114.104.140.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
114.104.140.45	attackbots	[SunMay1022:35:27.7017772020][:error][pid26022:tid47395582797568][client114.104.140.45:50546][client114.104.140.45]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"foreveryoungonline.ch"][uri"/wp-content/plugins/wp-testimonial-widget/readme.txt"][unique_id"Xrhlj8TdKW7UysgF@OxR7wAAAJQ"][SunMay1022:35:32.4470692020][:error][pid14573:tid47395496449792][client114.104.140.45:50630][client114.104.140.45]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][re	2020-05-11 06:07:31

类型

评论内容

时间

114.104.140.45

attackbots

[SunMay1022:35:27.7017772020][:error][pid26022:tid47395582797568][client114.104.140.45:50546][client114.104.140.45]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\|WormlyBot\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"foreveryoungonline.ch"][uri"/wp-content/plugins/wp-testimonial-widget/readme.txt"][unique_id"Xrhlj8TdKW7UysgF@OxR7wAAAJQ"][SunMay1022:35:32.4470692020][:error][pid14573:tid47395496449792][client114.104.140.45:50630][client114.104.140.45]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\|WormlyBot\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][re

2020-05-11 06:07:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.104.140.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40218
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.104.140.70.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 14:35:12 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 70.140.104.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.140.104.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.68.4.8	attack	Jun 27 01:28:01 vtv3 sshd[17378]: Failed password for invalid user aw from 138.68.4.8 port 47516 ssh2 Jun 27 01:29:30 vtv3 sshd[18023]: Invalid user infa from 138.68.4.8 port 36404 Jun 27 01:29:30 vtv3 sshd[18023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 Jun 27 01:40:04 vtv3 sshd[23100]: Invalid user math from 138.68.4.8 port 43238 Jun 27 01:40:04 vtv3 sshd[23100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 Jun 27 01:40:06 vtv3 sshd[23100]: Failed password for invalid user math from 138.68.4.8 port 43238 ssh2 Jun 27 01:41:35 vtv3 sshd[24060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 user=www-data Jun 27 01:41:37 vtv3 sshd[24060]: Failed password for www-data from 138.68.4.8 port 60378 ssh2 Dec 21 06:29:41 vtv3 sshd[14938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 Dec 21 06:29:43 v	2019-12-21 15:47:28
210.245.89.85	attackbotsspam	Dec 21 09:58:49 microserver sshd[58870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.89.85 user=root Dec 21 09:58:50 microserver sshd[58870]: Failed password for root from 210.245.89.85 port 58021 ssh2 Dec 21 09:58:52 microserver sshd[58870]: Failed password for root from 210.245.89.85 port 58021 ssh2 Dec 21 09:58:54 microserver sshd[58870]: Failed password for root from 210.245.89.85 port 58021 ssh2 Dec 21 09:58:57 microserver sshd[58870]: Failed password for root from 210.245.89.85 port 58021 ssh2 Dec 21 10:09:00 microserver sshd[60452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.89.85 user=root Dec 21 10:09:03 microserver sshd[60452]: Failed password for root from 210.245.89.85 port 56705 ssh2 Dec 21 10:09:05 microserver sshd[60452]: Failed password for root from 210.245.89.85 port 56705 ssh2 Dec 21 10:09:08 microserver sshd[60452]: Failed password for root from 210.245.89.85 port 56705 ssh2 Dec 21 10	2019-12-21 15:42:21
103.23.102.3	attackspambots	$f2bV_matches	2019-12-21 15:41:16
183.88.23.1	attackspam	Dec 19 05:33:14 lamijardin sshd[23204]: Invalid user drogos from 183.88.23.1 Dec 19 05:33:14 lamijardin sshd[23204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.23.1 Dec 19 05:33:17 lamijardin sshd[23204]: Failed password for invalid user drogos from 183.88.23.1 port 42302 ssh2 Dec 19 05:33:17 lamijardin sshd[23204]: Received disconnect from 183.88.23.1 port 42302:11: Bye Bye [preauth] Dec 19 05:33:17 lamijardin sshd[23204]: Disconnected from 183.88.23.1 port 42302 [preauth] Dec 19 05:46:50 lamijardin sshd[23320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.23.1 user=r.r Dec 19 05:46:52 lamijardin sshd[23320]: Failed password for r.r from 183.88.23.1 port 56938 ssh2 Dec 19 05:46:53 lamijardin sshd[23320]: Received disconnect from 183.88.23.1 port 56938:11: Bye Bye [preauth] Dec 19 05:46:53 lamijardin sshd[23320]: Disconnected from 183.88.23.1 port 56938 [preauth] ........ ----------------------------------	2019-12-21 15:46:09
