114.142.5.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): QTNet Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	DATE:2019-10-24 22:13:01, IP:114.142.5.148, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-25 07:11:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.142.5.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.142.5.148.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 07:11:33 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.5.142.114.in-addr.arpa domain name pointer 114-142-5-148.ppp.bbiq.jp.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.5.142.114.in-addr.arpa	name = 114-142-5-148.ppp.bbiq.jp.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.72.65.206	attackspam	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-10-28 23:44:42
162.199.95.32	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/162.199.95.32/ US - 1H : (325) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN7018 IP : 162.199.95.32 CIDR : 162.196.0.0/14 PREFIX COUNT : 9621 UNIQUE IP COUNT : 81496832 ATTACKS DETECTED ASN7018 : 1H - 2 3H - 2 6H - 3 12H - 9 24H - 18 DateTime : 2019-10-28 12:50:28 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-29 00:10:29
195.42.111.68	attackbotsspam	SSH Scan	2019-10-28 23:44:00
139.59.38.252	attackspambots	Oct 28 15:05:42 dedicated sshd[2961]: Invalid user jackieg from 139.59.38.252 port 37536	2019-10-29 00:02:50
177.23.227.136	attackbots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-10-28 23:59:59
89.216.47.154	attack	Oct 28 14:25:14 vps01 sshd[19256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.216.47.154 Oct 28 14:25:17 vps01 sshd[19256]: Failed password for invalid user xz from 89.216.47.154 port 47271 ssh2	2019-10-29 00:18:33
106.13.32.106	attackbotsspam	Oct 28 14:16:29 microserver sshd[18019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.32.106 user=root Oct 28 14:16:31 microserver sshd[18019]: Failed password for root from 106.13.32.106 port 42392 ssh2 Oct 28 14:20:54 microserver sshd[18695]: Invalid user beatrice from 106.13.32.106 port 50202 Oct 28 14:20:54 microserver sshd[18695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.32.106 Oct 28 14:20:56 microserver sshd[18695]: Failed password for invalid user beatrice from 106.13.32.106 port 50202 ssh2 Oct 28 14:33:55 microserver sshd[20267]: Invalid user reddy from 106.13.32.106 port 45356 Oct 28 14:33:55 microserver sshd[20267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.32.106 Oct 28 14:33:57 microserver sshd[20267]: Failed password for invalid user reddy from 106.13.32.106 port 45356 ssh2 Oct 28 14:38:20 microserver sshd[20912]: pam_unix(sshd:auth): authe	2019-10-28 23:45:17
51.68.31.138	attackspam	X-Apparently-To: @yahoo.com; Mon, 28 Oct 2019 09:10:38 +0000 Return-Path: Authentication-Results: mta4059.mail.bf1.yahoo.com; dkim=neutral (no sig) header.i=@tunesoffice.we.bs; spf=pass smtp.mailfrom=@tunesoffice.we.bs; dmarc=pass(p=reject sp=NULL dis=none) header.from=tunesoffice.we.bs; X-YahooFilteredBulk: 51.68.31.157 X-Originating-IP: [51.68.31.157] Received: from 10.197.34.76 (EHLO mx31-1319.tunesoffice.we.bs) (51.68.31.157) by mta4059.mail.bf1.yahoo.com with SMTPS; Mon, 28 Oct 2019 09:10:37 +0000 Subject: =?UTF-8?B?RMOhIHVtYSBvbGhhZGEgbmVzc2VzIHNlcnZpw6dvcyBwYXJhIG8gc2V1IGNhcnJvIQ==?= Message-ID: <92282c543065194829ae72f13b5d312e@9.tunesoffice.we.bs> Return-Path: return@tunesoffice.we.bs Date: Mon, 28 Oct 2019 04:11:09 -0300 From: "Youse Seguros" Reply-To: emm@tunesoffice.we.bs	2019-10-29 00:01:29
191.34.104.159	attackbotsspam	failed root login	2019-10-28 23:58:29
177.155.134.38	attackspambots	proto=tcp . spt=50430 . dpt=25 . (Found on Dark List de Oct 28) (377)	2019-10-29 00:10:12
103.88.234.58	attackspambots	103.88.234.58 - - [02/Sep/2019:23:58:35 +0100] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Linux; Android 7.1.1; MI 6 Build/NMF26X; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/57.0.2987.132 MQQBrowser/6.2 TBS/043806 Mobile Safari/537.36 V1_AND_SQ_7.3.2_762_YYB_D QQ/7.3.2.3350 NetType/WIFI WebP/0.3.0 Pixel/1080"	2019-10-28 23:42:41
103.90.156.210	attackspam	103.90.156.210 - - [31/Jan/2019:08:40:38 +0000] "POST /wp-login.php HTTP/1.1" 200 1455 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-28 23:38:43
24.221.29.159	attack	SSH Scan	2019-10-28 23:59:32
101.207.248.87	attack	Jan 26 07:08:04 ms-srv sshd[8632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.207.248.87 Jan 26 07:08:07 ms-srv sshd[8632]: Failed password for invalid user teampspeak3 from 101.207.248.87 port 40918 ssh2	2019-10-28 23:41:03
2.206.53.6	attackbotsspam	SSH Scan	2019-10-28 23:54:59

最近上报的IP列表

129.226.63.10	50.248.3.67	51.15.134.103	58.221.247.216
41.162.0.246	183.61.172.11	77.247.110.73	49.7.61.82
111.6.18.35	159.203.201.218	95.181.217.166	47.99.41.58
200.106.106.167	67.205.154.87	47.92.52.38	123.133.84.186
116.193.154.149	103.81.171.204	47.111.69.101	121.199.61.153