158.140.171.11

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Eka Mas Republik

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sun, 21 Jul 2019 18:28:47 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 03:57:16

相同子网IP讨论:

IP	类型	评论内容	时间
158.140.171.122	attackspam	Unauthorized connection attempt from IP address 158.140.171.122 on Port 445(SMB)	2020-07-04 10:34:36
158.140.171.61	attackbots	Unauthorised access (Mar 24) SRC=158.140.171.61 LEN=52 TTL=117 ID=17331 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-16 19:52:56
158.140.171.20	attackspam	May 10 13:31:46 Tower sshd[27504]: Connection from 222.186.190.14 port 61246 on 192.168.10.220 port 22 rdomain "" May 10 13:31:48 Tower sshd[27504]: Received disconnect from 222.186.190.14 port 61246:11: [preauth] May 10 13:31:48 Tower sshd[27504]: Disconnected from 222.186.190.14 port 61246 [preauth] May 11 23:51:02 Tower sshd[27504]: Connection from 158.140.171.20 port 49257 on 192.168.10.220 port 22 rdomain "" May 11 23:51:04 Tower sshd[27504]: Failed password for root from 158.140.171.20 port 49257 ssh2 May 11 23:51:04 Tower sshd[27504]: Connection closed by authenticating user root 158.140.171.20 port 49257 [preauth]	2020-05-12 15:49:09
158.140.171.33	attack	Unauthorized connection attempt from IP address 158.140.171.33 on Port 445(SMB)	2020-04-28 20:01:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.140.171.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58986
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.140.171.11.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 03:57:11 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

11.171.140.158.in-addr.arpa domain name pointer host-158.140.171-11.myrepublic.co.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
11.171.140.158.in-addr.arpa	name = host-158.140.171-11.myrepublic.co.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.47.213.191	attackbotsspam	23/tcp [2019-09-02]1pkt	2019-09-02 19:35:08
62.234.86.83	attackbots	Sep 2 06:21:20 xtremcommunity sshd\[13642\]: Invalid user sun from 62.234.86.83 port 34667 Sep 2 06:21:20 xtremcommunity sshd\[13642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.86.83 Sep 2 06:21:22 xtremcommunity sshd\[13642\]: Failed password for invalid user sun from 62.234.86.83 port 34667 ssh2 Sep 2 06:24:07 xtremcommunity sshd\[13753\]: Invalid user bbb from 62.234.86.83 port 48116 Sep 2 06:24:07 xtremcommunity sshd\[13753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.86.83 ...	2019-09-02 18:38:25
86.108.87.51	attackspam	Telnet Server BruteForce Attack	2019-09-02 19:33:19
45.173.26.233	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-09-02 18:13:43
185.124.183.102	attackbotsspam	proto=tcp . spt=56366 . dpt=25 . (listed on Blocklist de Sep 01) (360)	2019-09-02 19:35:44
37.203.166.201	attackbotsspam	Automatic report - Port Scan Attack	2019-09-02 17:51:07
189.29.36.50	attack	Automatic report - Port Scan Attack	2019-09-02 19:26:10
178.128.54.223	attackbots	Sep 2 11:08:44 markkoudstaal sshd[24679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.54.223 Sep 2 11:08:46 markkoudstaal sshd[24679]: Failed password for invalid user musicbot2 from 178.128.54.223 port 14478 ssh2 Sep 2 11:13:31 markkoudstaal sshd[25242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.54.223	2019-09-02 17:43:12
83.66.111.38	attackspam	Automatic report - Port Scan Attack	2019-09-02 18:58:13
104.248.227.211	attackspam	proto=tcp . spt=47686 . dpt=25 . (listed on Blocklist de Sep 01) (362)	2019-09-02 19:27:53
159.203.179.100	attackspam	$f2bV_matches	2019-09-02 19:07:58
118.25.152.121	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-02 19:29:30
110.35.173.2	attack	Sep 2 08:38:38 meumeu sshd[15068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.2 Sep 2 08:38:39 meumeu sshd[15068]: Failed password for invalid user www from 110.35.173.2 port 2144 ssh2 Sep 2 08:43:30 meumeu sshd[15564]: Failed password for root from 110.35.173.2 port 25929 ssh2 ...	2019-09-02 18:13:15
212.83.141.79	attackbotsspam	\[2019-09-02 05:21:41\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '212.83.141.79:2225' - Wrong password \[2019-09-02 05:21:41\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-02T05:21:41.695-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="11671167",SessionID="0x7f7b30060858",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.141.79/60017",Challenge="20dcd146",ReceivedChallenge="20dcd146",ReceivedHash="de20eb0251d7d6bba47e336c62d113c2" \[2019-09-02 05:22:24\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '212.83.141.79:2206' - Wrong password \[2019-09-02 05:22:24\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-02T05:22:24.193-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="43474347",SessionID="0x7f7b3054fcb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4	2019-09-02 17:39:45
87.117.1.32	attackspam	proto=tcp . spt=60233 . dpt=25 . (listed on Blocklist de Sep 01) (369)	2019-09-02 19:04:34

最近上报的IP列表

42.18.7.3	7.144.192.46	191.53.236.155	24.126.186.207
53.225.136.133	168.19.24.151	116.255.234.44	241.1.60.57
19.199.29.107	118.232.90.140	85.105.245.135	5.2.192.54
196.206.55.28	191.53.223.175	191.53.223.60	191.53.23.34
180.251.102.143	92.46.239.54	202.80.212.1	191.53.223.118

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表