城市(city): Tokyo
省份(region): Tokyo
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.162.119.197 | attackbotsspam | Unauthorized connection attempt, Score > 90 , Ban for 1 month |
2020-07-14 15:11:03 |
| 139.162.119.197 | attackspam | W 31101,/var/log/nginx/access.log,-,- |
2020-03-23 05:08:39 |
| 139.162.119.197 | attack | Unauthorized connection attempt detected from IP address 139.162.119.197 to port 80 [J] |
2020-01-27 21:12:02 |
| 139.162.119.197 | attackspam | W 31101,/var/log/nginx/access.log,-,- |
2020-01-04 14:21:22 |
| 139.162.119.1 | attackbots | web Attack on Website at 2020-01-02. |
2020-01-03 02:44:50 |
| 139.162.119.248 | attack | fire |
2019-08-09 13:50:46 |
| 139.162.119.197 | attack | port scan and connect, tcp 80 (http) |
2019-08-04 20:10:27 |
| 139.162.119.197 | attack | [Mon Jul 29 04:34:10.629241 2019] [:error] [pid 25097:tid 140491492337408] [client 139.162.119.197:59818] [client 139.162.119.197] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XT4U0g-h1iRiDVhW3KhyXAAAABU"] ... |
2019-07-29 06:19:00 |
| 139.162.119.197 | attackspambots | Port scan and direct access per IP instead of hostname |
2019-07-28 16:18:44 |
| 139.162.119.197 | attackspambots | Port scan and direct access per IP instead of hostname |
2019-07-05 06:09:18 |
| 139.162.119.197 | attackspam | [20/Jun/2019:05:20:58 -0400] "GET / HTTP/1.1" "HTTP Banner Detection (https://security.ipip.net)" |
2019-06-21 19:14:11 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 139.162.0.0 - 139.162.255.255
CIDR: 139.162.0.0/16
NetName: RIPE-ERX-139-162-0-0
NetHandle: NET-139-162-0-0-1
Parent: NET139 (NET-139-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2004-03-03
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/139.162.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.119.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.162.119.94. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026033100 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 15:30:03 CST 2026
;; MSG SIZE rcvd: 10794.119.162.139.in-addr.arpa domain name pointer prod57client01.academyforinternetresearch.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
94.119.162.139.in-addr.arpa name = prod57client01.academyforinternetresearch.org.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.186.175.151 | attack | Mar 1 18:14:17 sd-53420 sshd\[7432\]: User root from 222.186.175.151 not allowed because none of user's groups are listed in AllowGroups Mar 1 18:14:20 sd-53420 sshd\[7432\]: Failed none for invalid user root from 222.186.175.151 port 25798 ssh2 Mar 1 18:14:20 sd-53420 sshd\[7432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Mar 1 18:14:22 sd-53420 sshd\[7432\]: Failed password for invalid user root from 222.186.175.151 port 25798 ssh2 Mar 1 18:14:38 sd-53420 sshd\[7460\]: User root from 222.186.175.151 not allowed because none of user's groups are listed in AllowGroups ... |
2020-03-02 01:16:24 |
| 46.209.31.146 | attack | Mar 1 18:25:30 ns41 sshd[17340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.209.31.146 |
2020-03-02 01:30:34 |
| 118.24.36.247 | attack | $f2bV_matches |
2020-03-02 01:15:31 |
| 42.115.8.132 | attack | Unauthorized connection attempt detected from IP address 42.115.8.132 to port 23 [J] |
2020-03-02 01:22:45 |
| 92.118.37.95 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 9343 proto: TCP cat: Misc Attack |
2020-03-02 01:18:32 |
| 51.77.140.36 | attackspam | Mar 1 07:04:48 hanapaa sshd\[716\]: Invalid user arul from 51.77.140.36 Mar 1 07:04:48 hanapaa sshd\[716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-77-140.eu Mar 1 07:04:50 hanapaa sshd\[716\]: Failed password for invalid user arul from 51.77.140.36 port 49906 ssh2 Mar 1 07:13:57 hanapaa sshd\[1453\]: Invalid user ftp_test from 51.77.140.36 Mar 1 07:13:57 hanapaa sshd\[1453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-77-140.eu |
2020-03-02 01:24:51 |
| 122.146.94.100 | attack | Mar 1 16:49:57 hcbbdb sshd\[14883\]: Invalid user confluence from 122.146.94.100 Mar 1 16:49:57 hcbbdb sshd\[14883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.146.94.100 Mar 1 16:50:00 hcbbdb sshd\[14883\]: Failed password for invalid user confluence from 122.146.94.100 port 58770 ssh2 Mar 1 16:58:58 hcbbdb sshd\[15923\]: Invalid user john from 122.146.94.100 Mar 1 16:58:58 hcbbdb sshd\[15923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.146.94.100 |
2020-03-02 01:15:01 |
| 54.194.105.136 | attack | Unauthorized connection attempt detected from IP address 54.194.105.136 to port 1433 [J] |
2020-03-02 01:07:59 |
| 200.29.120.196 | attackbots | Mar 1 16:27:41 |
2020-03-02 00:57:21 |
| 197.41.62.148 | attack | 20/3/1@08:23:05: FAIL: Alarm-Network address from=197.41.62.148 20/3/1@08:23:05: FAIL: Alarm-Network address from=197.41.62.148 ... |
2020-03-02 00:58:43 |
| 114.32.137.82 | attackbots | Portscan detected |
2020-03-02 00:49:29 |
| 222.186.175.182 | attackbots | Mar 1 18:31:19 MK-Soft-Root2 sshd[24031]: Failed password for root from 222.186.175.182 port 41988 ssh2 Mar 1 18:31:24 MK-Soft-Root2 sshd[24031]: Failed password for root from 222.186.175.182 port 41988 ssh2 ... |
2020-03-02 01:33:08 |
| 118.219.52.203 | attack | 3 failed attempts at connecting to SSH. |
2020-03-02 01:06:42 |
| 106.1.20.228 | attackbots | Honeypot attack, port: 81, PTR: PTR record not found |
2020-03-02 00:57:48 |
| 112.120.144.187 | attackspambots | Unauthorized connection attempt detected from IP address 112.120.144.187 to port 5555 [J] |
2020-03-02 00:53:51 |