159.192.107.129

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): CAT TELECOM Public Company Ltd,CAT

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
159.192.107.197	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-02 16:21:49
159.192.107.27	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-01 17:40:42
159.192.107.238	attack	Apr 9 15:07:19 server sshd\[32256\]: Invalid user usuario from 159.192.107.238 Apr 9 15:07:19 server sshd\[32256\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.107.238 Apr 9 15:07:22 server sshd\[32256\]: Failed password for invalid user usuario from 159.192.107.238 port 36596 ssh2 ...	2019-10-09 18:13:02
159.192.107.112	attack	Unauthorized connection attempt from IP address 159.192.107.112 on Port 445(SMB)	2019-08-14 11:29:55
159.192.107.238	attack	Jul 3 21:25:31 server sshd[16081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.107.238 ...	2019-07-23 06:36:30
159.192.107.238	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-13 17:25:12
159.192.107.238	attack	Apr 9 15:07:19 server sshd\[32256\]: Invalid user usuario from 159.192.107.238 Apr 9 15:07:19 server sshd\[32256\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.107.238 Apr 9 15:07:22 server sshd\[32256\]: Failed password for invalid user usuario from 159.192.107.238 port 36596 ssh2 ...	2019-07-12 00:49:19
159.192.107.238	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-01 19:11:40
159.192.107.238	attackbotsspam	k+ssh-bruteforce	2019-06-30 11:14:01
159.192.107.238	attackspam	Jun 25 07:21:17 db sshd\[17746\]: Invalid user rachel from 159.192.107.238 Jun 25 07:21:17 db sshd\[17746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.107.238 Jun 25 07:21:19 db sshd\[17746\]: Failed password for invalid user rachel from 159.192.107.238 port 32900 ssh2 Jun 25 07:23:56 db sshd\[17820\]: Invalid user student from 159.192.107.238 Jun 25 07:23:56 db sshd\[17820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.107.238 ...	2019-06-25 21:42:50

