104.140.22.246

基本信息:

城市(city): Seattle

省份(region): Washington

国家(country): United States

运营商(isp): ServerHub

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	slow and persistent scanner	2020-03-10 05:35:34

相同子网IP讨论:

IP	类型	评论内容	时间
104.140.224.85	attackspam	104.140.224.85 has been banned for [spam] ...	2020-05-09 21:50:43
104.140.224.124	attack	Email SPAM	2020-04-09 10:06:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.140.22.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.140.22.246.			IN	A

;; AUTHORITY SECTION:
.			258	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 05:35:32 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 246.22.140.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.22.140.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
210.187.87.185	attack	Sep 16 18:27:25 php1 sshd\[6094\]: Invalid user karina from 210.187.87.185 Sep 16 18:27:25 php1 sshd\[6094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185 Sep 16 18:27:27 php1 sshd\[6094\]: Failed password for invalid user karina from 210.187.87.185 port 59700 ssh2 Sep 16 18:31:44 php1 sshd\[6461\]: Invalid user named from 210.187.87.185 Sep 16 18:31:44 php1 sshd\[6461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185	2019-09-17 12:41:18
221.162.255.78	attackbots	Invalid user bc from 221.162.255.78 port 59610	2019-09-17 13:07:50
203.110.90.195	attackbots	Sep 17 03:59:29 www_kotimaassa_fi sshd[21532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.90.195 Sep 17 03:59:31 www_kotimaassa_fi sshd[21532]: Failed password for invalid user rmdbuser from 203.110.90.195 port 37393 ssh2 ...	2019-09-17 12:43:01
62.99.132.165	attackspam	Sep 16 18:23:08 friendsofhawaii sshd\[1102\]: Invalid user pass from 62.99.132.165 Sep 16 18:23:08 friendsofhawaii sshd\[1102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-99-132-165.static.upcbusiness.at Sep 16 18:23:10 friendsofhawaii sshd\[1102\]: Failed password for invalid user pass from 62.99.132.165 port 60280 ssh2 Sep 16 18:27:04 friendsofhawaii sshd\[1447\]: Invalid user mscuser from 62.99.132.165 Sep 16 18:27:04 friendsofhawaii sshd\[1447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-99-132-165.static.upcbusiness.at	2019-09-17 13:17:41
35.185.45.244	attack	Sep 16 18:56:52 web9 sshd\[2772\]: Invalid user password1 from 35.185.45.244 Sep 16 18:56:52 web9 sshd\[2772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.185.45.244 Sep 16 18:56:54 web9 sshd\[2772\]: Failed password for invalid user password1 from 35.185.45.244 port 33556 ssh2 Sep 16 19:01:03 web9 sshd\[3520\]: Invalid user mandrake from 35.185.45.244 Sep 16 19:01:03 web9 sshd\[3520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.185.45.244	2019-09-17 13:01:30
121.134.159.21	attack	Sep 17 00:14:17 vps200512 sshd\[24257\]: Invalid user mdh from 121.134.159.21 Sep 17 00:14:17 vps200512 sshd\[24257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Sep 17 00:14:20 vps200512 sshd\[24257\]: Failed password for invalid user mdh from 121.134.159.21 port 55726 ssh2 Sep 17 00:19:07 vps200512 sshd\[24342\]: Invalid user ronjones from 121.134.159.21 Sep 17 00:19:07 vps200512 sshd\[24342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21	2019-09-17 12:33:45
217.112.128.194	attackspambots	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-09-17 13:01:03
222.109.215.107	attack	Sep 16 17:40:12 tdfoods sshd\[17843\]: Invalid user admin from 222.109.215.107 Sep 16 17:40:12 tdfoods sshd\[17843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.109.215.107 Sep 16 17:40:14 tdfoods sshd\[17843\]: Failed password for invalid user admin from 222.109.215.107 port 57908 ssh2 Sep 16 17:40:16 tdfoods sshd\[17843\]: Failed password for invalid user admin from 222.109.215.107 port 57908 ssh2 Sep 16 17:40:18 tdfoods sshd\[17843\]: Failed password for invalid user admin from 222.109.215.107 port 57908 ssh2	2019-09-17 13:04:26
37.212.223.232	attackbotsspam	Chat Spam	2019-09-17 12:44:47
95.216.189.247	attackbotsspam	Sep 16 19:00:50 tdfoods sshd\[25389\]: Invalid user todus from 95.216.189.247 Sep 16 19:00:50 tdfoods sshd\[25389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.247.189.216.95.clients.your-server.de Sep 16 19:00:51 tdfoods sshd\[25389\]: Failed password for invalid user todus from 95.216.189.247 port 58074 ssh2 Sep 16 19:05:18 tdfoods sshd\[25810\]: Invalid user hg from 95.216.189.247 Sep 16 19:05:18 tdfoods sshd\[25810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.247.189.216.95.clients.your-server.de	2019-09-17 13:17:09
49.207.180.197	attackspambots	Sep 17 06:30:42 OPSO sshd\[5534\]: Invalid user db2fenc from 49.207.180.197 port 21040 Sep 17 06:30:42 OPSO sshd\[5534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197 Sep 17 06:30:43 OPSO sshd\[5534\]: Failed password for invalid user db2fenc from 49.207.180.197 port 21040 ssh2 Sep 17 06:34:53 OPSO sshd\[5944\]: Invalid user test from 49.207.180.197 port 43049 Sep 17 06:34:53 OPSO sshd\[5944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197	2019-09-17 12:47:16
51.68.215.113	attack	Sep 16 18:40:05 hiderm sshd\[12931\]: Invalid user never from 51.68.215.113 Sep 16 18:40:05 hiderm sshd\[12931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-51-68-215.eu Sep 16 18:40:08 hiderm sshd\[12931\]: Failed password for invalid user never from 51.68.215.113 port 40984 ssh2 Sep 16 18:44:04 hiderm sshd\[13231\]: Invalid user moaremata1 from 51.68.215.113 Sep 16 18:44:04 hiderm sshd\[13231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-51-68-215.eu	2019-09-17 12:56:29
58.248.254.124	attackspam	Sep 17 07:04:43 s64-1 sshd[28130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.248.254.124 Sep 17 07:04:45 s64-1 sshd[28130]: Failed password for invalid user cas from 58.248.254.124 port 44478 ssh2 Sep 17 07:09:59 s64-1 sshd[28250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.248.254.124 ...	2019-09-17 13:12:06
114.37.123.179	attackbotsspam	Proxy Scan	2019-09-17 12:46:13
104.192.74.212	attack	Calling not existent HTTP content (400 or 404).	2019-09-17 12:40:27

最近上报的IP列表

34.254.189.81	76.248.60.54	197.30.182.204	60.27.151.115
184.67.36.71	34.235.170.79	125.40.111.159	110.100.119.205
220.119.163.253	108.53.169.130	216.160.177.195	202.4.47.123
189.38.247.127	106.9.3.31	39.114.102.173	73.116.5.180
152.173.200.105	189.141.56.106	211.5.212.86	196.136.243.241