必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
139.162.111.98 spamattack
Unauthorized connection attempt detected from IP address 139.162.111.98 to port 8080
2020-11-19 17:15:48
139.162.116.133 attack
Malicious brute force vulnerability hacking attacks
2020-10-14 07:39:12
139.162.112.248 attack
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2020-10-06 04:15:47
139.162.114.154 attackbots
 TCP (SYN) 139.162.114.154:55866 -> port 80, len 40
2020-10-06 03:23:05
139.162.112.248 attackbotsspam
scans 2 times in preceeding hours on the ports (in chronological order) 8080 8080
2020-10-05 20:15:14
139.162.114.154 attackbots
Blocked by Sophos UTM Network Protection . /    / proto=6  .  srcport=45266  .  dstport=80 HTTP  .     (890)
2020-10-05 19:16:07
139.162.112.248 attackspambots
 TCP (SYN) 139.162.112.248:50227 -> port 8080, len 44
2020-10-05 12:06:17
139.162.116.22 attackbotsspam
 TCP (SYN) 139.162.116.22:35955 -> port 1755, len 44
2020-09-26 06:20:18
139.162.116.22 attackspam
TCP port : 1755
2020-09-25 23:22:16
139.162.116.22 attackspam
Found on   Alienvault    / proto=6  .  srcport=45465  .  dstport=1755  .     (3629)
2020-09-25 15:00:43
139.162.116.133 attackspambots
Automatic report - Banned IP Access
2020-09-08 04:27:28
139.162.116.133 attackspam
srvr2: (mod_security) mod_security (id:920350) triggered by 139.162.116.133 (JP/-/scan-66.security.ipip.net): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/06 18:45:21 [error] 75202#0: *153186 [client 139.162.116.133] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159941072171.478932"] [ref "o0,14v21,14"], client: 139.162.116.133, [redacted] request: "GET / HTTP/1.1" [redacted]
2020-09-07 20:06:17
139.162.118.185 attackspam
Auto Detect Rule!
proto TCP (SYN), 139.162.118.185:48116->gjan.info:22, len 40
2020-09-06 03:37:48
139.162.118.185 attack
[portscan] tcp/22 [SSH]
*(RWIN=65535)(09051147)
2020-09-05 19:16:50
139.162.116.133 attack
srvr1: (mod_security) mod_security (id:920350) triggered by 139.162.116.133 (JP/-/scan-66.security.ipip.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/29 15:49:44 [error] 27704#0: *112472 [client 139.162.116.133] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15987161847.535630"] [ref "o0,13v21,13"], client: 139.162.116.133, [redacted] request: "GET / HTTP/1.1" [redacted]
2020-08-30 03:07:41
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.11.88
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.11.88.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:37:41 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
88.11.162.139.in-addr.arpa domain name pointer li853-88.members.linode.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
88.11.162.139.in-addr.arpa	name = li853-88.members.linode.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
183.82.124.145 attack
Unauthorized connection attempt from IP address 183.82.124.145 on Port 445(SMB)
2020-01-11 20:07:31
196.29.164.164 attack
Unauthorized connection attempt from IP address 196.29.164.164 on Port 445(SMB)
2020-01-11 20:04:41
115.43.97.27 attack
1578730956 - 01/11/2020 09:22:36 Host: 115.43.97.27/115.43.97.27 Port: 445 TCP Blocked
2020-01-11 19:53:18
184.154.139.183 attackbots
2020-01-10 22:47:26 dovecot_plain authenticator failed for (why.net) [184.154.139.183]:52534 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=pgyork@lerctr.org)
2020-01-10 22:47:42 dovecot_plain authenticator failed for (why.net) [184.154.139.183]:53158 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=pgyork@lerctr.org)
2020-01-10 22:47:55 dovecot_plain authenticator failed for (why.net) [184.154.139.183]:43750 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=pgyork@lerctr.org)
...
2020-01-11 19:56:59
49.88.112.76 attackbots
Jan 11 07:58:49 firewall sshd[21062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76  user=root
Jan 11 07:58:51 firewall sshd[21062]: Failed password for root from 49.88.112.76 port 15594 ssh2
Jan 11 07:58:53 firewall sshd[21062]: Failed password for root from 49.88.112.76 port 15594 ssh2
...
2020-01-11 19:40:03
201.49.236.219 attackbotsspam
Telnet/23 MH Probe, BF, Hack -
2020-01-11 19:43:48
91.64.138.182 attackbotsspam
Jan  4 17:45:02 kor-s-enter sshd[8107]: Invalid user bhostnamenami from 91.64.138.182 port 36980
Jan  4 17:45:02 kor-s-enter sshd[8107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5b408ab6.dynamic.kabel-deutschland.de
Jan  4 17:45:05 kor-s-enter sshd[8107]: Failed password for invalid user bhostnamenami from 91.64.138.182 port 36980 ssh2
Jan  4 18:48:03 kor-s-enter sshd[9370]: Invalid user kd from 91.64.138.182 port 49238
Jan  4 18:48:03 kor-s-enter sshd[9370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5b408ab6.dynamic.kabel-deutschland.de
Jan  4 18:48:05 kor-s-enter sshd[9370]: Failed password for invalid user kd from 91.64.138.182 port 49238 ssh2
Jan  4 19:53:53 kor-s-enter sshd[10707]: Invalid user test from 91.64.138.182 port 36368
Jan  4 19:53:53 kor-s-enter sshd[10707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5b408ab6.dyna........
------------------------------
2020-01-11 19:36:46
93.78.205.197 attack
email spam
2020-01-11 19:39:31
36.155.115.137 attackspam
$f2bV_matches
2020-01-11 19:44:08
123.148.208.167 attackbotsspam
"POST /xmlrpc.php HTTP/1.1" 403
"POST /xmlrpc.php HTTP/1.1" 403
2020-01-11 19:49:21
36.73.54.63 attack
Unauthorized connection attempt from IP address 36.73.54.63 on Port 445(SMB)
2020-01-11 19:45:40
49.235.92.208 attack
Jan 11 12:48:56 host sshd[54379]: Invalid user lxp from 49.235.92.208 port 50968
...
2020-01-11 20:14:26
58.69.12.106 attackspam
Unauthorized connection attempt from IP address 58.69.12.106 on Port 445(SMB)
2020-01-11 20:08:03
2.187.91.222 attack
Telnet/23 MH Probe, BF, Hack -
2020-01-11 19:44:36
115.85.46.234 attackspam
Unauthorized connection attempt from IP address 115.85.46.234 on Port 445(SMB)
2020-01-11 19:50:18

最近上报的IP列表

139.150.79.182 139.135.229.27 139.135.229.24 139.162.146.185
139.162.146.101 139.162.141.129 139.162.146.226 139.162.15.200
139.162.1.215 139.162.170.57 139.162.191.179 139.162.17.123
139.162.192.202 139.162.209.221 139.162.185.192 139.162.211.171
139.162.231.165 139.162.223.201 139.162.21.211 139.162.228.59