140.39.248.196

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.39.248.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22655
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.39.248.196.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 17:38:05 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 196.248.39.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 196.248.39.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.120.127.28	attackspambots	Automatic report - XMLRPC Attack	2020-08-12 13:23:24
222.186.173.226	attack	Aug 12 06:44:32 rocket sshd[9462]: Failed password for root from 222.186.173.226 port 53880 ssh2 Aug 12 06:44:42 rocket sshd[9462]: Failed password for root from 222.186.173.226 port 53880 ssh2 Aug 12 06:44:45 rocket sshd[9462]: Failed password for root from 222.186.173.226 port 53880 ssh2 Aug 12 06:44:45 rocket sshd[9462]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 53880 ssh2 [preauth] ...	2020-08-12 13:48:13
119.236.238.93	attack	Aug 12 05:53:51 host-itldc-nl sshd[87132]: Invalid user guest from 119.236.238.93 port 44316 Aug 12 05:53:52 host-itldc-nl sshd[88123]: User root from 119.236.238.93 not allowed because not listed in AllowUsers Aug 12 05:53:52 host-itldc-nl sshd[87438]: Invalid user pi from 119.236.238.93 port 44356 ...	2020-08-12 13:22:15
134.209.56.217	attack	VNC brute force attack detected by fail2ban	2020-08-12 13:44:52
58.23.16.254	attack	Aug 12 04:52:34 ajax sshd[32407]: Failed password for root from 58.23.16.254 port 47349 ssh2	2020-08-12 13:05:27
106.13.147.89	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-12T03:54:27Z and 2020-08-12T04:04:08Z	2020-08-12 13:15:08
104.248.244.119	attack	$f2bV_matches	2020-08-12 13:59:06
61.55.158.20	attack	Aug 12 03:44:16 rush sshd[8049]: Failed password for root from 61.55.158.20 port 29318 ssh2 Aug 12 03:49:06 rush sshd[8217]: Failed password for root from 61.55.158.20 port 29319 ssh2 ...	2020-08-12 13:09:21
199.192.20.159	attackspam	199.192.20.159 - - [12/Aug/2020:06:46:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 199.192.20.159 - - [12/Aug/2020:07:00:51 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-12 13:20:13
45.187.192.1	attack	Aug 12 06:58:34 piServer sshd[1889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.187.192.1 Aug 12 06:58:36 piServer sshd[1889]: Failed password for invalid user ujmnbvcxzaqwerty from 45.187.192.1 port 47029 ssh2 Aug 12 07:04:38 piServer sshd[2403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.187.192.1 ...	2020-08-12 13:13:27
35.199.73.100	attack	Aug 12 06:46:38 OPSO sshd\[19088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.73.100 user=root Aug 12 06:46:41 OPSO sshd\[19088\]: Failed password for root from 35.199.73.100 port 54614 ssh2 Aug 12 06:50:53 OPSO sshd\[19842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.73.100 user=root Aug 12 06:50:55 OPSO sshd\[19842\]: Failed password for root from 35.199.73.100 port 57832 ssh2 Aug 12 06:55:12 OPSO sshd\[20459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.73.100 user=root	2020-08-12 14:00:30
36.65.204.157	attackbotsspam	[Wed Aug 12 10:53:08.194534 2020] [:error] [pid 15117:tid 140440171935488] [client 36.65.204.157:64511] [client 36.65.204.157] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-hujan-bulanan/prakiraan-curah-hujan-bulanan/555558122-prakiraan-bulanan-curah-hujan-bulan-juli-tahun-2020-update-dari-analisis-bulan-mei-2020-di-provinsi-jawa-timur"] [unique_id "XzNnpOYkKNO-T9KMmKzhFQA ...	2020-08-12 13:55:23
14.253.158.213	attack	1597204448 - 08/12/2020 05:54:08 Host: 14.253.158.213/14.253.158.213 Port: 445 TCP Blocked	2020-08-12 13:06:02
201.242.98.122	attackbots	SMB Server BruteForce Attack	2020-08-12 13:46:09
62.210.136.231	attack	prod6 ...	2020-08-12 13:27:30

最近上报的IP列表

206.139.147.125	14.45.34.200	211.15.157.115	32.25.249.250
106.41.74.140	225.181.63.44	70.131.57.51	151.135.241.52
154.110.144.25	159.43.5.192	114.187.29.81	60.162.58.65
123.196.165.226	70.187.26.225	36.178.137.77	252.150.75.58
228.126.125.196	196.53.219.255	207.253.4.230	98.215.136.129