139.115.172.221

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Norway

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.115.172.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14105
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.115.172.221.		IN	A

;; AUTHORITY SECTION:
.			410	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060402 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 05 07:16:58 CST 2024
;; MSG SIZE  rcvd: 108

HOST信息:

221.172.115.139.in-addr.arpa domain name pointer tietoevry-owned-address-139-115-172-x.hidden-host.tietoevry.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.172.115.139.in-addr.arpa	name = tietoevry-owned-address-139-115-172-x.hidden-host.tietoevry.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.236.228.46	attackspam	Dec 8 07:19:12 vmd26974 sshd[16997]: Failed password for root from 104.236.228.46 port 55314 ssh2 ...	2019-12-08 15:24:03
173.249.53.185	attackbotsspam	"PROTOCOL-VOIP SIP URI bloque call header=From:any@xxxxx.com&xxxxx_IP_or_To:E.164@xxxxx.com&xxxxx_IP"	2019-12-08 14:51:33
116.31.105.198	attack	Dec 8 07:29:57 lnxweb61 sshd[21128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.105.198 Dec 8 07:29:57 lnxweb61 sshd[21128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.105.198	2019-12-08 15:07:26
95.216.10.31	attack	Lines containing failures of 95.216.10.31 Dec 7 21:59:48 kmh-vmh-003-fsn07 sshd[12451]: Invalid user papernet from 95.216.10.31 port 39180 Dec 7 21:59:48 kmh-vmh-003-fsn07 sshd[12451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.216.10.31 Dec 7 21:59:50 kmh-vmh-003-fsn07 sshd[12451]: Failed password for invalid user papernet from 95.216.10.31 port 39180 ssh2 Dec 7 21:59:52 kmh-vmh-003-fsn07 sshd[12451]: Received disconnect from 95.216.10.31 port 39180:11: Bye Bye [preauth] Dec 7 21:59:52 kmh-vmh-003-fsn07 sshd[12451]: Disconnected from invalid user papernet 95.216.10.31 port 39180 [preauth] Dec 7 22:09:53 kmh-vmh-003-fsn07 sshd[27313]: Invalid user ubuntu from 95.216.10.31 port 59726 Dec 7 22:09:53 kmh-vmh-003-fsn07 sshd[27313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.216.10.31 Dec 7 22:09:55 kmh-vmh-003-fsn07 sshd[27313]: Failed password for invalid user ubuntu fr........ ------------------------------	2019-12-08 14:52:34
54.36.182.244	attackspambots	Dec 8 08:08:25 mail sshd[9983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.182.244 user=root Dec 8 08:08:27 mail sshd[9983]: Failed password for root from 54.36.182.244 port 40463 ssh2 ...	2019-12-08 15:13:26
194.187.251.155	attack	Time: Sun Dec 8 03:11:12 2019 -0300 IP: 194.187.251.155 (BE/Belgium/155.251.187.194.in-addr.arpa) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block [LF_MODSEC] Log entries: 194.187.251.155 - - [08/Dec/2019:03:10:49 -0300] "GET /wp-login.php?registration=disabled HTTP/1.1" 200 1282 "https://brasilwork.com.br/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:15.0) Gecko/20120427 Firefox/15.0a1" 194.187.251.155 - - [08/Dec/2019:03:10:51 -0300] "GET /wp-cron.php HTTP/1.1" 200 - "https://brasilwork.com.br/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:15.0) Gecko/20120427 Firefox/15.0a1" [Sun Dec 08 03:11:08.082212 2019] [:error] [pid 5036] [client 194.187.251.155:51532] [client 194.187.251.155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "122"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "br	2019-12-08 14:51:09
163.172.43.60	attackbots	Host Scan	2019-12-08 14:53:29
196.218.164.114	attack	firewall-block, port(s): 445/tcp	2019-12-08 15:01:19
5.196.65.74	attackbotsspam	5.196.65.74 - - \[08/Dec/2019:06:29:54 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 5.196.65.74 - - \[08/Dec/2019:06:29:54 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-12-08 15:11:19
207.154.206.212	attackbotsspam	$f2bV_matches	2019-12-08 15:00:42
36.70.227.235	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-08 14:59:41
139.199.66.206	attackbotsspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-08 15:17:54
103.217.135.24	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-08 15:08:51
82.214.118.6	attack	Automatic report - XMLRPC Attack	2019-12-08 15:04:33
88.132.237.187	attackbots	SSH invalid-user multiple login try	2019-12-08 14:59:10

最近上报的IP列表

56.163.31.83	36.240.5.187	21.210.55.173	247.130.120.8
156.165.103.175	146.49.231.211	145.46.108.151	30.156.2.231
18.127.75.151	32.72.131.238	65.251.160.184	146.49.216.73
87.126.55.112	63.244.36.121	225.99.109.93	229.24.27.38
116.214.172.236	45.109.44.72	129.234.242.142	180.13.242.0