5.142.145.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.142.145.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10569
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.142.145.196.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:00:49 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

196.145.142.5.in-addr.arpa domain name pointer 196-145-142-5.baltnet.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.145.142.5.in-addr.arpa	name = 196-145-142-5.baltnet.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
151.80.203.32	attackspambots	Jul 5 18:58:15 twattle sshd[6503]: Did not receive identification stri= ng from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Invalid user t from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:00:25 twattle sshd[6912]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:01:22 twattle sshd[6914]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:03 twattle sshd[6917]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:46 twattle sshd[6919]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:03:42 twattle sshd[6921]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:04:24 twattle sshd[6923]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:03 twattle sshd[7315]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:46 twa........ -------------------------------	2019-07-06 04:37:54
87.121.98.244	attackspambots	Fri 05 13:21:19 34567/tcp	2019-07-06 04:51:11
190.206.118.118	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:14:25,547 INFO [shellcode_manager] (190.206.118.118) no match, writing hexdump (c299596e143a67cf28a1af529272044e :2279447) - MS17010 (EternalBlue)	2019-07-06 04:19:51
185.176.27.102	attackspam	05.07.2019 18:07:52 Connection to port 17481 blocked by firewall	2019-07-06 04:04:36
150.107.92.100	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-06 04:09:12
14.182.233.145	attackspambots	Autoban 14.182.233.145 AUTH/CONNECT	2019-07-06 04:39:29
180.117.111.120	attackspambots	Jul 5 19:44:13 rb06 sshd[16740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.111.120 user=r.r Jul 5 19:44:15 rb06 sshd[16745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.111.120 user=r.r Jul 5 19:44:15 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2 Jul 5 19:44:16 rb06 sshd[16745]: Failed password for r.r from 180.117.111.120 port 47752 ssh2 Jul 5 19:44:17 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2 Jul 5 19:44:18 rb06 sshd[16745]: Failed password for r.r from 180.117.111.120 port 47752 ssh2 Jul 5 19:44:20 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2 Jul 5 19:44:20 rb06 sshd[16740]: Disconnecting: Too many authentication failures for r.r from 180.117.111.120 port 47744 ssh2 [preauth] Jul 5 19:44:20 rb06 sshd[16740]: PAM 2 more authentication failures; lognam........ -------------------------------	2019-07-06 04:50:39
189.213.129.185	attack	Honeypot attack, port: 23, PTR: static-189-213-129-185.axtel.net.	2019-07-06 04:06:53
200.207.63.165	attack	Jul 5 14:53:18 server6 sshd[26308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-207-63-165.dsl.telesp.net.br Jul 5 14:53:20 server6 sshd[26308]: Failed password for invalid user audrey from 200.207.63.165 port 40796 ssh2 Jul 5 14:53:20 server6 sshd[26308]: Received disconnect from 200.207.63.165: 11: Bye Bye [preauth] Jul 5 18:07:22 server6 sshd[31679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-207-63-165.dsl.telesp.net.br Jul 5 18:07:25 server6 sshd[31679]: Failed password for invalid user web1 from 200.207.63.165 port 52717 ssh2 Jul 5 18:07:25 server6 sshd[31679]: Received disconnect from 200.207.63.165: 11: Bye Bye [preauth] Jul 5 18:10:04 server6 sshd[1834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-207-63-165.dsl.telesp.net.br Jul 5 18:10:06 server6 sshd[1834]: Failed password for invalid user admin from 200.207........ -------------------------------	2019-07-06 04:10:55
123.140.114.252	attackspam	SSH Bruteforce Attack	2019-07-06 04:18:23
103.17.98.238	attack	Jul 5 19:42:34 pl1server postfix/smtpd[2460]: connect from unknown[103.17.98.238] Jul 5 19:42:37 pl1server postfix/smtpd[2460]: warning: unknown[103.17.98.238]: SASL CRAM-MD5 authentication failed: authentication failure Jul 5 19:42:37 pl1server postfix/smtpd[2460]: warning: unknown[103.17.98.238]: SASL PLAIN authentication failed: authentication failure Jul 5 19:42:38 pl1server postfix/smtpd[2460]: warning: unknown[103.17.98.238]: SASL LOGIN authentication failed: authentication failure Jul 5 19:42:39 pl1server postfix/smtpd[2460]: disconnect from unknown[103.17.98.238] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.17.98.238	2019-07-06 04:46:31
109.156.208.142	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:14:29,402 INFO [shellcode_manager] (109.156.208.142) no match, writing hexdump (ab1436d75e66263f2e05152a6cfe922b :2388938) - MS17010 (EternalBlue)	2019-07-06 04:14:14
89.110.48.143	attackbots	Brute force attempt	2019-07-06 04:04:53
88.88.193.230	attackbotsspam	2019-07-05T19:45:59.014982abusebot-5.cloudsearch.cf sshd\[7149\]: Invalid user alfreda from 88.88.193.230 port 49083	2019-07-06 04:27:15
193.188.22.12	attackspam	Jul 5 22:41:37 nginx sshd[58822]: Connection from 193.188.22.12 port 19386 on 10.23.102.80 port 22 Jul 5 22:41:39 nginx sshd[58822]: Invalid user eclipse from 193.188.22.12	2019-07-06 04:44:14

最近上报的IP列表

222.248.36.3	183.197.153.229	86.62.191.194	119.237.192.131
61.0.104.125	167.94.145.94	23.90.160.149	45.10.165.196
178.95.136.161	222.121.223.177	58.8.85.5	54.152.136.30
5.183.255.11	138.185.143.96	182.100.14.240	120.25.148.36
93.117.25.199	178.93.63.57	58.252.202.10	103.139.171.122