58.64.155.142 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): NWT IDC Data Service

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	445/tcp 445/tcp [2020-10-04]2pkt	2020-10-06 05:20:14
attackspam	445/tcp 445/tcp [2020-10-04]2pkt	2020-10-05 21:24:41
attackspambots	445/tcp 445/tcp [2020-10-04]2pkt	2020-10-05 13:16:51

相同子网IP讨论:

IP	类型	评论内容	时间
58.64.155.101	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-20 05:18:39
58.64.155.107	attackspambots	SIP/5060 Probe, BF, Hack -	2020-01-24 22:09:56
58.64.155.119	attack	Port 1433 Scan	2019-10-10 06:29:57
58.64.155.107	attackbots	19/8/1@19:20:53: FAIL: Alarm-Intrusion address from=58.64.155.107 ...	2019-08-02 11:16:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.64.155.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53357
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.64.155.142.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100401 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 05 13:16:49 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 142.155.64.58.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.155.64.58.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.38.144.32	attack	Dec 02 00:35:18 auth: Info: passwd-file(virt2@djejm.de,46.38.144.32): unknown user Dec 02 00:36:35 auth: Info: passwd-file(leonardo@djejm.de,46.38.144.32): unknown user Dec 02 00:37:46 auth: Info: passwd-file(webtv@djejm.de,46.38.144.32): unknown user Dec 02 00:39:03 auth: Info: passwd-file(demo17@djejm.de,46.38.144.32): unknown user Dec 02 00:40:15 auth: Info: passwd-file(dag@djejm.de,46.38.144.32): unknown user	2019-12-02 07:47:41
177.125.164.225	attackspambots	Dec 2 00:37:48 OPSO sshd\[11844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 user=root Dec 2 00:37:51 OPSO sshd\[11844\]: Failed password for root from 177.125.164.225 port 36796 ssh2 Dec 2 00:44:48 OPSO sshd\[14195\]: Invalid user voz from 177.125.164.225 port 48680 Dec 2 00:44:48 OPSO sshd\[14195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 Dec 2 00:44:51 OPSO sshd\[14195\]: Failed password for invalid user voz from 177.125.164.225 port 48680 ssh2	2019-12-02 08:04:51
118.126.112.72	attack	Dec 1 23:49:40 lnxweb61 sshd[2983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.112.72	2019-12-02 08:01:43
106.13.53.16	attackspambots	2019-12-02T00:00:11.101188abusebot-4.cloudsearch.cf sshd\[9771\]: Invalid user bruce from 106.13.53.16 port 58606	2019-12-02 08:02:16
119.254.155.187	attack	Dec 2 00:00:37 venus sshd\[16453\]: Invalid user pass1234567 from 119.254.155.187 port 33154 Dec 2 00:00:37 venus sshd\[16453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.254.155.187 Dec 2 00:00:39 venus sshd\[16453\]: Failed password for invalid user pass1234567 from 119.254.155.187 port 33154 ssh2 ...	2019-12-02 08:07:23
125.64.94.221	attack	firewall-block, port(s): 7/tcp	2019-12-02 07:54:21
198.211.122.197	attack	2019-12-01T23:15:37.614930shield sshd\[3316\]: Invalid user gabriell from 198.211.122.197 port 36632 2019-12-01T23:15:37.619164shield sshd\[3316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.122.197 2019-12-01T23:15:39.222643shield sshd\[3316\]: Failed password for invalid user gabriell from 198.211.122.197 port 36632 ssh2 2019-12-01T23:18:33.168030shield sshd\[3666\]: Invalid user uptime from 198.211.122.197 port 41600 2019-12-01T23:18:33.171117shield sshd\[3666\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.122.197	2019-12-02 07:32:57
206.189.72.217	attackspam	Dec 1 13:16:53 hanapaa sshd\[17357\]: Invalid user dbus from 206.189.72.217 Dec 1 13:16:53 hanapaa sshd\[17357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tasked.me Dec 1 13:16:55 hanapaa sshd\[17357\]: Failed password for invalid user dbus from 206.189.72.217 port 39104 ssh2 Dec 1 13:22:14 hanapaa sshd\[17880\]: Invalid user husin from 206.189.72.217 Dec 1 13:22:14 hanapaa sshd\[17880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tasked.me	2019-12-02 07:34:32
82.200.226.226	attackspam	F2B jail: sshd. Time: 2019-12-02 00:49:09, Reported by: VKReport	2019-12-02 08:04:39
45.232.73.41	attackbots	port scan/probe/communication attempt; port 23	2019-12-02 07:38:51
165.22.78.222	attackspam	Dec 2 00:54:17 MK-Soft-VM3 sshd[27091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.222 Dec 2 00:54:19 MK-Soft-VM3 sshd[27091]: Failed password for invalid user mysql from 165.22.78.222 port 46920 ssh2 ...	2019-12-02 07:59:43
194.135.90.37	attackbots	SMTP/25/465/587 Probe, BadAuth, SPAM, Hack -	2019-12-02 07:40:05
162.243.164.26	attackbotsspam	Dec 2 01:27:14 sauna sshd[160964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.164.26 Dec 2 01:27:15 sauna sshd[160964]: Failed password for invalid user techsupport from 162.243.164.26 port 55114 ssh2 ...	2019-12-02 07:32:14
119.123.220.134	attack	Unauthorised access (Dec 2) SRC=119.123.220.134 LEN=44 TTL=241 ID=24605 TCP DPT=445 WINDOW=1024 SYN	2019-12-02 08:05:46
106.12.116.185	attack	Dec 2 00:02:38 eventyay sshd[12445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.116.185 Dec 2 00:02:40 eventyay sshd[12445]: Failed password for invalid user izerable from 106.12.116.185 port 33998 ssh2 Dec 2 00:08:50 eventyay sshd[12690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.116.185 ...	2019-12-02 07:31:35

最近上报的IP列表

197.39.50.128	43.230.199.66	201.14.34.47	154.0.27.151
121.179.151.188	112.72.128.57	104.66.13.181	84.170.74.181
162.226.104.68	191.97.78.22	195.143.227.131	46.40.32.110
33.155.139.83	116.86.220.134	45.4.107.96	129.28.157.166
78.87.176.42	145.163.190.64	197.240.53.2	202.199.29.223