144.208.140.63

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Austria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.208.140.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;144.208.140.63.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 01:48:27 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 63.140.208.144.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.140.208.144.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
77.247.110.70	attack	\[2019-08-11 22:45:13\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:13.792-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900970598528175",SessionID="0x7ff4d07e79a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extension_match" \[2019-08-11 22:45:48\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:48.992-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900972598528175",SessionID="0x7ff4d02d8f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extension_match" \[2019-08-11 22:45:58\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:58.773-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900972598528175",SessionID="0x7ff4d004fe18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extens	2019-08-12 11:57:11
31.210.154.233	attackbotsspam	SMB Server BruteForce Attack	2019-08-12 12:00:30
112.245.219.42	attackspambots	Unauthorised access (Aug 12) SRC=112.245.219.42 LEN=40 TTL=49 ID=55521 TCP DPT=8080 WINDOW=29032 SYN	2019-08-12 11:38:03
188.217.41.101	attack	Unauthorised access (Aug 12) SRC=188.217.41.101 LEN=44 TTL=54 ID=40411 TCP DPT=8080 WINDOW=132 SYN Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=54626 TCP DPT=8080 WINDOW=19574 SYN Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=64750 TCP DPT=8080 WINDOW=19574 SYN Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=38096 TCP DPT=8080 WINDOW=19574 SYN	2019-08-12 11:23:17
86.101.71.245	attackbotsspam	Aug 12 04:13:51 h2177944 kernel: \[3899803.510447\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 Aug 12 04:33:29 h2177944 kernel: \[3900981.216082\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 Aug 12 04:36:36 h2177944 kernel: \[3901167.515000\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 Aug 12 04:40:44 h2177944 kernel: \[3901415.589263\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 Aug 12 04:46:05 h2177944 kernel: \[3901736.955270\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=	2019-08-12 11:53:43
171.244.18.14	attackspambots	Aug 12 05:49:06 nextcloud sshd\[13514\]: Invalid user fachbereich from 171.244.18.14 Aug 12 05:49:06 nextcloud sshd\[13514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.18.14 Aug 12 05:49:08 nextcloud sshd\[13514\]: Failed password for invalid user fachbereich from 171.244.18.14 port 40710 ssh2 ...	2019-08-12 11:50:11
118.122.191.187	attack	Aug 12 04:25:35 host sshd[10462]: Invalid user school from 118.122.191.187 port 28652 Aug 12 04:25:35 host sshd[10462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.122.191.187 Aug 12 04:25:36 host sshd[10462]: Failed password for invalid user school from 118.122.191.187 port 28652 ssh2 Aug 12 04:25:37 host sshd[10462]: Received disconnect from 118.122.191.187 port 28652:11: Bye Bye [preauth] Aug 12 04:25:37 host sshd[10462]: Disconnected from invalid user school 118.122.191.187 port 28652 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.122.191.187	2019-08-12 12:06:07
178.154.200.50	attack	[Mon Aug 12 09:46:46.252476 2019] [:error] [pid 14411:tid 140680957478656] [client 178.154.200.50:65069] [client 178.154.200.50] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XVDTFhdwU8lNS@e-HuOMLQAAAA0"] ...	2019-08-12 11:31:43
222.98.37.25	attackbots	Aug 12 05:16:45 [host] sshd[23294]: Invalid user ktk from 222.98.37.25 Aug 12 05:16:45 [host] sshd[23294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.98.37.25 Aug 12 05:16:47 [host] sshd[23294]: Failed password for invalid user ktk from 222.98.37.25 port 14549 ssh2	2019-08-12 11:51:25
109.130.161.199	attackbotsspam	Aug 12 04:28:50 shared02 sshd[18848]: Invalid user ll from 109.130.161.199 Aug 12 04:28:50 shared02 sshd[18848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.130.161.199 Aug 12 04:28:52 shared02 sshd[18848]: Failed password for invalid user ll from 109.130.161.199 port 42762 ssh2 Aug 12 04:28:52 shared02 sshd[18848]: Received disconnect from 109.130.161.199 port 42762:11: Bye Bye [preauth] Aug 12 04:28:52 shared02 sshd[18848]: Disconnected from 109.130.161.199 port 42762 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.130.161.199	2019-08-12 11:27:57
207.154.192.152	attackspambots	Aug 12 05:16:05 eventyay sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.152 Aug 12 05:16:07 eventyay sshd[8647]: Failed password for invalid user rox from 207.154.192.152 port 37142 ssh2 Aug 12 05:21:25 eventyay sshd[10108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.152 ...	2019-08-12 11:22:03
49.88.112.90	attack	Aug 11 22:26:34 aat-srv002 sshd[26027]: Failed password for root from 49.88.112.90 port 45100 ssh2 Aug 11 22:26:53 aat-srv002 sshd[26038]: Failed password for root from 49.88.112.90 port 11697 ssh2 Aug 11 22:26:56 aat-srv002 sshd[26038]: Failed password for root from 49.88.112.90 port 11697 ssh2 ...	2019-08-12 11:59:52
31.182.57.162	attackbots	Aug 12 02:47:05 MK-Soft-VM4 sshd\[8261\]: Invalid user ferari from 31.182.57.162 port 58434 Aug 12 02:47:05 MK-Soft-VM4 sshd\[8261\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.182.57.162 Aug 12 02:47:07 MK-Soft-VM4 sshd\[8261\]: Failed password for invalid user ferari from 31.182.57.162 port 58434 ssh2 ...	2019-08-12 11:18:33
46.249.60.194	attackspambots	08/11/2019-22:46:13.784202 46.249.60.194 Protocol: 6 ET SCAN Potential SSH Scan	2019-08-12 11:48:29
151.48.180.189	attackbots	DATE:2019-08-12 04:45:45, IP:151.48.180.189, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-12 12:03:40

最近上报的IP列表

213.28.17.78	239.10.69.116	140.46.40.179	117.255.38.42
164.167.45.140	112.161.33.34	223.1.171.29	169.99.244.116
76.168.141.114	213.57.155.197	135.230.131.231	253.138.163.21
9.43.47.230	97.255.192.12	6.93.225.93	64.60.171.32
68.172.144.166	188.33.115.185	174.7.184.124	140.241.55.146