28.144.127.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 28.144.127.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31728
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;28.144.127.142.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022801 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 02:19:01 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 142.127.144.28.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.127.144.28.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.48.150.175	attackspam	Sep 10 02:36:27 hcbbdb sshd\[29080\]: Invalid user timemachine from 62.48.150.175 Sep 10 02:36:27 hcbbdb sshd\[29080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.48.150.175 Sep 10 02:36:29 hcbbdb sshd\[29080\]: Failed password for invalid user timemachine from 62.48.150.175 port 34792 ssh2 Sep 10 02:43:37 hcbbdb sshd\[29874\]: Invalid user factorio from 62.48.150.175 Sep 10 02:43:37 hcbbdb sshd\[29874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.48.150.175	2019-09-10 10:47:36
177.73.140.66	attack	Sep 9 22:25:33 ny01 sshd[31586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.73.140.66 Sep 9 22:25:35 ny01 sshd[31586]: Failed password for invalid user 153 from 177.73.140.66 port 44135 ssh2 Sep 9 22:33:28 ny01 sshd[672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.73.140.66	2019-09-10 10:38:58
185.8.176.2	attack	Sep 10 03:22:47 smtp postfix/smtpd[11485]: NOQUEUE: reject: RCPT from unknown[185.8.176.2]: 554 5.7.1 Service unavailable; Client host [185.8.176.2] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?185.8.176.2; from= to= proto=ESMTP helo= ...	2019-09-10 10:35:57
168.194.140.130	attackspam	Sep 9 22:47:06 vps200512 sshd\[15522\]: Invalid user butter from 168.194.140.130 Sep 9 22:47:06 vps200512 sshd\[15522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 9 22:47:08 vps200512 sshd\[15522\]: Failed password for invalid user butter from 168.194.140.130 port 50782 ssh2 Sep 9 22:54:50 vps200512 sshd\[15623\]: Invalid user user1 from 168.194.140.130 Sep 9 22:54:50 vps200512 sshd\[15623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-09-10 10:58:18
213.32.69.98	attack	2019-09-10T09:27:51.563534enmeeting.mahidol.ac.th sshd\[27314\]: Invalid user bots from 213.32.69.98 port 46326 2019-09-10T09:27:51.581985enmeeting.mahidol.ac.th sshd\[27314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-213-32-69.eu 2019-09-10T09:27:53.329371enmeeting.mahidol.ac.th sshd\[27314\]: Failed password for invalid user bots from 213.32.69.98 port 46326 ssh2 ...	2019-09-10 10:48:43
165.22.99.94	attackspambots	Sep 9 22:35:44 ny01 sshd[1063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.94 Sep 9 22:35:46 ny01 sshd[1063]: Failed password for invalid user christian from 165.22.99.94 port 60422 ssh2 Sep 9 22:42:05 ny01 sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.94	2019-09-10 11:00:20
59.125.120.118	attackbotsspam	Sep 9 16:32:57 aiointranet sshd\[29086\]: Invalid user cumulus from 59.125.120.118 Sep 9 16:32:57 aiointranet sshd\[29086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-125-120-118.hinet-ip.hinet.net Sep 9 16:32:59 aiointranet sshd\[29086\]: Failed password for invalid user cumulus from 59.125.120.118 port 50923 ssh2 Sep 9 16:39:39 aiointranet sshd\[29724\]: Invalid user admin1 from 59.125.120.118 Sep 9 16:39:39 aiointranet sshd\[29724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-125-120-118.hinet-ip.hinet.net	2019-09-10 10:43:22
108.58.41.139	attackspam	Sep 10 04:27:30 saschabauer sshd[6923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.58.41.139 Sep 10 04:27:32 saschabauer sshd[6923]: Failed password for invalid user hadoop from 108.58.41.139 port 30499 ssh2	2019-09-10 10:48:12
