1.4.139.214 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): TOT Public Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 5555, PTR: node-2c6.pool-1-4.dynamic.totinternet.net.	2020-02-08 09:54:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.4.139.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53642
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.4.139.214.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020701 1800 900 604800 86400

;; Query time: 478 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 09:54:11 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

214.139.4.1.in-addr.arpa domain name pointer node-2c6.pool-1-4.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.139.4.1.in-addr.arpa	name = node-2c6.pool-1-4.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.53.88.130	attackspambots	185.53.88.130 was recorded 7 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 37, 347	2020-02-26 11:33:17
142.93.140.242	attackbotsspam	Feb 26 02:02:22 v22018076622670303 sshd\[398\]: Invalid user libuuid from 142.93.140.242 port 36442 Feb 26 02:02:22 v22018076622670303 sshd\[398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242 Feb 26 02:02:24 v22018076622670303 sshd\[398\]: Failed password for invalid user libuuid from 142.93.140.242 port 36442 ssh2 ...	2020-02-26 11:33:31
54.192.8.24	attack	TCP Port Scanning	2020-02-26 11:12:49
54.38.241.162	attack	Feb 26 04:22:10 lnxded63 sshd[5861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.241.162	2020-02-26 11:30:08
206.81.16.240	attackbots	Feb 26 03:44:53 silence02 sshd[23613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.16.240 Feb 26 03:44:55 silence02 sshd[23613]: Failed password for invalid user sdco from 206.81.16.240 port 40716 ssh2 Feb 26 03:53:47 silence02 sshd[27454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.16.240	2020-02-26 11:19:00
106.12.214.217	attackbots	Feb 25 15:58:40 wbs sshd\[28050\]: Invalid user project from 106.12.214.217 Feb 25 15:58:40 wbs sshd\[28050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 Feb 25 15:58:42 wbs sshd\[28050\]: Failed password for invalid user project from 106.12.214.217 port 41269 ssh2 Feb 25 16:08:02 wbs sshd\[28904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.217 user=root Feb 25 16:08:04 wbs sshd\[28904\]: Failed password for root from 106.12.214.217 port 42785 ssh2	2020-02-26 11:12:14
34.64.239.192	attackspam	Lines containing failures of 34.64.239.192 Feb 25 13:45:20 kmh-vmh-001-fsn05 sshd[8107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.64.239.192 user=r.r Feb 25 13:45:23 kmh-vmh-001-fsn05 sshd[8107]: Failed password for r.r from 34.64.239.192 port 49056 ssh2 Feb 25 13:45:25 kmh-vmh-001-fsn05 sshd[8107]: Received disconnect from 34.64.239.192 port 49056:11: Bye Bye [preauth] Feb 25 13:45:25 kmh-vmh-001-fsn05 sshd[8107]: Disconnected from authenticating user r.r 34.64.239.192 port 49056 [preauth] Feb 25 14:02:17 kmh-vmh-001-fsn05 sshd[11054]: Invalid user black from 34.64.239.192 port 46346 Feb 25 14:02:17 kmh-vmh-001-fsn05 sshd[11054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.64.239.192 Feb 25 14:02:19 kmh-vmh-001-fsn05 sshd[11054]: Failed password for invalid user black from 34.64.239.192 port 46346 ssh2 Feb 25 14:02:21 kmh-vmh-001-fsn05 sshd[11054]: Received disconnect from........ ------------------------------	2020-02-26 11:18:29
95.233.114.25	attackspambots	Automatic report - Port Scan Attack	2020-02-26 11:18:04
152.195.12.171	attackspambots	ET INFO TLS Handshake Failure	2020-02-26 11:05:39
218.92.0.178	attackspam	Feb 26 03:51:56 icinga sshd[13833]: Failed password for root from 218.92.0.178 port 6839 ssh2 Feb 26 03:52:02 icinga sshd[13833]: Failed password for root from 218.92.0.178 port 6839 ssh2 Feb 26 03:52:05 icinga sshd[13833]: Failed password for root from 218.92.0.178 port 6839 ssh2 Feb 26 03:52:09 icinga sshd[13833]: Failed password for root from 218.92.0.178 port 6839 ssh2 ...	2020-02-26 11:03:38
186.233.178.254	attack	unauthorized connection attempt	2020-02-26 13:00:29
58.150.46.6	attackbotsspam	Feb 26 03:40:23 ncomp sshd[16717]: Invalid user bruno from 58.150.46.6 Feb 26 03:40:23 ncomp sshd[16717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.150.46.6 Feb 26 03:40:23 ncomp sshd[16717]: Invalid user bruno from 58.150.46.6 Feb 26 03:40:25 ncomp sshd[16717]: Failed password for invalid user bruno from 58.150.46.6 port 37932 ssh2	2020-02-26 11:01:08
37.71.138.29	attack	Feb 25 23:47:26 vps46666688 sshd[15064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.71.138.29 Feb 25 23:47:28 vps46666688 sshd[15064]: Failed password for invalid user sb from 37.71.138.29 port 57140 ssh2 ...	2020-02-26 11:21:40
185.202.2.245	attack	Unauthorized connection attempt detected from IP address 185.202.2.245 to port 5552	2020-02-26 11:06:52
159.65.172.240	attack	(sshd) Failed SSH login from 159.65.172.240 (US/United States/gowonderly.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 26 01:26:11 elude sshd[24536]: Invalid user deploy from 159.65.172.240 port 59076 Feb 26 01:26:13 elude sshd[24536]: Failed password for invalid user deploy from 159.65.172.240 port 59076 ssh2 Feb 26 01:42:16 elude sshd[25451]: Invalid user packer from 159.65.172.240 port 44472 Feb 26 01:42:18 elude sshd[25451]: Failed password for invalid user packer from 159.65.172.240 port 44472 ssh2 Feb 26 01:49:40 elude sshd[25858]: Invalid user teamspeak from 159.65.172.240 port 43168	2020-02-26 11:29:30

最近上报的IP列表

211.197.7.1	121.178.241.147	36.65.109.162	140.114.111.1
103.92.31.94	119.119.87.127	190.148.85.37	2.180.31.164
203.202.240.142	120.59.28.153	78.187.33.18	73.173.117.111
203.57.58.74	211.20.146.223	61.227.133.86	1.174.91.13
76.102.21.32	194.182.74.103	61.224.65.209	1.165.148.220