152.128.140.105

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.128.140.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38116
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.128.140.105.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 08:44:22 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 105.140.128.152.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 105.140.128.152.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
222.186.169.192	attackspam	Brute force SMTP login attempted. ...	2020-03-31 06:08:31
87.4.51.24	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-31 06:09:53
172.245.68.182	attack	Unauthorized access detected from black listed ip!	2020-03-31 06:21:36
222.186.15.158	attackbots	Mar 30 17:45:11 NPSTNNYC01T sshd[26962]: Failed password for root from 222.186.15.158 port 29941 ssh2 Mar 30 17:48:04 NPSTNNYC01T sshd[27101]: Failed password for root from 222.186.15.158 port 35839 ssh2 Mar 30 17:48:06 NPSTNNYC01T sshd[27101]: Failed password for root from 222.186.15.158 port 35839 ssh2 ...	2020-03-31 05:58:11
222.175.62.130	attack	Brute force SMTP login attempted. ...	2020-03-31 06:18:15
178.254.55.25	attackspambots	2020-03-30T17:32:19.252858dmca.cloudsearch.cf sshd[20945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=t2977.greatnet.de user=root 2020-03-30T17:32:20.936446dmca.cloudsearch.cf sshd[20945]: Failed password for root from 178.254.55.25 port 48758 ssh2 2020-03-30T17:36:14.068804dmca.cloudsearch.cf sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=t2977.greatnet.de user=root 2020-03-30T17:36:16.040607dmca.cloudsearch.cf sshd[21413]: Failed password for root from 178.254.55.25 port 32774 ssh2 2020-03-30T17:40:01.138873dmca.cloudsearch.cf sshd[21649]: Invalid user ygao from 178.254.55.25 port 45040 2020-03-30T17:40:01.154033dmca.cloudsearch.cf sshd[21649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=t2977.greatnet.de 2020-03-30T17:40:01.138873dmca.cloudsearch.cf sshd[21649]: Invalid user ygao from 178.254.55.25 port 45040 2020-03-30T17:40:03.262054dmca. ...	2020-03-31 06:26:00
222.186.173.238	attack	Brute force SMTP login attempted. ...	2020-03-31 05:55:57
222.186.173.180	attackspambots	Brute force SMTP login attempted. ...	2020-03-31 06:01:47
222.186.125.130	attack	Brute force SMTP login attempted. ...	2020-03-31 06:13:01
222.184.233.222	attackbots	Brute force SMTP login attempted. ...	2020-03-31 06:15:06
87.251.74.11	attackbotsspam	Multiport scan : 19 ports scanned 121 344 667 855 944 1525 2227 2450 4465 4884 6235 6275 6335 9120 9510 13139 17177 18888 21211	2020-03-31 06:19:30
91.234.62.30	attackspam	GPON Home Routers Remote Code Execution Vulnerability	2020-03-31 06:01:13
85.93.211.130	attack	Mar 28 15:15:33 yolandtech-ams3 sshd\[9465\]: Invalid user NetLinx from 85.93.211.130 Mar 28 15:15:33 yolandtech-ams3 sshd\[9467\]: Invalid user nexthink from 85.93.211.130 Mar 28 15:15:33 yolandtech-ams3 sshd\[9469\]: Invalid user misp from 85.93.211.130 Mar 28 15:15:33 yolandtech-ams3 sshd\[9471\]: Invalid user osbash from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9551\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9553\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9555\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9557\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9559\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9561\]: Invalid user admin from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9563\]: Invalid user pi from 85.93.211.130 Mar 28 15:15:37 yolandtech-ams3 sshd\[9565\]: Invalid user pi from 85.93.2 ...	2020-03-31 06:25:14
2a01:488:66:1000:5ccc:3293:0:1	attack	(mod_security) mod_security (id:210730) triggered by 2a01:488:66:1000:5ccc:3293:0:1 (vs248268.vs.hosteurope.de): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Mar 30 09:51:05.434111 2020] [:error] [pid 57662:tid 46912908662528] [client 2a01:488:66:1000:5ccc:3293:0:1:27938] [client 2a01:488:66:1000:5ccc:3293:0:1] ModSecurity: Access denied with code 403 (phase 2). Matched phrase ".xsd/" at TX:extension. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "3"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cjthedj97.me\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cjthedj97.me"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "XoH5SWvQlui8rvGunqX9dAAAAAg"]	2020-03-31 06:03:50
222.186.139.107	attackspam	Brute force SMTP login attempted. ...	2020-03-31 06:11:33

最近上报的IP列表

56.220.38.157	85.65.177.102	120.91.69.161	225.12.222.219
223.82.12.62	62.141.32.232	32.203.38.56	132.155.27.0
121.111.208.198	225.204.5.45	22.240.152.66	31.94.248.125
142.122.29.172	165.105.146.246	2.22.92.212	122.157.110.80
61.173.96.6	3.77.29.224	246.51.209.41	82.96.238.2