14.136.249.140

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Broadband Network Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	19/9/24@08:37:43: FAIL: Alarm-Intrusion address from=14.136.249.140 ...	2019-09-25 03:33:08
attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 22:11:30

相同子网IP讨论:

IP	类型	评论内容	时间
14.136.249.138	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 21:24:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.136.249.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39919
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.136.249.140.			IN	A

;; AUTHORITY SECTION:
.			2822	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 22:11:13 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

140.249.136.14.in-addr.arpa domain name pointer 014136249140.static.ctinets.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
140.249.136.14.in-addr.arpa	name = 014136249140.static.ctinets.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.91.132.170	attackspam	Sep 21 09:38:31 vps647732 sshd[26693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.91.132.170 Sep 21 09:38:33 vps647732 sshd[26693]: Failed password for invalid user barbara from 201.91.132.170 port 41575 ssh2 ...	2019-09-21 20:48:06
157.230.119.200	attack	$f2bV_matches_ltvn	2019-09-21 20:44:52
104.244.73.115	attackbotsspam	$f2bV_matches_ltvn	2019-09-21 20:34:12
203.156.198.210	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-09-21 21:12:16
91.61.39.185	attack	Sep 21 15:59:28 taivassalofi sshd[18998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.61.39.185 Sep 21 15:59:30 taivassalofi sshd[18998]: Failed password for invalid user lamar from 91.61.39.185 port 34299 ssh2 ...	2019-09-21 21:13:39
208.102.21.209	attackbots	Unauthorised access (Sep 21) SRC=208.102.21.209 LEN=44 TTL=241 ID=35010 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Sep 17) SRC=208.102.21.209 LEN=44 TTL=241 ID=45051 TCP DPT=445 WINDOW=1024 SYN	2019-09-21 21:01:14
178.128.100.229	attackbots	Sep 21 08:55:11 ny01 sshd[26905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.100.229 Sep 21 08:55:14 ny01 sshd[26905]: Failed password for invalid user administrator from 178.128.100.229 port 35002 ssh2 Sep 21 08:59:34 ny01 sshd[27860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.100.229	2019-09-21 21:11:16
103.69.218.114	attack	Sep 21 05:46:30 smtp postfix/smtpd[61469]: NOQUEUE: reject: RCPT from unknown[103.69.218.114]: 554 5.7.1 Service unavailable; Client host [103.69.218.114] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?103.69.218.114; from= to= proto=ESMTP helo= ...	2019-09-21 20:36:48
125.163.134.67	attackspambots	Honeypot attack, port: 445, PTR: 67.subnet125-163-134.speedy.telkom.net.id.	2019-09-21 21:01:50
213.4.33.11	attack	Sep 21 14:55:39 vps691689 sshd[19365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.4.33.11 Sep 21 14:55:41 vps691689 sshd[19365]: Failed password for invalid user qz from 213.4.33.11 port 42732 ssh2 ...	2019-09-21 21:01:02
51.79.52.224	attack	Sep 20 01:25:00 fv15 sshd[20266]: Failed password for invalid user steamuser from 51.79.52.224 port 56298 ssh2 Sep 20 01:25:00 fv15 sshd[20266]: Received disconnect from 51.79.52.224: 11: Bye Bye [preauth] Sep 20 01:40:43 fv15 sshd[17373]: Failed password for r.r from 51.79.52.224 port 51494 ssh2 Sep 20 01:40:43 fv15 sshd[17373]: Received disconnect from 51.79.52.224: 11: Bye Bye [preauth] Sep 20 01:44:37 fv15 sshd[731]: Failed password for invalid user karim from 51.79.52.224 port 36766 ssh2 Sep 20 01:44:37 fv15 sshd[731]: Received disconnect from 51.79.52.224: 11: Bye Bye [preauth] Sep 20 01:48:35 fv15 sshd[17233]: Failed password for invalid user kodiak from 51.79.52.224 port 50254 ssh2 Sep 20 01:48:35 fv15 sshd[17233]: Received disconnect from 51.79.52.224: 11: Bye Bye [preauth] Sep 20 01:52:24 fv15 sshd[21679]: Failed password for invalid user abela from 51.79.52.224 port 35500 ssh2 Sep 20 01:52:24 fv15 sshd[21679]: Received disconnect from 51.79.52.224: 11: Bye By........ -------------------------------	2019-09-21 20:51:08
193.112.219.228	attackspambots	2019-09-21T14:53:52.047476lon01.zurich-datacenter.net sshd\[25513\]: Invalid user toiden from 193.112.219.228 port 55792 2019-09-21T14:53:52.052295lon01.zurich-datacenter.net sshd\[25513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.228 2019-09-21T14:53:54.050758lon01.zurich-datacenter.net sshd\[25513\]: Failed password for invalid user toiden from 193.112.219.228 port 55792 ssh2 2019-09-21T14:59:38.521869lon01.zurich-datacenter.net sshd\[25645\]: Invalid user shun from 193.112.219.228 port 38930 2019-09-21T14:59:38.526096lon01.zurich-datacenter.net sshd\[25645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.228 ...	2019-09-21 21:04:22
203.178.148.18	attackbotsspam	[Service blocked: ICMP_echo_req] from source 203.178.148.18, Friday, Sep 20,2019 17:34:59	2019-09-21 20:47:46
188.166.228.244	attackbots	Invalid user helpdesk from 188.166.228.244 port 54763	2019-09-21 20:39:02
121.133.169.254	attackspambots	Sep 20 18:01:02 aiointranet sshd\[28922\]: Invalid user qg from 121.133.169.254 Sep 20 18:01:02 aiointranet sshd\[28922\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.133.169.254 Sep 20 18:01:04 aiointranet sshd\[28922\]: Failed password for invalid user qg from 121.133.169.254 port 34660 ssh2 Sep 20 18:05:55 aiointranet sshd\[29393\]: Invalid user xiu from 121.133.169.254 Sep 20 18:05:55 aiointranet sshd\[29393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.133.169.254	2019-09-21 20:40:58

最近上报的IP列表

180.126.229.250	96.27.220.214	178.150.249.64	167.71.215.22
149.0.71.189	125.227.84.5	124.205.140.186	123.30.188.213
113.53.231.34	55.34.168.0	85.15.173.118	212.89.161.143
74.91.24.236	39.86.8.94	36.72.70.165	27.54.163.116
14.231.94.171	216.138.25.243	185.139.56.41	185.79.15.38