140.116.5.58 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
140.116.56.62	attack	Invalid user test from 140.116.56.62 port 41297	2020-04-11 00:28:02
140.116.54.34	attackbots	Mar 24 16:57:39 ns382633 sshd\[6182\]: Invalid user pi from 140.116.54.34 port 50608 Mar 24 16:57:39 ns382633 sshd\[6183\]: Invalid user pi from 140.116.54.34 port 50610 Mar 24 16:57:39 ns382633 sshd\[6182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34 Mar 24 16:57:39 ns382633 sshd\[6183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34 Mar 24 16:57:42 ns382633 sshd\[6182\]: Failed password for invalid user pi from 140.116.54.34 port 50608 ssh2 Mar 24 16:57:42 ns382633 sshd\[6183\]: Failed password for invalid user pi from 140.116.54.34 port 50610 ssh2	2020-03-25 00:42:29

类型

评论内容

时间

140.116.56.62

attack

Invalid user test from 140.116.56.62 port 41297

2020-04-11 00:28:02

140.116.54.34

attackbots

Mar 24 16:57:39 ns382633 sshd\[6182\]: Invalid user pi from 140.116.54.34 port 50608
Mar 24 16:57:39 ns382633 sshd\[6183\]: Invalid user pi from 140.116.54.34 port 50610
Mar 24 16:57:39 ns382633 sshd\[6182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34
Mar 24 16:57:39 ns382633 sshd\[6183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34
Mar 24 16:57:42 ns382633 sshd\[6182\]: Failed password for invalid user pi from 140.116.54.34 port 50608 ssh2
Mar 24 16:57:42 ns382633 sshd\[6183\]: Failed password for invalid user pi from 140.116.54.34 port 50610 ssh2

