150.255.3.146 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Hainan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 150.255.3.146 to port 2053	2019-12-31 06:23:08

相同子网IP讨论:

IP	类型	评论内容	时间
150.255.32.67	attack	Unauthorized connection attempt detected from IP address 150.255.32.67 to port 8082 [J]	2020-01-13 03:57:46
150.255.32.212	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416c7926d34eb69 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:15:02
150.255.39.179	attackspambots	37215/tcp [2019-08-23]1pkt	2019-08-24 08:27:28
150.255.33.95	attack	Automatic report - Port Scan Attack	2019-07-31 06:08:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 150.255.3.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50519
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;150.255.3.146.			IN	A

;; AUTHORITY SECTION:
.			433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 06:23:05 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 146.3.255.150.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.3.255.150.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.76.165.58	attack	Sep 21 16:51:46 icinga sshd[62976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.58 Sep 21 16:51:49 icinga sshd[62976]: Failed password for invalid user guest4 from 180.76.165.58 port 49712 ssh2 Sep 21 17:07:51 icinga sshd[22437]: Failed password for root from 180.76.165.58 port 43498 ssh2 ...	2020-09-22 01:50:44
200.38.232.248	attackbots	scan for /wp-config.bak	2020-09-22 02:10:02
114.32.141.85	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-22 01:43:26
184.105.139.91	attackspambots	Port scan denied	2020-09-22 01:45:56
192.168.3.124	attackbots	4 SSH login attempts.	2020-09-22 01:45:27
111.229.121.142	attack	(sshd) Failed SSH login from 111.229.121.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 13:23:33 optimus sshd[12584]: Invalid user www-data from 111.229.121.142 Sep 21 13:23:33 optimus sshd[12584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.121.142 Sep 21 13:23:35 optimus sshd[12584]: Failed password for invalid user www-data from 111.229.121.142 port 56470 ssh2 Sep 21 13:26:39 optimus sshd[16539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.121.142 user=root Sep 21 13:26:40 optimus sshd[16539]: Failed password for root from 111.229.121.142 port 41878 ssh2	2020-09-22 02:00:37
39.68.189.83	attack	Found on Block CINS-badguys / proto=6 . srcport=48293 . dstport=23 . (2307)	2020-09-22 01:38:21
201.163.180.183	attackbots	(sshd) Failed SSH login from 201.163.180.183 (MX/Mexico/static-201-163-180-183.alestra.net.mx): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 13:04:59 server sshd[29995]: Invalid user ftpuser from 201.163.180.183 port 51846 Sep 21 13:05:01 server sshd[29995]: Failed password for invalid user ftpuser from 201.163.180.183 port 51846 ssh2 Sep 21 13:13:46 server sshd[32560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.163.180.183 user=root Sep 21 13:13:47 server sshd[32560]: Failed password for root from 201.163.180.183 port 47155 ssh2 Sep 21 13:17:43 server sshd[1540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.163.180.183 user=root	2020-09-22 01:55:09
192.241.141.162	attack	192.241.141.162 - - [21/Sep/2020:18:39:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.241.141.162 - - [21/Sep/2020:18:39:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2125 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.241.141.162 - - [21/Sep/2020:18:39:13 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-22 02:07:10
103.87.212.10	attackbotsspam	Sep 21 19:05:50 server sshd[4756]: Failed password for invalid user minecraft from 103.87.212.10 port 40744 ssh2 Sep 21 19:21:18 server sshd[12995]: Failed password for invalid user steam from 103.87.212.10 port 33140 ssh2 Sep 21 19:26:31 server sshd[15835]: Failed password for root from 103.87.212.10 port 41980 ssh2	2020-09-22 02:03:37
167.99.93.5	attackbotsspam	(sshd) Failed SSH login from 167.99.93.5 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 13:09:24 server sshd[31232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.93.5 user=root Sep 21 13:09:26 server sshd[31232]: Failed password for root from 167.99.93.5 port 43698 ssh2 Sep 21 13:14:08 server sshd[32713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.93.5 user=root Sep 21 13:14:09 server sshd[32713]: Failed password for root from 167.99.93.5 port 47724 ssh2 Sep 21 13:17:54 server sshd[1698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.93.5 user=root	2020-09-22 02:13:18
61.7.240.185	attack	Time: Mon Sep 21 19:31:17 2020 +0200 IP: 61.7.240.185 (TH/Thailand/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 21 19:21:28 3-1 sshd[55148]: Invalid user ftpadmin from 61.7.240.185 port 57446 Sep 21 19:21:30 3-1 sshd[55148]: Failed password for invalid user ftpadmin from 61.7.240.185 port 57446 ssh2 Sep 21 19:26:48 3-1 sshd[55407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 user=root Sep 21 19:26:50 3-1 sshd[55407]: Failed password for root from 61.7.240.185 port 49486 ssh2 Sep 21 19:31:14 3-1 sshd[55707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 user=root	2020-09-22 01:38:00
129.204.186.151	attack	(sshd) Failed SSH login from 129.204.186.151 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 13:29:11 optimus sshd[18552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.186.151 user=root Sep 21 13:29:13 optimus sshd[18552]: Failed password for root from 129.204.186.151 port 40136 ssh2 Sep 21 13:34:31 optimus sshd[20899]: Invalid user testuser from 129.204.186.151 Sep 21 13:34:31 optimus sshd[20899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.186.151 Sep 21 13:34:33 optimus sshd[20899]: Failed password for invalid user testuser from 129.204.186.151 port 40290 ssh2	2020-09-22 01:52:34
106.52.12.21	attackspambots	Sep 21 16:14:33 ovpn sshd\[21360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Sep 21 16:14:35 ovpn sshd\[21360\]: Failed password for root from 106.52.12.21 port 47440 ssh2 Sep 21 16:22:54 ovpn sshd\[14488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Sep 21 16:22:55 ovpn sshd\[14488\]: Failed password for root from 106.52.12.21 port 38568 ssh2 Sep 21 16:25:14 ovpn sshd\[16084\]: Invalid user steam from 106.52.12.21 Sep 21 16:25:14 ovpn sshd\[16084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21	2020-09-22 01:47:42
142.44.161.132	attackspambots	Invalid user gmodserver from 142.44.161.132 port 39502	2020-09-22 02:12:00

最近上报的IP列表

113.163.94.173	112.66.106.218	111.162.143.193	110.80.155.224
74.99.189.57	61.136.101.103	60.208.167.226	104.185.51.241
46.160.140.232	42.82.168.234	27.224.137.155	27.224.137.140
222.90.82.74	222.82.53.133	222.82.50.61	221.13.12.204
139.56.126.136	220.200.162.198	219.140.118.171	211.154.6.226