11.152.159.139

基本信息:

城市(city): Columbus

省份(region): Ohio

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 11.152.159.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15506
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;11.152.159.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091000 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 18:46:47 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.159.152.11.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.159.152.11.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
156.96.118.133	attackspam	[2020-04-17 15:53:30] NOTICE[1170][C-000016ff] chan_sip.c: Call from '' (156.96.118.133:60069) to extension '011442037695879' rejected because extension not found in context 'public'. [2020-04-17 15:53:30] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-17T15:53:30.630-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037695879",SessionID="0x7f6c082b17a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.118.133/60069",ACLName="no_extension_match" [2020-04-17 16:02:58] NOTICE[1170][C-00001706] chan_sip.c: Call from '' (156.96.118.133:54090) to extension '9011442037695879' rejected because extension not found in context 'public'. [2020-04-17 16:02:58] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-17T16:02:58.951-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037695879",SessionID="0x7f6c082b17a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-04-18 07:48:38
206.189.84.108	attack	Invalid user oracle from 206.189.84.108 port 39014	2020-04-18 07:37:44
3.226.237.19	attackspam	[FriApr1721:20:22.3526282020][:error][pid20935:tid47976619747072][client3.226.237.19:38302][client3.226.237.19]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"218"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"volcano.ch"][uri"/"][unique_id"XpoBdtmzRMpLTp9qizGT8QAAAdg"][FriApr1721:20:22.5711692020][:error][pid20786:tid47976518133504][client3.226.237.19:38310][client3.226.237.19]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"218"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"volca	2020-04-18 07:43:28
138.68.16.40	attackspam	Invalid user sql from 138.68.16.40 port 53650	2020-04-18 08:00:40
138.197.179.111	attackspambots	Apr 17 19:07:34 ny01 sshd[9936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111 Apr 17 19:07:36 ny01 sshd[9936]: Failed password for invalid user test2 from 138.197.179.111 port 51870 ssh2 Apr 17 19:10:55 ny01 sshd[10377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111	2020-04-18 07:37:00
106.12.90.45	attackspambots	2020-04-17T23:20:36.904355ns386461 sshd\[4192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 user=root 2020-04-17T23:20:38.818597ns386461 sshd\[4192\]: Failed password for root from 106.12.90.45 port 38848 ssh2 2020-04-17T23:33:50.806078ns386461 sshd\[15986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 user=root 2020-04-17T23:33:53.054475ns386461 sshd\[15986\]: Failed password for root from 106.12.90.45 port 41546 ssh2 2020-04-17T23:36:53.214425ns386461 sshd\[18896\]: Invalid user postgres from 106.12.90.45 port 51130 ...	2020-04-18 07:57:27
92.118.160.25	attack	port scan and connect, tcp 81 (hosts2-ns)	2020-04-18 07:44:20
49.72.211.210	attackspambots	Apr 18 03:49:36 our-server-hostname sshd[21495]: reveeclipse mapping checking getaddrinfo for 210.211.72.49.broad.sz.js.dynamic.163data.com.cn [49.72.211.210] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 18 03:49:36 our-server-hostname sshd[21495]: Invalid user ftptest from 49.72.211.210 Apr 18 03:49:36 our-server-hostname sshd[21495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.211.210 Apr 18 03:49:38 our-server-hostname sshd[21495]: Failed password for invalid user ftptest from 49.72.211.210 port 41868 ssh2 Apr 18 03:53:28 our-server-hostname sshd[22208]: reveeclipse mapping checking getaddrinfo for 210.211.72.49.broad.sz.js.dynamic.163data.com.cn [49.72.211.210] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 18 03:53:28 our-server-hostname sshd[22208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.211.210 user=r.r Apr 18 03:53:30 our-server-hostname sshd[22208]: Failed password fo........ -------------------------------	2020-04-18 07:45:21
202.133.20.164	attackspam	Apr 17 19:09:35 ny01 sshd[10198]: Failed password for root from 202.133.20.164 port 47538 ssh2 Apr 17 19:13:58 ny01 sshd[10809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.133.20.164 Apr 17 19:14:00 ny01 sshd[10809]: Failed password for invalid user admin from 202.133.20.164 port 61468 ssh2	2020-04-18 07:31:05
200.1.180.226	attackspambots	Invalid user gs from 200.1.180.226 port 45958	2020-04-18 08:05:12
61.160.245.87	attack	Invalid user test02 from 61.160.245.87 port 58330	2020-04-18 07:37:13
134.209.194.208	attack	Invalid user admin from 134.209.194.208 port 60766	2020-04-18 08:04:31
163.172.121.98	attack	Invalid user test from 163.172.121.98 port 35650	2020-04-18 07:31:32
111.231.135.232	attackspambots	SSH auth scanning - multiple failed logins	2020-04-18 07:33:47
134.209.163.23	attackspambots	134.209.163.23 - - \[17/Apr/2020:21:11:19 +0200\] "POST /wp-login.php HTTP/1.1" 200 9691 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.163.23 - - \[17/Apr/2020:21:20:44 +0200\] "POST /wp-login.php HTTP/1.1" 200 9652 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2020-04-18 07:27:05

最近上报的IP列表

182.86.105.193	177.133.130.3	138.117.124.73	7.70.154.143
123.144.28.133	121.19.131.185	112.233.127.13	104.41.141.165
103.25.64.61	82.202.173.27	221.174.57.213	20.230.56.78
147.212.196.87	73.12.231.210	72.255.99.162	245.65.102.135
67.198.184.202	64.146.156.141	64.90.3.202	63.245.58.173