151.80.217.219	attackspambots	Sep 9 16:40:55 web9 sshd\[18833\]: Invalid user sail_ftp from 151.80.217.219 Sep 9 16:40:55 web9 sshd\[18833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219 Sep 9 16:40:56 web9 sshd\[18833\]: Failed password for invalid user sail_ftp from 151.80.217.219 port 41244 ssh2 Sep 9 16:46:42 web9 sshd\[19871\]: Invalid user 201 from 151.80.217.219 Sep 9 16:46:42 web9 sshd\[19871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219	2019-09-10 10:49:00
201.182.103.183	attack	Automatic report - Port Scan Attack	2019-09-10 11:09:01
187.188.193.211	attack	Sep 10 02:34:58 localhost sshd\[26267\]: Invalid user webtool from 187.188.193.211 port 36840 Sep 10 02:34:58 localhost sshd\[26267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.193.211 Sep 10 02:34:59 localhost sshd\[26267\]: Failed password for invalid user webtool from 187.188.193.211 port 36840 ssh2 Sep 10 02:43:12 localhost sshd\[26648\]: Invalid user bot2 from 187.188.193.211 port 40716 Sep 10 02:43:12 localhost sshd\[26648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.193.211 ...	2019-09-10 11:09:32
165.227.15.124	attack	[munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:45 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:46 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:48 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:50 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:52 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 165.227.15.124 - - [10/Sep/2019:03:21:54 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11	2019-09-10 11:17:53
141.98.80.80	attack	Sep 10 03:14:10 mail postfix/smtpd\[18325\]: warning: unknown\[141.98.80.80\]: SASL PLAIN authentication failed: \ Sep 10 03:14:23 mail postfix/smtpd\[18325\]: warning: unknown\[141.98.80.80\]: SASL PLAIN authentication failed: \ Sep 10 04:02:10 mail postfix/smtpd\[18988\]: warning: unknown\[141.98.80.80\]: SASL PLAIN authentication failed: \ Sep 10 04:02:18 mail postfix/smtpd\[20587\]: warning: unknown\[141.98.80.80\]: SASL PLAIN authentication failed: \	2019-09-10 10:30:37
203.156.63.19	attack	schuetzenmusikanten.de 203.156.63.19 \[10/Sep/2019:03:21:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 5683 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 203.156.63.19 \[10/Sep/2019:03:21:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5649 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-10 11:21:29
221.213.75.130	attack	221.213.75.155 - - [09/Sep/2019:14:23:03 +0000] "GET / HTTP/1.1" 200 530 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:03 +0000] "GET / HTTP/1.1" 200 496 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko" 221.213.75.155 - - [09/Sep/2019:14:23:04 +0000] "GET / HTTP/1.1" 200 496 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko" 221.213.75.155 - - [09/Sep/2019:14:23:05 +0000] "GET / HTTP/1.1" 200 496 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko" 221.213.75.155 - - [09/Sep/2019:14:23:05 +0000] "GET /currentsetting.htm HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:06 +0000] "GET / HTTP/1.1" 200 530 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:07 +0000] "GET /winbox.png HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:07 +0000] "GET /cgi-bin/nobody/Machine.cgi?action=get_capability HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:08 +0000] "GET /cgi-bin/user/Config.cgi?.cab&action=get&category=Account.* HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:09 +0000] "GET /device_description.xml HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:09 +0000] "GET /current_config/passwd HTTP/1.1" 404 437 "-" "-" 221.213.75.155 - - [09/Sep/2019:14:23:10 +0000] "GET /login/login.html HTTP/1.1" 404 437 "-" "-"	2019-09-10 10:28:40

最近上报的IP列表

137.132.52.4	30.19.30.53	20.65.164.227	51.200.77.211
182.223.205.93	210.145.183.66	216.218.208.207	160.95.235.58
192.53.217.107	230.56.11.46	169.36.209.157	69.56.212.29
161.89.205.202	230.243.178.154	138.138.199.123	88.183.219.58
221.79.227.130	78.135.34.172	61.23.232.204	39.184.197.225