114.142.137.35

基本信息:

城市(city): Thane

省份(region): Maharashtra

国家(country): India

运营商(isp): Rashmi Building Main Block 2nd Floor

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 114.142.137.35 to port 8291 [J]	2020-01-31 05:03:12

相同子网IP讨论:

IP	类型	评论内容	时间
114.142.137.28	attackspam	Postfix RBL failed	2020-03-04 01:21:52
114.142.137.32	attackspam	Unauthorized connection attempt detected from IP address 114.142.137.32 to port 8291 [J]	2020-01-31 05:04:29
114.142.137.33	attack	Unauthorized connection attempt detected from IP address 114.142.137.33 to port 8291 [J]	2020-01-31 05:04:04
114.142.137.34	attackspam	Unauthorized connection attempt detected from IP address 114.142.137.34 to port 8291 [J]	2020-01-31 05:03:35
114.142.137.37	attack	Unauthorized connection attempt detected from IP address 114.142.137.37 to port 8291 [J]	2020-01-31 05:02:35
114.142.137.38	attackbots	Unauthorized connection attempt detected from IP address 114.142.137.38 to port 8291 [J]	2020-01-31 05:02:17
114.142.137.40	attackspambots	Unauthorized connection attempt detected from IP address 114.142.137.40 to port 8291 [J]	2020-01-31 05:01:55
114.142.137.42	attack	Unauthorized connection attempt detected from IP address 114.142.137.42 to port 8291 [J]	2020-01-31 05:01:28
114.142.137.45	attackspam	Unauthorized connection attempt detected from IP address 114.142.137.45 to port 8291 [J]	2020-01-31 05:01:07
114.142.137.46	attackspam	Unauthorized connection attempt detected from IP address 114.142.137.46 to port 8291 [J]	2020-01-31 05:00:49
114.142.137.47	attackbots	Unauthorized connection attempt detected from IP address 114.142.137.47 to port 8291 [J]	2020-01-31 05:00:31
114.142.137.48	attackbotsspam	Unauthorized connection attempt detected from IP address 114.142.137.48 to port 8291 [J]	2020-01-31 05:00:03
114.142.137.50	attackbots	Unauthorized connection attempt detected from IP address 114.142.137.50 to port 8291 [J]	2020-01-31 04:59:46
114.142.137.51	attackbotsspam	Unauthorized connection attempt detected from IP address 114.142.137.51 to port 8291 [J]	2020-01-31 04:59:31
114.142.137.52	attack	Unauthorized connection attempt detected from IP address 114.142.137.52 to port 8291 [J]	2020-01-31 04:58:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.142.137.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33306
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.142.137.35.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013003 1800 900 604800 86400

;; Query time: 151 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 05:03:07 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

