必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT. Eka Mas Republik

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attack
firewall-block, port(s): 445/tcp
2020-08-15 08:20:11
相同子网IP讨论:
IP 类型 评论内容 时间
158.140.181.51 attackspambots
Unauthorized connection attempt from IP address 158.140.181.51 on Port 445(SMB)
2020-08-18 23:57:14
158.140.181.59 attackspambots
Aug 10 14:00:50 sd-69548 sshd[3229926]: Invalid user admina from 158.140.181.59 port 50814
Aug 10 14:00:50 sd-69548 sshd[3229926]: Connection closed by invalid user admina 158.140.181.59 port 50814 [preauth]
...
2020-08-11 04:02:00
158.140.181.41 attackbots
Unauthorized connection attempt from IP address 158.140.181.41 on Port 445(SMB)
2020-01-04 20:07:57
158.140.181.51 attack
Unauthorized connection attempt from IP address 158.140.181.51 on Port 445(SMB)
2019-11-06 05:56:54
158.140.181.7 attackbotsspam
Unauthorized connection attempt from IP address 158.140.181.7 on Port 445(SMB)
2019-11-05 02:41:03
158.140.181.86 attackbots
Unauthorized connection attempt from IP address 158.140.181.86 on Port 445(SMB)
2019-11-01 01:06:20
158.140.181.119 attackbots
Jul 17 00:01:19 meumeu sshd[29579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.140.181.119 
Jul 17 00:01:21 meumeu sshd[29579]: Failed password for invalid user andrey from 158.140.181.119 port 44788 ssh2
Jul 17 00:08:19 meumeu sshd[31002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.140.181.119 
...
2019-07-17 10:18:27
158.140.181.119 attackbots
Jul 16 14:08:17 meumeu sshd[11745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.140.181.119 
Jul 16 14:08:19 meumeu sshd[11745]: Failed password for invalid user ftb from 158.140.181.119 port 37708 ssh2
Jul 16 14:15:24 meumeu sshd[13119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.140.181.119 
...
2019-07-16 21:52:08
158.140.181.41 attackbotsspam
Unauthorized connection attempt from IP address 158.140.181.41 on Port 445(SMB)
2019-06-29 21:30:07
158.140.181.255 attackbotsspam
Scanning and Vuln Attempts
2019-06-26 16:26:08
158.140.181.119 attackspambots
Jun 25 01:22:34 lnxweb61 sshd[28071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.140.181.119
2019-06-25 08:38:40
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.140.181.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61620
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.140.181.157.		IN	A

