5.112.16.142 - IPInfo

基本信息:

城市(city): Tehran

省份(region): Tehrān

国家(country): Iran (ISLAMIC Republic Of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
5.112.161.16	attackspam	1583358743 - 03/04/2020 22:52:23 Host: 5.112.161.16/5.112.161.16 Port: 445 TCP Blocked	2020-03-05 07:35:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.112.16.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.112.16.142.			IN	A

;; AUTHORITY SECTION:
.			269	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090200 1800 900 604800 86400

;; Query time: 466 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 02 21:08:39 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 142.16.112.5.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.16.112.5.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
137.74.132.171	attackspambots	Apr 23 18:33:47 sip sshd[9534]: Failed password for root from 137.74.132.171 port 45012 ssh2 Apr 23 18:38:38 sip sshd[11361]: Failed password for root from 137.74.132.171 port 40972 ssh2	2020-04-24 05:08:38
106.12.83.146	attackspambots	Apr 23 16:38:08 124388 sshd[3437]: Failed password for invalid user oo from 106.12.83.146 port 60420 ssh2 Apr 23 16:41:59 124388 sshd[3532]: Invalid user ftpuser from 106.12.83.146 port 47484 Apr 23 16:41:59 124388 sshd[3532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.146 Apr 23 16:41:59 124388 sshd[3532]: Invalid user ftpuser from 106.12.83.146 port 47484 Apr 23 16:42:00 124388 sshd[3532]: Failed password for invalid user ftpuser from 106.12.83.146 port 47484 ssh2	2020-04-24 04:59:51
49.233.192.145	attackspambots	Lines containing failures of 49.233.192.145 Apr 23 17:23:26 install sshd[6709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.192.145 user=r.r Apr 23 17:23:28 install sshd[6709]: Failed password for r.r from 49.233.192.145 port 40748 ssh2 Apr 23 17:23:28 install sshd[6709]: Received disconnect from 49.233.192.145 port 40748:11: Bye Bye [preauth] Apr 23 17:23:28 install sshd[6709]: Disconnected from authenticating user r.r 49.233.192.145 port 40748 [preauth] Apr 23 17:36:32 install sshd[8488]: Invalid user mf from 49.233.192.145 port 41376 Apr 23 17:36:32 install sshd[8488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.192.145 Apr 23 17:36:35 install sshd[8488]: Failed password for invalid user mf from 49.233.192.145 port 41376 ssh2 Apr 23 17:36:35 install sshd[8488]: Received disconnect from 49.233.192.145 port 41376:11: Bye Bye [preauth] Apr 23 17:36:35 install sshd[8488]........ ------------------------------	2020-04-24 04:55:22
52.232.65.108	attackbotsspam	RDP Bruteforce	2020-04-24 05:12:43
222.186.173.215	attack	Apr 23 23:11:42 * sshd[11042]: Failed password for root from 222.186.173.215 port 21678 ssh2 Apr 23 23:11:56 * sshd[11042]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 21678 ssh2 [preauth]	2020-04-24 05:17:18
129.211.22.55	attack	SSH Brute-Force Attack	2020-04-24 05:02:03
103.56.197.178	attack	Apr 23 23:10:18 minden010 sshd[27921]: Failed password for root from 103.56.197.178 port 4783 ssh2 Apr 23 23:13:52 minden010 sshd[29064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.197.178 Apr 23 23:13:54 minden010 sshd[29064]: Failed password for invalid user cp from 103.56.197.178 port 59526 ssh2 ...	2020-04-24 05:20:24
159.138.65.35	attack	SSH/22 MH Probe, BF, Hack -	2020-04-24 05:28:55
51.178.51.152	attack	$f2bV_matches	2020-04-24 05:19:57
119.29.13.114	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-24 05:13:18
104.206.128.26	attackbots	nft/Honeypot/1121/38cdf	2020-04-24 04:57:13
185.53.88.102	attackspambots	185.53.88.102 was recorded 7 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 26, 484	2020-04-24 05:08:06
68.236.122.177	attackbotsspam	Apr 22 22:58:04 main sshd[12877]: Failed password for invalid user dq from 68.236.122.177 port 38948 ssh2 Apr 22 23:04:32 main sshd[13021]: Failed password for invalid user max from 68.236.122.177 port 52792 ssh2 Apr 22 23:10:56 main sshd[13253]: Failed password for invalid user ec from 68.236.122.177 port 38402 ssh2 Apr 22 23:17:15 main sshd[13399]: Failed password for invalid user oz from 68.236.122.177 port 52244 ssh2 Apr 22 23:48:44 main sshd[14028]: Failed password for invalid user test from 68.236.122.177 port 36688 ssh2 Apr 23 00:01:16 main sshd[14239]: Failed password for invalid user lj from 68.236.122.177 port 36130 ssh2 Apr 23 00:07:41 main sshd[14316]: Failed password for invalid user ia from 68.236.122.177 port 49964 ssh2 Apr 23 00:20:13 main sshd[14562]: Failed password for invalid user admin from 68.236.122.177 port 49404 ssh2 Apr 23 00:32:38 main sshd[14769]: Failed password for invalid user ks from 68.236.122.177 port 48830 ssh2	2020-04-24 05:09:36
191.10.170.201	attack	Apr 23 18:22:10 * sshd[22839]: reveeclipse mapping checking getaddrinfo for 191-10-170-201.user.vivozap.com.br [191.10.170.201] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 23 18:22:10 * sshd[22839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.10.170.201 user=r.r Apr 23 18:22:12 * sshd[22839]: Failed password for r.r from 191.10.170.201 port 21826 ssh2 Apr 23 18:22:12 * sshd[22839]: Received disconnect from 191.10.170.201: 11: Bye Bye [preauth] Apr 23 18:22:14 * sshd[22867]: reveeclipse mapping checking getaddrinfo for 191-10-170-201.user.vivozap.com.br [191.10.170.201] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 23 18:22:15 * sshd[22867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.10.170.201 user=r.r Apr 23 18:22:16 * sshd[22867]: Failed password for r.r from 191.10.170.201 port 21827 ssh2 Apr 23 18:22:16 * sshd[22867]: Received disconnect from 191.10.170.201: 11: ........ -------------------------------	2020-04-24 05:14:59
209.212.145.194	attackbotsspam	RDP Bruteforce	2020-04-24 05:05:19

最近上报的IP列表

42.147.65.178	123.98.111.245	108.165.252.10	108.30.117.77
45.136.147.19	79.203.195.241	188.182.209.18	16.34.82.115
80.76.172.182	111.143.69.237	210.182.172.116	161.220.249.187
45.6.194.33	23.161.250.48	187.96.244.74	58.212.76.50
100.40.180.35	214.94.223.237	1.79.146.38	46.184.5.228