175.138.136.80

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Malaysia

运营商(isp): Telekom Malaysia Berhad

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 175.138.136.80 to port 82 [J]	2020-01-18 20:16:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.138.136.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59771
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.138.136.80.			IN	A

;; AUTHORITY SECTION:
.			431	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011800 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 20:16:50 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 80.136.138.175.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.136.138.175.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.199.91.98	attackspam	Email rejected due to spam filtering	2020-04-06 02:11:47
202.83.57.122	attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-06 02:03:52
134.101.159.65	attackspambots	Apr 5 14:32:56 smtp sshd[12516]: Invalid user pi from 134.101.159.65 Apr 5 14:32:56 smtp sshd[12521]: Invalid user pi from 134.101.159.65 Apr 5 14:32:58 smtp sshd[12521]: Failed password for invalid user pi from 134.101.159.65 port 49226 ssh2 Apr 5 14:32:58 smtp sshd[12516]: Failed password for invalid user pi from 134.101.159.65 port 49218 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.101.159.65	2020-04-06 01:38:17
103.124.92.184	attackbots	20 attempts against mh-ssh on echoip	2020-04-06 01:58:52
14.227.131.160	attack	Lines containing failures of 14.227.131.160 Apr 5 14:33:42 shared04 sshd[9501]: Invalid user admin from 14.227.131.160 port 57365 Apr 5 14:33:42 shared04 sshd[9501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.227.131.160 Apr 5 14:33:44 shared04 sshd[9501]: Failed password for invalid user admin from 14.227.131.160 port 57365 ssh2 Apr 5 14:33:45 shared04 sshd[9501]: Connection closed by invalid user admin 14.227.131.160 port 57365 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.227.131.160	2020-04-06 01:43:08
82.118.236.186	attackbotsspam	Apr 5 16:20:24 v22019038103785759 sshd\[5773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root Apr 5 16:20:26 v22019038103785759 sshd\[5773\]: Failed password for root from 82.118.236.186 port 33372 ssh2 Apr 5 16:24:17 v22019038103785759 sshd\[6025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root Apr 5 16:24:20 v22019038103785759 sshd\[6025\]: Failed password for root from 82.118.236.186 port 47038 ssh2 Apr 5 16:28:27 v22019038103785759 sshd\[6296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root ...	2020-04-06 01:28:43
45.125.65.35	attackbotsspam	Apr 5 19:42:16 srv01 postfix/smtpd\[13896\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 19:43:47 srv01 postfix/smtpd\[3962\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 19:43:58 srv01 postfix/smtpd\[19023\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 19:53:31 srv01 postfix/smtpd\[13896\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 19:53:58 srv01 postfix/smtpd\[13896\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-06 02:07:16
149.202.164.82	attackspam	Apr 5 17:33:35 OPSO sshd\[23771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 user=root Apr 5 17:33:36 OPSO sshd\[23771\]: Failed password for root from 149.202.164.82 port 58480 ssh2 Apr 5 17:37:40 OPSO sshd\[24406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 user=root Apr 5 17:37:42 OPSO sshd\[24406\]: Failed password for root from 149.202.164.82 port 40466 ssh2 Apr 5 17:41:32 OPSO sshd\[25312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 user=root	2020-04-06 01:41:05
176.109.249.200	attackbots	" "	2020-04-06 01:46:03
177.103.187.233	attackbotsspam	$f2bV_matches	2020-04-06 01:37:30
47.116.106.223	attackspambots	IDS admin	2020-04-06 01:31:51
82.165.77.241	attack	$f2bV_matches	2020-04-06 01:48:44
187.45.103.15	attackspam	Apr 5 14:21:25 IngegnereFirenze sshd[24773]: User root from 187.45.103.15 not allowed because not listed in AllowUsers ...	2020-04-06 02:08:31
54.39.147.2	attack	(sshd) Failed SSH login from 54.39.147.2 (CA/Canada/2.ip-54-39-147.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 17:06:44 ubnt-55d23 sshd[3255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.147.2 user=root Apr 5 17:06:45 ubnt-55d23 sshd[3255]: Failed password for root from 54.39.147.2 port 50555 ssh2	2020-04-06 01:34:57
163.172.230.4	attackspambots	[2020-04-05 13:28:01] NOTICE[12114][C-00001bf0] chan_sip.c: Call from '' (163.172.230.4:60178) to extension '000000000000011972592277524' rejected because extension not found in context 'public'. [2020-04-05 13:28:01] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T13:28:01.579-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000000000000011972592277524",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/60178",ACLName="no_extension_match" [2020-04-05 13:31:53] NOTICE[12114][C-00001bf3] chan_sip.c: Call from '' (163.172.230.4:55480) to extension '0000000000000011972592277524' rejected because extension not found in context 'public'. [2020-04-05 13:31:53] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T13:31:53.587-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000000000000011972592277524",SessionID="0x7f020c04b958",LocalAddress= ...	2020-04-06 01:37:52

最近上报的IP列表

91.72.173.174	91.57.25.136	83.99.203.86	78.168.214.163
54.227.36.214	47.95.112.4	41.47.184.54	31.13.206.100
14.227.89.185	14.162.186.9	2.184.208.30	2.180.98.118
2.60.190.190	201.94.213.45	197.202.53.39	195.189.248.140
194.150.254.142	192.141.39.101	191.54.54.90	190.214.27.150