1.192.139.83 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Henan Telecom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	spam (f2b h2)	2020-06-12 05:12:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.192.139.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32425
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.192.139.83.			IN	A

;; AUTHORITY SECTION:
.			222	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061101 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 12 05:12:27 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 83.139.192.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 83.139.192.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.175.93.105	attackbots	12/14/2019-15:14:09.506454 185.175.93.105 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-14 22:27:54
178.176.182.138	attackbots	1576313203 - 12/14/2019 09:46:43 Host: 178.176.182.138/178.176.182.138 Port: 445 TCP Blocked	2019-12-14 22:20:20
95.53.99.36	attackspambots	Dec 14 07:15:31 nbi-636 sshd[10183]: User r.r from 95.53.99.36 not allowed because not listed in AllowUsers Dec 14 07:15:31 nbi-636 sshd[10183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.53.99.36 user=r.r Dec 14 07:15:33 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:35 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:38 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:40 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 Dec 14 07:15:42 nbi-636 sshd[10183]: Failed password for invalid user r.r from 95.53.99.36 port 58945 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.53.99.36	2019-12-14 22:22:33
83.103.98.211	attackspam	Invalid user post1 from 83.103.98.211 port 57565	2019-12-14 22:26:57
45.134.179.241	attack	Dec 14 16:37:17 debian-2gb-vpn-nbg1-1 kernel: [709012.478292] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.241 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22520 PROTO=TCP SPT=52273 DPT=3488 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-14 21:57:37
5.76.27.229	attackspambots	firewall-block, port(s): 1433/tcp	2019-12-14 22:04:30
74.121.190.27	attackbots	\[2019-12-14 08:59:51\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T08:59:51.218-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00048627490012",SessionID="0x7f0fb447f838",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/51649",ACLName="no_extension_match" \[2019-12-14 09:00:23\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T09:00:23.805-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="48627490012",SessionID="0x7f0fb406f938",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/55254",ACLName="no_extension_match" \[2019-12-14 09:00:55\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T09:00:55.691-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01148627490012",SessionID="0x7f0fb408ed28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/61586",ACLName="no_extension	2019-12-14 22:01:27
185.156.73.66	attack	12/14/2019-08:30:30.634010 185.156.73.66 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-14 21:48:55
212.64.28.77	attackspambots	Dec 13 21:55:58 web9 sshd\[32608\]: Invalid user sshd1235 from 212.64.28.77 Dec 13 21:55:58 web9 sshd\[32608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.28.77 Dec 13 21:56:00 web9 sshd\[32608\]: Failed password for invalid user sshd1235 from 212.64.28.77 port 35810 ssh2 Dec 13 22:03:41 web9 sshd\[1374\]: Invalid user ffffff from 212.64.28.77 Dec 13 22:03:41 web9 sshd\[1374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.28.77	2019-12-14 21:53:57
82.79.245.20	attack	Automatic report - Banned IP Access	2019-12-14 21:58:45
122.174.250.22	attackbotsspam	Dec 14 07:15:48 linuxrulz sshd[14819]: Invalid user ftp from 122.174.250.22 port 55536 Dec 14 07:15:48 linuxrulz sshd[14819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.174.250.22 Dec 14 07:15:50 linuxrulz sshd[14819]: Failed password for invalid user ftp from 122.174.250.22 port 55536 ssh2 Dec 14 07:15:51 linuxrulz sshd[14819]: Connection closed by 122.174.250.22 port 55536 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.174.250.22	2019-12-14 22:25:53
101.64.137.196	attackspambots	[portscan] tcp/21 [FTP] [scan/connect: 9 time(s)] *(RWIN=65535)(12141029)	2019-12-14 21:56:15
154.9.204.206	attackspam	Dec 14 07:02:47 km20725 sshd[30571]: Invalid user sakiyama from 154.9.204.206 Dec 14 07:02:47 km20725 sshd[30571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.9.204.206 Dec 14 07:02:50 km20725 sshd[30571]: Failed password for invalid user sakiyama from 154.9.204.206 port 47020 ssh2 Dec 14 07:02:50 km20725 sshd[30571]: Received disconnect from 154.9.204.206: 11: Bye Bye [preauth] Dec 14 07:11:27 km20725 sshd[31172]: Invalid user pi from 154.9.204.206 Dec 14 07:11:27 km20725 sshd[31172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.9.204.206 Dec 14 07:11:28 km20725 sshd[31172]: Failed password for invalid user pi from 154.9.204.206 port 37492 ssh2 Dec 14 07:11:28 km20725 sshd[31172]: Received disconnect from 154.9.204.206: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=154.9.204.206	2019-12-14 22:06:26
51.15.194.51	attack	Dec 14 14:37:44 ns382633 sshd\[16325\]: Invalid user olsaker from 51.15.194.51 port 55842 Dec 14 14:37:44 ns382633 sshd\[16325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.194.51 Dec 14 14:37:46 ns382633 sshd\[16325\]: Failed password for invalid user olsaker from 51.15.194.51 port 55842 ssh2 Dec 14 15:02:12 ns382633 sshd\[20709\]: Invalid user caltech from 51.15.194.51 port 35022 Dec 14 15:02:12 ns382633 sshd\[20709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.194.51	2019-12-14 22:07:36
218.147.16.16	attackbotsspam	FTP Brute Force	2019-12-14 22:18:13

最近上报的IP列表

190.36.172.89	181.65.252.10	185.153.197.102	50.18.34.249
14.161.43.210	5.249.164.2	219.92.107.250	66.113.223.213
13.95.25.166	16.174.197.46	1.205.69.245	138.97.224.210
190.115.245.0	124.165.205.126	103.134.141.54	100.73.12.199
94.66.59.227	45.170.73.7	123.180.123.182	189.126.162.131