94.140.1.244 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
94.140.115.1	attackbots	Unauthorized connection attempt detected from IP address 94.140.115.1 to port 23	2020-08-04 19:00:37
94.140.199.143	attack	firewall-block, port(s): 445/tcp	2020-07-29 18:40:53
94.140.115.160	attackspam	Port Scan ...	2020-07-22 21:33:23
94.140.115.106	attackbots	Jun 8 00:38:53 [Censored Hostname] sshd[30601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.140.115.106 Jun 8 00:38:55 [Censored Hostname] sshd[30601]: Failed password for invalid user as from 94.140.115.106 port 36018 ssh2[...]	2020-06-08 06:45:19
94.140.193.180	attackbots	Jun 7 14:17:32 haigwepa sshd[17646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.140.193.180 Jun 7 14:17:34 haigwepa sshd[17646]: Failed password for invalid user es from 94.140.193.180 port 59602 ssh2 ...	2020-06-08 03:12:01
94.140.114.17	attackbots	Firewall Dropped Connection	2020-05-12 22:21:08
94.140.114.17	attackbotsspam	[Mon May 11 11:18:28.446478 2020] [:error] [pid 23098:tid 140213493257984] [client 94.140.114.17:443] [client 94.140.114.17] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XrjSFJOY0tIJkGtidjyfxwAAAhw"] ...	2020-05-11 14:11:37
94.140.114.17	attack	User-Agent : Pandalytics/1.0 (https://domainsbot.com/pandalytics/)	2020-05-04 00:15:10
94.140.114.17	attackbotsspam	[02/May/2020:11:35:31 -0400] "GET / HTTP/1.0" "Pandalytics/1.0 (https://domainsbot.com/pandalytics/)"	2020-05-03 18:07:19
94.140.114.17	attackspam	Unauthorized connection attempt detected from IP address 94.140.114.17 to port 443	2020-04-27 19:07:54
94.140.114.17	attackspam	Unauthorized connection attempt detected from IP address 94.140.114.17 to port 443	2020-04-20 02:03:33
94.140.115.54	attack	Apr 4 10:43:03 dallas01 sshd[6066]: Failed password for root from 94.140.115.54 port 57964 ssh2 Apr 4 10:47:10 dallas01 sshd[8489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.140.115.54 Apr 4 10:47:12 dallas01 sshd[8489]: Failed password for invalid user linr from 94.140.115.54 port 40710 ssh2	2020-04-05 04:47:06
94.140.114.53	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-03-29 00:56:04
94.140.115.2	attack	SIP/5060 Probe, BF, Hack -	2020-03-27 17:46:29
94.140.115.2	attackbotsspam	firewall-block, port(s): 11211/tcp	2020-03-25 15:46:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.140.1.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.140.1.244.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020301 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 02:45:22 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 244.1.140.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 244.1.140.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.213.111.15	attack	Automatic report - Port Scan Attack	2020-05-27 02:13:19
222.186.173.238	attackbotsspam	May 26 19:51:44 abendstille sshd\[5013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root May 26 19:51:46 abendstille sshd\[5013\]: Failed password for root from 222.186.173.238 port 35948 ssh2 May 26 19:51:50 abendstille sshd\[5013\]: Failed password for root from 222.186.173.238 port 35948 ssh2 May 26 19:51:54 abendstille sshd\[5013\]: Failed password for root from 222.186.173.238 port 35948 ssh2 May 26 19:51:57 abendstille sshd\[5013\]: Failed password for root from 222.186.173.238 port 35948 ssh2 ...	2020-05-27 02:02:50
156.96.56.123	attackbots	Port Scan detected from 156.96.56.123 (US/United States/Pennsylvania/Philadelphia (North Philadelphia)/-). 4 hits in the last 195 seconds	2020-05-27 02:06:21
202.141.253.229	attackspambots	May 26 18:46:40 buvik sshd[23806]: Failed password for invalid user client from 202.141.253.229 port 52648 ssh2 May 26 18:52:31 buvik sshd[24632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.141.253.229 user=root May 26 18:52:33 buvik sshd[24632]: Failed password for root from 202.141.253.229 port 55208 ssh2 ...	2020-05-27 02:23:58
