162.241.139.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Unified Layer

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Mar 16 06:07:33 exim[12684]: [1\103] 1jDhyN-0003Ia-KF H=kle.klezcar.com [162.241.139.106] X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=no F= rejected after DATA: This message scored 18.5 spam points.	2020-03-16 22:27:27
attack	Dec 23 01:13:32 debian sshd[17554]: Unable to negotiate with 162.241.139.106 port 44060: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Dec 23 01:27:24 debian sshd[18130]: Unable to negotiate with 162.241.139.106 port 39978: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-12-23 18:23:43

类型

评论内容

时间

attackspam

Mar 16 06:07:33  exim[12684]: [1\103] 1jDhyN-0003Ia-KF H=kle.klezcar.com [162.241.139.106] X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=no F= rejected after DATA: This message scored 18.5 spam points.

2020-03-16 22:27:27

attack

Dec 23 01:13:32 debian sshd[17554]: Unable to negotiate with 162.241.139.106 port 44060: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
Dec 23 01:27:24 debian sshd[18130]: Unable to negotiate with 162.241.139.106 port 39978: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
...

2019-12-23 18:23:43

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.241.139.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.241.139.106.		IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 18:23:38 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

106.139.241.162.in-addr.arpa domain name pointer kle.klezcar.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.139.241.162.in-addr.arpa	name = kle.klezcar.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.224.151.74	attackspam	Unauthorized connection attempt from IP address 45.224.151.74 on Port 445(SMB)	2019-11-20 23:31:48
37.171.129.25	attackbotsspam	2019-11-20 15:03:02 H=([37.171.129.25]) [37.171.129.25]:38729 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=37.171.129.25) 2019-11-20 15:03:03 unexpected disconnection while reading SMTP command from ([37.171.129.25]) [37.171.129.25]:38729 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-11-20 15:31:37 H=([37.171.129.25]) [37.171.129.25]:43643 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=37.171.129.25) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.171.129.25	2019-11-21 00:04:58
92.222.92.114	attack	F2B jail: sshd. Time: 2019-11-20 16:15:21, Reported by: VKReport	2019-11-20 23:36:39
123.20.124.171	attack	SASL Brute Force	2019-11-20 23:51:05
179.95.92.31	attackspam	Unauthorized connection attempt from IP address 179.95.92.31 on Port 445(SMB)	2019-11-20 23:40:30
180.76.173.189	attack	Nov 20 11:46:02 ldap01vmsma01 sshd[11397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.189 Nov 20 11:46:04 ldap01vmsma01 sshd[11397]: Failed password for invalid user fogelin from 180.76.173.189 port 35756 ssh2 ...	2019-11-20 23:47:29
36.91.38.95	attackspambots	Unauthorized connection attempt from IP address 36.91.38.95 on Port 445(SMB)	2019-11-20 23:37:24
76.73.206.90	attackbotsspam	Nov 20 17:46:05 hosting sshd[27150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.73.206.90 user=root Nov 20 17:46:07 hosting sshd[27150]: Failed password for root from 76.73.206.90 port 40314 ssh2 ...	2019-11-20 23:44:01
125.214.48.6	attackspambots	Unauthorized connection attempt from IP address 125.214.48.6 on Port 445(SMB)	2019-11-20 23:50:33
220.98.84.31	attackspambots	2019-11-20T14:36:26.314862hub.schaetter.us sshd\[27221\]: Invalid user linux1 from 220.98.84.31 port 63806 2019-11-20T14:36:26.334879hub.schaetter.us sshd\[27221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=p3216031-ipngn201013osakachuo.osaka.ocn.ne.jp 2019-11-20T14:36:28.778458hub.schaetter.us sshd\[27221\]: Failed password for invalid user linux1 from 220.98.84.31 port 63806 ssh2 2019-11-20T14:46:05.653682hub.schaetter.us sshd\[27269\]: Invalid user aldecoa from 220.98.84.31 port 63016 2019-11-20T14:46:05.662995hub.schaetter.us sshd\[27269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=p3216031-ipngn201013osakachuo.osaka.ocn.ne.jp ...	2019-11-20 23:45:46
93.35.241.167	attack	2019-11-20 14:20:11 H=93-35-241-167.ip57.fastwebnet.hostname [93.35.241.167]:1534 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=93.35.241.167) 2019-11-20 14:20:12 unexpected disconnection while reading SMTP command from 93-35-241-167.ip57.fastwebnet.hostname [93.35.241.167]:1534 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-11-20 15:30:47 H=93-35-241-167.ip57.fastwebnet.hostname [93.35.241.167]:1239 I=[10.100.18.20]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=93.35.241.167) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.35.241.167	2019-11-20 23:46:44
50.70.229.239	attackbotsspam	Nov 20 20:43:33 vibhu-HP-Z238-Microtower-Workstation sshd\[14615\]: Invalid user aile from 50.70.229.239 Nov 20 20:43:33 vibhu-HP-Z238-Microtower-Workstation sshd\[14615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.70.229.239 Nov 20 20:43:35 vibhu-HP-Z238-Microtower-Workstation sshd\[14615\]: Failed password for invalid user aile from 50.70.229.239 port 50112 ssh2 Nov 20 20:47:29 vibhu-HP-Z238-Microtower-Workstation sshd\[15475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.70.229.239 user=uucp Nov 20 20:47:30 vibhu-HP-Z238-Microtower-Workstation sshd\[15475\]: Failed password for uucp from 50.70.229.239 port 58452 ssh2 ...	2019-11-20 23:27:11
222.186.169.194	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Failed password for root from 222.186.169.194 port 61120 ssh2 Failed password for root from 222.186.169.194 port 61120 ssh2 Failed password for root from 222.186.169.194 port 61120 ssh2 Failed password for root from 222.186.169.194 port 61120 ssh2	2019-11-20 23:26:21
93.170.144.45	attack	scan z	2019-11-20 23:54:25
182.138.215.213	attackbots	Web application attack detected by fail2ban	2019-11-20 23:40:01

最近上报的IP列表

41.47.202.132	197.60.246.77	197.42.153.134	156.207.129.238
197.48.111.90	197.36.245.82	118.254.166.191	156.218.126.173
156.209.196.150	119.163.155.211	197.214.10.229	180.254.137.178
41.237.33.100	156.206.89.247	197.61.124.203	185.24.233.60
123.24.2.72	36.75.65.145	41.239.181.72	153.126.151.55