140.207.52.114

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Shanghai City Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 31 20:49:39 ns3042688 courier-imaps: LOGIN FAILED, method=PLAIN, ip=\[::ffff:140.207.52.114\] ...	2019-08-01 03:52:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.207.52.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46908
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.207.52.114.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 03 02:47:03 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 114.52.207.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 114.52.207.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.64.78.151	attackbots	Jun 30 07:38:42 vps639187 sshd\[25681\]: Invalid user steph from 212.64.78.151 port 45804 Jun 30 07:38:42 vps639187 sshd\[25681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.78.151 Jun 30 07:38:44 vps639187 sshd\[25681\]: Failed password for invalid user steph from 212.64.78.151 port 45804 ssh2 ...	2020-06-30 13:40:38
193.112.23.105	attackspambots	ssh brute force	2020-06-30 13:54:46
167.99.204.251	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-06-30 13:45:48
167.172.231.211	attackbots	TCP port : 5688	2020-06-30 14:11:07
66.249.79.8	attack	[Tue Jun 30 11:22:57.859545 2020] [:error] [pid 6519:tid 140076688553728] [client 66.249.79.8:39959] [client 66.249.79.8] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/indeks-presipitasi-terstandarisasi-spi-3-bulanan-di-propinsi-jawa-timur/3906-indeks-presipitasi-terstandarisasi-spi-3-bulanan-di-propinsi-jawa-timur-tahun-2018/108-indeks-presipitasi-terstandarisasi-spi-3-bulanan-di-propinsi-jawa-timur-tahun-2018"] [ ...	2020-06-30 13:47:30
123.207.97.250	attackbotsspam	Jun 30 07:51:49 ArkNodeAT sshd\[30910\]: Invalid user developer from 123.207.97.250 Jun 30 07:51:49 ArkNodeAT sshd\[30910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.97.250 Jun 30 07:51:51 ArkNodeAT sshd\[30910\]: Failed password for invalid user developer from 123.207.97.250 port 59496 ssh2	2020-06-30 13:53:57
104.211.212.220	attackbotsspam	Jun 30 07:07:01 serwer sshd\[28348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.212.220 user=root Jun 30 07:07:01 serwer sshd\[28350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.212.220 user=root Jun 30 07:07:03 serwer sshd\[28348\]: Failed password for root from 104.211.212.220 port 43739 ssh2 Jun 30 07:07:03 serwer sshd\[28350\]: Failed password for root from 104.211.212.220 port 43812 ssh2 ...	2020-06-30 14:08:50
177.106.38.204	attack	Automatic report - Port Scan Attack	2020-06-30 14:07:12
124.158.163.154	attack	Port Scanner	2020-06-30 13:43:48
103.144.152.10	attackspambots	2020-06-30T00:19:24.8417611495-001 sshd[26109]: Failed password for invalid user tanja from 103.144.152.10 port 48148 ssh2 2020-06-30T00:23:06.8238991495-001 sshd[26272]: Invalid user griselda from 103.144.152.10 port 48100 2020-06-30T00:23:06.8268331495-001 sshd[26272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.152.10 2020-06-30T00:23:06.8238991495-001 sshd[26272]: Invalid user griselda from 103.144.152.10 port 48100 2020-06-30T00:23:09.2298821495-001 sshd[26272]: Failed password for invalid user griselda from 103.144.152.10 port 48100 ssh2 2020-06-30T00:26:49.3628801495-001 sshd[26434]: Invalid user bbq from 103.144.152.10 port 48050 ...	2020-06-30 13:38:54
92.63.197.83	attack	06/29/2020-23:55:01.808888 92.63.197.83 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-30 13:55:19
80.82.77.67	attackspambots	[H1.VM7] Blocked by UFW	2020-06-30 14:06:09
46.38.148.22	attackspambots	2020-06-30 05:26:00 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=FGA@csmailer.org) 2020-06-30 05:26:39 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=File@csmailer.org) 2020-06-30 05:27:16 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=Expo@csmailer.org) 2020-06-30 05:27:57 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=EuroCAUCElogo@csmailer.org) 2020-06-30 05:28:35 auth_plain authenticator failed for (User) [46.38.148.22]: 535 Incorrect authentication data (set_id=geisha@csmailer.org) ...	2020-06-30 13:32:47
165.22.253.190	attackspambots	TCP (SYN) 165.22.253.190:56078 -> port 10291, len 44	2020-06-30 13:43:15
70.45.133.188	attack	Jun 30 03:50:09 124388 sshd[26936]: Failed password for root from 70.45.133.188 port 38986 ssh2 Jun 30 03:54:52 124388 sshd[27154]: Invalid user postgres from 70.45.133.188 port 36052 Jun 30 03:54:52 124388 sshd[27154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.45.133.188 Jun 30 03:54:52 124388 sshd[27154]: Invalid user postgres from 70.45.133.188 port 36052 Jun 30 03:54:54 124388 sshd[27154]: Failed password for invalid user postgres from 70.45.133.188 port 36052 ssh2	2020-06-30 14:02:09

最近上报的IP列表

117.109.12.89	82.119.121.58	141.116.187.71	177.23.237.24
135.82.119.127	112.232.214.96	176.14.22.231	182.27.32.240
137.79.185.209	140.27.167.176	241.140.118.197	201.152.80.46
58.24.252.204	45.230.137.163	21.109.50.14	152.243.158.83
70.110.98.103	27.129.22.234	104.211.166.249	150.149.185.60