45.117.0.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Shri Ganesh Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 15:45:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.117.0.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11840
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.117.0.139.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030700 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 07 15:44:55 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.0.117.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 139.0.117.45.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
71.246.108.24	attackbots	firewall-block, port(s): 8080/tcp	2020-01-01 07:14:10
121.161.254.198	attackspambots	" "	2020-01-01 07:09:06
139.198.122.76	attackspam	Automatic report - Banned IP Access	2020-01-01 07:33:14
63.143.53.138	attackbots	\[2019-12-31 18:21:54\] NOTICE\[2839\] chan_sip.c: Registration from '"3001" \' failed for '63.143.53.138:5806' - Wrong password \[2019-12-31 18:21:54\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-31T18:21:54.785-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="3001",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.53.138/5806",Challenge="22bc7f8a",ReceivedChallenge="22bc7f8a",ReceivedHash="db8a504d6cd6a58a16a8924c7af4ce70" \[2019-12-31 18:21:54\] NOTICE\[2839\] chan_sip.c: Registration from '"3001" \' failed for '63.143.53.138:5806' - Wrong password \[2019-12-31 18:21:54\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-31T18:21:54.877-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="3001",SessionID="0x7f0fb4859c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD	2020-01-01 07:33:44
92.249.127.156	attackbotsspam	1577832769 - 12/31/2019 23:52:49 Host: 92.249.127.156/92.249.127.156 Port: 445 TCP Blocked	2020-01-01 07:26:49
218.92.0.210	attackspam	Unauthorized connection attempt detected from IP address 218.92.0.210 to port 22	2020-01-01 07:24:20
103.26.40.145	attack	Invalid user info from 103.26.40.145 port 60748	2020-01-01 07:12:00
42.86.95.181	attackspam	Dec 31 23:52:57 debian-2gb-nbg1-2 kernel: \[92110.744879\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=42.86.95.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=9560 PROTO=TCP SPT=46322 DPT=23 WINDOW=45128 RES=0x00 SYN URGP=0	2020-01-01 07:19:07
112.85.42.180	attack	Dec 31 23:12:25 sshgateway sshd\[30624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root Dec 31 23:12:27 sshgateway sshd\[30624\]: Failed password for root from 112.85.42.180 port 19747 ssh2 Dec 31 23:12:40 sshgateway sshd\[30624\]: error: maximum authentication attempts exceeded for root from 112.85.42.180 port 19747 ssh2 \[preauth\]	2020-01-01 07:17:24
182.61.23.89	attackbots	Dec 31 23:53:06 dedicated sshd[9909]: Invalid user test from 182.61.23.89 port 56214 Dec 31 23:53:08 dedicated sshd[9909]: Failed password for invalid user test from 182.61.23.89 port 56214 ssh2 Dec 31 23:53:06 dedicated sshd[9909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.23.89 Dec 31 23:53:06 dedicated sshd[9909]: Invalid user test from 182.61.23.89 port 56214 Dec 31 23:53:08 dedicated sshd[9909]: Failed password for invalid user test from 182.61.23.89 port 56214 ssh2	2020-01-01 07:10:23
49.88.112.66	attack	2019-12-31T22:52:48.718477abusebot-6.cloudsearch.cf sshd[12394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root 2019-12-31T22:52:50.506109abusebot-6.cloudsearch.cf sshd[12394]: Failed password for root from 49.88.112.66 port 25402 ssh2 2019-12-31T22:52:53.112119abusebot-6.cloudsearch.cf sshd[12394]: Failed password for root from 49.88.112.66 port 25402 ssh2 2019-12-31T22:52:48.718477abusebot-6.cloudsearch.cf sshd[12394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root 2019-12-31T22:52:50.506109abusebot-6.cloudsearch.cf sshd[12394]: Failed password for root from 49.88.112.66 port 25402 ssh2 2019-12-31T22:52:53.112119abusebot-6.cloudsearch.cf sshd[12394]: Failed password for root from 49.88.112.66 port 25402 ssh2 2019-12-31T22:52:48.718477abusebot-6.cloudsearch.cf sshd[12394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ...	2020-01-01 07:12:19
165.22.182.168	attack	2019-12-31T23:03:16.089860shield sshd\[10898\]: Invalid user mysql from 165.22.182.168 port 54506 2019-12-31T23:03:16.094670shield sshd\[10898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.182.168 2019-12-31T23:03:17.761891shield sshd\[10898\]: Failed password for invalid user mysql from 165.22.182.168 port 54506 ssh2 2019-12-31T23:05:46.465168shield sshd\[11849\]: Invalid user villoria from 165.22.182.168 port 56944 2019-12-31T23:05:46.470067shield sshd\[11849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.182.168	2020-01-01 07:18:25
165.22.125.61	attack	$f2bV_matches	2020-01-01 07:00:43
165.22.51.236	attackbotsspam	Dec 31 23:53:06 MK-Soft-VM4 sshd[31933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.51.236 Dec 31 23:53:07 MK-Soft-VM4 sshd[31933]: Failed password for invalid user teamspeak from 165.22.51.236 port 40606 ssh2 ...	2020-01-01 07:10:42
92.116.138.74	attackbotsspam	Fail2Ban	2020-01-01 07:22:33

最近上报的IP列表

64.225.25.157	219.73.92.118	64.225.19.194	124.79.159.171
118.215.76.180	125.165.147.117	46.21.54.118	179.232.13.179
77.181.55.84	125.214.57.240	189.28.189.13	182.23.38.162
61.73.161.139	185.141.36.131	82.102.69.7	179.186.211.208
167.86.79.156	80.27.67.64	112.248.114.126	177.128.120.113