104.139.112.197

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.139.112.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.139.112.197.		IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 176 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:18:27 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

197.112.139.104.in-addr.arpa domain name pointer cpe-104-139-112-197.carolina.res.rr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.112.139.104.in-addr.arpa	name = cpe-104-139-112-197.carolina.res.rr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.106.19.183	attackbots	[PY] (sshd) Failed SSH login from 116.106.19.183 (VN/Vietnam/dynamic-ip-adsl.viettel.vn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 21:03:58 svr sshd[3191314]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:03:59 svr sshd[3191325]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:01 svr sshd[3191581]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:04 svr sshd[3191854]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:07 svr sshd[3191992]: refused connect from 116.106.19.183 (116.106.19.183)	2020-09-23 00:52:35
93.120.224.170	attackspambots	Sep 22 12:16:16 ip106 sshd[7722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.120.224.170 Sep 22 12:16:18 ip106 sshd[7722]: Failed password for invalid user vsftp from 93.120.224.170 port 41272 ssh2 ...	2020-09-23 01:13:51
118.103.117.159	attackspam	Unauthorized connection attempt from IP address 118.103.117.159 on Port 445(SMB)	2020-09-23 00:57:58
187.19.197.46	attack	Unauthorized connection attempt from IP address 187.19.197.46 on Port 445(SMB)	2020-09-23 00:52:16
52.146.37.33	attackbotsspam	2020-09-21 UTC: (2x) - testftp(2x)	2020-09-23 00:48:50
139.59.239.38	attackspam	Invalid user gtekautomation from 139.59.239.38 port 49724	2020-09-23 01:15:06
207.154.215.119	attackspam	Cowrie Honeypot: 2 unauthorised SSH/Telnet login attempts between 2020-09-22T14:00:57Z and 2020-09-22T14:00:58Z	2020-09-23 00:54:30
112.85.42.200	attackbotsspam	Sep 22 18:29:12 nextcloud sshd\[26567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root Sep 22 18:29:14 nextcloud sshd\[26567\]: Failed password for root from 112.85.42.200 port 54195 ssh2 Sep 22 18:29:41 nextcloud sshd\[27184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root	2020-09-23 00:53:06
149.56.102.43	attack	failed root login	2020-09-23 01:18:20
154.221.28.224	attackbotsspam	Sep 22 19:08:58 sso sshd[10741]: Failed password for root from 154.221.28.224 port 37132 ssh2 ...	2020-09-23 01:21:37
191.85.247.7	attackspam	1600707683 - 09/21/2020 19:01:23 Host: 191.85.247.7/191.85.247.7 Port: 445 TCP Blocked	2020-09-23 01:07:19
138.59.188.199	attack	Unauthorized connection attempt from IP address 138.59.188.199 on Port 445(SMB)	2020-09-23 00:55:41
185.191.171.3	attack	[Tue Sep 22 23:30:23.316576 2020] [:error] [pid 10514:tid 140084493895424] [client 185.191.171.3:30486] [client 185.191.171.3] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "SemrushBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "181"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: SemrushBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; semrushbot/6~bl; +http://www.semrush.com/bot.html)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/kalender-tanam-katam-terpadu-kecamatan-bonehau-kabupaten-mamuju-provinsi-sulawesi-barat-musim-kema ...	2020-09-23 01:08:44
191.232.170.8	attackspambots	SSH brute force	2020-09-23 01:06:58
128.199.111.241	attack	Sep 22 00:52:07 wordpress wordpress(www.ruhnke.cloud)[41086]: Blocked authentication attempt for admin from 128.199.111.241	2020-09-23 00:46:18

最近上报的IP列表

104.139.110.156	104.139.109.149	104.139.118.83	104.139.114.211
104.139.112.248	104.139.112.74	104.139.111.27	104.139.120.152
226.0.139.96	104.139.116.140	101.109.150.92	104.139.121.136
104.139.121.102	104.139.115.254	104.139.121.193	104.139.122.146
104.139.123.244	104.139.122.55	104.139.123.37	104.139.121.206