158.140.165.8 - IPInfo

基本信息:

城市(city): Palembang

省份(region): South Sumatra

国家(country): Indonesia

运营商(isp): PT. Eka Mas Republik

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 158.140.165.8 on Port 445(SMB)	2019-10-10 02:40:46

相同子网IP讨论:

IP	类型	评论内容	时间
158.140.165.102	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-20 17:32:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.140.165.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.140.165.8.			IN	A

;; AUTHORITY SECTION:
.			257	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100901 1800 900 604800 86400

;; Query time: 371 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 10 02:40:43 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

8.165.140.158.in-addr.arpa domain name pointer host-158.140.165-8.myrepublic.co.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.165.140.158.in-addr.arpa	name = host-158.140.165-8.myrepublic.co.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
73.246.166.86	attack	Jun 6 17:11:56 server sshd[26519]: Failed password for root from 73.246.166.86 port 41318 ssh2 Jun 6 17:19:06 server sshd[2524]: Failed password for root from 73.246.166.86 port 45522 ssh2 Jun 6 17:22:35 server sshd[6856]: Failed password for root from 73.246.166.86 port 49334 ssh2	2020-06-06 23:50:57
106.2.207.106	attackbotsspam	Jun 6 05:48:51 mockhub sshd[11390]: Failed password for root from 106.2.207.106 port 27440 ssh2 ...	2020-06-06 23:59:45
139.155.79.35	attack	2020-06-06T14:23:43.233984v22018076590370373 sshd[20535]: Failed password for root from 139.155.79.35 port 33732 ssh2 2020-06-06T14:27:19.169149v22018076590370373 sshd[31892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.79.35 user=root 2020-06-06T14:27:21.546949v22018076590370373 sshd[31892]: Failed password for root from 139.155.79.35 port 51372 ssh2 2020-06-06T14:30:46.465471v22018076590370373 sshd[4140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.79.35 user=root 2020-06-06T14:30:48.927970v22018076590370373 sshd[4140]: Failed password for root from 139.155.79.35 port 40780 ssh2 ...	2020-06-07 00:16:38
46.105.102.68	attack	46.105.102.68 - - [06/Jun/2020:16:37:21 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.105.102.68 - - [06/Jun/2020:16:37:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.105.102.68 - - [06/Jun/2020:16:37:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-07 00:15:43
202.83.28.191	attackspam	Unauthorized connection attempt from IP address 202.83.28.191 on Port 445(SMB)	2020-06-06 23:58:20
122.51.69.116	attackspam	Jun 6 10:18:54 NPSTNNYC01T sshd[12762]: Failed password for root from 122.51.69.116 port 35898 ssh2 Jun 6 10:21:27 NPSTNNYC01T sshd[12999]: Failed password for root from 122.51.69.116 port 34842 ssh2 ...	2020-06-06 23:42:29
222.186.175.163	attackspambots	2020-06-06T18:29:06.826595lavrinenko.info sshd[1149]: Failed password for root from 222.186.175.163 port 37018 ssh2 2020-06-06T18:29:11.764475lavrinenko.info sshd[1149]: Failed password for root from 222.186.175.163 port 37018 ssh2 2020-06-06T18:29:17.270217lavrinenko.info sshd[1149]: Failed password for root from 222.186.175.163 port 37018 ssh2 2020-06-06T18:29:31.266248lavrinenko.info sshd[1159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root 2020-06-06T18:29:33.080840lavrinenko.info sshd[1159]: Failed password for root from 222.186.175.163 port 8028 ssh2 ...	2020-06-06 23:38:45
95.85.60.251	attack	Jun 6 17:59:17 ncomp sshd[15727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.60.251 user=root Jun 6 17:59:19 ncomp sshd[15727]: Failed password for root from 95.85.60.251 port 55020 ssh2 Jun 6 18:13:10 ncomp sshd[16158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.60.251 user=root Jun 6 18:13:12 ncomp sshd[16158]: Failed password for root from 95.85.60.251 port 43086 ssh2	2020-06-07 00:15:27
112.78.150.10	attackspam	Jun 6 14:45:47 localhost sshd[12241]: Invalid user hadoop from 112.78.150.10 port 56022 Jun 6 14:45:47 localhost sshd[12241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.150.10 Jun 6 14:45:47 localhost sshd[12241]: Invalid user hadoop from 112.78.150.10 port 56022 Jun 6 14:45:49 localhost sshd[12241]: Failed password for invalid user hadoop from 112.78.150.10 port 56022 ssh2 Jun 6 14:54:22 localhost sshd[13143]: Invalid user deployer from 112.78.150.10 port 55722 ...	2020-06-07 00:02:13
94.191.119.31	attackspambots	Jun 6 16:13:11 ns3164893 sshd[3324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.119.31 user=root Jun 6 16:13:12 ns3164893 sshd[3324]: Failed password for root from 94.191.119.31 port 41712 ssh2 ...	2020-06-06 23:50:43
157.47.194.94	attackbotsspam	Unauthorized connection attempt from IP address 157.47.194.94 on Port 445(SMB)	2020-06-07 00:14:05
27.3.139.166	attackspam	27.3.139.166 - - [06/Jun/2020:14:31:03 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 27.3.139.166 - - [06/Jun/2020:14:31:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 27.3.139.166 - - [06/Jun/2020:17:59:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-07 00:04:18
178.128.86.188	attack	2020-06-06T14:27:10.516479n23.at sshd[29081]: Failed password for root from 178.128.86.188 port 55118 ssh2 2020-06-06T14:31:10.700637n23.at sshd[519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.86.188 user=root 2020-06-06T14:31:13.123384n23.at sshd[519]: Failed password for root from 178.128.86.188 port 59788 ssh2 ...	2020-06-06 23:55:23
49.232.33.182	attack	Jun 6 15:31:43 santamaria sshd\[20233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.182 user=root Jun 6 15:31:45 santamaria sshd\[20233\]: Failed password for root from 49.232.33.182 port 54590 ssh2 Jun 6 15:33:50 santamaria sshd\[20256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.182 user=root ...	2020-06-06 23:56:09
189.213.163.81	attack	Automatic report - Port Scan Attack	2020-06-06 23:45:49

最近上报的IP列表

125.46.182.175	195.216.243.104	113.254.226.131	170.134.166.22
117.28.229.63	45.64.1.243	126.213.148.239	222.53.165.132
62.243.72.100	202.33.1.76	24.151.58.210	195.3.2.99
137.119.207.12	14.242.179.225	118.145.47.189	113.116.28.236
93.73.123.7	183.235.52.196	65.240.130.203	2600:387:6:803::90