140.116.5.58 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
140.116.56.62	attack	Invalid user test from 140.116.56.62 port 41297	2020-04-11 00:28:02
140.116.54.34	attackbots	Mar 24 16:57:39 ns382633 sshd\[6182\]: Invalid user pi from 140.116.54.34 port 50608 Mar 24 16:57:39 ns382633 sshd\[6183\]: Invalid user pi from 140.116.54.34 port 50610 Mar 24 16:57:39 ns382633 sshd\[6182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34 Mar 24 16:57:39 ns382633 sshd\[6183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34 Mar 24 16:57:42 ns382633 sshd\[6182\]: Failed password for invalid user pi from 140.116.54.34 port 50608 ssh2 Mar 24 16:57:42 ns382633 sshd\[6183\]: Failed password for invalid user pi from 140.116.54.34 port 50610 ssh2	2020-03-25 00:42:29

类型

评论内容

时间

140.116.56.62

attack

Invalid user test from 140.116.56.62 port 41297

2020-04-11 00:28:02

140.116.54.34

attackbots

Mar 24 16:57:39 ns382633 sshd\[6182\]: Invalid user pi from 140.116.54.34 port 50608
Mar 24 16:57:39 ns382633 sshd\[6183\]: Invalid user pi from 140.116.54.34 port 50610
Mar 24 16:57:39 ns382633 sshd\[6182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34
Mar 24 16:57:39 ns382633 sshd\[6183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.116.54.34
Mar 24 16:57:42 ns382633 sshd\[6182\]: Failed password for invalid user pi from 140.116.54.34 port 50608 ssh2
Mar 24 16:57:42 ns382633 sshd\[6183\]: Failed password for invalid user pi from 140.116.54.34 port 50610 ssh2

2020-03-25 00:42:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.116.5.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10010
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.116.5.58.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020301 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 03:57:18 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 58.5.116.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.5.116.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.45.190.167	attackspambots	(sshd) Failed SSH login from 118.45.190.167 (KR/South Korea/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 7 19:32:52 ubnt-55d23 sshd[24181]: Invalid user nagios from 118.45.190.167 port 60822 Apr 7 19:32:54 ubnt-55d23 sshd[24181]: Failed password for invalid user nagios from 118.45.190.167 port 60822 ssh2	2020-04-08 01:40:15
122.228.19.79	attackbots	Telnet Server BruteForce Attack	2020-04-08 02:03:33
222.186.42.155	attack	Apr 7 21:02:51 server2 sshd\[28213\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:02:59 server2 sshd\[28215\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:05:44 server2 sshd\[28533\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:05:50 server2 sshd\[28535\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:10:24 server2 sshd\[28889\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:10:24 server2 sshd\[28887\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers	2020-04-08 02:12:48
186.156.224.46	attackspambots	DATE:2020-04-07 14:47:29,IP:186.156.224.46,MATCHES:10,PORT:ssh	2020-04-08 02:08:23
211.252.84.47	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-04-08 01:43:54
191.189.30.241	attack	2020-04-07T13:55:16.749789shield sshd\[31061\]: Invalid user ubuntu from 191.189.30.241 port 50510 2020-04-07T13:55:16.754295shield sshd\[31061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.189.30.241 2020-04-07T13:55:18.993504shield sshd\[31061\]: Failed password for invalid user ubuntu from 191.189.30.241 port 50510 ssh2 2020-04-07T14:00:53.847932shield sshd\[32498\]: Invalid user yatri from 191.189.30.241 port 55239 2020-04-07T14:00:53.852237shield sshd\[32498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.189.30.241	2020-04-08 01:58:20
114.67.170.135	attack	(sshd) Failed SSH login from 114.67.170.135 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 7 16:34:10 andromeda sshd[25402]: Invalid user jaxson from 114.67.170.135 port 37312 Apr 7 16:34:12 andromeda sshd[25402]: Failed password for invalid user jaxson from 114.67.170.135 port 37312 ssh2 Apr 7 16:45:24 andromeda sshd[26201]: Did not receive identification string from 114.67.170.135 port 35267	2020-04-08 01:41:15
162.223.31.167	attackspambots	162.223.31.167 - - [04/Apr/2020:20:25:46 -0400] "POST ?q=node%2F179127%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2CNULL--%20Uqlz HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 5.2; Mac_PowerPC)" 162.223.31.167 - - [04/Apr/2020:20:25:49 -0400] "POST /?q=node%2F179127%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2CNULL%2CNULL--%20cUTL HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 5.2; Mac_PowerPC)" 162.223.31.167 - - [04/Apr/2020:20:25:51 -0400] "POST /?q=node%2F179127%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2CNULL%2CNULL%2CNULL--%20xHNN HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 5.2; Mac_PowerPC)" 162.223.31.167 - - [04/Apr/2020:20:25:54 -0400] "POST /?q=node%2F1791%27%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2CNULL%2CNULL%2CNULL%2CNULL--%20HbGI HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 5.2; Mac_PowerPC)" 162.223.31.167 - - [04/Apr/2020:20:25:...............	2020-04-08 01:45:48
24.234.159.109	attackbotsspam	Web Server Attack	2020-04-08 02:05:29
111.229.83.52	attackspambots	Web Server Attack	2020-04-08 01:55:09
128.199.165.53	attack	Apr 7 18:21:35 srv-ubuntu-dev3 sshd[47204]: Invalid user GTR from 128.199.165.53 Apr 7 18:21:35 srv-ubuntu-dev3 sshd[47204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.165.53 Apr 7 18:21:35 srv-ubuntu-dev3 sshd[47204]: Invalid user GTR from 128.199.165.53 Apr 7 18:21:38 srv-ubuntu-dev3 sshd[47204]: Failed password for invalid user GTR from 128.199.165.53 port 39352 ssh2 Apr 7 18:26:01 srv-ubuntu-dev3 sshd[47854]: Invalid user dmc from 128.199.165.53 Apr 7 18:26:01 srv-ubuntu-dev3 sshd[47854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.165.53 Apr 7 18:26:01 srv-ubuntu-dev3 sshd[47854]: Invalid user dmc from 128.199.165.53 Apr 7 18:26:03 srv-ubuntu-dev3 sshd[47854]: Failed password for invalid user dmc from 128.199.165.53 port 42383 ssh2 Apr 7 18:30:26 srv-ubuntu-dev3 sshd[48580]: Invalid user deploy from 128.199.165.53 ...	2020-04-08 01:53:06
198.38.84.190	attack	SSH Bruteforce attack	2020-04-08 01:49:51
121.142.87.218	attackbots	$f2bV_matches	2020-04-08 02:12:10
143.204.190.71	attack	TCP Port: 443 invalid blocked zen-spamhaus also rbldns-ru Client xx.xx.6.14 (205)	2020-04-08 02:14:42
14.18.54.30	attackspambots	$f2bV_matches	2020-04-08 02:23:09

最近上报的IP列表

35.33.130.63	245.154.0.94	59.152.134.33	192.130.109.196
249.253.139.146	79.151.9.146	145.147.80.192	23.6.109.141
133.190.93.131	30.105.137.21	19.127.14.12	60.150.194.180
80.141.14.100	33.5.189.47	192.113.132.3	19.155.17.22
202.187.101.200	150.155.158.21	200.12.23.156	150.62.14.127