1.1.139.54 - IPInfo

基本信息:

城市(city): Loei

省份(region): Loei

国家(country): Thailand

运营商(isp): TOT Public Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	TCP (SYN) 1.1.139.54:58126 -> port 22, len 52	2020-05-20 07:41:38

相同子网IP讨论:

IP	类型	评论内容	时间
1.1.139.223	attackspambots	Unauthorized connection attempt from IP address 1.1.139.223 on Port 445(SMB)	2020-04-30 20:17:07
1.1.139.112	attackbots	" "	2020-04-18 12:18:44
1.1.139.37	attack	Honeypot attack, port: 81, PTR: node-279.pool-1-1.dynamic.totinternet.net.	2020-02-11 08:08:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.139.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34531
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.1.139.54.			IN	A

;; AUTHORITY SECTION:
.			146	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 07:41:35 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

54.139.1.1.in-addr.arpa domain name pointer node-27q.pool-1-1.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.139.1.1.in-addr.arpa	name = node-27q.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.101.149.19	attackbotsspam	Lines containing failures of 46.101.149.19 Dec 19 04:34:08 shared06 sshd[24074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.149.19 user=r.r Dec 19 04:34:11 shared06 sshd[24074]: Failed password for r.r from 46.101.149.19 port 36458 ssh2 Dec 19 04:34:11 shared06 sshd[24074]: Received disconnect from 46.101.149.19 port 36458:11: Bye Bye [preauth] Dec 19 04:34:11 shared06 sshd[24074]: Disconnected from authenticating user r.r 46.101.149.19 port 36458 [preauth] Dec 19 04:45:57 shared06 sshd[27966]: Invalid user aldo from 46.101.149.19 port 50947 Dec 19 04:45:57 shared06 sshd[27966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.149.19 Dec 19 04:46:00 shared06 sshd[27966]: Failed password for invalid user aldo from 46.101.149.19 port 50947 ssh2 Dec 19 04:46:00 shared06 sshd[27966]: Received disconnect from 46.101.149.19 port 50947:11: Bye Bye [preauth] Dec 19 04:46:00 shared0........ ------------------------------	2019-12-20 19:57:14
37.49.227.109	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 21 - port: 10001 proto: UDP cat: Misc Attack	2019-12-20 20:17:49
104.244.74.217	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-20 20:25:49
182.61.163.131	attackbotsspam	2019-12-20T10:39:35.555970shield sshd\[11961\]: Invalid user galligan from 182.61.163.131 port 38140 2019-12-20T10:39:35.560642shield sshd\[11961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.163.131 2019-12-20T10:39:37.505699shield sshd\[11961\]: Failed password for invalid user galligan from 182.61.163.131 port 38140 ssh2 2019-12-20T10:45:12.154083shield sshd\[13258\]: Invalid user houssam from 182.61.163.131 port 46087 2019-12-20T10:45:12.158676shield sshd\[13258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.163.131	2019-12-20 20:34:18
167.99.105.223	attack	Automatic report - XMLRPC Attack	2019-12-20 19:57:34
104.223.154.145	attack	Sending SPAM email	2019-12-20 20:13:05
120.89.64.8	attackbots	Dec 20 11:31:37 web8 sshd\[11620\]: Invalid user laane from 120.89.64.8 Dec 20 11:31:37 web8 sshd\[11620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 Dec 20 11:31:39 web8 sshd\[11620\]: Failed password for invalid user laane from 120.89.64.8 port 56470 ssh2 Dec 20 11:38:29 web8 sshd\[14897\]: Invalid user antinucci from 120.89.64.8 Dec 20 11:38:29 web8 sshd\[14897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8	2019-12-20 19:55:12
85.209.0.65	attackbotsspam	Host Scan	2019-12-20 19:54:42
195.84.49.20	attack	Dec 20 11:56:28 srv206 sshd[29905]: Invalid user copple from 195.84.49.20 ...	2019-12-20 20:21:20
185.201.208.1	attackbots	Host Scan	2019-12-20 20:26:17
183.203.96.26	attack	Dec 20 10:10:10 legacy sshd[30969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.203.96.26 Dec 20 10:10:11 legacy sshd[30969]: Failed password for invalid user admin from 183.203.96.26 port 54778 ssh2 Dec 20 10:16:45 legacy sshd[31248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.203.96.26 ...	2019-12-20 19:59:48
167.71.159.129	attackspam	Dec 20 13:13:04 loxhost sshd\[5876\]: Invalid user admin from 167.71.159.129 port 39358 Dec 20 13:13:04 loxhost sshd\[5876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.159.129 Dec 20 13:13:06 loxhost sshd\[5876\]: Failed password for invalid user admin from 167.71.159.129 port 39358 ssh2 Dec 20 13:18:35 loxhost sshd\[6010\]: Invalid user ionut from 167.71.159.129 port 46480 Dec 20 13:18:35 loxhost sshd\[6010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.159.129 ...	2019-12-20 20:19:41
184.22.23.161	attack	$f2bV_matches	2019-12-20 20:36:03
85.75.162.34	attackbots	TCP Port Scanning	2019-12-20 20:07:44
80.22.196.100	attack	Dec 20 09:04:10 microserver sshd[30449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.22.196.100 user=root Dec 20 09:04:12 microserver sshd[30449]: Failed password for root from 80.22.196.100 port 45449 ssh2 Dec 20 09:12:57 microserver sshd[31901]: Invalid user kafka from 80.22.196.100 port 50521 Dec 20 09:12:57 microserver sshd[31901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.22.196.100 Dec 20 09:12:58 microserver sshd[31901]: Failed password for invalid user kafka from 80.22.196.100 port 50521 ssh2 Dec 20 09:46:39 microserver sshd[37153]: Invalid user mariappa from 80.22.196.100 port 48622 Dec 20 09:46:39 microserver sshd[37153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.22.196.100 Dec 20 09:46:41 microserver sshd[37153]: Failed password for invalid user mariappa from 80.22.196.100 port 48622 ssh2 Dec 20 09:52:15 microserver sshd[37959]: pam_unix(sshd:auth): authe	2019-12-20 20:26:55

最近上报的IP列表

61.39.140.71	201.217.192.104	82.254.15.104	73.111.160.115
119.25.211.201	45.41.65.42	177.240.146.111	183.197.254.4
93.120.206.255	109.5.12.54	92.248.108.50	92.191.34.179
51.174.201.169	162.160.92.105	200.68.177.13	82.237.177.46
187.155.30.221	122.142.5.218	151.66.254.108	69.225.55.200

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表