140.116.1.142 - IPInfo

基本信息:

城市(city): Tainan

省份(region): Tainan

国家(country): Taiwan, China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
140.116.1.136	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-05 17:07:42
140.116.1.136	attack	Automatic report - XMLRPC Attack	2020-06-02 19:30:15
140.116.161.244	attackbotsspam	2019-09-06T06:04:06.356560abusebot-2.cloudsearch.cf sshd\[23083\]: Invalid user vbox from 140.116.161.244 port 37092	2019-09-06 14:45:41

类型

评论内容

时间

140.116.1.136

attackbotsspam

"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:

2020-07-05 17:07:42

140.116.1.136

attack

Automatic report - XMLRPC Attack

2020-06-02 19:30:15

140.116.161.244

attackbotsspam

2019-09-06T06:04:06.356560abusebot-2.cloudsearch.cf sshd\[23083\]: Invalid user vbox from 140.116.161.244 port 37092

2019-09-06 14:45:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.116.1.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21542
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.116.1.142.			IN	A

;; AUTHORITY SECTION:
.			509	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 04 15:00:00 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

Host 142.1.116.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.1.116.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
170.0.48.177	attack	Jun 8 05:16:23 mail.srvfarm.net postfix/smtpd[669639]: warning: unknown[170.0.48.177]: SASL PLAIN authentication failed: Jun 8 05:16:23 mail.srvfarm.net postfix/smtpd[669639]: lost connection after AUTH from unknown[170.0.48.177] Jun 8 05:17:09 mail.srvfarm.net postfix/smtpd[671308]: warning: unknown[170.0.48.177]: SASL PLAIN authentication failed: Jun 8 05:17:09 mail.srvfarm.net postfix/smtpd[671308]: lost connection after AUTH from unknown[170.0.48.177] Jun 8 05:25:47 mail.srvfarm.net postfix/smtps/smtpd[671676]: warning: unknown[170.0.48.177]: SASL PLAIN authentication failed:	2020-06-08 18:41:50
190.103.220.77	attack	Jun 8 05:14:56 mail.srvfarm.net postfix/smtpd[652520]: warning: unknown[190.103.220.77]: SASL PLAIN authentication failed: Jun 8 05:14:57 mail.srvfarm.net postfix/smtpd[652520]: lost connection after AUTH from unknown[190.103.220.77] Jun 8 05:22:55 mail.srvfarm.net postfix/smtps/smtpd[672369]: warning: unknown[190.103.220.77]: SASL PLAIN authentication failed: Jun 8 05:22:56 mail.srvfarm.net postfix/smtps/smtpd[672369]: lost connection after AUTH from unknown[190.103.220.77] Jun 8 05:24:35 mail.srvfarm.net postfix/smtps/smtpd[671677]: warning: unknown[190.103.220.77]: SASL PLAIN authentication failed:	2020-06-08 18:35:15
201.73.143.60	attackbotsspam	(sshd) Failed SSH login from 201.73.143.60 (BR/Brazil/cs-201-73-143-60.embratelcloud.com.br): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 8 12:20:56 serv sshd[15955]: User root from 201.73.143.60 not allowed because not listed in AllowUsers Jun 8 12:20:57 serv sshd[15955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.73.143.60 user=root	2020-06-08 18:56:39
179.108.240.26	attack	2020-06-07 07:53:31 SMTP:25 IP autobanned - 2 attempts a day	2020-06-08 18:25:33
13.93.65.12	attackbots	Jun 8 09:34:00 web01.agentur-b-2.de postfix/smtps/smtpd[1394020]: warning: unknown[13.93.65.12]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:36:33 web01.agentur-b-2.de postfix/smtps/smtpd[1396037]: warning: unknown[13.93.65.12]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:39:01 web01.agentur-b-2.de postfix/smtps/smtpd[1396425]: warning: unknown[13.93.65.12]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:41:20 web01.agentur-b-2.de postfix/smtps/smtpd[1397544]: warning: unknown[13.93.65.12]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:43:46 web01.agentur-b-2.de postfix/smtps/smtpd[1397607]: warning: unknown[13.93.65.12]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-08 18:32:27
200.3.16.245	attackbotsspam	$f2bV_matches	2020-06-08 18:34:08
125.137.191.215	attackspam	2020-06-08T10:06:32.882834vps751288.ovh.net sshd\[30671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.137.191.215 user=root 2020-06-08T10:06:34.629108vps751288.ovh.net sshd\[30671\]: Failed password for root from 125.137.191.215 port 33568 ssh2 2020-06-08T10:09:21.632184vps751288.ovh.net sshd\[30691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.137.191.215 user=root 2020-06-08T10:09:23.247784vps751288.ovh.net sshd\[30691\]: Failed password for root from 125.137.191.215 port 55248 ssh2 2020-06-08T10:12:15.209952vps751288.ovh.net sshd\[30747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.137.191.215 user=root	2020-06-08 18:57:28
