120.0.139.225 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Heibei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	8081/tcp 37215/tcp... [2019-08-16/09-04]6pkt,2pt.(tcp)	2019-09-04 20:09:18
attack	Unauthorised access (Aug 19) SRC=120.0.139.225 LEN=40 TTL=49 ID=56531 TCP DPT=8080 WINDOW=4406 SYN Unauthorised access (Aug 18) SRC=120.0.139.225 LEN=40 TTL=49 ID=59934 TCP DPT=8080 WINDOW=4406 SYN	2019-08-19 20:35:44

类型

评论内容

时间

attackspam

8081/tcp 37215/tcp...
[2019-08-16/09-04]6pkt,2pt.(tcp)

2019-09-04 20:09:18

attack

Unauthorised access (Aug 19) SRC=120.0.139.225 LEN=40 TTL=49 ID=56531 TCP DPT=8080 WINDOW=4406 SYN 
Unauthorised access (Aug 18) SRC=120.0.139.225 LEN=40 TTL=49 ID=59934 TCP DPT=8080 WINDOW=4406 SYN

2019-08-19 20:35:44

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.0.139.225
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8604
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.0.139.225.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 19 20:35:37 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 225.139.0.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 225.139.0.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
171.233.96.141	attackspam	Unauthorized connection attempt from IP address 171.233.96.141 on Port 445(SMB)	2019-08-27 00:30:52
87.120.254.98	attackbots	Aug 26 15:58:38 thevastnessof sshd[7892]: Failed password for sshd from 87.120.254.98 port 41217 ssh2 ...	2019-08-26 23:59:31
39.80.9.95	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-27 00:18:27
51.15.87.199	attackspam	Aug 26 05:49:36 tdfoods sshd\[11468\]: Invalid user raravena from 51.15.87.199 Aug 26 05:49:36 tdfoods sshd\[11468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.199 Aug 26 05:49:38 tdfoods sshd\[11468\]: Failed password for invalid user raravena from 51.15.87.199 port 53572 ssh2 Aug 26 05:53:58 tdfoods sshd\[11814\]: Invalid user deploy from 51.15.87.199 Aug 26 05:53:58 tdfoods sshd\[11814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.199	2019-08-27 00:02:00
23.129.64.158	attackspam	Aug 26 17:51:55 nextcloud sshd\[31504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.158 user=sshd Aug 26 17:51:57 nextcloud sshd\[31504\]: Failed password for sshd from 23.129.64.158 port 56885 ssh2 Aug 26 17:51:59 nextcloud sshd\[31504\]: Failed password for sshd from 23.129.64.158 port 56885 ssh2 ...	2019-08-27 00:12:21
2.32.113.118	attackspambots	Aug 26 15:36:21 srv206 sshd[21717]: Invalid user aya from 2.32.113.118 ...	2019-08-27 00:39:04
103.249.240.62	attackbots	Unauthorized connection attempt from IP address 103.249.240.62 on Port 445(SMB)	2019-08-27 01:10:53
43.229.95.167	attackbotsspam	Autoban 43.229.95.167 AUTH/CONNECT	2019-08-27 00:11:56
91.244.123.5	attack	2019-08-26T14:33:36.217257beta postfix/smtpd[24214]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> 2019-08-26T14:35:23.899028beta postfix/smtpd[24260]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> 2019-08-26T14:36:29.151652beta postfix/smtpd[24260]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> ...	2019-08-27 00:22:35
119.115.95.73	attackbots	" "	2019-08-27 01:12:48
177.43.76.36	attackspambots	Aug 26 11:31:37 xtremcommunity sshd\[5269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.76.36 user=root Aug 26 11:31:39 xtremcommunity sshd\[5269\]: Failed password for root from 177.43.76.36 port 58143 ssh2 Aug 26 11:38:48 xtremcommunity sshd\[5638\]: Invalid user hadoop from 177.43.76.36 port 52436 Aug 26 11:38:48 xtremcommunity sshd\[5638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.76.36 Aug 26 11:38:51 xtremcommunity sshd\[5638\]: Failed password for invalid user hadoop from 177.43.76.36 port 52436 ssh2 ...	2019-08-27 00:55:22
132.232.2.184	attackspambots	2019-08-26T16:59:43.909064abusebot-7.cloudsearch.cf sshd\[7103\]: Invalid user ftp3 from 132.232.2.184 port 41522	2019-08-27 01:00:42
113.59.149.5	attackbots	" "	2019-08-26 23:49:36
200.85.42.42	attackspam	Aug 26 15:37:23 mail sshd\[16416\]: Invalid user jasper from 200.85.42.42 port 56996 Aug 26 15:37:23 mail sshd\[16416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.85.42.42 Aug 26 15:37:25 mail sshd\[16416\]: Failed password for invalid user jasper from 200.85.42.42 port 56996 ssh2 Aug 26 15:43:29 mail sshd\[17313\]: Invalid user river from 200.85.42.42 port 44394 Aug 26 15:43:29 mail sshd\[17313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.85.42.42	2019-08-27 00:31:55
151.80.147.11	attack	WordPress wp-login brute force :: 151.80.147.11 0.044 BYPASS [26/Aug/2019:23:36:23 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4479 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-27 00:37:39

最近上报的IP列表

143.208.29.89	107.170.90.209	1.55.50.54	187.32.90.1
142.138.43.63	243.184.96.207	131.30.226.94	154.185.58.152
127.35.141.109	85.253.69.247	205.44.196.98	149.210.205.24
90.27.111.121	209.121.108.219	93.228.115.90	124.6.153.3
138.186.115.239	66.249.69.31	138.36.107.73	178.32.165.35