104.140.99.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.140.99.59	attack	Jul 8 05:53:04 our-server-hostname postfix/smtpd[12481]: connect from unknown[104.140.99.59] Jul 8 05:53:06 our-server-hostname sqlgrey: grey: new: 104.140.99.59(104.140.99.59), x@x -> x@x Jul x@x Jul x@x Jul x@x Jul 8 05:53:21 our-server-hostname postfix/smtpd[12481]: disconnect from unknown[104.140.99.59] Jul 8 05:53:46 our-server-hostname postfix/smtpd[12769]: connect from unknown[104.140.99.59] Jul 8 05:55:27 our-server-hostname postfix/smtpd[12770]: connect from unknown[104.140.99.59] Jul x@x Jul x@x Jul 8 05:55:38 our-server-hostname postfix/smtpd[12770]: 34226A40005: client=unknown[104.140.99.59] Jul 8 05:55:55 our-server-hostname postfix/smtpd[11549]: 8DBCAA40008: client=unknown[127.0.0.1], orig_client=unknown[104.140.99.59] Jul 8 05:55:55 our-server-hostname amavis[28214]: (28214-18) Passed CLEAN, [104.140.99.59] [104.140.99.59] , mail_id: UCOs0W1Dnu5S, Hhostnames: -, size: 17309, queued_as: 8DBCAA40008, 139 ms Jul x@x Jul x@x Jul 8 05:55:55 our-s........ -------------------------------	2020-07-08 23:24:07
104.140.99.59	attackbotsspam	Spam	2020-07-08 07:56:00

类型

评论内容

时间

104.140.99.59

attack

Jul  8 05:53:04 our-server-hostname postfix/smtpd[12481]: connect from unknown[104.140.99.59]
Jul  8 05:53:06 our-server-hostname sqlgrey: grey: new: 104.140.99.59(104.140.99.59), x@x -> x@x
Jul x@x
Jul x@x
Jul x@x
Jul  8 05:53:21 our-server-hostname postfix/smtpd[12481]: disconnect from unknown[104.140.99.59]
Jul  8 05:53:46 our-server-hostname postfix/smtpd[12769]: connect from unknown[104.140.99.59]
Jul  8 05:55:27 our-server-hostname postfix/smtpd[12770]: connect from unknown[104.140.99.59]
Jul x@x
Jul x@x
Jul  8 05:55:38 our-server-hostname postfix/smtpd[12770]: 34226A40005: client=unknown[104.140.99.59]
Jul  8 05:55:55 our-server-hostname postfix/smtpd[11549]: 8DBCAA40008: client=unknown[127.0.0.1], orig_client=unknown[104.140.99.59]
Jul  8 05:55:55 our-server-hostname amavis[28214]: (28214-18) Passed CLEAN, [104.140.99.59] [104.140.99.59] , mail_id: UCOs0W1Dnu5S, Hhostnames: -, size: 17309, queued_as: 8DBCAA40008, 139 ms
Jul x@x
Jul x@x
Jul  8 05:55:55 our-s........
-------------------------------

2020-07-08 23:24:07

104.140.99.59

attackbotsspam

Spam

2020-07-08 07:56:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.140.99.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40580
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.140.99.56.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022400 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 18:17:10 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

56.99.140.104.in-addr.arpa domain name pointer cheappump.live.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
56.99.140.104.in-addr.arpa	name = cheappump.live.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.155.2.6	attackbots	Jul 25 12:10:19 firewall sshd[24499]: Invalid user ts3 from 139.155.2.6 Jul 25 12:10:21 firewall sshd[24499]: Failed password for invalid user ts3 from 139.155.2.6 port 41846 ssh2 Jul 25 12:14:28 firewall sshd[24588]: Invalid user iptv from 139.155.2.6 ...	2020-07-26 02:30:03
109.190.231.251	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 251-231-190-109.dsl.ovh.fr.	2020-07-26 02:42:08
138.68.56.242	attack	Exploited Host.	2020-07-26 02:41:52
138.68.48.118	attack	Exploited Host.	2020-07-26 02:43:37
139.198.121.63	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-26 02:27:40
138.99.216.147	attackbotsspam	Unauthorized SSH login attempts	2020-07-26 02:39:10
111.26.172.222	attackbotsspam	2020-07-25T12:26:09.339680linuxbox-skyline auth[23855]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=support rhost=111.26.172.222 ...	2020-07-26 02:30:17
139.59.59.187	attack	Exploited Host.	2020-07-26 02:09:33
192.71.201.249	attackbots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-26 02:38:40
141.98.10.193	attackbots	UDP 141.98.10.193:5136 -> port 5060, len 429	2020-07-26 02:29:14
138.68.234.74	attackbots	Exploited Host.	2020-07-26 02:46:45
5.89.35.84	attackbotsspam	Jul 25 16:27:28 scw-focused-cartwright sshd[9820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.35.84 Jul 25 16:27:29 scw-focused-cartwright sshd[9820]: Failed password for invalid user newuser from 5.89.35.84 port 48556 ssh2	2020-07-26 02:12:32
185.173.35.57	attackspam	TCP (SYN) 185.173.35.57:34247 -> port 6002, len 44	2020-07-26 02:11:43
189.159.6.14	attack	Automatic report - Banned IP Access	2020-07-26 02:42:27
185.162.235.163	attack	Invalid user gic from 185.162.235.163 port 60778	2020-07-26 02:13:03

最近上报的IP列表

46.4.74.39	101.13.7.53	134.251.179.103	101.60.38.56
246.235.14.27	32.208.212.254	249.41.79.93	178.127.142.187
2.248.205.151	134.212.144.48	130.84.14.137	173.94.143.112
235.250.174.87	178.175.218.109	185.150.24.43	92.191.37.214
103.155.132.104	55.45.187.200	249.172.230.227	68.51.75.184