114.230.139.61

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-26 19:27:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.230.139.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8111
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.230.139.61.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 19:27:00 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 61.139.230.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 61.139.230.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
92.53.90.242	attackbots	33905/tcp 13394/tcp 33918/tcp... [2019-09-10/12]36pkt,34pt.(tcp)	2019-09-13 03:30:19
200.194.54.211	attackbots	SMB Server BruteForce Attack	2019-09-13 04:03:00
45.252.245.239	attackspam	SMB Server BruteForce Attack	2019-09-13 03:55:52
211.18.250.201	attackbots	Sep 12 16:49:35 bouncer sshd\[8667\]: Invalid user testftp from 211.18.250.201 port 38277 Sep 12 16:49:35 bouncer sshd\[8667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.18.250.201 Sep 12 16:49:36 bouncer sshd\[8667\]: Failed password for invalid user testftp from 211.18.250.201 port 38277 ssh2 ...	2019-09-13 03:35:44
139.5.237.163	attack	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-13 03:32:46
106.12.206.253	attackspambots	Sep 12 05:49:59 lcdev sshd\[24243\]: Invalid user ts3server from 106.12.206.253 Sep 12 05:49:59 lcdev sshd\[24243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253 Sep 12 05:50:02 lcdev sshd\[24243\]: Failed password for invalid user ts3server from 106.12.206.253 port 40540 ssh2 Sep 12 05:57:23 lcdev sshd\[24852\]: Invalid user node from 106.12.206.253 Sep 12 05:57:23 lcdev sshd\[24852\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253	2019-09-13 03:26:11
196.221.206.56	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 14:00:04,902 INFO [shellcode_manager] (196.221.206.56) no match, writing hexdump (06cb1cdc794ded1faa9f8ed0bf4f6df0 :10711) - SMB (Unknown)	2019-09-13 04:05:04
123.207.7.130	attackbots	Sep 12 20:58:00 saschabauer sshd[353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130 Sep 12 20:58:02 saschabauer sshd[353]: Failed password for invalid user dev from 123.207.7.130 port 53676 ssh2	2019-09-13 03:33:19
221.193.177.100	attack	Sep 12 17:54:35 ArkNodeAT sshd\[10671\]: Invalid user ubuntu from 221.193.177.100 Sep 12 17:54:35 ArkNodeAT sshd\[10671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.193.177.100 Sep 12 17:54:38 ArkNodeAT sshd\[10671\]: Failed password for invalid user ubuntu from 221.193.177.100 port 51712 ssh2	2019-09-13 03:21:53
201.174.182.159	attack	Brute force attempt	2019-09-13 03:43:09
61.250.144.195	attackbotsspam	Sep 12 09:13:17 php2 sshd\[22106\]: Invalid user 12345 from 61.250.144.195 Sep 12 09:13:17 php2 sshd\[22106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.solmo.co.kr Sep 12 09:13:18 php2 sshd\[22106\]: Failed password for invalid user 12345 from 61.250.144.195 port 61012 ssh2 Sep 12 09:20:20 php2 sshd\[23080\]: Invalid user test4321 from 61.250.144.195 Sep 12 09:20:20 php2 sshd\[23080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.solmo.co.kr	2019-09-13 03:34:24
176.227.195.138	attackspam	ThinkPHP Remote Code Execution Vulnerability, PTR: h176-227-195-138.host.redstation.co.uk.	2019-09-13 03:52:06
49.235.153.92	attack	Lines containing failures of 49.235.153.92 Sep 12 09:31:50 echo390 sshd[4612]: Did not receive identification string from 49.235.153.92 port 25145 Sep 12 09:32:59 echo390 sshd[4670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.92 user=r.r Sep 12 09:33:01 echo390 sshd[4670]: Failed password for r.r from 49.235.153.92 port 49741 ssh2 Sep 12 09:33:01 echo390 sshd[4670]: Received disconnect from 49.235.153.92 port 49741:11: Normal Shutdown, Thank you for playing [preauth] Sep 12 09:33:01 echo390 sshd[4670]: Disconnected from authenticating user r.r 49.235.153.92 port 49741 [preauth] Sep 12 09:34:19 echo390 sshd[4860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.92 user=r.r Sep 12 09:34:21 echo390 sshd[4860]: Failed password for r.r from 49.235.153.92 port 55777 ssh2 Sep 12 09:34:21 echo390 sshd[4860]: Received disconnect from 49.235.153.92 port 55777:11: Normal Shu........ ------------------------------	2019-09-13 03:34:51
113.70.236.26	attackspambots	Sep 12 13:30:23 Tower sshd[8173]: Connection from 113.70.236.26 port 44694 on 192.168.10.220 port 22 Sep 12 13:30:25 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:26 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:26 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:26 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:27 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:27 Tower sshd[8173]: Failed password for root from 113.70.236.26 port 44694 ssh2 Sep 12 13:30:27 Tower sshd[8173]: error: maximum authentication attempts exceeded for root from 113.70.236.26 port 44694 ssh2 [preauth] Sep 12 13:30:27 Tower sshd[8173]: Disconnecting authenticating user root 113.70.236.26 port 44694: Too many authentication failures [preauth]	2019-09-13 03:39:38
182.100.69.206	attack	Sep 12 18:20:34 mail postfix/smtpd\[1259\]: warning: unknown\[182.100.69.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 18:20:52 mail postfix/smtpd\[1258\]: warning: unknown\[182.100.69.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 18:21:12 mail postfix/smtpd\[1259\]: warning: unknown\[182.100.69.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-13 03:36:46

最近上报的IP列表

190.61.45.178	110.40.237.162	155.158.214.158	200.164.74.162
120.170.218.168	103.82.130.171	48.42.113.23	148.112.94.174
180.247.43.43	222.119.19.200	7.213.141.15	143.208.138.156
238.220.42.133	129.163.217.83	110.115.114.172	36.200.193.5
117.11.82.68	217.15.118.38	171.229.240.60	125.26.97.249