90.185.139.245

基本信息:

城市(city): Kolding

省份(region): South Denmark

国家(country): Denmark

运营商(isp): TDC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 90.185.139.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26743
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;90.185.139.245.			IN	A

;; AUTHORITY SECTION:
.			473	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041302 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 14 05:40:09 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 245.139.185.90.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.139.185.90.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
172.105.192.195	attack	Feb 23 05:55:39 debian-2gb-nbg1-2 kernel: \[4692943.772197\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=172.105.192.195 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=45918 DPT=9999 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-23 14:46:08
94.232.124.233	attack	Feb 23 07:09:14 markkoudstaal sshd[23811]: Failed password for root from 94.232.124.233 port 49248 ssh2 Feb 23 07:12:18 markkoudstaal sshd[24349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.232.124.233 Feb 23 07:12:20 markkoudstaal sshd[24349]: Failed password for invalid user test from 94.232.124.233 port 35313 ssh2	2020-02-23 14:14:29
79.141.65.20	attack	Feb 23 06:23:22 sd-53420 sshd\[10598\]: User root from 79.141.65.20 not allowed because none of user's groups are listed in AllowGroups Feb 23 06:23:22 sd-53420 sshd\[10598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.141.65.20 user=root Feb 23 06:23:25 sd-53420 sshd\[10598\]: Failed password for invalid user root from 79.141.65.20 port 38834 ssh2 Feb 23 06:26:57 sd-53420 sshd\[10893\]: Invalid user speech-dispatcher from 79.141.65.20 Feb 23 06:26:57 sd-53420 sshd\[10893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.141.65.20 ...	2020-02-23 14:25:37
117.60.90.248	attackbotsspam	Automatic report - Port Scan Attack	2020-02-23 13:56:45
162.248.52.82	attack	Feb 22 20:15:13 hpm sshd\[31814\]: Invalid user justin from 162.248.52.82 Feb 22 20:15:13 hpm sshd\[31814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.82 Feb 22 20:15:16 hpm sshd\[31814\]: Failed password for invalid user justin from 162.248.52.82 port 35190 ssh2 Feb 22 20:18:35 hpm sshd\[32083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.82 user=mysql Feb 22 20:18:37 hpm sshd\[32083\]: Failed password for mysql from 162.248.52.82 port 35644 ssh2	2020-02-23 14:22:53
198.108.66.64	attackspam	Unauthorized connection attempt detected from IP address 198.108.66.64 to port 502 [J]	2020-02-23 14:06:39
51.254.98.85	attackbotsspam	POST /wp-login.php HTTP/1.1 200 2442 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2020-02-23 14:21:34
34.210.64.61	attackbots	POST /wp-login.php HTTP/1.1 200 2442 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2020-02-23 14:50:18
124.116.188.133	attackspam	Feb 23 07:16:42 cp sshd[22305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.116.188.133	2020-02-23 14:46:31
49.88.112.62	attackbotsspam	Feb 23 05:53:19 combo sshd[11660]: Failed password for root from 49.88.112.62 port 41413 ssh2 Feb 23 05:53:22 combo sshd[11660]: Failed password for root from 49.88.112.62 port 41413 ssh2 Feb 23 05:53:27 combo sshd[11660]: Failed password for root from 49.88.112.62 port 41413 ssh2 ...	2020-02-23 14:00:26
112.85.42.181	attackspam	SSH Brute-Force attacks	2020-02-23 14:14:48
103.76.21.181	attackbotsspam	Feb 23 06:52:05 OPSO sshd\[30469\]: Invalid user halflife from 103.76.21.181 port 52616 Feb 23 06:52:05 OPSO sshd\[30469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.21.181 Feb 23 06:52:07 OPSO sshd\[30469\]: Failed password for invalid user halflife from 103.76.21.181 port 52616 ssh2 Feb 23 06:54:57 OPSO sshd\[30771\]: Invalid user sarvub from 103.76.21.181 port 54984 Feb 23 06:54:57 OPSO sshd\[30771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.21.181	2020-02-23 14:05:17
123.21.91.176	attackspambots	2020-02-23 05:50:00 auth_plain authenticator failed for ([127.0.0.1]) [123.21.91.176]: 535 Incorrect authentication data (set_id=b.isaenko@realbank.com.ua) 2020-02-23 05:55:42 auth_plain authenticator failed for ([127.0.0.1]) [123.21.91.176]: 535 Incorrect authentication data (set_id=alina) ...	2020-02-23 14:45:18
187.115.200.138	attackbots	Unauthorized connection attempt detected from IP address 187.115.200.138 to port 2220 [J]	2020-02-23 14:04:34
187.102.54.188	attackbotsspam	DATE:2020-02-23 05:57:03, IP:187.102.54.188, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-23 13:57:13

最近上报的IP列表

36.81.99.218	216.87.21.168	75.174.76.61	196.203.88.1
54.77.48.115	45.59.26.213	83.71.174.154	139.123.11.100
75.72.3.197	37.233.15.177	179.108.66.36	132.219.112.7
36.73.57.247	8.133.106.222	115.123.55.27	41.119.160.57
150.154.173.235	147.116.217.139	118.97.198.198	186.189.179.47