;; AUTHORITY SECTION:
.			520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081401 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 08:20:07 CST 2020
;; MSG SIZE  rcvd: 119
HOST信息:
157.181.140.158.in-addr.arpa domain name pointer host-158.140.181-157.myrepublic.co.id.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.181.140.158.in-addr.arpa	name = host-158.140.181-157.myrepublic.co.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
128.199.155.218 attackbots
2020-05-13T02:49:35.682266mail.thespaminator.com sshd[2773]: Invalid user antonio from 128.199.155.218 port 25854
2020-05-13T02:49:38.027030mail.thespaminator.com sshd[2773]: Failed password for invalid user antonio from 128.199.155.218 port 25854 ssh2
...
2020-05-13 20:04:53
60.12.94.186 attack
Unauthorized connection attempt detected from IP address 60.12.94.186 to port 7002 [T]
2020-05-13 20:27:18
51.75.122.213 attackbotsspam
May 13 13:26:30 jane sshd[18999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.213 
May 13 13:26:32 jane sshd[18999]: Failed password for invalid user oracle from 51.75.122.213 port 34950 ssh2
...
2020-05-13 19:49:02
125.19.153.156 attackspam
May 13 11:39:47 vps333114 sshd[29241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.19.153.156
May 13 11:39:49 vps333114 sshd[29241]: Failed password for invalid user slr from 125.19.153.156 port 37632 ssh2
...
2020-05-13 19:54:27
122.51.101.136 attack
May 13 08:32:25 ovpn sshd\[24162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.101.136  user=backup
May 13 08:32:27 ovpn sshd\[24162\]: Failed password for backup from 122.51.101.136 port 55238 ssh2
May 13 08:51:27 ovpn sshd\[28751\]: Invalid user moreau from 122.51.101.136
May 13 08:51:27 ovpn sshd\[28751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.101.136
May 13 08:51:29 ovpn sshd\[28751\]: Failed password for invalid user moreau from 122.51.101.136 port 36920 ssh2
2020-05-13 19:51:06
107.170.39.154 attackspambots
2020-05-12 UTC: (12x) - brad,debian,demo,deploy,filo,ftptest,le,m,maxim,sg,user,user1
2020-05-13 20:21:45
119.4.225.31 attackbotsspam
odoo8
...
2020-05-13 19:48:28
61.2.20.127 attackspam
Telnet/23 MH Probe, Scan, BF, Hack -
2020-05-13 20:26:46
36.71.238.102 attackspam
May 13 05:49:02 debian64 sshd[32286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.71.238.102 
May 13 05:49:04 debian64 sshd[32286]: Failed password for invalid user user from 36.71.238.102 port 18244 ssh2
...
2020-05-13 20:28:00
51.38.129.120 attackspambots
(sshd) Failed SSH login from 51.38.129.120 (PL/Poland/120.ip-51-38-129.eu): 12 in the last 3600 secs
2020-05-13 20:23:29
80.211.56.72 attackspambots
(sshd) Failed SSH login from 80.211.56.72 (IT/Italy/host72-56-211-80.serverdedicati.aruba.it): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 11:53:34 ubnt-55d23 sshd[17898]: Invalid user vnc from 80.211.56.72 port 58056
May 13 11:53:36 ubnt-55d23 sshd[17898]: Failed password for invalid user vnc from 80.211.56.72 port 58056 ssh2
2020-05-13 20:07:13
202.67.46.243 attackbotsspam
(sshd) Failed SSH login from 202.67.46.243 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 05:49:24 amsweb01 sshd[30450]: Did not receive identification string from 202.67.46.243 port 12687
May 13 05:49:24 amsweb01 sshd[30451]: Did not receive identification string from 202.67.46.243 port 29474
May 13 05:49:29 amsweb01 sshd[30462]: Invalid user service from 202.67.46.243 port 29475
May 13 05:49:29 amsweb01 sshd[30460]: Invalid user service from 202.67.46.243 port 12688
May 13 05:49:30 amsweb01 sshd[30462]: Failed password for invalid user service from 202.67.46.243 port 29475 ssh2
2020-05-13 19:59:21
14.253.213.18 attackbots
May 13 06:06:13 hni-server sshd[11562]: Did not receive identification string from 14.253.213.18
May 13 06:06:20 hni-server sshd[11578]: Invalid user 888888 from 14.253.213.18
May 13 06:06:20 hni-server sshd[11578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.253.213.18
May 13 06:06:22 hni-server sshd[11578]: Failed password for invalid user 888888 from 14.253.213.18 port 49704 ssh2
May 13 06:06:23 hni-server sshd[11578]: Connection closed by 14.253.213.18 port 49704 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.253.213.18
2020-05-13 20:26:28
193.118.53.198 attack
Port scan(s) (1) denied
2020-05-13 20:17:11
123.145.107.63 attack
Invalid user postgres from 123.145.107.63 port 57537
2020-05-13 20:08:40

最近上报的IP列表

45.172.189.74 24.133.24.226 94.113.75.89 61.83.175.154
189.114.198.215 95.79.139.139 220.215.211.66 95.156.230.161
164.214.167.147 185.23.247.233 106.3.137.244 142.17.174.130
23.24.147.245 35.237.121.18 208.7.124.123 176.82.90.250
216.16.40.2 24.7.232.254 59.126.47.25 113.200.39.213