2020-03-25 00:42:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.116.5.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10010
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.116.5.58.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020301 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 03:57:18 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 58.5.116.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.5.116.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
179.60.127.54	attack	Unauthorized connection attempt from IP address 179.60.127.54 on Port 445(SMB)	2020-07-25 03:25:29
149.72.248.122	attackspambots	Jul 24 09:25:07 mail.srvfarm.net postfix/smtpd[2154246]: lost connection after RCPT from wrqvfvtx.outbound-mail.sendgrid.net[149.72.248.122] Jul 24 09:26:10 mail.srvfarm.net postfix/smtpd[2140699]: lost connection after RCPT from wrqvfvtx.outbound-mail.sendgrid.net[149.72.248.122] Jul 24 09:26:48 mail.srvfarm.net postfix/smtpd[2154242]: lost connection after RCPT from wrqvfvtx.outbound-mail.sendgrid.net[149.72.248.122] Jul 24 09:28:24 mail.srvfarm.net postfix/smtpd[2140857]: lost connection after RCPT from wrqvfvtx.outbound-mail.sendgrid.net[149.72.248.122] Jul 24 09:30:29 mail.srvfarm.net postfix/smtpd[2154242]: lost connection after RCPT from wrqvfvtx.outbound-mail.sendgrid.net[149.72.248.122]	2020-07-25 03:48:42
103.242.14.68	attack	Dovecot Invalid User Login Attempt.	2020-07-25 03:26:19
78.159.113.196	attack	(From wpdeveloperfiver@gmail.com) Hi friend! I found your website marshfieldchiro.com in Google. I am highly reputed seller in Fiverr, from Bangladesh. The pandemic has severely affected our online businesses and the reason for this email is simply to inform you that I am willing to work at a very low prices (5$), without work I can?t support my family. I offer my WP knowledge to fix bugs, Wordpress optimizations and any type of problem you could have on your website. Feel free to contact me through my service on Fiverr (Contact button), I thank you from my heart: https://track.fiverr.com/visit/?bta=127931&brand=fiverrcpa&landingPage=https%3A%2F%2Fwww.fiverr.com%2Fbet4nik%2Ffix-wordpress-error-problems-issue Regards,	2020-07-25 03:53:57
222.179.120.249	attackspam	Unauthorised access (Jul 24) SRC=222.179.120.249 LEN=52 TTL=112 ID=3874 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Jul 24) SRC=222.179.120.249 LEN=52 TTL=112 ID=31378 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Jul 24) SRC=222.179.120.249 LEN=52 TTL=112 ID=12087 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Jul 24) SRC=222.179.120.249 LEN=52 TTL=112 ID=27248 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Jul 24) SRC=222.179.120.249 LEN=52 TTL=112 ID=3655 DF TCP DPT=1433 WINDOW=8192 SYN	2020-07-25 03:55:15
51.83.76.88	attackspam	fail2ban detected brute force on sshd	2020-07-25 03:23:46
188.112.8.126	attackspam	Jul 24 09:33:34 mail.srvfarm.net postfix/smtps/smtpd[2157413]: warning: unknown[188.112.8.126]: SASL PLAIN authentication failed: Jul 24 09:33:34 mail.srvfarm.net postfix/smtps/smtpd[2157413]: lost connection after AUTH from unknown[188.112.8.126] Jul 24 09:36:13 mail.srvfarm.net postfix/smtps/smtpd[2161005]: warning: unknown[188.112.8.126]: SASL PLAIN authentication failed: Jul 24 09:36:13 mail.srvfarm.net postfix/smtps/smtpd[2161005]: lost connection after AUTH from unknown[188.112.8.126] Jul 24 09:39:57 mail.srvfarm.net postfix/smtps/smtpd[2158822]: warning: unknown[188.112.8.126]: SASL PLAIN authentication failed:	2020-07-25 03:44:59
177.154.72.24	attackspam	Jul 24 10:16:46 mail.srvfarm.net postfix/smtps/smtpd[2165677]: warning: unknown[177.154.72.24]: SASL PLAIN authentication failed: Jul 24 10:16:46 mail.srvfarm.net postfix/smtps/smtpd[2165677]: lost connection after AUTH from unknown[177.154.72.24] Jul 24 10:17:26 mail.srvfarm.net postfix/smtps/smtpd[2165675]: warning: unknown[177.154.72.24]: SASL PLAIN authentication failed: Jul 24 10:17:27 mail.srvfarm.net postfix/smtps/smtpd[2165675]: lost connection after AUTH from unknown[177.154.72.24] Jul 24 10:22:50 mail.srvfarm.net postfix/smtps/smtpd[2179045]: warning: unknown[177.154.72.24]: SASL PLAIN authentication failed:	2020-07-25 03:40:33
188.112.7.25	attackbots	Jul 24 09:20:13 mail.srvfarm.net postfix/smtps/smtpd[2140094]: warning: unknown[188.112.7.25]: SASL PLAIN authentication failed: Jul 24 09:20:13 mail.srvfarm.net postfix/smtps/smtpd[2140094]: lost connection after AUTH from unknown[188.112.7.25] Jul 24 09:20:48 mail.srvfarm.net postfix/smtps/smtpd[2140086]: warning: unknown[188.112.7.25]: SASL PLAIN authentication failed: Jul 24 09:20:48 mail.srvfarm.net postfix/smtps/smtpd[2140086]: lost connection after AUTH from unknown[188.112.7.25] Jul 24 09:23:06 mail.srvfarm.net postfix/smtps/smtpd[2158141]: warning: unknown[188.112.7.25]: SASL PLAIN authentication failed:	2020-07-25 03:45:14
189.126.169.158	attack	Jul 24 08:47:50 mail.srvfarm.net postfix/smtpd[2132844]: warning: unknown[189.126.169.158]: SASL PLAIN authentication failed: Jul 24 08:47:50 mail.srvfarm.net postfix/smtpd[2132844]: lost connection after AUTH from unknown[189.126.169.158] Jul 24 08:54:01 mail.srvfarm.net postfix/smtps/smtpd[2137386]: warning: unknown[189.126.169.158]: SASL PLAIN authentication failed: Jul 24 08:54:02 mail.srvfarm.net postfix/smtps/smtpd[2137386]: lost connection after AUTH from unknown[189.126.169.158] Jul 24 08:57:27 mail.srvfarm.net postfix/smtps/smtpd[2140083]: warning: unknown[189.126.169.158]: SASL PLAIN authentication failed:	2020-07-25 03:44:30
123.201.158.218	attackspam	Honeypot attack, port: 445, PTR: 218-158-201-123.static.youbroadband.in.	2020-07-25 03:55:35
123.195.99.9	attackspambots	Jul 24 20:51:49 ns382633 sshd\[25103\]: Invalid user ysong from 123.195.99.9 port 44364 Jul 24 20:51:49 ns382633 sshd\[25103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.195.99.9 Jul 24 20:51:51 ns382633 sshd\[25103\]: Failed password for invalid user ysong from 123.195.99.9 port 44364 ssh2 Jul 24 20:55:38 ns382633 sshd\[25825\]: Invalid user weblogic from 123.195.99.9 port 34762 Jul 24 20:55:38 ns382633 sshd\[25825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.195.99.9	2020-07-25 03:58:19
99.56.96.194	attackspam	Telnet brute force and port scan	2020-07-25 03:50:55
138.122.96.153	attackspambots	Jul 24 09:15:25 mail.srvfarm.net postfix/smtps/smtpd[2140090]: warning: unknown[138.122.96.153]: SASL PLAIN authentication failed: Jul 24 09:15:25 mail.srvfarm.net postfix/smtps/smtpd[2140090]: lost connection after AUTH from unknown[138.122.96.153] Jul 24 09:21:49 mail.srvfarm.net postfix/smtps/smtpd[2158141]: warning: unknown[138.122.96.153]: SASL PLAIN authentication failed: Jul 24 09:21:49 mail.srvfarm.net postfix/smtps/smtpd[2158141]: lost connection after AUTH from unknown[138.122.96.153] Jul 24 09:25:01 mail.srvfarm.net postfix/smtps/smtpd[2158496]: warning: unknown[138.122.96.153]: SASL PLAIN authentication failed:	2020-07-25 03:49:45
41.217.204.220	attackbots	(sshd) Failed SSH login from 41.217.204.220 (NG/Nigeria/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 24 21:57:09 s1 sshd[12853]: Invalid user bt from 41.217.204.220 port 35262 Jul 24 21:57:12 s1 sshd[12853]: Failed password for invalid user bt from 41.217.204.220 port 35262 ssh2 Jul 24 22:07:27 s1 sshd[13251]: Invalid user itc from 41.217.204.220 port 57528 Jul 24 22:07:30 s1 sshd[13251]: Failed password for invalid user itc from 41.217.204.220 port 57528 ssh2 Jul 24 22:12:25 s1 sshd[13435]: Invalid user ju from 41.217.204.220 port 43584	2020-07-25 03:31:39

最近上报的IP列表

35.33.130.63	245.154.0.94	59.152.134.33	192.130.109.196
249.253.139.146	79.151.9.146	145.147.80.192	23.6.109.141
133.190.93.131	30.105.137.21	19.127.14.12	60.150.194.180
80.141.14.100	33.5.189.47	192.113.132.3	19.155.17.22
202.187.101.200	150.155.158.21	200.12.23.156	150.62.14.127