218.144.135.77

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	firewall-block, port(s): 3389/tcp	2019-10-15 23:55:17

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.144.135.77
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16778
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.144.135.77.			IN	A

;; AUTHORITY SECTION:
.			1864	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052902 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 30 03:40:17 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 77.135.144.218.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 77.135.144.218.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
192.185.130.216	attack	192.185.130.216 - - [03/Oct/2019:19:28:23 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.185.130.216 - - [03/Oct/2019:19:28:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.185.130.216 - - [03/Oct/2019:19:28:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.185.130.216 - - [03/Oct/2019:19:28:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1507 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.185.130.216 - - [03/Oct/2019:19:28:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.185.130.216 - - [03/Oct/2019:19:28:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-10-04 02:36:04
173.20.238.231	attack	Automated reporting of SSH Vulnerability scanning	2019-10-04 02:58:41
95.172.68.56	attack	ICMP MP Probe, Scan -	2019-10-04 03:04:52
213.32.67.160	attack	Oct 3 14:23:10 srv206 sshd[31944]: Invalid user yo from 213.32.67.160 ...	2019-10-04 02:38:20
95.172.79.220	attackspambots	ICMP MP Probe, Scan -	2019-10-04 02:53:33
95.85.48.19	attackspam	ICMP MP Probe, Scan -	2019-10-04 02:39:28
185.156.1.99	attackbotsspam	Oct 3 14:59:44 xtremcommunity sshd\[149416\]: Invalid user ftpuser1 from 185.156.1.99 port 40855 Oct 3 14:59:44 xtremcommunity sshd\[149416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.156.1.99 Oct 3 14:59:47 xtremcommunity sshd\[149416\]: Failed password for invalid user ftpuser1 from 185.156.1.99 port 40855 ssh2 Oct 3 15:04:09 xtremcommunity sshd\[149537\]: Invalid user robert from 185.156.1.99 port 32991 Oct 3 15:04:09 xtremcommunity sshd\[149537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.156.1.99 ...	2019-10-04 03:05:34
58.56.140.62	attackspambots	(sshd) Failed SSH login from 58.56.140.62 (-): 5 in the last 3600 secs	2019-10-04 02:59:44
95.172.68.64	attackbots	ICMP MP Probe, Scan -	2019-10-04 02:58:07
138.197.195.52	attack	Oct 3 14:01:18 xtremcommunity sshd\[147856\]: Invalid user duser from 138.197.195.52 port 54718 Oct 3 14:01:18 xtremcommunity sshd\[147856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 Oct 3 14:01:21 xtremcommunity sshd\[147856\]: Failed password for invalid user duser from 138.197.195.52 port 54718 ssh2 Oct 3 14:05:36 xtremcommunity sshd\[147978\]: Invalid user eloa123 from 138.197.195.52 port 39190 Oct 3 14:05:36 xtremcommunity sshd\[147978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 ...	2019-10-04 02:26:05
95.172.68.62	attackspam	ICMP MP Probe, Scan -	2019-10-04 03:02:02
189.7.25.34	attackbots	Oct 3 19:49:13 DAAP sshd[31716]: Invalid user ftpuser from 189.7.25.34 port 56912 Oct 3 19:49:13 DAAP sshd[31716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.25.34 Oct 3 19:49:13 DAAP sshd[31716]: Invalid user ftpuser from 189.7.25.34 port 56912 Oct 3 19:49:15 DAAP sshd[31716]: Failed password for invalid user ftpuser from 189.7.25.34 port 56912 ssh2 Oct 3 19:54:54 DAAP sshd[31768]: Invalid user xbot_premium from 189.7.25.34 port 49161 ...	2019-10-04 02:26:57
45.136.109.199	attackbots	10/03/2019-13:41:59.424376 45.136.109.199 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-04 02:46:36
202.213.5.11	attackspam	Oct 3 16:30:53 mail kernel: [1496786.392118] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=202.213.5.11 DST=185.101.93.72 LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=38095 DF PROTO=TCP SPT=53790 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 16:30:55 mail kernel: [1496788.038438] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=202.213.5.11 DST=185.101.93.72 LEN=40 TOS=0x08 PREC=0x20 TTL=65 ID=26929 DF PROTO=TCP SPT=53882 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 16:31:03 mail kernel: [1496796.532719] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=202.213.5.11 DST=185.101.93.72 LEN=40 TOS=0x08 PREC=0x20 TTL=55 ID=18569 DF PROTO=TCP SPT=50275 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 16:31:13 mail kernel: [1496806.445088] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=202.213.5.11 DST=185.101.93.72 LEN=40 TOS=0x08 PREC=0x20 TTL=67 ID=59619 DF PROTO=TCP SPT=50667 DPT=80 WINDOW=29200 RES=0x00 SY	2019-10-04 02:33:21
151.80.45.126	attackbotsspam	Sep 29 23:50:19 h2022099 sshd[28396]: Invalid user simon from 151.80.45.126 Sep 29 23:50:21 h2022099 sshd[28396]: Failed password for invalid user simon from 151.80.45.126 port 56728 ssh2 Sep 29 23:50:21 h2022099 sshd[28396]: Received disconnect from 151.80.45.126: 11: Bye Bye [preauth] Sep 30 00:05:37 h2022099 sshd[30720]: Invalid user rz from 151.80.45.126 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=151.80.45.126	2019-10-04 02:39:10

最近上报的IP列表

160.32.125.132	143.20.37.255	103.84.57.62	173.112.166.244
14.186.166.33	142.103.221.12	63.90.173.142	94.73.144.45
37.127.102.184	129.131.119.194	168.43.79.215	61.133.121.62
220.107.44.72	177.67.38.131	132.113.22.178	215.156.172.171
194.7.145.245	208.242.224.10	39.184.145.75	161.144.136.12