114.40.145.225

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	firewall-block, port(s): 23/tcp	2019-09-20 08:14:24

相同子网IP讨论:

IP	类型	评论内容	时间
114.40.145.107	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.40.145.107/ TW - 1H : (314) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.40.145.107 CIDR : 114.40.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 9 3H - 61 6H - 94 12H - 157 24H - 301 DateTime : 2019-10-10 05:45:47 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-10 18:21:27
114.40.145.133	attack	scan z	2019-09-13 06:52:52

类型

评论内容

时间

114.40.145.107

attackbots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.40.145.107/ 
 TW - 1H : (314)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TW 
 NAME ASN : ASN3462 
 
 IP : 114.40.145.107 
 
 CIDR : 114.40.0.0/16 
 
 PREFIX COUNT : 390 
 
 UNIQUE IP COUNT : 12267520 
 
 
 WYKRYTE ATAKI Z ASN3462 :  
  1H - 9 
  3H - 61 
  6H - 94 
 12H - 157 
 24H - 301 
 
 DateTime : 2019-10-10 05:45:47 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-10 18:21:27

114.40.145.133

attack

scan z

2019-09-13 06:52:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.40.145.225
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10677
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.40.145.225.			IN	A

;; AUTHORITY SECTION:
.			493	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400

;; Query time: 229 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 08:14:21 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

225.145.40.114.in-addr.arpa domain name pointer 114-40-145-225.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
225.145.40.114.in-addr.arpa	name = 114-40-145-225.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
163.172.43.70	attackbots	Jun 4 04:09:17 hcbbdb sshd\[8769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.43.70 user=root Jun 4 04:09:19 hcbbdb sshd\[8769\]: Failed password for root from 163.172.43.70 port 43716 ssh2 Jun 4 04:09:39 hcbbdb sshd\[8794\]: Invalid user lenovo from 163.172.43.70 Jun 4 04:09:39 hcbbdb sshd\[8794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.43.70 Jun 4 04:09:40 hcbbdb sshd\[8794\]: Failed password for invalid user lenovo from 163.172.43.70 port 44238 ssh2	2020-06-04 12:30:17
112.85.42.176	attackbotsspam	Jun 4 06:04:50 minden010 sshd[23561]: Failed password for root from 112.85.42.176 port 6825 ssh2 Jun 4 06:04:54 minden010 sshd[23561]: Failed password for root from 112.85.42.176 port 6825 ssh2 Jun 4 06:04:57 minden010 sshd[23561]: Failed password for root from 112.85.42.176 port 6825 ssh2 Jun 4 06:05:01 minden010 sshd[23561]: Failed password for root from 112.85.42.176 port 6825 ssh2 ...	2020-06-04 12:18:15
190.96.229.255	attackbotsspam	2020-06-04 05:58:01 1jgh0x-0007kn-AX SMTP connection from $\[190.96.229.255\]$ \[190.96.229.255\]:13314 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-06-04 05:58:33 1jgh1U-0007lG-Ay SMTP connection from $\[190.96.229.255\]$ \[190.96.229.255\]:13565 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-06-04 05:58:52 1jgh1m-0007lg-9U SMTP connection from $\[190.96.229.255\]$ \[190.96.229.255\]:13694 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-06-04 12:15:02
104.248.187.165	attackspam	Jun 4 05:55:37 jane sshd[20635]: Failed password for root from 104.248.187.165 port 58758 ssh2 ...	2020-06-04 12:14:33
197.255.160.225	attackspam	Jun 4 06:58:15 hosting sshd[24817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.255.160.225 user=root Jun 4 06:58:17 hosting sshd[24817]: Failed password for root from 197.255.160.225 port 23770 ssh2 ...	2020-06-04 12:44:05
138.197.210.82	attack	$f2bV_matches	2020-06-04 12:34:02
51.178.28.196	attack	Jun 4 06:01:34 abendstille sshd\[28270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.28.196 user=root Jun 4 06:01:36 abendstille sshd\[28270\]: Failed password for root from 51.178.28.196 port 36972 ssh2 Jun 4 06:05:03 abendstille sshd\[31719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.28.196 user=root Jun 4 06:05:06 abendstille sshd\[31719\]: Failed password for root from 51.178.28.196 port 41186 ssh2 Jun 4 06:08:39 abendstille sshd\[2886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.28.196 user=root ...	2020-06-04 12:16:51
185.50.25.49	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-06-04 12:44:18
185.176.27.102	attack	06/04/2020-00:02:24.565285 185.176.27.102 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-04 12:05:16
116.213.168.212	attack	2020-06-04T05:56:19.751274rocketchat.forhosting.nl sshd[14345]: Failed password for root from 116.213.168.212 port 46437 ssh2 2020-06-04T05:58:28.889468rocketchat.forhosting.nl sshd[14354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.213.168.212 user=root 2020-06-04T05:58:30.794908rocketchat.forhosting.nl sshd[14354]: Failed password for root from 116.213.168.212 port 59257 ssh2 ...	2020-06-04 12:31:56
178.138.96.236	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-06-04 12:11:22
188.166.251.156	attack	Jun 4 05:54:41 * sshd[13629]: Failed password for root from 188.166.251.156 port 37000 ssh2	2020-06-04 12:27:37
69.30.221.250	attackspam	20 attempts against mh-misbehave-ban on sea	2020-06-04 12:23:13
42.117.91.107	attackspam		2020-06-04 12:36:14
112.85.42.187	attackspam	Jun 4 09:35:59 dhoomketu sshd[476378]: Failed password for root from 112.85.42.187 port 57978 ssh2 Jun 4 09:37:52 dhoomketu sshd[476390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root Jun 4 09:37:54 dhoomketu sshd[476390]: Failed password for root from 112.85.42.187 port 53228 ssh2 Jun 4 09:39:45 dhoomketu sshd[476479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root Jun 4 09:39:47 dhoomketu sshd[476479]: Failed password for root from 112.85.42.187 port 37662 ssh2 ...	2020-06-04 12:17:46

最近上报的IP列表

90.150.198.237	202.70.37.58	94.23.153.27	112.78.3.26
37.247.54.2	122.90.32.179	120.16.133.109	80.67.220.15
78.38.67.11	63.245.88.138	175.245.157.117	35.190.9.82
189.184.176.220	34.73.255.69	153.63.235.104	5.39.163.224
112.221.57.128	26.166.143.213	18.203.76.217	41.238.83.167