140.116.164.228

基本信息:

城市(city): Tainan

省份(region): Tainan

国家(country): Taiwan, China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.116.164.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40266
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.116.164.228.		IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023051600 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 16 17:21:46 CST 2023
;; MSG SIZE  rcvd: 108

HOST信息:

Host 228.164.116.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 228.164.116.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
219.143.70.248	attackbotsspam	ICMP MH Probe, Scan /Distributed -	2020-02-10 22:25:48
27.78.14.83	attack	SSH brute-force: detected 10 distinct usernames within a 24-hour window.	2020-02-10 22:25:15
179.183.209.156	attackspambots	1581342102 - 02/10/2020 14:41:42 Host: 179.183.209.156/179.183.209.156 Port: 445 TCP Blocked	2020-02-10 22:11:55
118.25.156.20	attackbots	SSH Bruteforce attack	2020-02-10 22:45:20
219.143.70.249	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-02-10 22:19:45
176.113.70.60	attackbotsspam	Feb 10 15:01:06 h2177944 kernel: \[4541282.631642\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=50467 DPT=1900 LEN=107 Feb 10 15:01:06 h2177944 kernel: \[4541282.631655\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=50467 DPT=1900 LEN=107 Feb 10 15:01:06 h2177944 kernel: \[4541282.631667\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=50466 DPT=1900 LEN=107 Feb 10 15:01:06 h2177944 kernel: \[4541282.631675\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=50466 DPT=1900 LEN=107 Feb 10 15:01:06 h2177944 kernel: \[4541282.631751\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=50468 DPT=1900 LEN=107 Feb 10 15	2020-02-10 22:48:04
119.198.143.15	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-10 22:52:03
116.118.5.147	attackspambots	Feb 10 14:35:53 venus2 sshd[23623]: Invalid user pi from 116.118.5.147 Feb 10 14:35:54 venus2 sshd[23638]: Invalid user pi from 116.118.5.147 Feb 10 14:35:56 venus2 sshd[23623]: Failed password for invalid user pi from 116.118.5.147 port 44072 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.118.5.147	2020-02-10 22:46:01
170.210.136.56	attack	$f2bV_matches	2020-02-10 22:24:18
95.108.181.123	attackspambots	[Mon Feb 10 20:41:27.163428 2020] [:error] [pid 26763:tid 139998917191424] [client 95.108.181.123:50201] [client 95.108.181.123] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XkFdh-a54sPagQy5v9zFVgAAAAI"] ...	2020-02-10 22:34:34
183.163.167.172	attack	02/10/2020-14:41:22.867510 183.163.167.172 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-10 22:44:34
49.88.112.113	attackspam	Feb 10 04:51:03 eddieflores sshd\[25614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Feb 10 04:51:05 eddieflores sshd\[25614\]: Failed password for root from 49.88.112.113 port 30100 ssh2 Feb 10 04:52:10 eddieflores sshd\[25698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Feb 10 04:52:13 eddieflores sshd\[25698\]: Failed password for root from 49.88.112.113 port 34351 ssh2 Feb 10 04:53:07 eddieflores sshd\[25763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2020-02-10 22:55:43
206.189.119.73	attackspambots	$f2bV_matches	2020-02-10 22:15:30
148.70.250.207	attackbotsspam	Feb 10 15:29:13 silence02 sshd[25606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.250.207 Feb 10 15:29:15 silence02 sshd[25606]: Failed password for invalid user ojv from 148.70.250.207 port 49063 ssh2 Feb 10 15:33:37 silence02 sshd[25848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.250.207	2020-02-10 22:38:36
203.45.45.241	attack	$f2bV_matches	2020-02-10 22:47:28

最近上报的IP列表

150.69.84.222	149.156.62.12	195.113.241.34	195.134.66.96
117.103.68.157	140.116.82.59	115.171.191.6	136.152.143.97
140.116.26.82	140.117.69.53	140.116.248.1	140.116.72.74
88.200.109.16	140.116.65.137	140.116.193.177	133.105.11.8
150.46.245.30	165.242.40.33	140.116.165.50	200.89.69.146