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.192.107.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9097
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.192.107.129.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 08 08:03:47 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 129.107.192.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 129.107.192.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
54.38.177.68	attackbots	54.38.177.68 - - [22/May/2020:05:56:03 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [22/May/2020:05:56:03 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [22/May/2020:05:56:03 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [22/May/2020:05:56:03 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [22/May/2020:05:56:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [22/May/2020:05:56:04 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-05-22 14:26:13
103.215.139.253	attackbots	$f2bV_matches	2020-05-22 14:27:07
45.142.195.8	attack	2020-05-22 09:08:27 dovecot_login authenticator failed for $User$ \[45.142.195.8\]: 535 Incorrect authentication data $set_id=sdo@ift.org.ua$2020-05-22 09:11:26 dovecot_login authenticator failed for $User$ \[45.142.195.8\]: 535 Incorrect authentication data $set_id=score@ift.org.ua$2020-05-22 09:14:20 dovecot_login authenticator failed for $User$ \[45.142.195.8\]: 535 Incorrect authentication data $set_id=satellite@ift.org.ua$ ...	2020-05-22 14:28:05
14.186.242.248	attackbots	1590119764 - 05/22/2020 05:56:04 Host: 14.186.242.248/14.186.242.248 Port: 445 TCP Blocked	2020-05-22 14:25:14
134.175.129.58	attack	Invalid user jcs from 134.175.129.58 port 36997	2020-05-22 14:20:50
36.133.5.170	attack	May 21 08:42:10 Tower sshd[30682]: refused connect from 41.111.135.199 (41.111.135.199) May 21 23:56:02 Tower sshd[30682]: Connection from 36.133.5.170 port 60378 on 192.168.10.220 port 22 rdomain "" May 21 23:56:04 Tower sshd[30682]: Invalid user sxx from 36.133.5.170 port 60378 May 21 23:56:04 Tower sshd[30682]: error: Could not get shadow information for NOUSER May 21 23:56:04 Tower sshd[30682]: Failed password for invalid user sxx from 36.133.5.170 port 60378 ssh2 May 21 23:56:04 Tower sshd[30682]: Received disconnect from 36.133.5.170 port 60378:11: Bye Bye [preauth] May 21 23:56:04 Tower sshd[30682]: Disconnected from invalid user sxx 36.133.5.170 port 60378 [preauth]	2020-05-22 14:22:08
45.142.195.15	attack	Rude login attack (431 tries in 1d)	2020-05-22 14:05:21
49.232.161.243	attackbots	May 22 11:29:21 webhost01 sshd[20812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.243 May 22 11:29:23 webhost01 sshd[20812]: Failed password for invalid user ljh from 49.232.161.243 port 59528 ssh2 ...	2020-05-22 13:59:52
195.54.167.9	attack	May 22 07:14:34 debian-2gb-nbg1-2 kernel: \[12383293.204596\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.9 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=12074 PROTO=TCP SPT=52666 DPT=43849 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-22 13:51:45
120.88.46.226	attack	2020-05-22T05:11:30.931189dmca.cloudsearch.cf sshd[16753]: Invalid user pzo from 120.88.46.226 port 58216 2020-05-22T05:11:30.936533dmca.cloudsearch.cf sshd[16753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120-88-46-226.snat21.hns.net.in 2020-05-22T05:11:30.931189dmca.cloudsearch.cf sshd[16753]: Invalid user pzo from 120.88.46.226 port 58216 2020-05-22T05:11:32.284106dmca.cloudsearch.cf sshd[16753]: Failed password for invalid user pzo from 120.88.46.226 port 58216 ssh2 2020-05-22T05:14:11.132044dmca.cloudsearch.cf sshd[16947]: Invalid user tnl from 120.88.46.226 port 39580 2020-05-22T05:14:11.137103dmca.cloudsearch.cf sshd[16947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120-88-46-226.snat21.hns.net.in 2020-05-22T05:14:11.132044dmca.cloudsearch.cf sshd[16947]: Invalid user tnl from 120.88.46.226 port 39580 2020-05-22T05:14:13.588651dmca.cloudsearch.cf sshd[16947]: Failed password for invalid ...	2020-05-22 13:58:45
37.49.226.183	attackspam	May 22 08:10:08 MainVPS sshd[4362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.226.183 user=root May 22 08:10:11 MainVPS sshd[4362]: Failed password for root from 37.49.226.183 port 42282 ssh2 May 22 08:10:31 MainVPS sshd[4640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.226.183 user=root May 22 08:10:33 MainVPS sshd[4640]: Failed password for root from 37.49.226.183 port 44346 ssh2 May 22 08:10:53 MainVPS sshd[4900]: Invalid user oracle from 37.49.226.183 port 46000 ...	2020-05-22 14:19:46
222.252.156.52	attackspam	Port probing on unauthorized port 445	2020-05-22 14:16:11
66.143.231.89	attackspambots	May 22 05:56:28 cloud sshd[22640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.143.231.89 May 22 05:56:30 cloud sshd[22640]: Failed password for invalid user ihl from 66.143.231.89 port 36274 ssh2	2020-05-22 14:09:23
123.206.33.56	attack	May 22 05:06:50 cdc sshd[10948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.33.56 May 22 05:06:52 cdc sshd[10948]: Failed password for invalid user uxq from 123.206.33.56 port 41640 ssh2	2020-05-22 13:50:36
128.14.134.134	attackspam	port scan and connect, tcp 443 (https)	2020-05-22 14:30:28

最近上报的IP列表

58.241.175.214	201.208.120.15	46.176.95.99	37.75.129.126
200.33.167.146	119.29.170.202	202.43.144.66	146.196.107.58
197.45.122.211	85.173.250.51	103.210.200.202	45.77.93.149
125.27.87.124	134.209.197.176	119.28.105.127	109.107.240.83
62.103.171.85	77.226.243.219	193.226.63.26	200.175.239.162