104.140.22.246

基本信息:

城市(city): Seattle

省份(region): Washington

国家(country): United States

运营商(isp): ServerHub

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	slow and persistent scanner	2020-03-10 05:35:34

相同子网IP讨论:

IP	类型	评论内容	时间
104.140.224.85	attackspam	104.140.224.85 has been banned for [spam] ...	2020-05-09 21:50:43
104.140.224.124	attack	Email SPAM	2020-04-09 10:06:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.140.22.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.140.22.246.			IN	A

;; AUTHORITY SECTION:
.			258	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 05:35:32 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 246.22.140.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.22.140.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.226.146	attackbots	Jul 28 16:28:12 server sshd\[18613\]: Invalid user redhat70 from 68.183.226.146 port 4995 Jul 28 16:28:12 server sshd\[18613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.226.146 Jul 28 16:28:14 server sshd\[18613\]: Failed password for invalid user redhat70 from 68.183.226.146 port 4995 ssh2 Jul 28 16:33:18 server sshd\[3974\]: Invalid user godsgift from 68.183.226.146 port 56699 Jul 28 16:33:18 server sshd\[3974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.226.146	2019-07-28 21:49:55
121.142.111.86	attackspam	2019-07-28T13:27:05.549554abusebot.cloudsearch.cf sshd\[23428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.111.86 user=root	2019-07-28 21:53:17
51.38.232.163	attackspambots	Jul 28 16:34:08 server sshd\[9621\]: Invalid user sophia from 51.38.232.163 port 35410 Jul 28 16:34:08 server sshd\[9621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.163 Jul 28 16:34:10 server sshd\[9621\]: Failed password for invalid user sophia from 51.38.232.163 port 35410 ssh2 Jul 28 16:38:37 server sshd\[17473\]: Invalid user dbusr123 from 51.38.232.163 port 58730 Jul 28 16:38:37 server sshd\[17473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.163	2019-07-28 21:45:20
207.180.214.129	attackspam	Automatic report - SSH Brute-Force Attack	2019-07-28 21:57:47
139.59.59.187	attackbotsspam	Jul 28 15:15:02 amit sshd\[24505\]: Invalid user vision from 139.59.59.187 Jul 28 15:15:02 amit sshd\[24505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.187 Jul 28 15:15:04 amit sshd\[24505\]: Failed password for invalid user vision from 139.59.59.187 port 52624 ssh2 ...	2019-07-28 21:18:53
5.55.0.12	attackbotsspam	DATE:2019-07-28 13:29:20, IP:5.55.0.12, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-28 21:12:09
148.72.151.60	attackbotsspam	[Aegis] @ 2019-07-28 14:06:29 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-07-28 21:50:29
213.171.197.111	attackspam	213.171.197.111 - - [28/Jul/2019:15:21:50 +0200] "GET /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.171.197.111 - - [28/Jul/2019:15:21:50 +0200] "POST /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.171.197.111 - - [28/Jul/2019:15:21:51 +0200] "GET /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.171.197.111 - - [28/Jul/2019:15:21:51 +0200] "POST /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.171.197.111 - - [28/Jul/2019:15:21:51 +0200] "GET /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.171.197.111 - - [28/Jul/2019:15:21:51 +0200] "POST /wp-login.php HTTP/1.1" 200 4403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-07-28 21:49:06
148.72.194.128	attackbotsspam	Sql/code injection probe	2019-07-28 21:20:05
200.216.30.10	attackspam	Jul 28 15:32:55 vtv3 sshd\[15483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.216.30.10 user=root Jul 28 15:32:57 vtv3 sshd\[15483\]: Failed password for root from 200.216.30.10 port 10350 ssh2 Jul 28 15:38:32 vtv3 sshd\[18174\]: Invalid user com from 200.216.30.10 port 61558 Jul 28 15:38:32 vtv3 sshd\[18174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.216.30.10 Jul 28 15:38:34 vtv3 sshd\[18174\]: Failed password for invalid user com from 200.216.30.10 port 61558 ssh2 Jul 28 15:49:24 vtv3 sshd\[23308\]: Invalid user ferdinand from 200.216.30.10 port 34970 Jul 28 15:49:24 vtv3 sshd\[23308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.216.30.10 Jul 28 15:49:27 vtv3 sshd\[23308\]: Failed password for invalid user ferdinand from 200.216.30.10 port 34970 ssh2 Jul 28 15:55:00 vtv3 sshd\[26231\]: Invalid user Root123456 from 200.216.30.10 port 21682 Jul 28 15:	2019-07-28 21:15:10
188.128.39.129	attack	Jul 28 15:11:42 localhost sshd\[13886\]: Invalid user asd from 188.128.39.129 port 59248 Jul 28 15:11:42 localhost sshd\[13886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.129 Jul 28 15:11:44 localhost sshd\[13886\]: Failed password for invalid user asd from 188.128.39.129 port 59248 ssh2	2019-07-28 21:39:19
168.195.229.93	attack	Jul 28 07:29:00 web1 postfix/smtpd[6514]: warning: unknown[168.195.229.93]: SASL PLAIN authentication failed: authentication failure ...	2019-07-28 21:25:55
197.254.3.250	attackbotsspam	scan z	2019-07-28 21:33:04
115.238.62.154	attackspam	Jul 28 08:54:03 xtremcommunity sshd\[22495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.62.154 user=root Jul 28 08:54:05 xtremcommunity sshd\[22495\]: Failed password for root from 115.238.62.154 port 59194 ssh2 Jul 28 08:58:11 xtremcommunity sshd\[22601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.62.154 user=root Jul 28 08:58:13 xtremcommunity sshd\[22601\]: Failed password for root from 115.238.62.154 port 21217 ssh2 Jul 28 09:02:20 xtremcommunity sshd\[22700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.62.154 user=root ...	2019-07-28 21:42:45
104.248.144.227	attackbotsspam	Jul 28 14:14:32 tux-35-217 sshd\[18906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.144.227 user=root Jul 28 14:14:34 tux-35-217 sshd\[18906\]: Failed password for root from 104.248.144.227 port 24145 ssh2 Jul 28 14:20:21 tux-35-217 sshd\[18926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.144.227 user=root Jul 28 14:20:23 tux-35-217 sshd\[18926\]: Failed password for root from 104.248.144.227 port 20664 ssh2 ...	2019-07-28 21:12:31

最近上报的IP列表

34.254.189.81	76.248.60.54	197.30.182.204	60.27.151.115
184.67.36.71	34.235.170.79	125.40.111.159	110.100.119.205
220.119.163.253	108.53.169.130	216.160.177.195	202.4.47.123
189.38.247.127	106.9.3.31	39.114.102.173	73.116.5.180
152.173.200.105	189.141.56.106	211.5.212.86	196.136.243.241