150.116.126.91

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): Chief Telecom Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-11 17:20:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 150.116.126.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5398
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;150.116.126.91.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 10 09:24:37 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

91.126.116.150.in-addr.arpa has no PTR record

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 91.126.116.150.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
198.27.90.106	attackbotsspam	Jan 10 15:57:39 124388 sshd[13629]: Invalid user cedric from 198.27.90.106 port 38467 Jan 10 15:57:39 124388 sshd[13629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106 Jan 10 15:57:39 124388 sshd[13629]: Invalid user cedric from 198.27.90.106 port 38467 Jan 10 15:57:42 124388 sshd[13629]: Failed password for invalid user cedric from 198.27.90.106 port 38467 ssh2 Jan 10 15:59:46 124388 sshd[13660]: Invalid user oracle from 198.27.90.106 port 49098	2020-01-11 04:57:33
194.228.3.191	attackbotsspam	auto-add	2020-01-11 05:09:27
202.137.5.245	attack	SSH bruteforce	2020-01-11 04:49:14
94.102.56.181	attackspambots	firewall-block, port(s): 3855/tcp, 3860/tcp	2020-01-11 04:51:30
36.78.23.94	attack	Jan 8 13:36:42 lvpxxxxxxx88-92-201-20 sshd[7111]: Failed password for invalid user teamspeak from 36.78.23.94 port 39895 ssh2 Jan 8 13:36:43 lvpxxxxxxx88-92-201-20 sshd[7111]: Received disconnect from 36.78.23.94: 11: Bye Bye [preauth] Jan 8 13:44:32 lvpxxxxxxx88-92-201-20 sshd[7203]: Failed password for invalid user ubuntu from 36.78.23.94 port 40088 ssh2 Jan 8 13:44:32 lvpxxxxxxx88-92-201-20 sshd[7203]: Received disconnect from 36.78.23.94: 11: Bye Bye [preauth] Jan 8 13:52:16 lvpxxxxxxx88-92-201-20 sshd[7302]: Failed password for invalid user ndt from 36.78.23.94 port 40277 ssh2 Jan 8 13:52:17 lvpxxxxxxx88-92-201-20 sshd[7302]: Received disconnect from 36.78.23.94: 11: Bye Bye [preauth] Jan 8 14:15:59 lvpxxxxxxx88-92-201-20 sshd[7528]: Failed password for invalid user 1415926 from 36.78.23.94 port 40851 ssh2 Jan 8 14:15:59 lvpxxxxxxx88-92-201-20 sshd[7528]: Received disconnect from 36.78.23.94: 11: Bye Bye [preauth] Jan 8 14:19:55 lvpxxxxxxx88-92-201-20 sshd........ -------------------------------	2020-01-11 05:09:52
54.38.139.210	attackbots	Jan 10 21:08:12 v22018076622670303 sshd\[1456\]: Invalid user nn from 54.38.139.210 port 34826 Jan 10 21:08:12 v22018076622670303 sshd\[1456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.139.210 Jan 10 21:08:14 v22018076622670303 sshd\[1456\]: Failed password for invalid user nn from 54.38.139.210 port 34826 ssh2 ...	2020-01-11 04:51:07
185.153.198.162	attack	1578684868 - 01/10/2020 20:34:28 Host: 185.153.198.162/185.153.198.162 Port: 6001 TCP Blocked	2020-01-11 05:10:17
113.160.48.66	attackspam	1578690706 - 01/10/2020 22:11:46 Host: 113.160.48.66/113.160.48.66 Port: 445 TCP Blocked	2020-01-11 05:19:55
222.186.180.142	attackspam	10.01.2020 21:11:41 SSH access blocked by firewall	2020-01-11 05:26:00
110.255.107.15	attackspam	/download/file.php?id=102&sid=4c695891413c3ababa6e2cd1982470bf	2020-01-11 04:47:18
103.219.117.18	attackbots	Jan 8 21:45:19 nandi sshd[13519]: Invalid user cssserver from 103.219.117.18 Jan 8 21:45:19 nandi sshd[13519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.117.18 Jan 8 21:45:21 nandi sshd[13519]: Failed password for invalid user cssserver from 103.219.117.18 port 55566 ssh2 Jan 8 21:45:21 nandi sshd[13519]: Received disconnect from 103.219.117.18: 11: Bye Bye [preauth] Jan 8 22:06:43 nandi sshd[27068]: Invalid user rtorrent from 103.219.117.18 Jan 8 22:06:43 nandi sshd[27068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.117.18 Jan 8 22:06:45 nandi sshd[27068]: Failed password for invalid user rtorrent from 103.219.117.18 port 34740 ssh2 Jan 8 22:06:45 nandi sshd[27068]: Received disconnect from 103.219.117.18: 11: Bye Bye [preauth] Jan 8 22:09:51 nandi sshd[28464]: Invalid user sniff from 103.219.117.18 Jan 8 22:09:51 nandi sshd[28464]: pam_unix(sshd:auth)........ -------------------------------	2020-01-11 04:56:51
85.115.248.1	attackspam	Jan 10 13:51:23 grey postfix/smtpd\[11958\]: NOQUEUE: reject: RCPT from unknown\[85.115.248.1\]: 554 5.7.1 Service unavailable\; Client host \[85.115.248.1\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=85.115.248.1\; from=\ to=\ proto=ESMTP helo=\<\[85.115.248.1\]\> ...	2020-01-11 04:45:06
37.59.224.39	attackbots	Jan 10 05:10:41 web9 sshd\[18427\]: Invalid user oah from 37.59.224.39 Jan 10 05:10:41 web9 sshd\[18427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Jan 10 05:10:43 web9 sshd\[18427\]: Failed password for invalid user oah from 37.59.224.39 port 55213 ssh2 Jan 10 05:13:33 web9 sshd\[18954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 user=root Jan 10 05:13:35 web9 sshd\[18954\]: Failed password for root from 37.59.224.39 port 39360 ssh2	2020-01-11 05:09:15
218.92.0.168	attackspambots	Jan 10 21:12:51 sshgateway sshd\[29912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root Jan 10 21:12:53 sshgateway sshd\[29912\]: Failed password for root from 218.92.0.168 port 51409 ssh2 Jan 10 21:12:57 sshgateway sshd\[29912\]: Failed password for root from 218.92.0.168 port 51409 ssh2	2020-01-11 05:14:09
92.63.194.81	attack	10.01.2020 19:51:34 Connection to port 1723 blocked by firewall	2020-01-11 05:00:09

最近上报的IP列表

50.192.134.217	6.99.152.132	195.98.170.174	43.242.244.57
194.209.150.131	245.169.241.183	115.115.250.222	119.28.29.248
187.102.57.217	104.248.239.188	114.108.177.69	209.141.62.45
121.191.34.71	5.76.117.218	213.59.138.49	212.14.249.166
93.86.61.48	109.50.124.113	147.119.221.248	241.112.38.142