35.137.142.114.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 35.137.142.114.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.227.112.164	attack	Invalid user rafael from 165.227.112.164 port 47020	2019-09-01 14:22:36
106.12.210.229	attackbotsspam	Sep 1 07:35:54 itv-usvr-02 sshd[7486]: Invalid user nnn from 106.12.210.229 port 35900 Sep 1 07:35:54 itv-usvr-02 sshd[7486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.210.229 Sep 1 07:35:54 itv-usvr-02 sshd[7486]: Invalid user nnn from 106.12.210.229 port 35900 Sep 1 07:35:56 itv-usvr-02 sshd[7486]: Failed password for invalid user nnn from 106.12.210.229 port 35900 ssh2 Sep 1 07:40:52 itv-usvr-02 sshd[7596]: Invalid user cacti from 106.12.210.229 port 43766	2019-09-01 15:03:15
54.39.145.31	attack	Sep 1 05:44:20 SilenceServices sshd[11941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.145.31 Sep 1 05:44:22 SilenceServices sshd[11941]: Failed password for invalid user alka from 54.39.145.31 port 46522 ssh2 Sep 1 05:48:18 SilenceServices sshd[13590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.145.31	2019-09-01 14:10:03
185.216.32.170	attackbotsspam	Sep 1 07:38:15 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2Sep 1 07:38:18 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2Sep 1 07:38:21 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2Sep 1 07:38:23 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2Sep 1 07:38:26 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2Sep 1 07:38:29 rotator sshd\[2465\]: Failed password for root from 185.216.32.170 port 39487 ssh2 ...	2019-09-01 14:37:59
198.108.66.41	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 15:17:53
222.239.253.12	attackbots	SSHScan	2019-09-01 14:36:22
68.183.234.68	attackspambots	Invalid user Minecraft from 68.183.234.68 port 59172	2019-09-01 14:24:48
162.247.74.217	attack	Invalid user robert from 162.247.74.217 port 50088	2019-09-01 14:52:22
183.215.10.153	attackspam	Unauthorised access (Sep 1) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=49 ID=23076 TCP DPT=8080 WINDOW=59992 SYN Unauthorised access (Aug 31) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=49 ID=47310 TCP DPT=8080 WINDOW=59992 SYN Unauthorised access (Aug 31) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=49 ID=17384 TCP DPT=8080 WINDOW=59992 SYN Unauthorised access (Aug 29) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=48 ID=23299 TCP DPT=8080 WINDOW=59992 SYN Unauthorised access (Aug 27) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=48 ID=48177 TCP DPT=8080 WINDOW=59992 SYN Unauthorised access (Aug 25) SRC=183.215.10.153 LEN=40 TOS=0x04 TTL=48 ID=14400 TCP DPT=8080 WINDOW=59992 SYN	2019-09-01 15:02:23
85.209.0.49	attackspambots	Blocked for port scanning. Time: Sat Aug 31. 21:32:11 2019 +0200 IP: 85.209.0.49 (RU/Russia/-) Sample of block hits: Aug 31 21:31:31 vserv kernel: [40882032.533622] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=85.209.0.49 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=44119 PROTO=TCP SPT=59887 DPT=3481 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 31 21:31:33 vserv kernel: [40882034.400273] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=85.209.0.49 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=60479 PROTO=TCP SPT=59887 DPT=3490 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 31 21:31:39 vserv kernel: [40882040.242229] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=85.209.0.49 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=896 PROTO=TCP SPT=59887 DPT=3354 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 31 21:31:39 vserv kernel: [40882040.281872] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=85.209.0.49 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=51528 PROTO=TCP SPT=59887 DPT=3392 WINDOW=1024 ....	2019-09-01 14:34:19
200.175.83.95	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 15:11:31
200.98.200.48	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 15:12:12
106.12.105.10	attack	Aug 31 12:09:47 wbs sshd\[9916\]: Invalid user abi from 106.12.105.10 Aug 31 12:09:47 wbs sshd\[9916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.10 Aug 31 12:09:49 wbs sshd\[9916\]: Failed password for invalid user abi from 106.12.105.10 port 48822 ssh2 Aug 31 12:12:49 wbs sshd\[10248\]: Invalid user ndoe from 106.12.105.10 Aug 31 12:12:49 wbs sshd\[10248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.10	2019-09-01 14:41:42
92.188.124.228	attack	Invalid user ts3bot from 92.188.124.228 port 56616	2019-09-01 14:18:21
36.103.243.247	attackbots	Sep 1 03:02:11 mail sshd[2990]: Invalid user max from 36.103.243.247 Sep 1 03:02:11 mail sshd[2990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.243.247 Sep 1 03:02:11 mail sshd[2990]: Invalid user max from 36.103.243.247 Sep 1 03:02:13 mail sshd[2990]: Failed password for invalid user max from 36.103.243.247 port 56493 ssh2 Sep 1 03:17:35 mail sshd[26364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.243.247 user=martin Sep 1 03:17:37 mail sshd[26364]: Failed password for martin from 36.103.243.247 port 48078 ssh2 ...	2019-09-01 15:03:38

最近上报的IP列表

173.1.135.151	123.202.240.216	75.243.203.85	114.142.137.32
122.137.31.238	111.107.28.234	193.185.242.131	39.64.16.244
113.23.100.76	188.252.69.157	85.187.157.111	129.12.191.148
78.192.252.168	1.183.162.2	50.192.171.85	73.26.216.171
54.232.146.192	114.45.6.33	90.13.91.172	70.57.213.73