114.239.132.204

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.239.132.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56384
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.239.132.204.		IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 03:16:32 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 204.132.239.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.132.239.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.34.120.197	attackbots	Unauthorized IMAP connection attempt	2019-07-10 14:16:22
66.249.69.89	attack	Automatic report - Web App Attack	2019-07-10 14:12:59
183.80.89.68	attack	DATE:2019-07-10 01:20:36, IP:183.80.89.68, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-10 14:24:36
95.66.241.76	attackspambots	Caught in portsentry honeypot	2019-07-10 14:10:19
141.8.132.24	attackspam	[Wed Jul 10 06:18:52.302937 2019] [:error] [pid 12219:tid 139977212000000] [client 141.8.132.24:40127] [client 141.8.132.24] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XSUg3FIMVtpCcCd8oJ8TkAAAAAg"] ...	2019-07-10 15:00:35
105.235.116.254	attackbotsspam	Jul 10 06:25:51 thevastnessof sshd[18189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.235.116.254 ...	2019-07-10 14:56:43
78.46.75.251	attackbots	Many RDP login attempts detected by IDS script	2019-07-10 14:34:13
51.89.142.92	attackspam	Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16559]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16851]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16852]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16853]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16854]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:47 online-web-vs-1 postfix/smtpd[16855]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:48 online-web-vs-1 postfix/smtpd[16856]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:48 online-web-vs-1 postfix/smtpd[16857]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:48 online-web-vs-1 postfix/smtpd[16858]: connect from ip92.ip-51-89-142.eu[51.89.142.92] Jul 9 23:03:48 online-web-vs-1 postfix/smtpd[16859]: connect from........ -------------------------------	2019-07-10 14:28:39
106.51.77.214	attack	Jul 10 04:06:58 ns341937 sshd[27342]: Failed password for root from 106.51.77.214 port 50534 ssh2 Jul 10 04:10:01 ns341937 sshd[27612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.77.214 Jul 10 04:10:02 ns341937 sshd[27612]: Failed password for invalid user prueba1 from 106.51.77.214 port 52928 ssh2 ...	2019-07-10 15:05:08
113.161.80.77	attackspam	Unauthorised access (Jul 10) SRC=113.161.80.77 LEN=52 TTL=117 ID=28086 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-10 14:48:04
200.233.131.21	attackspambots	10.07.2019 04:02:42 SSH access blocked by firewall	2019-07-10 14:45:19
180.76.15.161	attackbots	Automatic report - Web App Attack	2019-07-10 14:14:53
89.178.198.119	attackbotsspam	Jul 10 01:20:38 srv1-bit sshd[2754]: User root from 89-178-198-119.broadband.corbina.ru not allowed because not listed in AllowUsers Jul 10 01:20:38 srv1-bit sshd[2754]: User root from 89-178-198-119.broadband.corbina.ru not allowed because not listed in AllowUsers ...	2019-07-10 14:23:22
34.80.24.133	attackspambots	Tried sshing with brute force.	2019-07-10 14:29:41
42.112.135.205	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 19:55:42,942 INFO [shellcode_manager] (42.112.135.205) no match, writing hexdump (500acd120bc00603b13b4ee749086bf0 :2096088) - MS17010 (EternalBlue)	2019-07-10 14:41:24

最近上报的IP列表

114.239.132.158	114.239.132.247	114.239.132.25	114.239.132.254
114.239.132.38	114.239.132.42	115.216.57.244	114.239.132.53
114.239.132.62	114.239.132.68	114.239.140.136	114.239.140.23
114.239.141.2	114.239.141.215	114.239.141.229	114.239.143.164
114.239.142.253	114.239.142.56	114.239.144.10	114.239.144.100