必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Bogor

省份(region): West Java

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
139.0.180.53 attackbots
Repeated attempts against wp-login
2020-04-01 04:10:31
139.0.186.87 attack
Unauthorized connection attempt detected from IP address 139.0.186.87 to port 8080 [J]
2020-01-13 04:49:21
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.0.18.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50022
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.0.18.250.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:03:07 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
250.18.0.139.in-addr.arpa domain name pointer ln-static-139-0-18-250.link.net.id.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
250.18.0.139.in-addr.arpa	name = ln-static-139-0-18-250.link.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
14.171.94.177 attackspambots
1591272581 - 06/04/2020 14:09:41 Host: 14.171.94.177/14.171.94.177 Port: 445 TCP Blocked
2020-06-04 20:39:53
185.244.39.166 attack
Lines containing failures of 185.244.39.166
Jun  1 15:36:26 shared06 sshd[19177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.39.166  user=r.r
Jun  1 15:36:28 shared06 sshd[19177]: Failed password for r.r from 185.244.39.166 port 48714 ssh2
Jun  1 15:36:28 shared06 sshd[19177]: Received disconnect from 185.244.39.166 port 48714:11: Bye Bye [preauth]
Jun  1 15:36:28 shared06 sshd[19177]: Disconnected from authenticating user r.r 185.244.39.166 port 48714 [preauth]
Jun  1 15:40:44 shared06 sshd[20391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.39.166  user=r.r
Jun  1 15:40:46 shared06 sshd[20391]: Failed password for r.r from 185.244.39.166 port 35426 ssh2
Jun  1 15:40:46 shared06 sshd[20391]: Received disconnect from 185.244.39.166 port 35426:11: Bye Bye [preauth]
Jun  1 15:40:46 shared06 sshd[20391]: Disconnected from authenticating user r.r 185.244.39.166 port 35426........
------------------------------
2020-06-04 20:27:57
167.172.198.117 attack
"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:
2020-06-04 20:46:18
139.217.233.15 attack
Lines containing failures of 139.217.233.15 (max 1000)
Jun  1 12:34:50 archiv sshd[26031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.233.15  user=r.r
Jun  1 12:34:52 archiv sshd[26031]: Failed password for r.r from 139.217.233.15 port 36296 ssh2
Jun  1 12:34:53 archiv sshd[26031]: Received disconnect from 139.217.233.15 port 36296:11: Bye Bye [preauth]
Jun  1 12:34:53 archiv sshd[26031]: Disconnected from 139.217.233.15 port 36296 [preauth]
Jun  1 12:41:33 archiv sshd[26136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.233.15  user=r.r
Jun  1 12:41:35 archiv sshd[26136]: Failed password for r.r from 139.217.233.15 port 37232 ssh2
Jun  1 12:41:35 archiv sshd[26136]: Received disconnect from 139.217.233.15 port 37232:11: Bye Bye [preauth]
Jun  1 12:41:35 archiv sshd[26136]: Disconnected from 139.217.233.15 port 37232 [preauth]
Jun  1 12:45:26 archiv sshd[26226]: pam_un........
------------------------------
2020-06-04 20:14:23
43.254.156.207 attackspam
SSH brute-force attempt
2020-06-04 20:48:20
222.186.42.136 attack
Jun  4 12:42:27 marvibiene sshd[38112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136  user=root
Jun  4 12:42:29 marvibiene sshd[38112]: Failed password for root from 222.186.42.136 port 43479 ssh2
Jun  4 12:42:32 marvibiene sshd[38112]: Failed password for root from 222.186.42.136 port 43479 ssh2
Jun  4 12:42:27 marvibiene sshd[38112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136  user=root
Jun  4 12:42:29 marvibiene sshd[38112]: Failed password for root from 222.186.42.136 port 43479 ssh2
Jun  4 12:42:32 marvibiene sshd[38112]: Failed password for root from 222.186.42.136 port 43479 ssh2
...
2020-06-04 20:44:54
51.144.73.114 attackspambots
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.144.73.114 - - [04/Jun/2020:14:09:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir
...
2020-06-04 20:49:19
222.186.175.150 attackbots
prod11
...
2020-06-04 20:27:08
203.150.243.176 attackspambots
SSH Attack
2020-06-04 20:56:16
49.88.112.112 attackspambots
$f2bV_matches
2020-06-04 20:30:54
152.32.225.157 attackbotsspam
Jun  4 14:23:25 server sshd[31587]: Failed password for root from 152.32.225.157 port 60118 ssh2
Jun  4 14:28:12 server sshd[31989]: Failed password for root from 152.32.225.157 port 51334 ssh2
...
2020-06-04 20:47:48
159.65.158.30 attackbotsspam
2020-06-04T14:07:54.1853301240 sshd\[5183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.30  user=root
2020-06-04T14:07:56.1979991240 sshd\[5183\]: Failed password for root from 159.65.158.30 port 47002 ssh2
2020-06-04T14:09:59.2335291240 sshd\[5351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.30  user=root
...
2020-06-04 20:18:51
174.139.22.53 attack
Jun  4 14:45:46 eventyay sshd[26880]: Failed password for root from 174.139.22.53 port 50620 ssh2
Jun  4 14:49:03 eventyay sshd[27027]: Failed password for root from 174.139.22.53 port 58188 ssh2
...
2020-06-04 20:56:47
222.186.42.7 attackspambots
Jun  4 15:43:33 server2 sshd\[4636\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
Jun  4 15:49:45 server2 sshd\[5067\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
Jun  4 15:52:43 server2 sshd\[5317\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
Jun  4 15:52:44 server2 sshd\[5319\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
Jun  4 15:52:46 server2 sshd\[5321\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
Jun  4 15:52:52 server2 sshd\[5323\]: User root from 222.186.42.7 not allowed because not listed in AllowUsers
2020-06-04 20:53:48
209.97.175.191 attackbotsspam
209.97.175.191 - - [04/Jun/2020:14:22:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
209.97.175.191 - - [04/Jun/2020:14:22:16 +0200] "POST /wp-login.php HTTP/1.1" 200 7007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
209.97.175.191 - - [04/Jun/2020:14:22:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-06-04 20:40:30

最近上报的IP列表

139.0.16.202 139.0.178.162 139.0.178.28 139.0.161.154
139.0.168.221 139.0.175.188 118.208.236.77 139.0.192.198
139.0.187.132 139.0.193.239 139.0.193.136 139.0.193.197
139.0.20.235 139.0.204.77 139.0.195.112 139.0.204.255
139.0.20.114 139.0.205.19 139.0.21.58 118.209.249.14