157.92.4.169 - IPInfo

基本信息:

城市(city): Buenos Aires

省份(region): Buenos Aires F.D.

国家(country): Argentina

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.92.49.151	attackbots	Oct 5 23:57:24 db sshd[26802]: User root from 157.92.49.151 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-06 07:46:37
157.92.49.151	attackbotsspam	$f2bV_matches	2020-10-06 00:05:44
157.92.49.151	attackbots	DATE:2020-10-05 09:09:00,IP:157.92.49.151,MATCHES:10,PORT:ssh	2020-10-05 16:06:12
157.92.49.151	attackbots	Failed password for root from 157.92.49.151 port 42728 ssh2	2020-09-28 07:39:34
157.92.49.151	attackspam	Invalid user pawel from 157.92.49.151 port 45788	2020-09-28 00:11:43
157.92.49.151	attackbots	sshd jail - ssh hack attempt	2020-09-27 16:13:33
157.92.49.151	attackbots	Aug 7 20:19:05 hidden sshd[3406]: Failed password for hidden from 157.92.49.151 port 32848 ssh2 Aug 7 20:21:22 hidden sshd[9062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.92.49.151 user=root Aug 7 20:21:24 hidden sshd[9062]: Failed password for hidden from 157.92.49.151 port 46343 ssh2 Aug 7 20:23:39 hidden sshd[14719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.92.49.151 user=root Aug 7 20:23:41 hidden sshd[14719]: Failed password for hidden from 157.92.49.151 port 59838 ssh2	2020-08-08 03:45:43
157.92.49.151	attackbots	Aug 6 11:43:09 db sshd[20662]: User root from 157.92.49.151 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-06 19:42:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.92.4.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.92.4.169.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120301 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 04 03:19:00 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 169.4.92.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.4.92.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
171.84.2.4	attack	Jun 23 00:07:27 ip-172-31-1-72 sshd\[29802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.2.4 user=ubuntu Jun 23 00:07:30 ip-172-31-1-72 sshd\[29802\]: Failed password for ubuntu from 171.84.2.4 port 62932 ssh2 Jun 23 00:10:49 ip-172-31-1-72 sshd\[30130\]: Invalid user teamspeak from 171.84.2.4 Jun 23 00:10:49 ip-172-31-1-72 sshd\[30130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.2.4 Jun 23 00:10:51 ip-172-31-1-72 sshd\[30130\]: Failed password for invalid user teamspeak from 171.84.2.4 port 26246 ssh2	2019-06-23 14:41:53
139.59.9.58	attackspambots	Jun 23 08:01:59 ncomp sshd[7094]: Invalid user alvin from 139.59.9.58 Jun 23 08:01:59 ncomp sshd[7094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.9.58 Jun 23 08:01:59 ncomp sshd[7094]: Invalid user alvin from 139.59.9.58 Jun 23 08:02:01 ncomp sshd[7094]: Failed password for invalid user alvin from 139.59.9.58 port 41364 ssh2	2019-06-23 15:03:00
39.74.189.191	attack	5500/tcp [2019-06-22]1pkt	2019-06-23 15:18:40
186.42.103.178	attackspambots	Jun 18 23:30:29 roadrisk sshd[30775]: reveeclipse mapping checking getaddrinfo for 178.103.42.186.static.anycast.cnt-grms.ec [186.42.103.178] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 18 23:30:29 roadrisk sshd[30775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.42.103.178 user=r.r Jun 18 23:30:30 roadrisk sshd[30775]: Failed password for r.r from 186.42.103.178 port 49298 ssh2 Jun 18 23:30:31 roadrisk sshd[30775]: Received disconnect from 186.42.103.178: 11: Bye Bye [preauth] Jun 18 23:36:04 roadrisk sshd[30844]: reveeclipse mapping checking getaddrinfo for 178.103.42.186.static.anycast.cnt-grms.ec [186.42.103.178] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 18 23:36:07 roadrisk sshd[30844]: Failed password for invalid user http from 186.42.103.178 port 51174 ssh2 Jun 18 23:36:07 roadrisk sshd[30844]: Received disconnect from 186.42.103.178: 11: Bye Bye [preauth] Jun 18 23:38:20 roadrisk sshd[30881]: reveeclipse mapping checkin........ -------------------------------	2019-06-23 14:42:37
