128.14.140.82 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Zenlayer Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	22/tcp 1900/udp... [2020-04-02/08]7pkt,1pt.(tcp),1pt.(udp)	2020-04-09 03:53:44

相同子网IP讨论:

IP	类型	评论内容	时间
128.14.140.182	attackbotsspam	UDP 128.14.140.182:45413 -> port 123, len 37	2020-08-05 05:26:19
128.14.140.30	attackbotsspam	389/udp 389/udp 389/udp... [2020-04-10/05-04]6pkt,1pt.(udp)	2020-05-04 16:11:52
128.14.140.122	attack	Honeypot hit.	2020-04-10 12:34:07
128.14.140.182	attack	scan z	2020-03-10 17:53:41
128.14.140.138	attackbotsspam	port scan/probe/communication attempt	2019-08-04 07:15:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.14.140.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16985
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.14.140.82.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040801 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 09 03:53:39 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 82.140.14.128.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 82.140.14.128.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
194.44.243.186	attackspambots	Dovecot Invalid User Login Attempt.	2020-08-19 21:18:58
129.211.45.88	attack	Aug 19 18:44:42 dhoomketu sshd[2485864]: Invalid user norbi from 129.211.45.88 port 44216 Aug 19 18:44:42 dhoomketu sshd[2485864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 Aug 19 18:44:42 dhoomketu sshd[2485864]: Invalid user norbi from 129.211.45.88 port 44216 Aug 19 18:44:44 dhoomketu sshd[2485864]: Failed password for invalid user norbi from 129.211.45.88 port 44216 ssh2 Aug 19 18:47:44 dhoomketu sshd[2485959]: Invalid user tmp from 129.211.45.88 port 44758 ...	2020-08-19 21:23:31
222.186.190.14	attack	2020-08-19T15:21:41.634799vps773228.ovh.net sshd[28238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root 2020-08-19T15:21:43.750693vps773228.ovh.net sshd[28238]: Failed password for root from 222.186.190.14 port 18005 ssh2 2020-08-19T15:21:41.634799vps773228.ovh.net sshd[28238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root 2020-08-19T15:21:43.750693vps773228.ovh.net sshd[28238]: Failed password for root from 222.186.190.14 port 18005 ssh2 2020-08-19T15:21:46.047333vps773228.ovh.net sshd[28238]: Failed password for root from 222.186.190.14 port 18005 ssh2 ...	2020-08-19 21:24:48
183.89.229.142	attack	Aug 19 06:31:49 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 14 secs): user=, method=PLAIN, rip=183.89.229.142, lip=185.198.26.142, TLS: Disconnected, session= ...	2020-08-19 21:17:42
81.68.111.134	attackspambots	Aug 19 15:45:01 journals sshd\[38923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.111.134 user=root Aug 19 15:45:03 journals sshd\[38923\]: Failed password for root from 81.68.111.134 port 57822 ssh2 Aug 19 15:48:24 journals sshd\[39335\]: Invalid user share from 81.68.111.134 Aug 19 15:48:24 journals sshd\[39335\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.111.134 Aug 19 15:48:25 journals sshd\[39335\]: Failed password for invalid user share from 81.68.111.134 port 39094 ssh2 ...	2020-08-19 20:57:28
189.213.144.47	attackbots	Automatic report - Port Scan Attack	2020-08-19 21:00:54
45.55.88.16	attackbotsspam	2020-08-19T13:22:48.753914shield sshd\[2485\]: Invalid user office from 45.55.88.16 port 45006 2020-08-19T13:22:48.762850shield sshd\[2485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.88.16 2020-08-19T13:22:50.743177shield sshd\[2485\]: Failed password for invalid user office from 45.55.88.16 port 45006 ssh2 2020-08-19T13:25:21.360993shield sshd\[2707\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.88.16 user=root 2020-08-19T13:25:23.346220shield sshd\[2707\]: Failed password for root from 45.55.88.16 port 34522 ssh2	2020-08-19 21:30:51
139.255.93.196	attackspambots	Unauthorized connection attempt from IP address 139.255.93.196 on Port 445(SMB)	2020-08-19 21:31:26
111.207.49.186	attackbots	Aug 19 15:33:33 ip40 sshd[6055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.207.49.186 Aug 19 15:33:34 ip40 sshd[6055]: Failed password for invalid user wms from 111.207.49.186 port 45608 ssh2 ...	2020-08-19 21:38:05
111.229.139.95	attackbotsspam	$f2bV_matches	2020-08-19 21:03:25
111.72.193.52	attackbots	Aug 19 14:31:04 srv01 postfix/smtpd\[7554\]: warning: unknown\[111.72.193.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 14:31:18 srv01 postfix/smtpd\[7554\]: warning: unknown\[111.72.193.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 14:31:32 srv01 postfix/smtpd\[7554\]: warning: unknown\[111.72.193.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 14:31:50 srv01 postfix/smtpd\[7554\]: warning: unknown\[111.72.193.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 14:32:04 srv01 postfix/smtpd\[7554\]: warning: unknown\[111.72.193.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-19 20:55:12
185.220.103.7	attackbots	CMS (WordPress or Joomla) login attempt.	2020-08-19 21:06:31
188.212.183.27	attack	Unauthorized connection attempts	2020-08-19 20:58:43
179.111.118.187	attack	Unauthorized connection attempt from IP address 179.111.118.187 on Port 445(SMB)	2020-08-19 21:31:44
90.112.42.41	attackbots	Hacking	2020-08-19 21:04:37

最近上报的IP列表

82.213.229.176	182.149.160.18	114.40.71.76	27.48.228.149
2604:a880:400:d1::6ab:e001	134.122.114.80	60.248.52.35	201.75.30.84
113.240.153.210	170.79.83.228	5.79.145.240	197.58.7.149
101.88.100.145	184.22.155.19	46.119.149.140	170.81.252.206
220.133.135.207	62.234.217.203	112.204.241.29	77.42.73.20