141.136.8.34 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): North Macedonia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
141.136.87.250	attack	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 22:30:44
141.136.87.250	attack	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 14:46:04
141.136.87.250	attackbots	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 05:02:32
141.136.89.70	attack	Unauthorized connection attempt from IP address 141.136.89.70 on Port 445(SMB)	2020-07-16 02:12:43
141.136.89.72	attackspam	Honeypot attack, port: 445, PTR: host-72.89.136.141.ucom.am.	2020-06-21 05:22:36
141.136.80.159	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-16 05:12:45
141.136.88.128	attack	1589881495 - 05/19/2020 11:44:55 Host: 141.136.88.128/141.136.88.128 Port: 445 TCP Blocked	2020-05-20 02:08:31
141.136.88.78	attackbots	Unauthorized connection attempt from IP address 141.136.88.78 on Port 445(SMB)	2020-03-25 04:10:33
141.136.83.189	attack	Unauthorized connection attempt from IP address 141.136.83.189 on Port 445(SMB)	2020-02-25 06:41:07
141.136.84.235	attack	Oct 13 13:46:56 mc1 kernel: \[2253597.520003\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50910 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 13 13:46:57 mc1 kernel: \[2253598.116224\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50911 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 13 13:46:59 mc1 kernel: \[2253600.104140\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50912 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 ...	2019-10-14 02:14:18
141.136.83.183	attackspambots	Hits on port : 5555	2019-08-31 08:04:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.136.8.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30283
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;141.136.8.34.			IN	A

;; AUTHORITY SECTION:
.			294	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041000 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 10 20:12:50 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 34.8.136.141.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.8.136.141.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
142.93.193.63	attack	142.93.193.63 - - [02/Oct/2020:02:38:46 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:02:38:47 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:02:38:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-02 12:09:24
86.98.10.51	attack	Unauthorised access (Oct 1) SRC=86.98.10.51 LEN=52 PREC=0x20 TTL=118 ID=11593 DF TCP DPT=445 WINDOW=8192 SYN	2020-10-02 12:09:57
51.161.45.174	attack	Oct 2 04:18:44 124388 sshd[11937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 Oct 2 04:18:44 124388 sshd[11937]: Invalid user john from 51.161.45.174 port 37922 Oct 2 04:18:46 124388 sshd[11937]: Failed password for invalid user john from 51.161.45.174 port 37922 ssh2 Oct 2 04:22:14 124388 sshd[12213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 user=root Oct 2 04:22:15 124388 sshd[12213]: Failed password for root from 51.161.45.174 port 46954 ssh2	2020-10-02 12:26:36
200.201.219.163	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-02 12:08:38
154.209.228.247	attack	(sshd) Failed SSH login from 154.209.228.247 (US/United States/-): 3 in the last 604800 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 04:43:25 sip sshd[18255]: Invalid user docker from 154.209.228.247 port 32236 Oct 2 04:43:27 sip sshd[18255]: Failed password for invalid user docker from 154.209.228.247 port 32236 ssh2 Oct 2 05:02:36 sip sshd[21979]: Invalid user jack from 154.209.228.247 port 26936	2020-10-02 12:12:36
223.247.153.244	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 12:28:50
5.43.206.12	attackspam	Listed on abuseat.org plus barracudaCentral and zen-spamhaus / proto=6 . srcport=36390 . dstport=8080 . (3851)	2020-10-02 12:37:11
217.71.225.150	attackspambots	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=50832 . dstport=445 SMB . (3852)	2020-10-02 12:22:20
139.59.32.156	attackspam	(sshd) Failed SSH login from 139.59.32.156 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 00:13:14 optimus sshd[16882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 user=root Oct 2 00:13:17 optimus sshd[16882]: Failed password for root from 139.59.32.156 port 38576 ssh2 Oct 2 00:17:35 optimus sshd[20773]: Invalid user mzd from 139.59.32.156 Oct 2 00:17:35 optimus sshd[20773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 Oct 2 00:17:37 optimus sshd[20773]: Failed password for invalid user mzd from 139.59.32.156 port 45438 ssh2	2020-10-02 12:34:38
51.75.66.92	attack	Time: Fri Oct 2 04:22:37 2020 +0200 IP: 51.75.66.92 (DE/Germany/92.ip-51-75-66.eu) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Oct 2 04:03:52 mail-03 sshd[19495]: Invalid user dario from 51.75.66.92 port 37520 Oct 2 04:03:53 mail-03 sshd[19495]: Failed password for invalid user dario from 51.75.66.92 port 37520 ssh2 Oct 2 04:18:57 mail-03 sshd[19695]: Invalid user cvs from 51.75.66.92 port 53204 Oct 2 04:18:59 mail-03 sshd[19695]: Failed password for invalid user cvs from 51.75.66.92 port 53204 ssh2 Oct 2 04:22:32 mail-03 sshd[19751]: Failed password for root from 51.75.66.92 port 33780 ssh2	2020-10-02 12:03:52
91.190.52.81	attackbots	Unauthorized connection attempt from IP address 91.190.52.81 on Port 445(SMB)	2020-10-02 12:31:47
212.70.149.52	attackspambots	Oct 2 06:18:32 srv01 postfix/smtpd\[12923\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 06:18:34 srv01 postfix/smtpd\[11626\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 06:18:39 srv01 postfix/smtpd\[23005\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 06:18:41 srv01 postfix/smtpd\[9790\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 06:18:58 srv01 postfix/smtpd\[12924\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-02 12:30:27
200.160.116.25	attackbotsspam	20/10/1@16:41:34: FAIL: Alarm-Network address from=200.160.116.25 20/10/1@16:41:34: FAIL: Alarm-Network address from=200.160.116.25 ...	2020-10-02 12:29:24
174.138.52.50	attack	Oct 1 23:39:01 lanister sshd[23430]: Invalid user jessica from 174.138.52.50 Oct 1 23:39:02 lanister sshd[23430]: Failed password for invalid user jessica from 174.138.52.50 port 52480 ssh2 Oct 1 23:44:04 lanister sshd[23552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.52.50 user=root Oct 1 23:44:07 lanister sshd[23552]: Failed password for root from 174.138.52.50 port 60178 ssh2	2020-10-02 12:42:15
213.32.111.52	attackbotsspam	Oct 2 02:15:38 host1 sshd[308231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.111.52 user=root Oct 2 02:15:40 host1 sshd[308231]: Failed password for root from 213.32.111.52 port 49050 ssh2 Oct 2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326 Oct 2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326 ...	2020-10-02 12:02:45

最近上报的IP列表

200.205.90.84	67.1.152.187	65.116.186.138	23.94.220.175
209.171.161.107	62.141.198.65	192.168.1.113	192.236.155.154
252.196.148.0	202.242.175.87	110.7.234.45	213.187.107.46
109.104.179.61	112.172.61.90	154.16.83.78	119.194.242.151
60.250.239.64	200.84.223.14	10.11.238.205	185.250.237.60