47.198.224.40	attackspam	Jun 22 23:28:05 gcems sshd\[28565\]: Invalid user admin@root from 47.198.224.40 port 59612 Jun 22 23:28:05 gcems sshd\[28565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.198.224.40 Jun 22 23:28:07 gcems sshd\[28565\]: Failed password for invalid user admin@root from 47.198.224.40 port 59612 ssh2 Jun 22 23:32:16 gcems sshd\[28703\]: Invalid user ip from 47.198.224.40 port 48840 Jun 22 23:32:16 gcems sshd\[28703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.198.224.40 ...	2019-06-23 14:55:15
40.112.65.88	attackbots	Jun 19 16:09:01 shared06 sshd[20108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 user=nagios Jun 19 16:09:03 shared06 sshd[20108]: Failed password for nagios from 40.112.65.88 port 53070 ssh2 Jun 19 16:09:03 shared06 sshd[20108]: Received disconnect from 40.112.65.88 port 53070:11: Bye Bye [preauth] Jun 19 16:09:03 shared06 sshd[20108]: Disconnected from 40.112.65.88 port 53070 [preauth] Jun 19 16:13:06 shared06 sshd[21856]: Invalid user da from 40.112.65.88 Jun 19 16:13:06 shared06 sshd[21856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 Jun 19 16:13:08 shared06 sshd[21856]: Failed password for invalid user da from 40.112.65.88 port 43668 ssh2 Jun 19 16:13:08 shared06 sshd[21856]: Received disconnect from 40.112.65.88 port 43668:11: Bye Bye [preauth] Jun 19 16:13:08 shared06 sshd[21856]: Disconnected from 40.112.65.88 port 43668 [preauth] ........ ---------------------------------------------	2019-06-23 14:57:46
89.197.161.164	attackspambots	ports scanning	2019-06-23 15:21:29
173.21.14.190	attack	23/tcp 23/tcp 23/tcp... [2019-06-22]4pkt,1pt.(tcp)	2019-06-23 15:10:50
58.242.83.28	attackbots	Jun 23 08:21:50 dcd-gentoo sshd[18549]: User root from 58.242.83.28 not allowed because none of user's groups are listed in AllowGroups Jun 23 08:21:54 dcd-gentoo sshd[18549]: error: PAM: Authentication failure for illegal user root from 58.242.83.28 Jun 23 08:21:50 dcd-gentoo sshd[18549]: User root from 58.242.83.28 not allowed because none of user's groups are listed in AllowGroups Jun 23 08:21:54 dcd-gentoo sshd[18549]: error: PAM: Authentication failure for illegal user root from 58.242.83.28 Jun 23 08:21:50 dcd-gentoo sshd[18549]: User root from 58.242.83.28 not allowed because none of user's groups are listed in AllowGroups Jun 23 08:21:54 dcd-gentoo sshd[18549]: error: PAM: Authentication failure for illegal user root from 58.242.83.28 Jun 23 08:21:54 dcd-gentoo sshd[18549]: Failed keyboard-interactive/pam for invalid user root from 58.242.83.28 port 64864 ssh2 ...	2019-06-23 14:29:31
102.131.21.1	attack	SPF Fail sender not permitted to send mail for @lsys.it / Sent Mail to target address hacked/leaked from Planet3DNow.de	2019-06-23 14:35:20
140.143.62.129	attackspam	Jun 23 01:10:37 mail sshd\[18316\]: Failed password for invalid user miner from 140.143.62.129 port 44070 ssh2 Jun 23 01:25:45 mail sshd\[18616\]: Invalid user rakuya from 140.143.62.129 port 36524 ...	2019-06-23 15:07:27
111.230.13.186	attackspam	Jun 23 00:53:37 MK-Soft-VM7 sshd\[4530\]: Invalid user temp from 111.230.13.186 port 55922 Jun 23 00:53:37 MK-Soft-VM7 sshd\[4530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.13.186 Jun 23 00:53:39 MK-Soft-VM7 sshd\[4530\]: Failed password for invalid user temp from 111.230.13.186 port 55922 ssh2 ...	2019-06-23 15:23:06
185.176.27.38	attack	23.06.2019 05:37:43 Connection to port 14192 blocked by firewall	2019-06-23 14:59:03
139.59.39.174	attackbotsspam	Jun 23 08:23:03 MainVPS sshd[14284]: Invalid user hartmann from 139.59.39.174 port 57968 Jun 23 08:23:03 MainVPS sshd[14284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.39.174 Jun 23 08:23:03 MainVPS sshd[14284]: Invalid user hartmann from 139.59.39.174 port 57968 Jun 23 08:23:05 MainVPS sshd[14284]: Failed password for invalid user hartmann from 139.59.39.174 port 57968 ssh2 Jun 23 08:26:47 MainVPS sshd[14515]: Invalid user weldon from 139.59.39.174 port 56704 ...	2019-06-23 14:41:02
154.117.206.235	attackbots	445/tcp [2019-06-22]1pkt	2019-06-23 14:37:35

最近上报的IP列表

122.188.30.27	56.185.21.199	97.43.197.81	74.208.229.166
105.184.220.37	60.76.20.109	42.248.165.143	176.118.216.181
202.136.158.68	67.176.230.123	10.64.36.215	83.100.240.11
105.184.25.170	191.241.242.68	186.215.40.101	128.70.51.97
11.198.97.216	5.36.181.185	169.208.137.81	45.117.73.68