140.75.164.238

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.75.164.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43330
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.75.164.238.			IN	A

;; AUTHORITY SECTION:
.			464	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:13:24 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 238.164.75.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.164.75.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.25.53.252	attack	Aug 9 15:17:49 abendstille sshd\[17466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root Aug 9 15:17:52 abendstille sshd\[17466\]: Failed password for root from 118.25.53.252 port 53694 ssh2 Aug 9 15:23:10 abendstille sshd\[22520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root Aug 9 15:23:12 abendstille sshd\[22520\]: Failed password for root from 118.25.53.252 port 45306 ssh2 Aug 9 15:25:40 abendstille sshd\[25111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root ...	2020-08-10 00:39:26
148.72.209.9	attackspambots	Website hacking attempt: Wordpress admin access [wp-login.php]	2020-08-10 00:50:34
223.227.102.146	attack	Port probing on unauthorized port 445	2020-08-10 00:25:00
178.32.219.209	attack	Aug 9 14:22:26 scw-focused-cartwright sshd[9830]: Failed password for root from 178.32.219.209 port 54914 ssh2	2020-08-10 00:37:37
49.234.96.210	attackspam	(sshd) Failed SSH login from 49.234.96.210 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 9 19:08:29 s1 sshd[10777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.96.210 user=root Aug 9 19:08:31 s1 sshd[10777]: Failed password for root from 49.234.96.210 port 48532 ssh2 Aug 9 19:16:41 s1 sshd[11104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.96.210 user=root Aug 9 19:16:43 s1 sshd[11104]: Failed password for root from 49.234.96.210 port 59936 ssh2 Aug 9 19:19:10 s1 sshd[11195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.96.210 user=root	2020-08-10 00:33:57
31.43.13.185	attack	(mod_security) mod_security (id:920350) triggered by 31.43.13.185 (UA/Ukraine/31-43-13-185.dks.com.ua): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 14:09:47 [error] 297426#0: 2 [client 31.43.13.185] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159697498716.317200"] [ref "o0,14v21,14"], client: 31.43.13.185, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-10 01:00:35
106.12.220.84	attackbotsspam	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-10 00:52:49
216.4.95.61	attackspam	Triggered: repeated knocking on closed ports.	2020-08-10 00:59:39
141.98.9.161	attackbotsspam	Aug 9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503 Aug 9 18:26:12 inter-technics sshd[14470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.161 Aug 9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503 Aug 9 18:26:14 inter-technics sshd[14470]: Failed password for invalid user admin from 141.98.9.161 port 36503 ssh2 Aug 9 18:26:33 inter-technics sshd[14520]: Invalid user ubnt from 141.98.9.161 port 36419 ...	2020-08-10 01:01:22
193.77.238.103	attackspam	2020-08-09T21:13:15.754788hostname sshd[31093]: Invalid user ~#$%^&(),.; from 193.77.238.103 port 38440 2020-08-09T21:13:17.840574hostname sshd[31093]: Failed password for invalid user ~#$%^&(),.; from 193.77.238.103 port 38440 ssh2 2020-08-09T21:16:59.633978hostname sshd[32467]: Invalid user Admin12345@ from 193.77.238.103 port 45580 ...	2020-08-10 01:05:49
145.239.85.21	attack	Aug 9 16:40:25 abendstille sshd\[3210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Aug 9 16:40:26 abendstille sshd\[3210\]: Failed password for root from 145.239.85.21 port 40855 ssh2 Aug 9 16:44:30 abendstille sshd\[6942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Aug 9 16:44:32 abendstille sshd\[6942\]: Failed password for root from 145.239.85.21 port 45442 ssh2 Aug 9 16:48:35 abendstille sshd\[10878\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root ...	2020-08-10 00:44:49
45.141.84.162	attackbots	Unauthorized connection attempt detected from IP address 45.141.84.162 to port 4001 [T]	2020-08-10 00:58:47
210.211.116.204	attackbotsspam	Aug 9 12:21:11 ws24vmsma01 sshd[38886]: Failed password for root from 210.211.116.204 port 9805 ssh2 ...	2020-08-10 00:28:01
5.249.28.129	attack	Attempts against non-existent wp-login	2020-08-10 01:00:54
111.231.82.143	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-10 00:56:48

最近上报的IP列表

140.75.164.249	140.75.164.27	140.75.164.205	140.75.164.31
140.75.164.43	140.75.164.33	140.75.164.45	140.75.164.65
140.75.192.89	140.75.164.87	140.75.164.56	140.75.164.80
140.75.164.70	140.75.69.40	118.89.25.105	140.76.236.35
140.77.166.170	140.78.100.14	140.78.100.15	140.78.100.17