37.59.57.87	attackbots	37.59.57.87 - - [26/May/2020:17:54:48 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.57.87 - - [26/May/2020:17:54:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.57.87 - - [26/May/2020:17:54:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-27 02:18:31
118.25.90.54	attack	May 26 20:03:11 vpn01 sshd[6026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.90.54 May 26 20:03:13 vpn01 sshd[6026]: Failed password for invalid user aoyule from 118.25.90.54 port 54752 ssh2 ...	2020-05-27 02:05:08
45.55.88.16	attackbots	Port Scan detected from 45.55.88.16 (US/United States/New Jersey/Clifton/-). 4 hits in the last 120 seconds	2020-05-27 02:06:00
49.64.211.109	attackbots	Invalid user mirror from 49.64.211.109 port 60602	2020-05-27 02:10:16
141.98.81.99	attackbots	SSH Brute-Force reported by Fail2Ban	2020-05-27 02:23:34
49.233.216.158	attackbots	May 26 16:47:20 onepixel sshd[1646227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.216.158 May 26 16:47:20 onepixel sshd[1646227]: Invalid user administration from 49.233.216.158 port 52492 May 26 16:47:21 onepixel sshd[1646227]: Failed password for invalid user administration from 49.233.216.158 port 52492 ssh2 May 26 16:49:43 onepixel sshd[1646520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.216.158 user=root May 26 16:49:45 onepixel sshd[1646520]: Failed password for root from 49.233.216.158 port 50984 ssh2	2020-05-27 01:54:44
183.129.141.30	attack	2020-05-26T16:26:41.908474abusebot-7.cloudsearch.cf sshd[22082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.141.30 user=root 2020-05-26T16:26:43.903889abusebot-7.cloudsearch.cf sshd[22082]: Failed password for root from 183.129.141.30 port 45316 ssh2 2020-05-26T16:30:00.605011abusebot-7.cloudsearch.cf sshd[22289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.141.30 user=root 2020-05-26T16:30:02.585554abusebot-7.cloudsearch.cf sshd[22289]: Failed password for root from 183.129.141.30 port 59718 ssh2 2020-05-26T16:33:13.019112abusebot-7.cloudsearch.cf sshd[22451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.141.30 user=root 2020-05-26T16:33:15.024622abusebot-7.cloudsearch.cf sshd[22451]: Failed password for root from 183.129.141.30 port 45886 ssh2 2020-05-26T16:36:23.215660abusebot-7.cloudsearch.cf sshd[22703]: pam_unix(sshd:auth): ...	2020-05-27 02:02:14
202.29.80.133	attack	May 26 15:55:08 *** sshd[7168]: User root from 202.29.80.133 not allowed because not listed in AllowUsers	2020-05-27 02:01:00
212.64.88.97	attackbots	Failed password for invalid user access from 212.64.88.97 port 52530 ssh2	2020-05-27 02:06:38
217.160.214.48	attackspam	May 26 17:50:27 ns382633 sshd\[7558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.214.48 user=root May 26 17:50:28 ns382633 sshd\[7558\]: Failed password for root from 217.160.214.48 port 59850 ssh2 May 26 17:54:44 ns382633 sshd\[7974\]: Invalid user weblogic from 217.160.214.48 port 43964 May 26 17:54:44 ns382633 sshd\[7974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.214.48 May 26 17:54:46 ns382633 sshd\[7974\]: Failed password for invalid user weblogic from 217.160.214.48 port 43964 ssh2	2020-05-27 02:18:57
140.143.208.213	attackbots	May 26 20:17:32 abendstille sshd\[31534\]: Invalid user weblogic from 140.143.208.213 May 26 20:17:32 abendstille sshd\[31534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.208.213 May 26 20:17:34 abendstille sshd\[31534\]: Failed password for invalid user weblogic from 140.143.208.213 port 34548 ssh2 May 26 20:20:06 abendstille sshd\[1625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.208.213 user=root May 26 20:20:07 abendstille sshd\[1625\]: Failed password for root from 140.143.208.213 port 60508 ssh2 ...	2020-05-27 02:20:29

最近上报的IP列表

24.201.140.218	97.67.14.1	242.109.150.189	33.193.237.212
30.106.234.136	192.69.109.1	119.180.0.120	59.145.0.174
242.183.159.189	2.13.2.188	30.33.194.128	97.101.13.212
32.131.211.205	73.214.129.146	95.1.5.103	173.165.187.109
251.0.71.218	155.13.3.103	3.134.148.130	60.215.167.150