120.236.16.252	attack	Dec 20 21:40:09 kapalua sshd\[29579\]: Invalid user RoscoPColtrane from 120.236.16.252 Dec 20 21:40:09 kapalua sshd\[29579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.236.16.252 Dec 20 21:40:11 kapalua sshd\[29579\]: Failed password for invalid user RoscoPColtrane from 120.236.16.252 port 53594 ssh2 Dec 20 21:46:43 kapalua sshd\[30135\]: Invalid user enstone from 120.236.16.252 Dec 20 21:46:43 kapalua sshd\[30135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.236.16.252	2019-12-21 16:01:04
188.166.16.118	attackbotsspam	Dec 21 07:29:53 srv206 sshd[7105]: Invalid user lgo from 188.166.16.118 ...	2019-12-21 15:21:42
69.12.94.118	attackbots	(From rivasnancy7@yahoo.de) VERDIENEN SIE 200.000 USD PASSIVES EINKOMMEN! WAHRE GESCHICHTE. Wie man passives Einkommen mit nur $ 1000 erzielt: https://links.wtf/1o2S	2019-12-21 15:50:29
218.92.0.134	attackbots	Dec 21 08:18:00 jane sshd[14891]: Failed password for root from 218.92.0.134 port 8651 ssh2 Dec 21 08:18:05 jane sshd[14891]: Failed password for root from 218.92.0.134 port 8651 ssh2 ...	2019-12-21 15:53:38
217.112.142.212	attack	Lines containing failures of 217.112.142.212 Dec 21 06:46:23 shared04 postfix/smtpd[27075]: connect from secretive.yxbown.com[217.112.142.212] Dec 21 06:46:23 shared04 policyd-spf[27746]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=217.112.142.212; helo=secretive.cyclinginpanama.com; envelope-from=x@x Dec x@x Dec 21 06:46:23 shared04 postfix/smtpd[27075]: disconnect from secretive.yxbown.com[217.112.142.212] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 21 06:47:15 shared04 postfix/smtpd[24519]: connect from secretive.yxbown.com[217.112.142.212] Dec 21 06:47:15 shared04 policyd-spf[24764]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=217.112.142.212; helo=secretive.cyclinginpanama.com; envelope-from=x@x Dec x@x Dec 21 06:47:15 shared04 postfix/smtpd[24519]: disconnect from secretive.yxbown.com[217.112.142.212] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 21 06:48:19 shared04 postfix........ ------------------------------	2019-12-21 16:00:15
218.92.0.168	attackspambots	Dec 21 15:38:02 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:06 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:09 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:09 bacztwo sshd[32027]: Failed keyboard-interactive/pam for root from 218.92.0.168 port 27773 ssh2 Dec 21 15:37:58 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:02 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:06 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:09 bacztwo sshd[32027]: error: PAM: Authentication failure for root from 218.92.0.168 Dec 21 15:38:09 bacztwo sshd[32027]: Failed keyboard-interactive/pam for root from 218.92.0.168 port 27773 ssh2 Dec 21 15:38:13 bacztwo sshd[32027]: error: PAM: Authentication failure for root fr ...	2019-12-21 15:45:39
192.99.244.225	attack	Dec 21 08:18:59 loxhost sshd\[29385\]: Invalid user admin from 192.99.244.225 port 45138 Dec 21 08:18:59 loxhost sshd\[29385\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Dec 21 08:19:01 loxhost sshd\[29385\]: Failed password for invalid user admin from 192.99.244.225 port 45138 ssh2 Dec 21 08:24:30 loxhost sshd\[29616\]: Invalid user dbus from 192.99.244.225 port 50776 Dec 21 08:24:30 loxhost sshd\[29616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 ...	2019-12-21 15:42:52
183.83.66.137	attackspam	1576909791 - 12/21/2019 07:29:51 Host: 183.83.66.137/183.83.66.137 Port: 445 TCP Blocked	2019-12-21 15:25:17
183.83.85.51	attack	Unauthorised access (Dec 21) SRC=183.83.85.51 LEN=52 TTL=114 ID=1779 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 17) SRC=183.83.85.51 LEN=48 TTL=113 ID=10136 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-21 15:53:58
104.236.142.200	attack	Dec 21 07:48:19 web8 sshd\[29831\]: Invalid user chardon from 104.236.142.200 Dec 21 07:48:19 web8 sshd\[29831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.200 Dec 21 07:48:21 web8 sshd\[29831\]: Failed password for invalid user chardon from 104.236.142.200 port 39674 ssh2 Dec 21 07:54:03 web8 sshd\[32635\]: Invalid user weenie from 104.236.142.200 Dec 21 07:54:03 web8 sshd\[32635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.200	2019-12-21 16:02:49
123.28.211.174	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-12-21 15:24:00

最近上报的IP列表

114.104.140.77	114.104.140.74	114.104.140.78	114.104.140.80
114.104.140.90	114.104.140.86	114.104.140.87	114.104.140.88
113.251.219.173	114.104.140.94	80.213.61.239	114.104.140.92
114.104.140.98	114.104.140.97	114.104.141.10	114.104.141.103
114.104.141.104	113.251.219.181	114.104.141.100	114.104.141.112