61.94.142.183 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Telekomunikasi Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 61.94.142.183 on Port 445(SMB)	2019-11-01 19:53:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.94.142.183
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1752
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.94.142.183.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110100 1800 900 604800 86400

;; Query time: 305 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 19:53:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 183.142.94.61.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 183.142.94.61.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.51.76.115	attack	May 8 22:42:44 minden010 sshd[11246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.76.115 May 8 22:42:46 minden010 sshd[11246]: Failed password for invalid user aurore from 106.51.76.115 port 35894 ssh2 May 8 22:47:14 minden010 sshd[12689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.76.115 ...	2020-05-09 07:49:12
103.215.52.118	attack	SmallBizIT.US 1 packets to tcp(2323)	2020-05-09 08:09:20
144.217.12.194	attack	2020-05-09T00:22:14.617482struts4.enskede.local sshd\[26188\]: Invalid user mc from 144.217.12.194 port 58612 2020-05-09T00:22:14.626779struts4.enskede.local sshd\[26188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.ip-144-217-12.net 2020-05-09T00:22:16.925644struts4.enskede.local sshd\[26188\]: Failed password for invalid user mc from 144.217.12.194 port 58612 ssh2 2020-05-09T00:29:14.681666struts4.enskede.local sshd\[26238\]: Invalid user user21 from 144.217.12.194 port 35538 2020-05-09T00:29:14.689802struts4.enskede.local sshd\[26238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.ip-144-217-12.net ...	2020-05-09 07:35:29
129.211.47.56	attackspam	2020-05-08T23:37:00.209891homeassistant sshd[30498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.47.56 user=root 2020-05-08T23:37:02.163184homeassistant sshd[30498]: Failed password for root from 129.211.47.56 port 50262 ssh2 ...	2020-05-09 08:01:13
49.88.112.55	attack	" "	2020-05-09 07:54:42
157.100.33.90	attack	May 9 01:21:45 melroy-server sshd[15035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.33.90 May 9 01:21:47 melroy-server sshd[15035]: Failed password for invalid user hades from 157.100.33.90 port 53254 ssh2 ...	2020-05-09 08:08:38
216.45.23.6	attackbotsspam	SSH Invalid Login	2020-05-09 07:55:41
202.107.188.14	attackspam	May 8 23:46:38 vps339862 kernel: \[8193314.137372\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=202.107.188.14 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=63276 DF PROTO=TCP SPT=37911 DPT=1433 SEQ=3785021447 ACK=0 WINDOW=14600 RES=0x00 SYN URGP=0 OPT $020405B40402080A716E2F2B0000000001030307$ May 8 23:46:39 vps339862 kernel: \[8193315.137162\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=202.107.188.14 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=63277 DF PROTO=TCP SPT=37911 DPT=1433 SEQ=3785021447 ACK=0 WINDOW=14600 RES=0x00 SYN URGP=0 OPT $020405B40402080A716E33130000000001030307$ May 8 23:46:39 vps339862 kernel: \[8193315.137330\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=202.107.188.14 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=59980 DF PROTO=TCP SPT=36038 DPT=6379 SEQ=1344199007 ACK=0 WINDOW=14600 RES=0x00 SY ...	2020-05-09 07:52:53
222.186.175.148	attackspambots	May 8 23:51:51 ip-172-31-61-156 sshd[29735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root May 8 23:51:53 ip-172-31-61-156 sshd[29735]: Failed password for root from 222.186.175.148 port 4268 ssh2 ...	2020-05-09 07:52:30
115.75.177.35	attackspam	SSHD unauthorised connection attempt (a)	2020-05-09 07:48:21
218.86.31.67	attackbots	$f2bV_matches	2020-05-09 07:33:49
52.172.4.141	attackbots	May 8 23:35:23 OPSO sshd\[9182\]: Invalid user sybase from 52.172.4.141 port 39738 May 8 23:35:23 OPSO sshd\[9182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.4.141 May 8 23:35:26 OPSO sshd\[9182\]: Failed password for invalid user sybase from 52.172.4.141 port 39738 ssh2 May 8 23:40:01 OPSO sshd\[9627\]: Invalid user erick from 52.172.4.141 port 50920 May 8 23:40:01 OPSO sshd\[9627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.4.141	2020-05-09 08:04:56
183.88.242.150	attackspam	Brute-force attempt banned	2020-05-09 08:05:15
185.50.149.12	attack	2020-05-09 01:45:23 dovecot_login authenticator failed for $\[185.50.149.12\]$ \[185.50.149.12\]: 535 Incorrect authentication data $set_id=support@orogest.it$ 2020-05-09 01:45:34 dovecot_login authenticator failed for $\[185.50.149.12\]$ \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:45:46 dovecot_login authenticator failed for $\[185.50.149.12\]$ \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:46:01 dovecot_login authenticator failed for $\[185.50.149.12\]$ \[185.50.149.12\]: 535 Incorrect authentication data 2020-05-09 01:46:02 dovecot_login authenticator failed for $\[185.50.149.12\]$ \[185.50.149.12\]: 535 Incorrect authentication data $set_id=support$	2020-05-09 07:50:05
106.75.244.62	attack	"Unauthorized connection attempt on SSHD detected"	2020-05-09 07:46:29

最近上报的IP列表

65.125.213.24	142.28.219.252	116.3.7.177	238.66.45.104
22.53.151.38	142.153.219.7	80.66.158.196	93.224.40.242
105.120.179.202	32.158.48.30	202.91.130.3	186.220.38.156
197.240.70.176	243.55.1.37	5.51.49.170	36.253.10.125
146.173.242.197	66.108.51.167	153.40.180.156	202.117.148.22