139.162.104.168

基本信息:

城市(city): Tokyo

省份(region): Tokyo

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.162.104.208	attack	TCP (SYN) 139.162.104.208:46074 -> port 21, len 44	2020-08-13 17:28:33
139.162.104.208	attackbots	TCP (SYN) 139.162.104.208:48526 -> port 21, len 40	2020-08-13 10:16:03
139.162.104.208	attackspambots	" "	2020-05-29 07:00:06
139.162.104.208	attack	SmallBizIT.US 1 packets to tcp(21)	2020-05-21 02:12:54
139.162.104.208	attackbots	firewall-block, port(s): 21/tcp	2020-05-01 21:13:57
139.162.104.208	attackspambots	[portscan] tcp/21 [FTP] *(RWIN=65535)(02251132)	2020-02-25 20:55:14
139.162.104.208	attack	Unauthorised access (Feb 13) SRC=139.162.104.208 LEN=40 TTL=246 ID=54321 TCP DPT=21 WINDOW=65535 SYN	2020-02-13 14:16:34
139.162.104.208	attackbots	" "	2020-02-12 13:03:59
139.162.104.208	attack	21/tcp 21/tcp 21/tcp... [2019-10-22/12-07]50pkt,1pt.(tcp)	2019-12-09 06:16:20
139.162.104.208	attackspam	Unauthorised access (Nov 23) SRC=139.162.104.208 LEN=40 TTL=245 ID=54321 TCP DPT=21 WINDOW=65535 SYN Unauthorised access (Nov 22) SRC=139.162.104.208 LEN=40 PREC=0x20 TTL=238 ID=54321 TCP DPT=21 WINDOW=65535 SYN Unauthorised access (Nov 17) SRC=139.162.104.208 LEN=40 PREC=0x20 TTL=236 ID=54321 TCP DPT=21 WINDOW=65535 SYN	2019-11-23 17:38:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.104.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.104.168.		IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:06:01 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

