220.70.146.97 - IPInfo

基本信息:

城市(city): Guri-si

省份(region): Gyeonggi-do

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.70.146.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52726
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;220.70.146.97.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 17 19:44:01 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 97.146.70.220.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.146.70.220.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.136.130.55	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-10 03:11:55
185.176.27.170	attack	Jan 9 18:27:37 mail kernel: [9970947.734463] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.170 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=47820 PROTO=TCP SPT=45121 DPT=57991 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 9 18:30:51 mail kernel: [9971142.003746] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.170 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=63121 PROTO=TCP SPT=45121 DPT=15402 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 9 18:32:08 mail kernel: [9971218.897765] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.170 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=16584 PROTO=TCP SPT=45121 DPT=29347 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 9 18:34:44 mail kernel: [9971374.600398] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.176.27.170 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=9529 PROTO=TCP SPT=45121 DPT=26885 WINDOW=1024 RES=0x	2020-01-10 02:43:20
202.126.208.122	attackbots	Dec 1 22:21:45 odroid64 sshd\[21002\]: User root from 202.126.208.122 not allowed because not listed in AllowUsers Dec 1 22:21:45 odroid64 sshd\[21002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.126.208.122 user=root ...	2020-01-10 03:15:57
188.165.130.148	attackspambots	xmlrpc attack	2020-01-10 03:09:28
171.4.242.240	attack	Jan 9 18:41:49 icecube sshd[51730]: Invalid user admin from 171.4.242.240 port 59650 Jan 9 18:41:49 icecube sshd[51730]: Failed password for invalid user admin from 171.4.242.240 port 59650 ssh2	2020-01-10 03:09:50
35.159.40.89	attack	US_Amazon A100_<177>1578574999 [1:2403332:54498] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 17 [Classification: Misc Attack] [Priority: 2] {TCP} 35.159.40.89:45154	2020-01-10 03:11:32
95.107.107.151	attack	Telnet/23 Probe, Scan, BF, Hack -	2020-01-10 03:03:28
92.118.38.56	attackspambots	Jan 9 20:03:10 vmanager6029 postfix/smtpd\[9020\]: warning: unknown\[92.118.38.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 20:03:42 vmanager6029 postfix/smtpd\[9020\]: warning: unknown\[92.118.38.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-01-10 03:16:59
125.212.159.144	attack	Lines containing failures of 125.212.159.144 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.212.159.144	2020-01-10 02:52:49
102.40.118.177	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 02:56:02
115.75.223.89	attackbots	1578574996 - 01/09/2020 14:03:16 Host: 115.75.223.89/115.75.223.89 Port: 445 TCP Blocked	2020-01-10 03:13:25
193.11.91.42	attackspam	Jan 9 13:38:25 v26 sshd[23200]: Did not receive identification string from 193.11.91.42 port 36212 Jan 9 13:38:25 v26 sshd[23202]: Did not receive identification string from 193.11.91.42 port 54530 Jan 9 13:38:42 v26 sshd[23229]: Invalid user akari from 193.11.91.42 port 45068 Jan 9 13:38:42 v26 sshd[23228]: Invalid user akari from 193.11.91.42 port 40052 Jan 9 13:38:43 v26 sshd[23228]: Failed password for invalid user akari from 193.11.91.42 port 40052 ssh2 Jan 9 13:38:43 v26 sshd[23228]: Received disconnect from 193.11.91.42 port 40052:11: Bye Bye [preauth] Jan 9 13:38:43 v26 sshd[23228]: Disconnected from 193.11.91.42 port 40052 [preauth] Jan 9 13:38:43 v26 sshd[23229]: Failed password for invalid user akari from 193.11.91.42 port 45068 ssh2 Jan 9 13:38:43 v26 sshd[23229]: Received disconnect from 193.11.91.42 port 45068:11: Bye Bye [preauth] Jan 9 13:38:43 v26 sshd[23229]: Disconnected from 193.11.91.42 port 45068 [preauth] Jan 9 13:38:57 v26 sshd[23274]:........ -------------------------------	2020-01-10 02:45:04
113.236.123.104	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 03:02:29
45.55.157.147	attackbots	Oct 25 17:35:32 odroid64 sshd\[4570\]: Invalid user admin from 45.55.157.147 Oct 25 17:35:32 odroid64 sshd\[4570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.147 Nov 11 17:43:10 odroid64 sshd\[5477\]: User ftp from 45.55.157.147 not allowed because not listed in AllowUsers Nov 11 17:43:10 odroid64 sshd\[5477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.147 user=ftp Nov 24 08:24:17 odroid64 sshd\[23538\]: Invalid user ftpuser from 45.55.157.147 Nov 24 08:24:17 odroid64 sshd\[23538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.147 ...	2020-01-10 03:12:54
14.243.65.193	attack	Lines containing failures of 14.243.65.193 Jan 9 13:49:59 shared07 sshd[8043]: Invalid user admin from 14.243.65.193 port 59050 Jan 9 13:49:59 shared07 sshd[8043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.243.65.193 Jan 9 13:50:01 shared07 sshd[8043]: Failed password for invalid user admin from 14.243.65.193 port 59050 ssh2 Jan 9 13:50:01 shared07 sshd[8043]: Connection closed by invalid user admin 14.243.65.193 port 59050 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.243.65.193	2020-01-10 03:15:34

最近上报的IP列表

100.148.110.70	16.215.227.145	144.186.255.129	65.130.33.43
90.208.183.133	58.22.255.203	1.121.205.73	248.121.161.137
252.161.3.101	147.3.230.158	95.121.100.36	123.220.179.2
254.43.78.28	21.253.163.137	200.84.242.166	197.227.6.129
171.51.178.55	245.107.182.46	0.45.27.26	46.122.250.48