104.40.14.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 06:16:24
attack	Sep 22 14:40:56 db sshd[2584]: Invalid user db from 104.40.14.46 port 56724 ...	2020-09-22 20:41:28
attackspam	Sep 22 04:36:16 scw-6657dc sshd[15440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.14.46 Sep 22 04:36:16 scw-6657dc sshd[15440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.14.46 Sep 22 04:36:18 scw-6657dc sshd[15440]: Failed password for invalid user sinusbot from 104.40.14.46 port 40836 ssh2 ...	2020-09-22 12:39:23
attackbotsspam	$f2bV_matches	2020-09-22 04:48:41

相同子网IP讨论:

IP	类型	评论内容	时间
104.40.148.205	attackspam	Repeated RDP login failures. Last user: Scan	2020-02-29 04:53:29
104.40.148.205	attackbots	Repeated RDP login failures. Last user: User4	2020-02-28 04:48:35
104.40.147.11	attack	Feb 22 14:06:23 iago sshd[10926]: Did not receive identification string from 104.40.147.11 Feb 22 14:09:37 iago sshd[10958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.147.11 user=r.r Feb 22 14:09:38 iago sshd[10958]: Failed password for r.r from 104.40.147.11 port 48212 ssh2 Feb 22 14:09:38 iago sshd[10959]: Received disconnect from 104.40.147.11: 11: Normal Shutdown, Thank you for playing ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.40.147.11	2020-02-23 00:32:29
104.40.140.114	attackbots	Nov 3 06:54:27 vps01 sshd[27630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.140.114 Nov 3 06:54:29 vps01 sshd[27630]: Failed password for invalid user gch587 from 104.40.140.114 port 52092 ssh2	2019-11-03 15:09:29
104.40.140.114	attackspambots	Nov 3 06:54:27 vps01 sshd[27630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.140.114 Nov 3 06:54:29 vps01 sshd[27630]: Failed password for invalid user gch587 from 104.40.140.114 port 52092 ssh2	2019-11-03 14:26:26
104.40.140.114	attackspambots	Oct 20 10:16:41 MK-Soft-VM6 sshd[10223]: Failed password for root from 104.40.140.114 port 52882 ssh2 ...	2019-10-20 19:01:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.40.14.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47038
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.40.14.46.			IN	A

;; AUTHORITY SECTION:
.			456	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092101 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 22 04:48:38 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 46.14.40.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.14.40.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
203.210.86.67	attackbotsspam	6324/tcp 1693/tcp 30355/tcp... [2020-06-22/30]16pkt,9pt.(tcp)	2020-07-01 18:24:32
218.161.28.135	attackbots	unauthorized connection attempt	2020-07-01 17:38:58
190.52.131.234	attackbotsspam	2020-06-30T19:05:55.818084shield sshd\[22280\]: Invalid user jjq from 190.52.131.234 port 56746 2020-06-30T19:05:55.821699shield sshd\[22280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-234.131.52.190.copaco.com.py 2020-06-30T19:05:57.293854shield sshd\[22280\]: Failed password for invalid user jjq from 190.52.131.234 port 56746 ssh2 2020-06-30T19:10:41.166741shield sshd\[22745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-234.131.52.190.copaco.com.py user=root 2020-06-30T19:10:43.560715shield sshd\[22745\]: Failed password for root from 190.52.131.234 port 43162 ssh2	2020-07-01 17:44:49
124.156.50.82	attackbots	portscan	2020-07-01 18:19:01
211.140.118.18	attackspam	TCP (SYN) 211.140.118.18:42252 -> port 1433, len 44	2020-07-01 18:22:57
118.212.143.46	attack	06/28/2020-19:33:10.323112 118.212.143.46 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-01 17:58:22
185.143.73.148	attack	Rude login attack (814 tries in 1d)	2020-07-01 17:57:31
218.92.0.148	attackspam	Jun 30 19:12:22 marvibiene sshd[47071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Jun 30 19:12:24 marvibiene sshd[47071]: Failed password for root from 218.92.0.148 port 35304 ssh2 Jun 30 19:12:26 marvibiene sshd[47071]: Failed password for root from 218.92.0.148 port 35304 ssh2 Jun 30 19:12:22 marvibiene sshd[47071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Jun 30 19:12:24 marvibiene sshd[47071]: Failed password for root from 218.92.0.148 port 35304 ssh2 Jun 30 19:12:26 marvibiene sshd[47071]: Failed password for root from 218.92.0.148 port 35304 ssh2 ...	2020-07-01 17:57:08
218.161.85.97	attackspambots	unauthorized connection attempt	2020-07-01 17:59:44
139.199.1.166	attack	Jun 30 18:32:21 raspberrypi sshd[15512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.1.166 user=root Jun 30 18:32:23 raspberrypi sshd[15512]: Failed password for invalid user root from 139.199.1.166 port 33276 ssh2 ...	2020-07-01 18:23:47
40.113.132.168	attackspambots	40.113.132.168:63435 - - [23/Jun/2020:20:53:31 +0200] "\x16\x03\x03" 400 313 40.113.132.168:63435 - - [23/Jun/2020:20:53:31 +0200] "CONNECT www.google.com:443 HTTP/1.1" 200 7232 40.113.132.168:51782 - - [23/Jun/2020:20:47:43 +0200] "\x16\x03\x03" 400 313 40.113.132.168:51782 - - [23/Jun/2020:20:47:43 +0200] "CONNECT www.netflix.com:443 HTTP/1.1" 200 7232 40.113.132.168:65010 - - [23/Jun/2020:20:41:09 +0200] "\x16\x03\x03" 400 313 40.113.132.168:65010 - - [23/Jun/2020:20:41:09 +0200] "CONNECT netfilx.com:443 HTTP/1.1" 200 7232	2020-07-01 18:26:17
176.101.254.124	attack	Port probing on unauthorized port 23	2020-07-01 18:17:12
103.104.117.81	attackbotsspam	2020-06-30T19:13:04.541455mail.broermann.family sshd[30679]: Failed password for root from 103.104.117.81 port 50296 ssh2 2020-06-30T19:16:25.252543mail.broermann.family sshd[30966]: Invalid user user0 from 103.104.117.81 port 60070 2020-06-30T19:16:25.256894mail.broermann.family sshd[30966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.117.81 2020-06-30T19:16:25.252543mail.broermann.family sshd[30966]: Invalid user user0 from 103.104.117.81 port 60070 2020-06-30T19:16:27.102152mail.broermann.family sshd[30966]: Failed password for invalid user user0 from 103.104.117.81 port 60070 ssh2 ...	2020-07-01 18:02:19
218.80.245.54	attackspambots	TCP (SYN) 218.80.245.54:43794 -> port 1433, len 44	2020-07-01 17:44:23
60.165.53.96	attackbotsspam	Unauthorized connection attempt detected from IP address 60.165.53.96 to port 14338	2020-07-01 17:38:37

最近上报的IP列表

112.64.228.139	194.67.93.153	45.141.84.62	116.72.130.199
89.248.162.220	94.21.93.44	5.120.155.144	191.238.209.170
198.44.215.159	177.159.14.11	177.205.157.41	131.182.104.194
119.54.216.250	134.122.113.222	164.86.174.46	253.136.210.155
149.137.216.39	21.235.54.42	158.86.38.156	134.122.117.129