201.164.44.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Mexico

运营商(isp): Mega Cable S.A. de C.V.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	1598356782 - 08/25/2020 13:59:42 Host: 201.164.44.130/201.164.44.130 Port: 445 TCP Blocked	2020-08-25 21:09:21
attack	unauthorized connection attempt	2020-01-28 18:01:37
attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:24.	2019-10-29 00:23:03

类型

评论内容

时间

attackbots

1598356782 - 08/25/2020 13:59:42 Host: 201.164.44.130/201.164.44.130 Port: 445 TCP Blocked

2020-08-25 21:09:21

attack

unauthorized connection attempt

2020-01-28 18:01:37

attackspambots

Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:24.

2019-10-29 00:23:03

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.164.44.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33830
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.164.44.130.			IN	A

;; AUTHORITY SECTION:
.			351	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 00:22:56 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

130.44.164.201.in-addr.arpa domain name pointer customer-MCA-SMAL-44-130.megared.net.mx.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.44.164.201.in-addr.arpa	name = customer-MCA-SMAL-44-130.megared.net.mx.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
107.170.192.131	attack	Jun 14 15:24:12 inter-technics sshd[16134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.192.131 user=root Jun 14 15:24:14 inter-technics sshd[16134]: Failed password for root from 107.170.192.131 port 52111 ssh2 Jun 14 15:31:03 inter-technics sshd[16431]: Invalid user chucky from 107.170.192.131 port 53020 Jun 14 15:31:03 inter-technics sshd[16431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.192.131 Jun 14 15:31:03 inter-technics sshd[16431]: Invalid user chucky from 107.170.192.131 port 53020 Jun 14 15:31:04 inter-technics sshd[16431]: Failed password for invalid user chucky from 107.170.192.131 port 53020 ssh2 ...	2020-06-14 21:33:37
27.78.14.83	attackbots	Jun 14 15:07:16 abendstille sshd\[10078\]: Invalid user 123 from 27.78.14.83 Jun 14 15:07:17 abendstille sshd\[10078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.78.14.83 Jun 14 15:07:19 abendstille sshd\[10078\]: Failed password for invalid user 123 from 27.78.14.83 port 57984 ssh2 Jun 14 15:09:37 abendstille sshd\[12586\]: Invalid user 123abcd from 27.78.14.83 Jun 14 15:09:39 abendstille sshd\[12586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.78.14.83 ...	2020-06-14 21:10:47
212.64.7.134	attackbots	Jun 14 15:19:24 srv-ubuntu-dev3 sshd[108550]: Invalid user zhaohao from 212.64.7.134 Jun 14 15:19:24 srv-ubuntu-dev3 sshd[108550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 Jun 14 15:19:24 srv-ubuntu-dev3 sshd[108550]: Invalid user zhaohao from 212.64.7.134 Jun 14 15:19:26 srv-ubuntu-dev3 sshd[108550]: Failed password for invalid user zhaohao from 212.64.7.134 port 35010 ssh2 Jun 14 15:21:27 srv-ubuntu-dev3 sshd[108967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 user=root Jun 14 15:21:29 srv-ubuntu-dev3 sshd[108967]: Failed password for root from 212.64.7.134 port 55292 ssh2 Jun 14 15:23:30 srv-ubuntu-dev3 sshd[109338]: Invalid user hzha from 212.64.7.134 Jun 14 15:23:30 srv-ubuntu-dev3 sshd[109338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 Jun 14 15:23:30 srv-ubuntu-dev3 sshd[109338]: Invalid user hzha from 2 ...	2020-06-14 21:32:38
94.73.199.57	attackbots	DATE:2020-06-14 14:50:20, IP:94.73.199.57, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-06-14 21:45:59
