0.139.136.191 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Australia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 0.139.136.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46492
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;0.139.136.191.			IN	A

;; AUTHORITY SECTION:
.			277	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022112700 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 27 22:53:15 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 191.136.139.0.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 191.136.139.0.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.45.207.56	attackbots	[Sat Mar 21 16:16:07.655650 2020] [:error] [pid 29969:tid 139790909433600] [client 5.45.207.56:41475] [client 5.45.207.56] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XnXbV4CB6lboewYmzyBR0QAAAOM"] ...	2020-03-21 17:57:07
152.136.20.124	attack	Port scan on 3 port(s): 2375 2376 2377	2020-03-21 18:26:23
117.50.17.51	attackspambots	SSH brutforce	2020-03-21 18:00:57
34.80.248.92	attack	Mar 21 09:42:54 web8 sshd\[32341\]: Invalid user ministerium from 34.80.248.92 Mar 21 09:42:54 web8 sshd\[32341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.248.92 Mar 21 09:42:57 web8 sshd\[32341\]: Failed password for invalid user ministerium from 34.80.248.92 port 52518 ssh2 Mar 21 09:45:45 web8 sshd\[1567\]: Invalid user mailman from 34.80.248.92 Mar 21 09:45:45 web8 sshd\[1567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.248.92	2020-03-21 18:34:04
203.195.245.13	attack	Mar 21 05:10:41 v22019038103785759 sshd\[10633\]: Invalid user jupiter from 203.195.245.13 port 43384 Mar 21 05:10:41 v22019038103785759 sshd\[10633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.245.13 Mar 21 05:10:43 v22019038103785759 sshd\[10633\]: Failed password for invalid user jupiter from 203.195.245.13 port 43384 ssh2 Mar 21 05:19:08 v22019038103785759 sshd\[11095\]: Invalid user postgres from 203.195.245.13 port 51110 Mar 21 05:19:08 v22019038103785759 sshd\[11095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.245.13 ...	2020-03-21 18:36:16
207.46.13.182	attackspambots	Too many 404s, searching for vulnerabilities	2020-03-21 18:31:41
104.131.248.46	attackbotsspam	[2020-03-2108:34:38 0100]info[cpaneld]104.131.248.46-hotelgar"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:accessdeniedforroot\,reseller\,anduserpassword[2020-03-2108:34:38 0100]info[cpaneld]104.131.248.46-volcano"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpaneluservolcano$has_cpuser_filefailed$[2020-03-2108:34:39 0100]info[cpaneld]104.131.248.46-hotelg"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpaneluserhotelg$has_cpuser_filefailed$[2020-03-2108:34:39 0100]info[cpaneld]104.131.248.46-volcan"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpaneluservolcan$has_cpuser_filefailed$[2020-03-2108:34:39 0100]info[cpaneld]104.131.248.46-hotelga"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpaneluserhotelga$has_cpuser_filefailed$[2020-03-2108:34:39 0100]info[cpaneld]104.131.248.46-volcano"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpaneluservolcano$has_cpuser_filefailed$[2020-03-2108:34:39 0100]info[cpaneld]10	2020-03-21 18:18:40
66.70.189.209	attackbotsspam	SSH Brute Force	2020-03-21 18:23:07
195.224.138.61	attackspambots	Mar 21 12:02:19 ift sshd\[28580\]: Invalid user lc from 195.224.138.61Mar 21 12:02:21 ift sshd\[28580\]: Failed password for invalid user lc from 195.224.138.61 port 45968 ssh2Mar 21 12:06:11 ift sshd\[29197\]: Invalid user caresse from 195.224.138.61Mar 21 12:06:13 ift sshd\[29197\]: Failed password for invalid user caresse from 195.224.138.61 port 38608 ssh2Mar 21 12:09:58 ift sshd\[29681\]: Invalid user bruwier from 195.224.138.61 ...	2020-03-21 18:15:59
49.232.130.25	attackspambots	$f2bV_matches	2020-03-21 18:17:11
61.220.150.137	attack	TW_MAINT-TW-TWNIC_<177>1584762508 [1:2403398:56115] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 50 [Classification: Misc Attack] [Priority: 2]: {TCP} 61.220.150.137:41057	2020-03-21 18:08:55
164.132.62.233	attackspambots	Mar 20 23:48:31 Tower sshd[38956]: Connection from 164.132.62.233 port 51812 on 192.168.10.220 port 22 rdomain "" Mar 20 23:48:32 Tower sshd[38956]: Invalid user theodore from 164.132.62.233 port 51812 Mar 20 23:48:32 Tower sshd[38956]: error: Could not get shadow information for NOUSER Mar 20 23:48:32 Tower sshd[38956]: Failed password for invalid user theodore from 164.132.62.233 port 51812 ssh2 Mar 20 23:48:32 Tower sshd[38956]: Received disconnect from 164.132.62.233 port 51812:11: Bye Bye [preauth] Mar 20 23:48:32 Tower sshd[38956]: Disconnected from invalid user theodore 164.132.62.233 port 51812 [preauth]	2020-03-21 17:52:50
106.13.144.8	attackspambots	$f2bV_matches	2020-03-21 17:51:52
54.37.151.239	attack	2020-03-21T05:58:42.328359mail.thespaminator.com sshd[11906]: Invalid user wp-user from 54.37.151.239 port 55261 2020-03-21T05:58:44.340867mail.thespaminator.com sshd[11906]: Failed password for invalid user wp-user from 54.37.151.239 port 55261 ssh2 ...	2020-03-21 18:00:05
129.211.24.104	attackspambots	$f2bV_matches	2020-03-21 18:26:53

最近上报的IP列表

0.14.84.150	0.137.79.32	0.128.231.24	0.129.106.163
0.129.146.133	0.128.44.249	0.129.174.189	0.129.160.63
0.128.47.33	0.140.160.163	0.138.195.218	0.139.201.202
123.19.149.135	2606:4700:10::6814:ec6a	125.172.222.184	2001:67c:2660:425:d::1d
2001:67c:2660:425:d::2	2001:660:5301:46::46:51	2001:678:a00::15	2001:4de0:ac19::1:b:3a