168.104.162.139.in-addr.arpa domain name pointer li1588-168.members.linode.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.104.162.139.in-addr.arpa	name = li1588-168.members.linode.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.36.81.168	attackbots	Rude login attack (4 tries in 1d)	2019-07-11 13:48:00
43.252.74.81	attackbots	firewall-block, port(s): 445/tcp	2019-07-11 13:42:56
124.119.173.39	attack	port scan and connect, tcp 23 (telnet)	2019-07-11 13:53:54
52.160.126.123	attack	2019-07-11T05:57:24.162019stark.klein-stark.info sshd\[3732\]: Invalid user support from 52.160.126.123 port 51330 2019-07-11T05:57:24.331710stark.klein-stark.info sshd\[3732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.160.126.123 2019-07-11T05:57:26.314313stark.klein-stark.info sshd\[3732\]: Failed password for invalid user support from 52.160.126.123 port 51330 ssh2 ...	2019-07-11 14:02:27
222.186.57.99	attackspambots	(Jul 11) LEN=40 TTL=236 ID=21848 TCP DPT=139 WINDOW=1024 SYN (Jul 11) LEN=40 TTL=236 ID=54875 TCP DPT=139 WINDOW=1024 SYN (Jul 10) LEN=40 TTL=236 ID=7441 TCP DPT=139 WINDOW=1024 SYN (Jul 10) LEN=40 TTL=237 ID=64708 TCP DPT=139 WINDOW=1024 SYN (Jul 10) LEN=40 TTL=236 ID=30264 TCP DPT=139 WINDOW=1024 SYN (Jul 10) LEN=40 TTL=236 ID=9076 TCP DPT=139 WINDOW=1024 SYN (Jul 9) LEN=40 TTL=237 ID=34076 TCP DPT=139 WINDOW=1024 SYN (Jul 9) LEN=40 TTL=237 ID=51313 TCP DPT=139 WINDOW=1024 SYN (Jul 9) LEN=40 TTL=236 ID=47104 TCP DPT=139 WINDOW=1024 SYN (Jul 9) LEN=40 TTL=236 ID=10522 TCP DPT=139 WINDOW=1024 SYN (Jul 9) LEN=40 TTL=236 ID=56630 TCP DPT=139 WINDOW=1024 SYN (Jul 8) LEN=40 TTL=236 ID=4095 TCP DPT=139 WINDOW=1024 SYN	2019-07-11 14:16:22
205.185.118.61	attackspam	Invalid user admin from 205.185.118.61 port 40824	2019-07-11 13:39:45
103.250.189.196	attack	DATE:2019-07-11 05:57:32, IP:103.250.189.196, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-11 14:18:41
193.32.163.182	attack	Jul 11 07:08:12 MK-Soft-Root2 sshd\[8436\]: Invalid user admin from 193.32.163.182 port 55007 Jul 11 07:08:12 MK-Soft-Root2 sshd\[8436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182 Jul 11 07:08:14 MK-Soft-Root2 sshd\[8436\]: Failed password for invalid user admin from 193.32.163.182 port 55007 ssh2 ...	2019-07-11 13:42:00
114.226.11.177	attackbotsspam	Jul 11 09:29:44 areeb-Workstation sshd\[16188\]: Invalid user admin from 114.226.11.177 Jul 11 09:29:44 areeb-Workstation sshd\[16188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.226.11.177 Jul 11 09:29:46 areeb-Workstation sshd\[16188\]: Failed password for invalid user admin from 114.226.11.177 port 47008 ssh2 ...	2019-07-11 13:49:20
180.104.5.87	attackspambots	Jul 11 06:56:06 elektron postfix/smtpd\[28414\]: NOQUEUE: reject: RCPT from unknown\[180.104.5.87\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.104.5.87\]\; from=\ to=\ proto=ESMTP helo=\ Jul 11 06:56:46 elektron postfix/smtpd\[28414\]: NOQUEUE: reject: RCPT from unknown\[180.104.5.87\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.104.5.87\]\; from=\ to=\ proto=ESMTP helo=\ Jul 11 06:57:23 elektron postfix/smtpd\[28414\]: NOQUEUE: reject: RCPT from unknown\[180.104.5.87\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[180.104.5.87\]\; from=\ to=\ proto=ESMTP helo=\	2019-07-11 14:23:15
77.40.45.179	attackspam	2019-07-10 23:50:31 dovecot_login authenticator failed for (localhost.localdomain) [77.40.45.179]:51478 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-07-10 23:56:52 dovecot_login authenticator failed for (localhost.localdomain) [77.40.45.179]:56723 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-07-11 00:02:29 dovecot_login authenticator failed for (localhost.localdomain) [77.40.45.179]:64455 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-07-11 14:12:40
77.247.110.125	attackbotsspam	" "	2019-07-11 13:35:58
95.87.125.128	attackbots	Jul 11 05:28:16 ip-172-31-1-72 sshd\[12398\]: Invalid user matias from 95.87.125.128 Jul 11 05:28:16 ip-172-31-1-72 sshd\[12398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.87.125.128 Jul 11 05:28:17 ip-172-31-1-72 sshd\[12398\]: Failed password for invalid user matias from 95.87.125.128 port 52124 ssh2 Jul 11 05:31:00 ip-172-31-1-72 sshd\[12434\]: Invalid user devuser from 95.87.125.128 Jul 11 05:31:00 ip-172-31-1-72 sshd\[12434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.87.125.128	2019-07-11 14:14:46
185.220.101.62	attackbots	Jul 11 06:06:21 Ubuntu-1404-trusty-64-minimal sshd\[1503\]: Invalid user admin1 from 185.220.101.62 Jul 11 06:06:21 Ubuntu-1404-trusty-64-minimal sshd\[1503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.62 Jul 11 06:06:23 Ubuntu-1404-trusty-64-minimal sshd\[1503\]: Failed password for invalid user admin1 from 185.220.101.62 port 41783 ssh2 Jul 11 06:06:26 Ubuntu-1404-trusty-64-minimal sshd\[1516\]: Invalid user admin from 185.220.101.62 Jul 11 06:06:26 Ubuntu-1404-trusty-64-minimal sshd\[1516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.62	2019-07-11 13:50:00
202.114.122.193	attackspambots	Lines containing failures of 202.114.122.193 Jul 8 02:30:59 shared11 sshd[8179]: Invalid user oracle from 202.114.122.193 port 45268 Jul 8 02:30:59 shared11 sshd[8179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.114.122.193 Jul 8 02:31:01 shared11 sshd[8179]: Failed password for invalid user oracle from 202.114.122.193 port 45268 ssh2 Jul 8 02:31:01 shared11 sshd[8179]: Received disconnect from 202.114.122.193 port 45268:11: Bye Bye [preauth] Jul 8 02:31:01 shared11 sshd[8179]: Disconnected from invalid user oracle 202.114.122.193 port 45268 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=202.114.122.193	2019-07-11 14:15:53

最近上报的IP列表

139.162.104.204	139.162.104.169	139.162.104.174	118.212.106.1
139.162.105.116	139.162.105.19	139.162.105.9	139.162.105.61
139.162.105.92	139.162.106.155	139.162.106.128	139.162.106.230
139.162.106.16	139.162.106.23	118.212.106.101	139.162.106.231
118.212.106.104	118.212.106.107	118.212.106.108	118.212.106.111

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表