139.155.125.16

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019/11/02 21:19:36 \[error\] 789\#789: \*164489 limiting requests, excess: 0.048 by zone "one", client: 139.155.125.16, server: default_server, request: "GET /TP/index.php HTTP/1.1", host: "80.30.195.137" ...	2019-11-03 05:16:33

类型

评论内容

时间

attack

2019/11/02 21:19:36 \[error\] 789\#789: \*164489 limiting requests, excess: 0.048 by zone "one", client: 139.155.125.16, server: default_server, request: "GET /TP/index.php HTTP/1.1", host: "80.30.195.137"
...

2019-11-03 05:16:33

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.125.218	attackspam	Attempts to probe for or exploit a Drupal 7.67 site on url: /shell.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-08-09 06:59:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.125.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46055
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.125.16.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100702 1800 900 604800 86400

;; Query time: 327 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 08:34:49 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 16.125.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.125.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.207.99.211	attackbotsspam	1433/tcp 445/tcp... [2019-09-09/11-02]12pkt,2pt.(tcp)	2019-11-02 19:43:19
172.247.55.242	attack	scan r	2019-11-02 20:11:26
104.40.8.62	attack	5x Failed Password	2019-11-02 19:36:59
198.108.66.24	attackspambots	firewall-block, port(s): 20000/tcp	2019-11-02 19:56:55
37.59.38.216	attack	Nov 2 12:15:51 XXX sshd[40190]: Invalid user alex from 37.59.38.216 port 54541	2019-11-02 20:14:36
222.186.180.17	attack	Nov 2 14:14:05 pkdns2 sshd\[14259\]: Failed password for root from 222.186.180.17 port 41270 ssh2Nov 2 14:14:09 pkdns2 sshd\[14259\]: Failed password for root from 222.186.180.17 port 41270 ssh2Nov 2 14:14:14 pkdns2 sshd\[14259\]: Failed password for root from 222.186.180.17 port 41270 ssh2Nov 2 14:14:17 pkdns2 sshd\[14259\]: Failed password for root from 222.186.180.17 port 41270 ssh2Nov 2 14:14:22 pkdns2 sshd\[14259\]: Failed password for root from 222.186.180.17 port 41270 ssh2Nov 2 14:14:33 pkdns2 sshd\[14300\]: Failed password for root from 222.186.180.17 port 50554 ssh2 ...	2019-11-02 20:16:11
171.234.63.120	attackbots	Port 1433 Scan	2019-11-02 19:37:59
52.202.144.167	attackspambots	Automatic report - XMLRPC Attack	2019-11-02 20:05:03
88.198.139.2	attackspambots	Port scan on 1 port(s): 53	2019-11-02 19:36:06
157.33.162.111	attack	C2,WP GET /wp-login.php	2019-11-02 20:13:05
116.99.8.77	attack	Unauthorised access (Nov 2) SRC=116.99.8.77 LEN=52 TTL=45 ID=648 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-02 19:59:48
179.158.28.22	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/179.158.28.22/ BR - 1H : (391) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN28573 IP : 179.158.28.22 CIDR : 179.158.0.0/16 PREFIX COUNT : 1254 UNIQUE IP COUNT : 9653760 ATTACKS DETECTED ASN28573 : 1H - 3 3H - 5 6H - 7 12H - 14 24H - 33 DateTime : 2019-11-02 04:42:04 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-02 19:49:35
184.160.17.241	attackspam	TCP Port Scanning	2019-11-02 19:54:58
117.73.2.103	attackbots	$f2bV_matches	2019-11-02 20:06:26
119.28.73.77	attackspam	Nov 2 12:55:39 localhost sshd\[7168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.73.77 user=root Nov 2 12:55:40 localhost sshd\[7168\]: Failed password for root from 119.28.73.77 port 59872 ssh2 Nov 2 13:00:04 localhost sshd\[7570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.73.77 user=root	2019-11-02 20:04:42

最近上报的IP列表

0.175.133.208	45.119.212.222	10.119.199.51	180.209.22.32
91.127.2.19	164.39.41.174	99.120.93.127	143.10.48.163
78.168.212.106	131.10.19.247	90.255.240.202	195.179.159.203
40.252.9.155	118.81.67.25	224.219.237.122	48.146.112.159
20.34.2.207	161.156.188.53	156.151.209.159	64.65.131.105