170.130.7.171	attackspam	From: "Zgliniec, Emily" To: "noreply@dd.dd" Subject: Re: Thread-Topic: Re: Thread-Index: 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 Date: Sun, 14 Jun 2020 09:13:19 +0000 Message-ID: <86181a5adbec4892ae8973e429461cba@DOEXCHMBX1.ad.venturausd.org> Reply-To: "pernilleerenbjerg@hotmail.com" Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [170.130.7.171]	2020-06-14 21:12:57
104.236.100.42	attackspambots	104.236.100.42 - - [14/Jun/2020:14:50:19 +0200] "GET /wp-login.php HTTP/1.1" 200 6433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [14/Jun/2020:14:50:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [14/Jun/2020:14:50:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-14 21:40:27
124.127.132.22	attackbots	Jun 14 13:18:00 rush sshd[1175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.132.22 Jun 14 13:18:02 rush sshd[1175]: Failed password for invalid user ftpuser from 124.127.132.22 port 8567 ssh2 Jun 14 13:21:59 rush sshd[1254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.132.22 ...	2020-06-14 21:25:40
54.38.53.251	attackbots	Jun 14 15:03:44 PorscheCustomer sshd[32622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.53.251 Jun 14 15:03:46 PorscheCustomer sshd[32622]: Failed password for invalid user davis from 54.38.53.251 port 45790 ssh2 Jun 14 15:07:08 PorscheCustomer sshd[32737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.53.251 ...	2020-06-14 21:10:18
45.143.221.53	attackbots	[MK-VM4] Blocked by UFW	2020-06-14 21:27:47
139.199.30.155	attackbotsspam	Jun 14 19:44:15 itv-usvr-01 sshd[26970]: Invalid user finebox from 139.199.30.155 Jun 14 19:44:15 itv-usvr-01 sshd[26970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.30.155 Jun 14 19:44:15 itv-usvr-01 sshd[26970]: Invalid user finebox from 139.199.30.155 Jun 14 19:44:17 itv-usvr-01 sshd[26970]: Failed password for invalid user finebox from 139.199.30.155 port 45758 ssh2 Jun 14 19:50:52 itv-usvr-01 sshd[27237]: Invalid user reply from 139.199.30.155	2020-06-14 21:17:02
113.190.253.147	attackspambots	2020-06-14T15:15:56.007990sd-86998 sshd[35198]: Invalid user hadoop from 113.190.253.147 port 52722 2020-06-14T15:15:56.013301sd-86998 sshd[35198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.253.147 2020-06-14T15:15:56.007990sd-86998 sshd[35198]: Invalid user hadoop from 113.190.253.147 port 52722 2020-06-14T15:15:57.899174sd-86998 sshd[35198]: Failed password for invalid user hadoop from 113.190.253.147 port 52722 ssh2 2020-06-14T15:19:49.625517sd-86998 sshd[35628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.253.147 user=root 2020-06-14T15:19:51.496657sd-86998 sshd[35628]: Failed password for root from 113.190.253.147 port 31108 ssh2 ...	2020-06-14 21:26:10
104.248.224.124	attackbots	xmlrpc attack	2020-06-14 21:24:51
222.186.175.163	attackbots	Jun 14 15:03:12 vmd48417 sshd[31064]: Failed password for root from 222.186.175.163 port 64132 ssh2	2020-06-14 21:05:47
184.105.247.216	attack	firewall-block, port(s): 389/udp	2020-06-14 21:41:48
188.195.136.201	attack	Jun 14 14:50:20 mail sshd[14173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.195.136.201 Jun 14 14:50:22 mail sshd[14173]: Failed password for invalid user minecraft from 188.195.136.201 port 39516 ssh2 ...	2020-06-14 21:41:18

最近上报的IP列表

121.121.104.82	117.245.137.9	106.201.30.39	201.186.65.92
100.223.134.63	106.200.171.62	219.78.58.206	203.101.174.9
186.24.50.166	136.232.11.10	177.129.48.34	182.75.54.26
177.128.42.122	2600:3c00::f03c:92ff:fedb:4563	141.98.80.119	176.99.68.26
175.170.222.163	182.61.25.65	121.121.98.230	76.186.252.189