104.139.121.17

基本信息:

城市(city): Charlotte

省份(region): North Carolina

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Charter Communications Inc

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.139.121.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43139
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.139.121.17.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 02:23:17 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

17.121.139.104.in-addr.arpa domain name pointer cpe-104-139-121-17.carolina.res.rr.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
17.121.139.104.in-addr.arpa	name = cpe-104-139-121-17.carolina.res.rr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.180.141.31	attackbotsspam	23.07.2019 13:06:29 SSH access blocked by firewall	2019-07-23 21:14:17
202.126.208.122	attackspambots	Jul 23 11:10:49 vmd17057 sshd\[7414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.126.208.122 user=root Jul 23 11:10:52 vmd17057 sshd\[7414\]: Failed password for root from 202.126.208.122 port 38241 ssh2 Jul 23 11:15:59 vmd17057 sshd\[7739\]: Invalid user gateway from 202.126.208.122 port 36345 Jul 23 11:15:59 vmd17057 sshd\[7739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.126.208.122 ...	2019-07-23 21:55:16
112.85.42.187	attackspambots	Jul 23 12:42:48 dcd-gentoo sshd[575]: User root from 112.85.42.187 not allowed because none of user's groups are listed in AllowGroups Jul 23 12:42:51 dcd-gentoo sshd[575]: error: PAM: Authentication failure for illegal user root from 112.85.42.187 Jul 23 12:42:48 dcd-gentoo sshd[575]: User root from 112.85.42.187 not allowed because none of user's groups are listed in AllowGroups Jul 23 12:42:51 dcd-gentoo sshd[575]: error: PAM: Authentication failure for illegal user root from 112.85.42.187 Jul 23 12:42:48 dcd-gentoo sshd[575]: User root from 112.85.42.187 not allowed because none of user's groups are listed in AllowGroups Jul 23 12:42:51 dcd-gentoo sshd[575]: error: PAM: Authentication failure for illegal user root from 112.85.42.187 Jul 23 12:42:51 dcd-gentoo sshd[575]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.187 port 29609 ssh2 ...	2019-07-23 21:51:29
49.149.105.140	attack	Jul 23 05:17:00 localhost kernel: [15117613.725906] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=49.149.105.140 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=10037 DF PROTO=TCP SPT=3680 DPT=8291 SEQ=1139354978 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030201010402) Jul 23 05:17:06 localhost kernel: [15117619.497581] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=49.149.105.140 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=6454 DF PROTO=TCP SPT=3784 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 23 05:17:06 localhost kernel: [15117619.497607] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=49.149.105.140 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=6454 DF PROTO=TCP SPT=3784 DPT=8291 SEQ=219521053 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030201010402)	2019-07-23 21:22:26
52.179.180.63	attackspambots	Jul 23 19:21:22 vibhu-HP-Z238-Microtower-Workstation sshd\[12717\]: Invalid user dodsserver from 52.179.180.63 Jul 23 19:21:22 vibhu-HP-Z238-Microtower-Workstation sshd\[12717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.179.180.63 Jul 23 19:21:25 vibhu-HP-Z238-Microtower-Workstation sshd\[12717\]: Failed password for invalid user dodsserver from 52.179.180.63 port 40248 ssh2 Jul 23 19:27:01 vibhu-HP-Z238-Microtower-Workstation sshd\[12854\]: Invalid user helpdesk from 52.179.180.63 Jul 23 19:27:01 vibhu-HP-Z238-Microtower-Workstation sshd\[12854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.179.180.63 ...	2019-07-23 21:57:58
