93.211.44 port 49890 ssh2 2020-04-29T21:37:22.981926shield sshd\[14234\]: Invalid user kakizaki from 142.93.211.44 port 48706 2020-04-29T21:37:22.985536shield sshd\[14234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.44 2020-04-29T21:37:25.254540shield sshd\[14234\]: Failed password for invalid user kakizaki from 142.93.211.44 port 48706 ssh2	2020-04-30 05:41:42
106.13.63.120	attack	Apr 29 21:18:27 ip-172-31-61-156 sshd[1001]: Invalid user nizar from 106.13.63.120 ...	2020-04-30 06:06:14
106.13.175.233	attack	SSH Invalid Login	2020-04-30 05:45:58
35.194.97.232	attackbots	Apr 28 13:03:54 cumulus sshd[8776]: Invalid user ora from 35.194.97.232 port 34346 Apr 28 13:03:54 cumulus sshd[8776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.97.232 Apr 28 13:03:56 cumulus sshd[8776]: Failed password for invalid user ora from 35.194.97.232 port 34346 ssh2 Apr 28 13:03:56 cumulus sshd[8776]: Received disconnect from 35.194.97.232 port 34346:11: Bye Bye [preauth] Apr 28 13:03:56 cumulus sshd[8776]: Disconnected from 35.194.97.232 port 34346 [preauth] Apr 28 13:12:35 cumulus sshd[9192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.97.232 user=postgres Apr 28 13:12:37 cumulus sshd[9192]: Failed password for postgres from 35.194.97.232 port 47164 ssh2 Apr 28 13:12:37 cumulus sshd[9192]: Received disconnect from 35.194.97.232 port 47164:11: Bye Bye [preauth] Apr 28 13:12:37 cumulus sshd[9192]: Disconnected from 35.194.97.232 port 47164 [preauth] ........ -------------------------------------	2020-04-30 05:43:32
106.12.200.160	attack	ZmEu vulnerability scanner used to probe for vulnerable PHPMyAdmin installations and guess SSH passwords. 106.12.200.160 - - [29/Apr/2020:22:00:16 +0000] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 403 154 "-" "ZmEu"	2020-04-30 06:03:11
218.92.0.138	attack	2020-04-29T22:00:28.848680dmca.cloudsearch.cf sshd[9900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-04-29T22:00:31.056716dmca.cloudsearch.cf sshd[9900]: Failed password for root from 218.92.0.138 port 34637 ssh2 2020-04-29T22:00:34.438538dmca.cloudsearch.cf sshd[9900]: Failed password for root from 218.92.0.138 port 34637 ssh2 2020-04-29T22:00:28.848680dmca.cloudsearch.cf sshd[9900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-04-29T22:00:31.056716dmca.cloudsearch.cf sshd[9900]: Failed password for root from 218.92.0.138 port 34637 ssh2 2020-04-29T22:00:34.438538dmca.cloudsearch.cf sshd[9900]: Failed password for root from 218.92.0.138 port 34637 ssh2 2020-04-29T22:00:28.848680dmca.cloudsearch.cf sshd[9900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-04-29T22:00:31.05 ...	2020-04-30 06:07:37
222.186.31.166	attackspam	2020-04-29T21:43:16.465932abusebot-6.cloudsearch.cf sshd[7214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root 2020-04-29T21:43:18.333486abusebot-6.cloudsearch.cf sshd[7214]: Failed password for root from 222.186.31.166 port 19747 ssh2 2020-04-29T21:43:20.353197abusebot-6.cloudsearch.cf sshd[7214]: Failed password for root from 222.186.31.166 port 19747 ssh2 2020-04-29T21:43:16.465932abusebot-6.cloudsearch.cf sshd[7214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root 2020-04-29T21:43:18.333486abusebot-6.cloudsearch.cf sshd[7214]: Failed password for root from 222.186.31.166 port 19747 ssh2 2020-04-29T21:43:20.353197abusebot-6.cloudsearch.cf sshd[7214]: Failed password for root from 222.186.31.166 port 19747 ssh2 2020-04-29T21:43:16.465932abusebot-6.cloudsearch.cf sshd[7214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser ...	2020-04-30 05:47:27
165.227.94.166	attackspambots	165.227.94.166 - - [29/Apr/2020:22:14:43 +0200] "GET /wp-login.php HTTP/1.1" 200 5686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.94.166 - - [29/Apr/2020:22:14:44 +0200] "POST /wp-login.php HTTP/1.1" 200 5937 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.94.166 - - [29/Apr/2020:22:14:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-30 05:50:11

最近上报的IP列表

252.14.246.117	228.174.123.26	132.118.113.36	143.199.53.177
198.189.129.30	155.150.106.188	190.215.145.210	109.220.55.108
123.208.41.114	119.164.182.190	114.36.158.28	151.134.8.132
25.53.69.127	178.107.23.122	218.154.28.82	2.39.67.219
194.147.140.41	157.236.117.132	162.58.85.73	40.66.251.120