5.140.114.53 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.140.114.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32793
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.140.114.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012102 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 13:35:06 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 53.114.140.5.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.114.140.5.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.71.53.185	attackbots	WordPress wp-login brute force :: 167.71.53.185 0.080 - [06/Oct/2020:20:44:59 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2383 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-10-07 13:00:58
42.194.217.169	attackbots	Oct 6 20:49:57 host sshd\[25309\]: Failed password for root from 42.194.217.169 port 57486 ssh2 Oct 6 20:54:29 host sshd\[26318\]: Failed password for root from 42.194.217.169 port 50506 ssh2 Oct 6 20:58:56 host sshd\[27327\]: Failed password for root from 42.194.217.169 port 43512 ssh2 ...	2020-10-07 12:44:27
191.30.24.44	attackbotsspam	Unauthorized connection attempt from IP address 191.30.24.44 on Port 445(SMB)	2020-10-07 12:44:49
124.40.244.254	attackbots	frenzy	2020-10-07 13:18:56
111.229.25.25	attack	Oct 06 15:29:45 askasleikir sshd[14936]: Failed password for root from 111.229.25.25 port 43118 ssh2	2020-10-07 12:51:57
45.150.206.113	attack	Oct 7 07:14:11 galaxy event: galaxy/lswi: smtp: matthias.klaukien@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password Oct 7 07:14:13 galaxy event: galaxy/lswi: smtp: matthias.klaukien [45.150.206.113] authentication failure using internet password Oct 7 07:14:43 galaxy event: galaxy/lswi: smtp: simone.schmid@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password Oct 7 07:14:46 galaxy event: galaxy/lswi: smtp: simone.schmid [45.150.206.113] authentication failure using internet password Oct 7 07:14:57 galaxy event: galaxy/lswi: smtp: julia.matthiessen@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password ...	2020-10-07 13:16:01
139.59.232.188	attack	SSH login attempts.	2020-10-07 13:07:55
113.110.229.190	attackbots	Oct 5 10:42:52 cumulus sshd[20061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.110.229.190 user=r.r Oct 5 10:42:54 cumulus sshd[20061]: Failed password for r.r from 113.110.229.190 port 47232 ssh2 Oct 5 10:42:54 cumulus sshd[20061]: Received disconnect from 113.110.229.190 port 47232:11: Bye Bye [preauth] Oct 5 10:42:54 cumulus sshd[20061]: Disconnected from 113.110.229.190 port 47232 [preauth] Oct 5 10:58:59 cumulus sshd[21471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.110.229.190 user=r.r Oct 5 10:59:01 cumulus sshd[21471]: Failed password for r.r from 113.110.229.190 port 34640 ssh2 Oct 5 10:59:02 cumulus sshd[21471]: Received disconnect from 113.110.229.190 port 34640:11: Bye Bye [preauth] Oct 5 10:59:02 cumulus sshd[21471]: Disconnected from 113.110.229.190 port 34640 [preauth] Oct 5 11:01:54 cumulus sshd[21822]: pam_unix(sshd:auth): authentication failure........ -------------------------------	2020-10-07 12:44:09
213.6.61.219	attackspambots	Automatic report - Banned IP Access	2020-10-07 13:01:35
128.14.133.58	attack	srvr1: (mod_security) mod_security (id:920350) triggered by 128.14.133.58 (US/-/zl-lax-us-gp3-wk104.internet-census.org): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/07 06:25:50 [error] 443560#0: 507275 [client 128.14.133.58] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "16020447502.910907"] [ref "o0,13v21,13"], client: 128.14.133.58, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-07 13:19:57
110.185.185.17	attackspam	Oct 5 20:46:12 pl3server sshd[6303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.185.17 user=r.r Oct 5 20:46:14 pl3server sshd[6303]: Failed password for r.r from 110.185.185.17 port 52004 ssh2 Oct 5 20:46:14 pl3server sshd[6303]: Received disconnect from 110.185.185.17 port 52004:11: Bye Bye [preauth] Oct 5 20:46:14 pl3server sshd[6303]: Disconnected from 110.185.185.17 port 52004 [preauth] Oct 5 21:02:12 pl3server sshd[12318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.185.17 user=r.r Oct 5 21:02:14 pl3server sshd[12318]: Failed password for r.r from 110.185.185.17 port 37398 ssh2 Oct 5 21:02:14 pl3server sshd[12318]: Received disconnect from 110.185.185.17 port 37398:11: Bye Bye [preauth] Oct 5 21:02:14 pl3server sshd[12318]: Disconnected from 110.185.185.17 port 37398 [preauth] Oct 5 21:06:11 pl3server sshd[14254]: pam_unix(sshd:auth): authentication f........ -------------------------------	2020-10-07 13:04:56
112.85.42.180	attack	Oct 7 05:06:47 124388 sshd[674]: Failed password for root from 112.85.42.180 port 17253 ssh2 Oct 7 05:06:50 124388 sshd[674]: Failed password for root from 112.85.42.180 port 17253 ssh2 Oct 7 05:06:54 124388 sshd[674]: Failed password for root from 112.85.42.180 port 17253 ssh2 Oct 7 05:06:57 124388 sshd[674]: Failed password for root from 112.85.42.180 port 17253 ssh2 Oct 7 05:06:57 124388 sshd[674]: error: maximum authentication attempts exceeded for root from 112.85.42.180 port 17253 ssh2 [preauth]	2020-10-07 13:09:33
112.85.42.183	attackbotsspam	2020-10-07T08:01:28.702134lavrinenko.info sshd[22502]: Failed password for root from 112.85.42.183 port 61220 ssh2 2020-10-07T08:01:34.005637lavrinenko.info sshd[22502]: Failed password for root from 112.85.42.183 port 61220 ssh2 2020-10-07T08:01:38.634466lavrinenko.info sshd[22502]: Failed password for root from 112.85.42.183 port 61220 ssh2 2020-10-07T08:01:42.128568lavrinenko.info sshd[22502]: Failed password for root from 112.85.42.183 port 61220 ssh2 2020-10-07T08:01:47.423496lavrinenko.info sshd[22502]: Failed password for root from 112.85.42.183 port 61220 ssh2 ...	2020-10-07 13:06:32
119.181.19.21	attack	Oct 7 01:34:46 host1 sshd[1379608]: Failed password for root from 119.181.19.21 port 22679 ssh2 Oct 7 01:37:55 host1 sshd[1379923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.181.19.21 user=root Oct 7 01:37:58 host1 sshd[1379923]: Failed password for root from 119.181.19.21 port 24226 ssh2 Oct 7 01:37:55 host1 sshd[1379923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.181.19.21 user=root Oct 7 01:37:58 host1 sshd[1379923]: Failed password for root from 119.181.19.21 port 24226 ssh2 ...	2020-10-07 12:55:49
205.185.113.140	attackspam	2020-10-07T08:11:21.637467snf-827550 sshd[11184]: Failed password for root from 205.185.113.140 port 56920 ssh2 2020-10-07T08:14:48.216180snf-827550 sshd[11206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 user=root 2020-10-07T08:14:50.108444snf-827550 sshd[11206]: Failed password for root from 205.185.113.140 port 34790 ssh2 ...	2020-10-07 13:17:53

最近上报的IP列表

228.62.10.131	175.18.153.88	114.30.88.234	176.44.127.115
85.97.174.69	50.206.37.182	203.208.60.47	17.238.3.7
203.155.171.166	169.88.114.34	255.64.32.134	97.116.149.100
51.35.236.223	160.87.187.128	147.5.94.206	141.76.243.225
53.205.208.3	4.76.154.136	60.73.225.144	25.156.52.59