43.240.10.27	attackspambots	$f2bV_matches	2019-07-23 22:18:59
123.31.17.43	attack	Automatic report - Banned IP Access	2019-07-23 21:32:37
131.100.132.14	attack	Jul 23 05:15:41 web1 postfix/smtpd[3656]: warning: 131-100-132-14.radiobrastelecom.com.br[131.100.132.14]: SASL PLAIN authentication failed: authentication failure ...	2019-07-23 22:11:53
120.52.120.166	attackbots	2019-07-23T13:34:00.170222abusebot-8.cloudsearch.cf sshd\[452\]: Invalid user admin from 120.52.120.166 port 50131	2019-07-23 21:45:20
37.187.0.20	attack	2019-07-23T13:30:20.629289abusebot-6.cloudsearch.cf sshd\[2980\]: Invalid user info from 37.187.0.20 port 44280	2019-07-23 21:38:50
70.36.102.87	attackbotsspam	Jul 23 11:17:06 nginx sshd[58938]: error: PAM: authentication error for root from 70.36.102.87 Jul 23 11:17:06 nginx sshd[58938]: Failed keyboard-interactive/pam for root from 70.36.102.87 port 50720 ssh2	2019-07-23 21:21:51
139.9.24.17	attackbots	Jul 22 18:27:11 fv15 sshd[9297]: reveeclipse mapping checking getaddrinfo for ecs-139-9-24-17.compute.hwclouds-dns.com [139.9.24.17] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:27:12 fv15 sshd[9297]: Failed password for invalid user mustafa from 139.9.24.17 port 46714 ssh2 Jul 22 18:27:13 fv15 sshd[9297]: Received disconnect from 139.9.24.17: 11: Bye Bye [preauth] Jul 22 18:47:20 fv15 sshd[32171]: reveeclipse mapping checking getaddrinfo for ecs-139-9-24-17.compute.hwclouds-dns.com [139.9.24.17] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:47:23 fv15 sshd[32171]: Failed password for invalid user jakob from 139.9.24.17 port 49484 ssh2 Jul 22 18:47:23 fv15 sshd[32171]: Received disconnect from 139.9.24.17: 11: Bye Bye [preauth] Jul 22 18:51:23 fv15 sshd[3373]: reveeclipse mapping checking getaddrinfo for ecs-139-9-24-17.compute.hwclouds-dns.com [139.9.24.17] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:51:24 fv15 sshd[3373]: Failed password for invalid user ftpuser fr........ -------------------------------	2019-07-23 21:33:14
218.92.0.174	attack	SSH-bruteforce attempts	2019-07-23 22:16:00
78.157.60.27	attackspambots	SMB Server BruteForce Attack	2019-07-23 21:20:58
49.207.33.2	attack	Jul 22 18:26:37 majoron sshd[3874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.33.2 user=r.r Jul 22 18:26:39 majoron sshd[3874]: Failed password for r.r from 49.207.33.2 port 34822 ssh2 Jul 22 18:26:39 majoron sshd[3874]: Received disconnect from 49.207.33.2 port 34822:11: Bye Bye [preauth] Jul 22 18:26:39 majoron sshd[3874]: Disconnected from 49.207.33.2 port 34822 [preauth] Jul 22 18:58:24 majoron sshd[5465]: Invalid user stefan from 49.207.33.2 port 58918 Jul 22 18:58:24 majoron sshd[5465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.33.2 Jul 22 18:58:26 majoron sshd[5465]: Failed password for invalid user stefan from 49.207.33.2 port 58918 ssh2 Jul 22 18:58:26 majoron sshd[5465]: Received disconnect from 49.207.33.2 port 58918:11: Bye Bye [preauth] Jul 22 18:58:26 majoron sshd[5465]: Disconnected from 49.207.33.2 port 58918 [preauth] ........ ----------------------------------------------- https://www	2019-07-23 21:44:36

最近上报的IP列表

222.164.96.80	198.117.234.255	220.163.253.244	195.128.125.93
103.31.54.73	113.81.195.127	94.97.96.139	103.38.215.247
176.241.86.154	52.8.83.182	54.236.116.169	24.34.151.35
141.98.9.199	96.70.97.70	167.71.210.71	117.102.94.186
39.135.1.161	125.44.247.40	193.112.73.244	2.185.157.228