131.196.141.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.141.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38361
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.141.104.		IN	A

;; AUTHORITY SECTION:
.			550	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:31:29 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 104.141.196.131.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.141.196.131.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.172.137.209	attackbotsspam	May 20 09:46:31 home sshd[15401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.137.209 May 20 09:46:33 home sshd[15401]: Failed password for invalid user nvf from 167.172.137.209 port 52084 ssh2 May 20 09:50:00 home sshd[15889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.137.209 ...	2020-05-20 15:56:45
91.142.146.17	attackspambots	20/5/19@19:41:38: FAIL: Alarm-Network address from=91.142.146.17 ...	2020-05-20 15:27:24
138.68.4.8	attack	May 20 09:13:41 meumeu sshd[311965]: Invalid user ujb from 138.68.4.8 port 46092 May 20 09:13:41 meumeu sshd[311965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 May 20 09:13:41 meumeu sshd[311965]: Invalid user ujb from 138.68.4.8 port 46092 May 20 09:13:42 meumeu sshd[311965]: Failed password for invalid user ujb from 138.68.4.8 port 46092 ssh2 May 20 09:17:10 meumeu sshd[312382]: Invalid user jsr from 138.68.4.8 port 52756 May 20 09:17:10 meumeu sshd[312382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 May 20 09:17:10 meumeu sshd[312382]: Invalid user jsr from 138.68.4.8 port 52756 May 20 09:17:12 meumeu sshd[312382]: Failed password for invalid user jsr from 138.68.4.8 port 52756 ssh2 May 20 09:20:47 meumeu sshd[312790]: Invalid user aur from 138.68.4.8 port 59408 ...	2020-05-20 15:25:11
14.116.255.229	attackbotsspam	2020-05-20T01:19:54.328968linuxbox-skyline sshd[23534]: Invalid user hhy from 14.116.255.229 port 57920 ...	2020-05-20 15:45:06
80.82.78.96	attackbots	May 20 09:18:39 ns3042688 courier-pop3d: LOGIN FAILED, user=info@tienda-cmt.com, ip=\[::ffff:80.82.78.96\] ...	2020-05-20 15:27:39
51.141.122.112	attack	Invalid user waf from 51.141.122.112 port 42092	2020-05-20 15:36:20
35.226.165.144	attackspambots	May 20 07:46:22 web8 sshd\[10353\]: Invalid user gll from 35.226.165.144 May 20 07:46:22 web8 sshd\[10353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.226.165.144 May 20 07:46:24 web8 sshd\[10353\]: Failed password for invalid user gll from 35.226.165.144 port 33582 ssh2 May 20 07:49:58 web8 sshd\[12180\]: Invalid user jow from 35.226.165.144 May 20 07:49:58 web8 sshd\[12180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.226.165.144	2020-05-20 16:00:23
222.186.15.62	attackspambots	May 20 03:50:00 plusreed sshd[18567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root May 20 03:50:01 plusreed sshd[18567]: Failed password for root from 222.186.15.62 port 23460 ssh2 ...	2020-05-20 15:54:32
34.68.115.67	attackspambots	Wordpress login scanning	2020-05-20 15:57:07
118.101.238.72	attackbotsspam	May 20 01:33:40 server6 sshd[19420]: Failed password for invalid user 666666 from 118.101.238.72 port 61720 ssh2 May 20 01:33:40 server6 sshd[19422]: Failed password for invalid user 666666 from 118.101.238.72 port 61710 ssh2 May 20 01:33:40 server6 sshd[19402]: Failed password for invalid user 666666 from 118.101.238.72 port 61669 ssh2 May 20 01:33:40 server6 sshd[19404]: Failed password for invalid user 666666 from 118.101.238.72 port 61676 ssh2 May 20 01:33:41 server6 sshd[19420]: Connection closed by 118.101.238.72 [preauth] May 20 01:33:41 server6 sshd[19422]: Connection closed by 118.101.238.72 [preauth] May 20 01:33:41 server6 sshd[19402]: Connection closed by 118.101.238.72 [preauth] May 20 01:33:41 server6 sshd[19404]: Connection closed by 118.101.238.72 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.101.238.72	2020-05-20 15:22:42
192.144.183.47	attackbotsspam	May 19 21:45:34 web1 sshd\[27062\]: Invalid user eho from 192.144.183.47 May 19 21:45:34 web1 sshd\[27062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.183.47 May 19 21:45:36 web1 sshd\[27062\]: Failed password for invalid user eho from 192.144.183.47 port 49096 ssh2 May 19 21:49:58 web1 sshd\[27470\]: Invalid user jug from 192.144.183.47 May 19 21:49:58 web1 sshd\[27470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.183.47	2020-05-20 15:57:48
195.54.167.17	attack	May 20 09:07:31 [host] kernel: [6587073.096820] [U May 20 09:21:12 [host] kernel: [6587894.393069] [U May 20 09:21:31 [host] kernel: [6587913.460174] [U May 20 09:36:11 [host] kernel: [6588793.304316] [U May 20 09:43:12 [host] kernel: [6589214.062344] [U May 20 09:50:02 [host] kernel: [6589623.891818] [U	2020-05-20 15:52:38
207.46.13.204	attack	[Wed May 20 14:49:55.274283 2020] [:error] [pid 3493:tid 140678377223936] [client 207.46.13.204:9324] [client 207.46.13.204] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman"] [unique_id "XsThI4pbRKeSlTv7XEU9TwAAAIc"] ...	2020-05-20 16:01:08
36.37.184.249	attackspambots	Lines containing failures of 36.37.184.249 (max 1000) May 19 23:35:33 UTC__SANYALnet-Labs__cac1 sshd[3209]: Connection from 36.37.184.249 port 30866 on 64.137.179.160 port 22 May 19 23:35:33 UTC__SANYALnet-Labs__cac1 sshd[3209]: Did not receive identification string from 36.37.184.249 port 30866 May 19 23:35:36 UTC__SANYALnet-Labs__cac1 sshd[3210]: Connection from 36.37.184.249 port 36264 on 64.137.179.160 port 22 May 19 23:35:37 UTC__SANYALnet-Labs__cac1 sshd[3210]: Invalid user avanthi from 36.37.184.249 port 36264 May 19 23:35:37 UTC__SANYALnet-Labs__cac1 sshd[3210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.37.184.249 May 19 23:35:39 UTC__SANYALnet-Labs__cac1 sshd[3210]: Failed password for invalid user avanthi from 36.37.184.249 port 36264 ssh2 May 19 23:35:40 UTC__SANYALnet-Labs__cac1 sshd[3210]: Connection closed by 36.37.184.249 port 36264 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.37	2020-05-20 15:39:07
222.186.180.41	attackspam	May 20 09:17:32 ArkNodeAT sshd\[23671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root May 20 09:17:34 ArkNodeAT sshd\[23671\]: Failed password for root from 222.186.180.41 port 52004 ssh2 May 20 09:17:51 ArkNodeAT sshd\[23674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root	2020-05-20 15:26:08

最近上报的IP列表

131.196.141.103	131.196.141.106	118.172.237.141	131.196.141.108
131.196.141.11	131.196.141.110	131.196.141.112	131.196.141.118
131.196.141.123	131.196.141.12	131.196.141.116	131.196.141.120
131.196.141.127	118.172.237.142	131.196.141.124	131.196.141.128
131.196.141.131	131.196.141.130	131.196.141.132	131.196.141.133