112.140.160.13

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
112.140.160.254	normal	Issue is fixed	2020-08-28 23:19:26
112.140.160.254	attack	WordPress (CMS) attack attempts. Date: 2019 Oct 14. 21:41:51 Source IP: 112.140.160.254 Portion of the log(s): 112.140.160.254 - [14/Oct/2019:21:41:49 +0200] "POST /wp-login.php HTTP/1.1" 200 2389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.140.160.254 - [14/Oct/2019:21:41:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2388 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.140.160.254 - [14/Oct/2019:21:41:43 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.140.160.254 - [14/Oct/2019:21:41:40 +0200] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 112.140.160.254 - [14/Oct/2019:21:41:38 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ....	2019-10-15 07:09:20

类型

评论内容

时间

112.140.160.254

normal

Issue is fixed

2020-08-28 23:19:26

112.140.160.254

attack

WordPress (CMS) attack attempts.
Date: 2019 Oct 14. 21:41:51
Source IP: 112.140.160.254

Portion of the log(s):
112.140.160.254 - [14/Oct/2019:21:41:49 +0200] "POST /wp-login.php HTTP/1.1" 200 2389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
112.140.160.254 - [14/Oct/2019:21:41:46 +0200] "POST /wp-login.php HTTP/1.1" 200 2388 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
112.140.160.254 - [14/Oct/2019:21:41:43 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
112.140.160.254 - [14/Oct/2019:21:41:40 +0200] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
112.140.160.254 - [14/Oct/2019:21:41:38 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ....

2019-10-15 07:09:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.140.160.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4523
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.140.160.13.			IN	A

;; AUTHORITY SECTION:
.			420	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:47:54 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 13.160.140.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.160.140.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
31.207.89.79	attack	Sep 15 19:48:15 sip sshd[1610451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.207.89.79 Sep 15 19:48:15 sip sshd[1610451]: Invalid user admin from 31.207.89.79 port 41440 Sep 15 19:48:16 sip sshd[1610451]: Failed password for invalid user admin from 31.207.89.79 port 41440 ssh2 ...	2020-09-16 01:57:28
194.61.54.228	attackbots	RDP Bruteforce	2020-09-16 01:36:48
194.1.168.36	attackspambots	2020-09-14T21:12[Censored Hostname] sshd[20618]: Failed password for root from 194.1.168.36 port 38684 ssh2 2020-09-14T21:17[Censored Hostname] sshd[23139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.1.168.36 user=root 2020-09-14T21:17[Censored Hostname] sshd[23139]: Failed password for root from 194.1.168.36 port 54268 ssh2[...]	2020-09-16 01:37:16
189.7.217.23	attack	B: Abusive ssh attack	2020-09-16 02:00:32
113.161.69.158	attackbotsspam	Sep 14 22:12:52 lunarastro sshd[27929]: Failed password for root from 113.161.69.158 port 46993 ssh2	2020-09-16 01:40:53
195.154.118.69	attackspambots	Invalid user peu01 from 195.154.118.69 port 44466	2020-09-16 01:32:19
46.101.236.28	attack	Sep 15 10:50:28 mockhub sshd[47496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.236.28 Sep 15 10:50:28 mockhub sshd[47496]: Invalid user ggggg from 46.101.236.28 port 47684 Sep 15 10:50:30 mockhub sshd[47496]: Failed password for invalid user ggggg from 46.101.236.28 port 47684 ssh2 ...	2020-09-16 01:54:15
119.29.168.187	attackspam	Sep 15 09:47:34 mockhub sshd[45498]: Failed password for invalid user web76p3 from 119.29.168.187 port 48334 ssh2 Sep 15 09:52:55 mockhub sshd[45684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.168.187 user=root Sep 15 09:52:57 mockhub sshd[45684]: Failed password for root from 119.29.168.187 port 52984 ssh2 ...	2020-09-16 01:34:48
49.233.32.245	attackbotsspam	Sep 15 19:28:54 haigwepa sshd[4267]: Failed password for root from 49.233.32.245 port 34620 ssh2 Sep 15 19:35:07 haigwepa sshd[4591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.32.245 ...	2020-09-16 01:35:51
202.83.44.165	attack	Unauthorised access (Sep 15) SRC=202.83.44.165 LEN=40 TTL=48 ID=64330 TCP DPT=23 WINDOW=49558 SYN	2020-09-16 01:54:31
178.79.134.51	attack	Port Scan: UDP/3702	2020-09-16 02:02:46
176.31.255.223	attackspambots	Sep 15 12:49:10 ws22vmsma01 sshd[219260]: Failed password for root from 176.31.255.223 port 36368 ssh2 ...	2020-09-16 01:37:29
189.150.23.24	attackbots	1600102641 - 09/14/2020 18:57:21 Host: 189.150.23.24/189.150.23.24 Port: 445 TCP Blocked	2020-09-16 01:46:58
35.193.241.125	attackspam	Sep 15 18:52:09 router sshd[8612]: Failed password for root from 35.193.241.125 port 53672 ssh2 Sep 15 19:04:33 router sshd[8722]: Failed password for root from 35.193.241.125 port 35660 ssh2 ...	2020-09-16 02:00:09
104.206.128.58	attack	Honeypot hit.	2020-09-16 01:43:59

最近上报的IP列表

112.137.181.14	112.135.76.77	112.140.180.161	112.140.54.129
112.135.207.9	112.14.116.252	112.140.54.130	112.140.54.131
112.141.65.118	112.145.1.89	112.157.255.155	112.140.58.51
112.144.44.84	112.160.36.222	112.164.123.5	112.159.94.188
112.164.215.35	112.166.170.196	112.16.170.76	112.166.249.73