141.0.104.200 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Norway

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.0.104.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39668
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.0.104.200.			IN	A

;; AUTHORITY SECTION:
.			313	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081500 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 19:56:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

200.104.0.141.in-addr.arpa domain name pointer 141.0.104.200.static.lyse.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
200.104.0.141.in-addr.arpa	name = 141.0.104.200.static.lyse.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
3.83.228.55	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-29 02:56:27
177.128.216.5	attackbotsspam	Sep 28 17:48:56 scw-focused-cartwright sshd[24587]: Failed password for root from 177.128.216.5 port 50671 ssh2 Sep 28 17:52:52 scw-focused-cartwright sshd[24638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.128.216.5	2020-09-29 02:57:03
116.55.248.214	attack	$f2bV_matches	2020-09-29 03:08:07
115.159.106.132	attack	Sep 28 20:51:01 dignus sshd[21199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.106.132 Sep 28 20:51:03 dignus sshd[21199]: Failed password for invalid user debian from 115.159.106.132 port 41530 ssh2 Sep 28 20:53:36 dignus sshd[21568]: Invalid user user from 115.159.106.132 port 59362 Sep 28 20:53:36 dignus sshd[21568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.106.132 Sep 28 20:53:38 dignus sshd[21568]: Failed password for invalid user user from 115.159.106.132 port 59362 ssh2 ...	2020-09-29 02:49:30
182.61.21.155	attackbots	Sep 28 19:53:28 sshgateway sshd\[26085\]: Invalid user webportal from 182.61.21.155 Sep 28 19:53:28 sshgateway sshd\[26085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.21.155 Sep 28 19:53:30 sshgateway sshd\[26085\]: Failed password for invalid user webportal from 182.61.21.155 port 49488 ssh2	2020-09-29 02:54:16
197.38.63.198	attack	(cxs) cxs mod_security triggered by 197.38.63.198 (EG/Egypt/host-197.38.63.198.tedata.net): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_CXS; Logs: [Sun Sep 27 22:34:42.507711 2020] [:error] [pid 3136447:tid 47466709919488] [client 197.38.63.198:63163] [client 197.38.63.198] ModSecurity: Access denied with code 403 (phase 2). File "/tmp/20200927-223440-X3D3YNeKpoihDXXrruVHggAAAAs-file-gGNR9R" rejected by the approver script "/etc/cxs/cxscgi.sh": 0 [file "/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"] [line "7"] [id "1010101"] [msg "ConfigServer Exploit Scanner (cxs) triggered"] [severity "CRITICAL"] [hostname "gratitudemania.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "X3D3YNeKpoihDXXrruVHggAAAAs"], referer: http://gratitudemania.com/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php	2020-09-29 02:58:38
45.142.120.74	attackbots	Brute forcing email accounts	2020-09-29 02:48:28
45.83.64.235	attackbotsspam	port scan and connect, tcp 80 (http)	2020-09-29 02:48:45
167.114.98.96	attackbotsspam	Sep 29 03:45:20 web1 sshd[10016]: Invalid user 1 from 167.114.98.96 port 35818 Sep 29 03:45:20 web1 sshd[10016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.96 Sep 29 03:45:20 web1 sshd[10016]: Invalid user 1 from 167.114.98.96 port 35818 Sep 29 03:45:22 web1 sshd[10016]: Failed password for invalid user 1 from 167.114.98.96 port 35818 ssh2 Sep 29 03:57:02 web1 sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.96 user=root Sep 29 03:57:04 web1 sshd[22639]: Failed password for root from 167.114.98.96 port 37530 ssh2 Sep 29 04:01:59 web1 sshd[25115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.96 user=root Sep 29 04:02:01 web1 sshd[25115]: Failed password for root from 167.114.98.96 port 45472 ssh2 Sep 29 04:06:31 web1 sshd[3574]: Invalid user 8 from 167.114.98.96 port 53412 ...	2020-09-29 03:00:24
175.205.111.109	attack	Sep 28 19:53:32 ourumov-web sshd\[1309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.205.111.109 user=pi Sep 28 19:53:32 ourumov-web sshd\[1310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.205.111.109 user=pi Sep 28 19:53:34 ourumov-web sshd\[1309\]: Failed password for pi from 175.205.111.109 port 36124 ssh2 ...	2020-09-29 03:07:17
193.112.247.98	attackspam	SSH Brute-Force reported by Fail2Ban	2020-09-29 02:55:55
49.234.126.35	attack	Sep 28 18:37:29 django-0 sshd[3994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.126.35 user=root Sep 28 18:37:31 django-0 sshd[3994]: Failed password for root from 49.234.126.35 port 47048 ssh2 ...	2020-09-29 03:07:04
222.180.250.42	attack	Time: Mon Sep 28 18:59:37 2020 +0000 IP: 222.180.250.42 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 18:49:10 14-2 sshd[8712]: Invalid user css from 222.180.250.42 port 2048 Sep 28 18:49:12 14-2 sshd[8712]: Failed password for invalid user css from 222.180.250.42 port 2048 ssh2 Sep 28 18:57:04 14-2 sshd[1638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.180.250.42 user=root Sep 28 18:57:07 14-2 sshd[1638]: Failed password for root from 222.180.250.42 port 2049 ssh2 Sep 28 18:59:31 14-2 sshd[9868]: Invalid user postgres2 from 222.180.250.42 port 2050	2020-09-29 03:22:08
37.221.182.180	attack	Sep 27 22:48:56 master sshd[30333]: Failed password for invalid user admin from 37.221.182.180 port 54378 ssh2 Sep 27 22:49:01 master sshd[30337]: Failed password for invalid user admin from 37.221.182.180 port 54379 ssh2	2020-09-29 02:59:19
157.230.109.166	attack	SSH login attempts.	2020-09-29 03:13:24

最近上报的IP列表

154.8.167.100	218.108.15.82	219.78.62.112	180.253.10.229
65.237.72.76	42.148.91.205	78.42.211.229	189.244.87.218
122.54.103.65	95.71.124.178	62.1.90.42	36.82.250.138
110.137.38.136	27.56.206.150	114.75.26.182	173.252.95.112
156.146.58.201	64.145.76.39	1.54.78.148	81.30.156.105