114.142.5.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): QTNet Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	DATE:2019-10-24 22:13:01, IP:114.142.5.148, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-25 07:11:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.142.5.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.142.5.148.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 07:11:33 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.5.142.114.in-addr.arpa domain name pointer 114-142-5-148.ppp.bbiq.jp.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.5.142.114.in-addr.arpa	name = 114-142-5-148.ppp.bbiq.jp.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
117.4.0.245	attackbotsspam	Unauthorized connection attempt from IP address 117.4.0.245 on Port 445(SMB)	2019-08-06 13:50:56
189.2.249.26	attackbotsspam	Unauthorized connection attempt from IP address 189.2.249.26 on Port 445(SMB)	2019-08-06 13:19:19
139.228.5.114	attackspam	Aug 6 02:30:59 localhost sshd\[22353\]: Invalid user pi from 139.228.5.114 port 43760 Aug 6 02:30:59 localhost sshd\[22355\]: Invalid user pi from 139.228.5.114 port 43764 ...	2019-08-06 14:03:41
138.68.148.177	attackbotsspam	Aug 6 01:07:37 vps200512 sshd\[10092\]: Invalid user sysadmin from 138.68.148.177 Aug 6 01:07:38 vps200512 sshd\[10092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.148.177 Aug 6 01:07:39 vps200512 sshd\[10092\]: Failed password for invalid user sysadmin from 138.68.148.177 port 38826 ssh2 Aug 6 01:17:18 vps200512 sshd\[10265\]: Invalid user mweb from 138.68.148.177 Aug 6 01:17:18 vps200512 sshd\[10265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.148.177	2019-08-06 13:22:51
185.234.219.52	attack	Aug 6 05:19:09 mail postfix/smtpd\[5914\]: warning: unknown\[185.234.219.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 6 05:21:10 mail postfix/smtpd\[5342\]: warning: unknown\[185.234.219.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 6 05:51:36 mail postfix/smtpd\[5967\]: warning: unknown\[185.234.219.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 6 05:53:38 mail postfix/smtpd\[7652\]: warning: unknown\[185.234.219.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-06 13:39:43
104.211.205.186	attackspam	Aug 6 05:40:33 master sshd[20146]: Failed password for invalid user test2 from 104.211.205.186 port 46514 ssh2	2019-08-06 14:06:01
188.165.169.140	attackspam	SMTP	2019-08-06 14:12:43
189.1.163.207	attackbotsspam	Unauthorized connection attempt from IP address 189.1.163.207 on Port 445(SMB)	2019-08-06 13:51:22
198.27.70.61	attackspam	198.27.70.61 - - [06/Aug/2019:07:42:56 +0200] "POST /wp-login.php HTTP/1.1" 200 3871 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.70.61 - - [06/Aug/2019:07:43:27 +0200] "POST /wp-login.php HTTP/1.1" 200 3871 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.70.61 - - [06/Aug/2019:07:43:52 +0200] "POST /wp-login.php HTTP/1.1" 200 3871 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.70.61 - - [06/Aug/2019:07:44:17 +0200] "POST /wp-login.php HTTP/1.1" 200 3871 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.70.61 - - [06/Aug/2019:07:44:43 +0200] "POST /wp-login.php HTTP/1.1" 200 3871 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.70.61 - - [0	2019-08-06 13:55:23
207.154.209.159	attackbots	Aug 6 03:22:50 vps sshd[20262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.209.159 Aug 6 03:22:51 vps sshd[20262]: Failed password for invalid user Giani from 207.154.209.159 port 42094 ssh2 Aug 6 03:33:02 vps sshd[20655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.209.159 ...	2019-08-06 13:18:12
209.97.186.6	attackspam	Aug 6 06:39:40 debian sshd\[13440\]: Invalid user jester from 209.97.186.6 port 53528 Aug 6 06:39:40 debian sshd\[13440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.186.6 ...	2019-08-06 14:04:41
222.186.52.155	attackspambots	Aug 6 01:16:04 TORMINT sshd\[21755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.155 user=root Aug 6 01:16:06 TORMINT sshd\[21755\]: Failed password for root from 222.186.52.155 port 26805 ssh2 Aug 6 01:16:16 TORMINT sshd\[21759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.155 user=root ...	2019-08-06 14:12:10
138.219.188.221	attackspambots	Unauthorized connection attempt from IP address 138.219.188.221 on Port 587(SMTP-MSA)	2019-08-06 13:47:56
188.131.134.157	attackbots	Aug 6 03:24:41 Ubuntu-1404-trusty-64-minimal sshd\[32586\]: Invalid user demouser from 188.131.134.157 Aug 6 03:24:41 Ubuntu-1404-trusty-64-minimal sshd\[32586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.134.157 Aug 6 03:24:43 Ubuntu-1404-trusty-64-minimal sshd\[32586\]: Failed password for invalid user demouser from 188.131.134.157 port 58000 ssh2 Aug 6 03:32:57 Ubuntu-1404-trusty-64-minimal sshd\[4745\]: Invalid user antonio from 188.131.134.157 Aug 6 03:32:57 Ubuntu-1404-trusty-64-minimal sshd\[4745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.134.157	2019-08-06 13:20:00
85.209.0.11	attack	Port scan on 30 port(s): 18237 18879 19083 19974 20376 21365 21535 22138 22331 23084 23491 24439 25149 27667 30757 31666 33256 34283 37398 38771 46280 50269 52370 53712 53755 55915 56889 56965 57293 57332	2019-08-06 14:08:47

最近上报的IP列表

129.226.63.10	50.248.3.67	51.15.134.103	58.221.247.216
41.162.0.246	183.61.172.11	77.247.110.73	49.7.61.82
111.6.18.35	159.203.201.218	95.181.217.166	47.99.41.58
200.106.106.167	67.205.154.87	47.92.52.38	123.133.84.186
116.193.154.149	103.81.171.204	47.111.69.101	121.199.61.153