140.125.158.233

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): National Chung Cheng University

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.125.158.233
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12804
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.125.158.233.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 04:49:45 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 233.158.125.140.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 233.158.125.140.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
54.36.148.42	attack	[Wed May 13 21:14:41.060734 2020] [:error] [pid 5905:tid 140257433646848] [client 54.36.148.42:48262] [client 54.36.148.42] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "AhrefsBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: AhrefsBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; ahrefsbot/6.1; +http://ahrefs.com/robot/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/pelayanan-jasa/1577-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tan ...	2020-05-13 23:17:17
51.91.212.81	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 38 - port: 8443 proto: TCP cat: Misc Attack	2020-05-13 22:39:38
114.67.83.42	attackbots	May 13 16:44:51 vps687878 sshd\[2930\]: Invalid user gt from 114.67.83.42 port 58412 May 13 16:44:51 vps687878 sshd\[2930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.83.42 May 13 16:44:53 vps687878 sshd\[2930\]: Failed password for invalid user gt from 114.67.83.42 port 58412 ssh2 May 13 16:49:18 vps687878 sshd\[3250\]: Invalid user kellsie from 114.67.83.42 port 52552 May 13 16:49:18 vps687878 sshd\[3250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.83.42 ...	2020-05-13 23:00:31
109.194.54.94	attack	Many RDP attempts : 4 packets 62Bytes 13/05/2020 16:18:44:426 sniffing : 00000000 03 00 00 2B 26 E0 00 00 00 00 00 43 6F 6F 6B 69 ...+&... ...Cooki 00000010 65 3A 20 6D 73 74 73 68 61 73 68 3D 68 65 6C 6C e: mstsh ash=hell 00000020 6F 0D 0A 01 00 08 00 03 00 00 00 o....... ... 00000000 03 00 00 13 0E D0 00 00 12 34 00 03 00 08 00 02 ........ .4...... 00000010 00 00 00 ...	2020-05-13 22:51:38
49.88.112.112	attack	May 13 10:28:37 plusreed sshd[21791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.112 user=root May 13 10:28:39 plusreed sshd[21791]: Failed password for root from 49.88.112.112 port 43261 ssh2 ...	2020-05-13 22:34:52
165.227.225.195	attackspam	May 13 16:34:22 pornomens sshd\[10412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.225.195 user=root May 13 16:34:24 pornomens sshd\[10412\]: Failed password for root from 165.227.225.195 port 42128 ssh2 May 13 16:38:15 pornomens sshd\[10505\]: Invalid user deploy from 165.227.225.195 port 48652 May 13 16:38:15 pornomens sshd\[10505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.225.195 ...	2020-05-13 22:43:06
41.80.40.160	attackspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-05-13 22:49:14
217.78.241.143	spam	SPAM, ONLY SPAM EVERY DAY!!!	2020-05-13 22:46:51
14.63.168.98	attack	May 13 14:31:19 ns382633 sshd\[9595\]: Invalid user deploy from 14.63.168.98 port 21914 May 13 14:31:19 ns382633 sshd\[9595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.168.98 May 13 14:31:22 ns382633 sshd\[9595\]: Failed password for invalid user deploy from 14.63.168.98 port 21914 ssh2 May 13 14:37:33 ns382633 sshd\[13900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.168.98 user=root May 13 14:37:35 ns382633 sshd\[13900\]: Failed password for root from 14.63.168.98 port 4352 ssh2	2020-05-13 22:40:26
75.38.216.58	attackbots	2020-05-13T16:15:19.389925galaxy.wi.uni-potsdam.de sshd[32132]: Invalid user ansible from 75.38.216.58 port 48614 2020-05-13T16:15:19.394882galaxy.wi.uni-potsdam.de sshd[32132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.38.216.58 2020-05-13T16:15:19.389925galaxy.wi.uni-potsdam.de sshd[32132]: Invalid user ansible from 75.38.216.58 port 48614 2020-05-13T16:15:21.864981galaxy.wi.uni-potsdam.de sshd[32132]: Failed password for invalid user ansible from 75.38.216.58 port 48614 ssh2 2020-05-13T16:18:11.151766galaxy.wi.uni-potsdam.de sshd[32448]: Invalid user clamav1 from 75.38.216.58 port 36558 2020-05-13T16:18:11.157321galaxy.wi.uni-potsdam.de sshd[32448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.38.216.58 2020-05-13T16:18:11.151766galaxy.wi.uni-potsdam.de sshd[32448]: Invalid user clamav1 from 75.38.216.58 port 36558 2020-05-13T16:18:13.241064galaxy.wi.uni-potsdam.de sshd[32448]: Failed pass ...	2020-05-13 22:38:23
188.166.144.207	attackspambots	May 13 17:07:10 meumeu sshd[11270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 May 13 17:07:12 meumeu sshd[11270]: Failed password for invalid user angelique from 188.166.144.207 port 48010 ssh2 May 13 17:11:03 meumeu sshd[11909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 ...	2020-05-13 23:20:57
141.98.9.161	attackspambots	May 13 14:25:37 *** sshd[10749]: Invalid user admin from 141.98.9.161	2020-05-13 22:46:13
128.199.142.0	attackspambots	May 13 17:08:50 pkdns2 sshd\[22944\]: Invalid user cacti from 128.199.142.0May 13 17:08:51 pkdns2 sshd\[22944\]: Failed password for invalid user cacti from 128.199.142.0 port 47962 ssh2May 13 17:12:58 pkdns2 sshd\[23127\]: Invalid user bon from 128.199.142.0May 13 17:13:00 pkdns2 sshd\[23127\]: Failed password for invalid user bon from 128.199.142.0 port 53132 ssh2May 13 17:17:09 pkdns2 sshd\[23349\]: Invalid user charlotte from 128.199.142.0May 13 17:17:11 pkdns2 sshd\[23349\]: Failed password for invalid user charlotte from 128.199.142.0 port 58298 ssh2 ...	2020-05-13 22:32:05
221.237.189.26	attackspam	(pop3d) Failed POP3 login from 221.237.189.26 (CN/China/26.189.237.221.broad.cd.sc.dynamic.163data.com.cn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 13 17:17:22 ir1 dovecot[264309]: pop3-login: Aborted login (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=221.237.189.26, lip=5.63.12.44, session=	2020-05-13 22:40:58
54.36.150.164	attack	[Wed May 13 20:55:46.716478 2020] [:error] [pid 2057:tid 140111100520192] [client 54.36.150.164:62762] [client 54.36.150.164] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "AhrefsBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: AhrefsBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; ahrefsbot/6.1; +http://ahrefs.com/robot/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/tugas-dan-wilayah-kerja/1105-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/k ...	2020-05-13 22:39:14

最近上报的IP列表

107.167.6.234	53.0.217.246	82.118.73.180	200.44.69.93
144.120.154.39	162.248.4.46	83.187.27.58	101.179.93.250
192.200.20.117	32.43.143.243	129.83.94.211	98.44.185.99
195.99.22.143	23.89.160.63	101.249.58.25	94.0.221.58
137.97.110.122	107.3.253.228	196.7.199.242	76.107.230.0