104.140.148.58

基本信息:

城市(city): Las Vegas

省份(region): Nevada

国家(country): United States

运营商(isp): Cloud Unboxed Limited

主机名(hostname): unknown

机构(organization): Eonix Corporation

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	firewall-block, port(s): 161/udp	2019-09-21 04:37:23
attack	Sep 11 14:57:21 localhost kernel: [1966058.443067] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:57:21 localhost kernel: [1966058.443093] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 SEQ=3815533082 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405B4) Sep 11 14:59:52 localhost kernel: [1966209.518449] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=43417 PROTO=TCP SPT=64300 DPT=5910 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:59:52 localhost kernel: [1966209.518469] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=4	2019-09-12 03:13:24
attackspam	23.08.2019 20:09:25 Connection to port 21 blocked by firewall	2019-08-24 04:38:34
attackbotsspam	Automatic report - Port Scan Attack	2019-07-30 03:10:28
attackbots	8444/tcp 21/tcp 5900/tcp... [2019-06-13/07-24]35pkt,13pt.(tcp),1pt.(udp)	2019-07-26 11:47:12
attackbotsspam	" "	2019-07-25 06:38:18
attackspambots	22.07.2019 18:53:41 Connection to port 3306 blocked by firewall	2019-07-23 05:55:25
attackbots	RDP brute force attack detected by fail2ban	2019-07-18 14:04:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.140.148.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40569
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.140.148.58.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 15:04:06 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 58.148.140.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 58.148.140.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.192.143.20	attackbots	Jan 2 15:54:44 ks10 sshd[28353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.20 Jan 2 15:54:46 ks10 sshd[28353]: Failed password for invalid user admin from 159.192.143.20 port 32901 ssh2 ...	2020-01-03 03:46:40
51.91.136.174	attack	Jan 2 14:19:18 plusreed sshd[21473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.136.174 user=root Jan 2 14:19:20 plusreed sshd[21473]: Failed password for root from 51.91.136.174 port 57512 ssh2 ...	2020-01-03 04:12:59
113.185.41.120	attackbots	Unauthorized connection attempt detected from IP address 113.185.41.120 to port 445	2020-01-03 04:08:36
80.81.85.205	attackspam	Jan 2 14:29:35 raspberrypi sshd\[5084\]: Failed password for root from 80.81.85.205 port 38014 ssh2Jan 2 14:54:45 raspberrypi sshd\[5873\]: Invalid user tetreault from 80.81.85.205Jan 2 14:54:47 raspberrypi sshd\[5873\]: Failed password for invalid user tetreault from 80.81.85.205 port 39788 ssh2 ...	2020-01-03 03:47:13
27.124.32.12	attackspam	Port Scan detected from 27.124.32.12 (US/United States/-). 4 hits in the last 155 seconds	2020-01-03 03:35:50
103.25.243.2	attackbotsspam	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:38:36
101.89.112.1	attackbots	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:40:47
62.197.120.198	attackbots	Jan 2 17:49:15 haigwepa sshd[14307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.197.120.198 Jan 2 17:49:17 haigwepa sshd[14307]: Failed password for invalid user admin from 62.197.120.198 port 35774 ssh2 ...	2020-01-03 03:44:28
110.80.17.26	attackbots	Jan 2 19:33:42 serwer sshd\[2735\]: Invalid user xampp from 110.80.17.26 port 50218 Jan 2 19:33:42 serwer sshd\[2735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.17.26 Jan 2 19:33:44 serwer sshd\[2735\]: Failed password for invalid user xampp from 110.80.17.26 port 50218 ssh2 ...	2020-01-03 03:52:15
139.162.117.40	attackspam	Unauthorized connection attempt detected from IP address 139.162.117.40 to port 53	2020-01-03 04:06:09
124.108.21.100	attack	Jan 2 23:00:21 server sshd\[12765\]: Invalid user www from 124.108.21.100 Jan 2 23:00:21 server sshd\[12765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.108.21.100 Jan 2 23:00:21 server sshd\[12766\]: Invalid user www from 124.108.21.100 Jan 2 23:00:21 server sshd\[12766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.108.21.100 Jan 2 23:00:24 server sshd\[12765\]: Failed password for invalid user www from 124.108.21.100 port 56810 ssh2 ...	2020-01-03 04:04:08
187.44.106.11	attack	Jan 2 15:54:14 tuxlinux sshd[46105]: Invalid user wwwadmin from 187.44.106.11 port 53373 Jan 2 15:54:14 tuxlinux sshd[46105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.44.106.11 Jan 2 15:54:14 tuxlinux sshd[46105]: Invalid user wwwadmin from 187.44.106.11 port 53373 Jan 2 15:54:14 tuxlinux sshd[46105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.44.106.11 ...	2020-01-03 04:02:03
101.89.80.1	attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:41:14
106.13.125.159	attackbotsspam	2020-01-02T15:51:14.982840vps751288.ovh.net sshd\[22008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 user=root 2020-01-02T15:51:16.888835vps751288.ovh.net sshd\[22008\]: Failed password for root from 106.13.125.159 port 54564 ssh2 2020-01-02T15:54:42.273916vps751288.ovh.net sshd\[22022\]: Invalid user cisco from 106.13.125.159 port 48450 2020-01-02T15:54:42.282423vps751288.ovh.net sshd\[22022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 2020-01-02T15:54:44.745109vps751288.ovh.net sshd\[22022\]: Failed password for invalid user cisco from 106.13.125.159 port 48450 ssh2	2020-01-03 03:48:59
46.17.44.207	attack	Jan 2 18:35:46 server sshd\[17362\]: Invalid user hung from 46.17.44.207 Jan 2 18:35:46 server sshd\[17362\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.17.44.207 Jan 2 18:35:48 server sshd\[17362\]: Failed password for invalid user hung from 46.17.44.207 port 50554 ssh2 Jan 2 18:43:46 server sshd\[18854\]: Invalid user veronique from 46.17.44.207 Jan 2 18:43:46 server sshd\[18854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.17.44.207 ...	2020-01-03 03:58:40

最近上报的IP列表

24.52.192.246	137.128.231.69	76.1.98.242	36.109.198.22
207.193.175.66	194.131.56.110	163.64.115.228	16.167.17.101
94.134.39.218	123.23.235.61	228.29.45.233	24.4.88.136
67.204.3.43	74.14.135.111	190.121.17.82	128.185.107.152
89.133.201.213	9.244.119.152	91.92.144.95	189.14.58.250