183.16.100.140

基本信息:

城市(city): unknown

省份(region): Guangdong

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	port 0:65535	2020-01-12 05:14:24

相同子网IP讨论:

IP	类型	评论内容	时间
183.16.100.180	attackspambots	Port scan on 1 port(s): 4899	2020-08-18 20:33:30
183.16.100.180	attackbots	Port probing on unauthorized port 4899	2020-08-09 19:43:19
183.16.100.208	attack	Mar 29 14:45:42 debian-2gb-nbg1-2 kernel: \[7745004.288366\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=183.16.100.208 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=26746 DF PROTO=TCP SPT=63597 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0	2020-03-30 00:37:42
183.16.100.12	attack	Nov 29 07:21:55 mail kernel: [28262.803251] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=183.16.100.12 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=8020 DF PROTO=TCP SPT=58122 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Nov 29 07:21:58 mail kernel: [28265.803095] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=183.16.100.12 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=8021 DF PROTO=TCP SPT=58122 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0 Nov 29 07:22:04 mail kernel: [28271.803489] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=183.16.100.12 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=8024 DF PROTO=TCP SPT=58122 DPT=4899 WINDOW=8192 RES=0x00 SYN URGP=0	2019-11-29 19:28:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 183.16.100.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63550
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;183.16.100.140.			IN	A

;; AUTHORITY SECTION:
.			277	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011100 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 12 05:14:21 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 140.100.16.183.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.100.16.183.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.33.13.124	attackbotsspam	Oct 19 04:48:01 php1 sshd\[20043\]: Invalid user thanks from 112.33.13.124 Oct 19 04:48:01 php1 sshd\[20043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.13.124 Oct 19 04:48:04 php1 sshd\[20043\]: Failed password for invalid user thanks from 112.33.13.124 port 49708 ssh2 Oct 19 04:53:55 php1 sshd\[21053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.13.124 user=root Oct 19 04:53:57 php1 sshd\[21053\]: Failed password for root from 112.33.13.124 port 53182 ssh2	2019-10-19 23:09:24
46.209.222.30	attackspambots	Unauthorized connection attempt from IP address 46.209.222.30 on Port 445(SMB)	2019-10-19 23:51:31
142.93.238.162	attackspam	Oct 19 15:04:26 v22019058497090703 sshd[22695]: Failed password for root from 142.93.238.162 port 47250 ssh2 Oct 19 15:08:24 v22019058497090703 sshd[23016]: Failed password for root from 142.93.238.162 port 58934 ssh2 ...	2019-10-19 23:54:22
132.232.4.33	attackbots	Oct 19 16:51:19 vps01 sshd[29173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 Oct 19 16:51:20 vps01 sshd[29173]: Failed password for invalid user Administrator from 132.232.4.33 port 60254 ssh2	2019-10-19 23:00:07
185.176.27.54	attackspam	10/19/2019-17:07:59.964407 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-19 23:42:32
117.121.38.113	attack	Oct 19 15:01:49 nextcloud sshd\[15201\]: Invalid user support from 117.121.38.113 Oct 19 15:01:49 nextcloud sshd\[15201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.121.38.113 Oct 19 15:01:50 nextcloud sshd\[15201\]: Failed password for invalid user support from 117.121.38.113 port 44018 ssh2 ...	2019-10-19 23:51:11
221.131.68.210	attackbots	Port Scan detected from 221.131.68.210 (CN/China/-). 4 hits in the last 25 seconds	2019-10-19 23:24:03
65.155.170.34	attackspambots	Unauthorized connection attempt from IP address 65.155.170.34 on Port 445(SMB)	2019-10-19 23:12:51
182.156.234.90	attackbots	Unauthorized connection attempt from IP address 182.156.234.90 on Port 445(SMB)	2019-10-19 23:10:46
113.170.71.212	attack	Unauthorized connection attempt from IP address 113.170.71.212 on Port 445(SMB)	2019-10-19 23:16:27
142.4.204.122	attackbots	Oct 19 17:29:20 MK-Soft-Root2 sshd[6394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 Oct 19 17:29:22 MK-Soft-Root2 sshd[6394]: Failed password for invalid user mark from 142.4.204.122 port 44329 ssh2 ...	2019-10-19 23:47:10
115.68.207.48	attackspambots	Oct 19 17:09:39 OPSO sshd\[26853\]: Invalid user 1q2w3e4r5t6y from 115.68.207.48 port 58670 Oct 19 17:09:39 OPSO sshd\[26853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.207.48 Oct 19 17:09:41 OPSO sshd\[26853\]: Failed password for invalid user 1q2w3e4r5t6y from 115.68.207.48 port 58670 ssh2 Oct 19 17:14:19 OPSO sshd\[27623\]: Invalid user 123456 from 115.68.207.48 port 41046 Oct 19 17:14:19 OPSO sshd\[27623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.207.48	2019-10-19 23:31:53
167.250.141.13	attack	Unauthorized connection attempt from IP address 167.250.141.13 on Port 445(SMB)	2019-10-19 23:25:06
171.35.160.10	attackspam	Oct 19 13:50:51 mxgate1 postfix/postscreen[17805]: CONNECT from [171.35.160.10]:46976 to [176.31.12.44]:25 Oct 19 13:50:51 mxgate1 postfix/dnsblog[17896]: addr 171.35.160.10 listed by domain bl.spamcop.net as 127.0.0.2 Oct 19 13:50:51 mxgate1 postfix/dnsblog[17897]: addr 171.35.160.10 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 19 13:50:52 mxgate1 postfix/dnsblog[17895]: addr 171.35.160.10 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 19 13:50:52 mxgate1 postfix/dnsblog[17920]: addr 171.35.160.10 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 19 13:50:52 mxgate1 postfix/dnsblog[17920]: addr 171.35.160.10 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 19 13:50:52 mxgate1 postfix/dnsblog[17920]: addr 171.35.160.10 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 19 13:50:57 mxgate1 postfix/postscreen[17805]: DNSBL rank 5 for [171.35.160.10]:46976 Oct 19 13:51:00 mxgate1 postfix/tlsproxy[17986]: CONNECT from [171.35.160.10]:46976 Oct x@x ........ ------------------------------------	2019-10-19 23:13:40
157.52.197.21	attackspam	Lines containing failures of 157.52.197.21 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=157.52.197.21	2019-10-19 23:19:25

最近上报的IP列表

173.180.204.247	121.4.88.138	116.224.54.235	217.230.28.8
69.57.119.211	49.232.145.201	130.60.87.218	80.141.166.127
186.91.202.131	187.67.208.148	114.231.46.43	111.246.74.170
219.234.238.88	186.200.70.54	124.87.205.228	66.114.32.98
110.39.65.212	119.2.26.215	219.146.162.85	86.130.187.95