128.139.22.147

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Israel

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.139.22.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64864
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.139.22.147.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 04:19:24 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

147.22.139.128.in-addr.arpa domain name pointer huji-128-139-22-147.xt.huji.ac.il.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
147.22.139.128.in-addr.arpa	name = huji-128-139-22-147.xt.huji.ac.il.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
183.136.225.45	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 183.136.225.45 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/06 08:27:34 [error] 680602#0: 454946 [client 183.136.225.45] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160196565460.143806"] [ref "o0,16v21,16"], client: 183.136.225.45, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-06 14:36:16
24.234.169.237	attackbotsspam	$f2bV_matches	2020-10-06 14:03:42
125.124.120.123	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-06T00:10:21Z and 2020-10-06T00:17:34Z	2020-10-06 14:05:07
186.170.28.46	attack	Oct 6 08:03:05 sshgateway sshd\[26308\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 user=root Oct 6 08:03:07 sshgateway sshd\[26308\]: Failed password for root from 186.170.28.46 port 40687 ssh2 Oct 6 08:12:25 sshgateway sshd\[26402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 user=root	2020-10-06 14:42:11
37.112.60.154	attackspam	Automatic report - Banned IP Access	2020-10-06 14:39:56
71.71.18.58	attackbots	Automatic report - Banned IP Access	2020-10-06 14:30:49
114.231.105.191	attack	Oct 6 00:04:04 srv01 postfix/smtpd\[13775\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:17:49 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:01 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:17 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:35 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-06 14:29:27
185.200.118.51	attackbotsspam	Port scan denied	2020-10-06 13:59:53
193.169.253.108	attackbots	Brute forcing email accounts	2020-10-06 14:27:48
60.215.206.146	attack	DATE:2020-10-05 22:39:26, IP:60.215.206.146, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-06 14:41:35
106.12.77.50	attack	Lines containing failures of 106.12.77.50 Oct 5 20:22:12 nextcloud sshd[6125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.50 user=r.r Oct 5 20:22:15 nextcloud sshd[6125]: Failed password for r.r from 106.12.77.50 port 47310 ssh2 Oct 5 20:22:15 nextcloud sshd[6125]: Received disconnect from 106.12.77.50 port 47310:11: Bye Bye [preauth] Oct 5 20:22:15 nextcloud sshd[6125]: Disconnected from authenticating user r.r 106.12.77.50 port 47310 [preauth] Oct 5 20:37:31 nextcloud sshd[8209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.50 user=r.r Oct 5 20:37:33 nextcloud sshd[8209]: Failed password for r.r from 106.12.77.50 port 53436 ssh2 Oct 5 20:37:33 nextcloud sshd[8209]: Received disconnect from 106.12.77.50 port 53436:11: Bye Bye [preauth] Oct 5 20:37:33 nextcloud sshd[8209]: Disconnected from authenticating user r.r 106.12.77.50 port 53436 [preauth] Oct 5 ........ ------------------------------	2020-10-06 14:02:02
103.223.8.129	attack	DATE:2020-10-05 22:40:16, IP:103.223.8.129, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-06 14:01:16
180.127.95.140	attackbotsspam	spam (f2b h1)	2020-10-06 14:28:14
180.97.182.111	attackspam	2020-10-06T06:36:22.607912ks3355764 sshd[28378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.97.182.111 user=root 2020-10-06T06:36:24.711088ks3355764 sshd[28378]: Failed password for root from 180.97.182.111 port 56804 ssh2 ...	2020-10-06 14:02:36
112.216.39.234	attackbotsspam	Oct 6 08:11:04 PorscheCustomer sshd[14891]: Failed password for root from 112.216.39.234 port 48020 ssh2 Oct 6 08:15:33 PorscheCustomer sshd[14979]: Failed password for root from 112.216.39.234 port 52958 ssh2 ...	2020-10-06 14:23:46

最近上报的IP列表

153.254.90.60	100.212.233.255	37.67.109.41	211.87.74.33
240.51.131.138	81.35.76.198	106.49.207.178	32.39.34.37
95.230.19.147	87.99.10.157	31.136.86.175	210.145.119.87
247.252.90.5	189.113.47.64	133.210.124.59	152.43.60.1
115.6.223.12	135.162.55.102	224.47.12.157	127.202.133.24