148.153.11.58	attackspam	Jun 8 05:08:48 web01.agentur-b-2.de postfix/smtpd[1319302]: NOQUEUE: reject: RCPT from unknown[148.153.11.58]: 554 5.7.1 Service unavailable; Client host [148.153.11.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/148.153.11.58 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<111.co.za> Jun 8 05:08:50 web01.agentur-b-2.de postfix/smtpd[1319302]: NOQUEUE: reject: RCPT from unknown[148.153.11.58]: 554 5.7.1 Service unavailable; Client host [148.153.11.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/148.153.11.58 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<111.co.za> Jun 8 05:08:52 web01.agentur-b-2.de postfix/smtpd[1319302]: NOQUEUE: reject: RCPT from unknown[148.153.11.58]: 554 5.7.1 Service unavailable; Client host [148.153.11.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/148.153.11.58 / https://www.spamhaus.or	2020-06-08 18:43:08
186.96.106.155	attackspam	$f2bV_matches	2020-06-08 18:38:34
77.45.84.75	attackbotsspam	Jun 8 05:18:45 mail.srvfarm.net postfix/smtps/smtpd[652504]: warning: 77-45-84-75.sta.asta-net.com.pl[77.45.84.75]: SASL PLAIN authentication failed: Jun 8 05:18:45 mail.srvfarm.net postfix/smtps/smtpd[652504]: lost connection after AUTH from 77-45-84-75.sta.asta-net.com.pl[77.45.84.75] Jun 8 05:18:54 mail.srvfarm.net postfix/smtps/smtpd[653845]: warning: 77-45-84-75.sta.asta-net.com.pl[77.45.84.75]: SASL PLAIN authentication failed: Jun 8 05:18:54 mail.srvfarm.net postfix/smtps/smtpd[653845]: lost connection after AUTH from 77-45-84-75.sta.asta-net.com.pl[77.45.84.75] Jun 8 05:21:31 mail.srvfarm.net postfix/smtpd[671463]: warning: 77-45-84-75.sta.asta-net.com.pl[77.45.84.75]: SASL PLAIN authentication failed:	2020-06-08 18:48:47
109.162.242.157	attackbotsspam	Jun 8 05:35:25 mail.srvfarm.net postfix/smtps/smtpd[673725]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed: Jun 8 05:35:25 mail.srvfarm.net postfix/smtps/smtpd[673725]: lost connection after AUTH from unknown[109.162.242.157] Jun 8 05:38:01 mail.srvfarm.net postfix/smtps/smtpd[673725]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed: Jun 8 05:38:01 mail.srvfarm.net postfix/smtps/smtpd[673725]: lost connection after AUTH from unknown[109.162.242.157] Jun 8 05:43:14 mail.srvfarm.net postfix/smtpd[671306]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed:	2020-06-08 18:28:31
80.211.241.87	attackbotsspam	Jun 8 09:05:22 mail.srvfarm.net postfix/smtpd[747983]: lost connection after CONNECT from unknown[80.211.241.87] Jun 8 09:05:35 mail.srvfarm.net postfix/smtpd[749856]: warning: unknown[80.211.241.87]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:05:35 mail.srvfarm.net postfix/smtpd[749856]: lost connection after AUTH from unknown[80.211.241.87] Jun 8 09:06:33 mail.srvfarm.net postfix/smtpd[746296]: warning: unknown[80.211.241.87]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 09:06:33 mail.srvfarm.net postfix/smtpd[746296]: lost connection after AUTH from unknown[80.211.241.87]	2020-06-08 18:48:00
103.104.127.158	attackbotsspam	Jun 8 05:03:05 mail.srvfarm.net postfix/smtps/smtpd[653813]: warning: unknown[103.104.127.158]: SASL PLAIN authentication failed: Jun 8 05:03:05 mail.srvfarm.net postfix/smtps/smtpd[653813]: lost connection after AUTH from unknown[103.104.127.158] Jun 8 05:07:07 mail.srvfarm.net postfix/smtpd[653266]: warning: unknown[103.104.127.158]: SASL PLAIN authentication failed: Jun 8 05:07:07 mail.srvfarm.net postfix/smtpd[653266]: lost connection after AUTH from unknown[103.104.127.158] Jun 8 05:09:27 mail.srvfarm.net postfix/smtpd[652520]: warning: unknown[103.104.127.158]: SASL PLAIN authentication failed:	2020-06-08 18:44:45
139.59.59.102	attackbots	Jun 8 09:48:24 PorscheCustomer sshd[14434]: Failed password for root from 139.59.59.102 port 39658 ssh2 Jun 8 09:51:53 PorscheCustomer sshd[14586]: Failed password for root from 139.59.59.102 port 34936 ssh2 ...	2020-06-08 18:59:37
177.44.16.145	attack	Jun 8 05:40:33 mail.srvfarm.net postfix/smtpd[671306]: warning: unknown[177.44.16.145]: SASL PLAIN authentication failed: Jun 8 05:40:34 mail.srvfarm.net postfix/smtpd[671306]: lost connection after AUTH from unknown[177.44.16.145] Jun 8 05:41:30 mail.srvfarm.net postfix/smtps/smtpd[671677]: warning: unknown[177.44.16.145]: SASL PLAIN authentication failed: Jun 8 05:41:31 mail.srvfarm.net postfix/smtps/smtpd[671677]: lost connection after AUTH from unknown[177.44.16.145] Jun 8 05:44:09 mail.srvfarm.net postfix/smtpd[678259]: warning: unknown[177.44.16.145]: SASL PLAIN authentication failed:	2020-06-08 18:27:33

最近上报的IP列表

115.178.236.46	14.139.59.140	157.27.81.26	140.116.117.34
140.116.39.120	140.127.168.37	132.206.196.214	88.197.66.82
140.116.158.225	133.103.200.148	116.206.31.56	130.15.19.132
140.120.1.33	140.116.159.91	140.116.111.176	172.17.0.2
144.92.197.234	140.116.83.3	140.116.215.120	140.116.221.123