必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
Unauthorized connection attempt from IP address 139.194.166.138 on Port 139(NETBIOS)
2020-06-17 07:55:19
相同子网IP讨论:
IP 类型 评论内容 时间
139.194.166.131 attackbots
Connection by 139.194.166.131 on port: 139 got caught by honeypot at 5/13/2020 4:55:26 AM
2020-05-13 15:41:36
139.194.166.161 attack
Connection by 139.194.166.161 on port: 139 got caught by honeypot at 5/12/2020 4:53:04 AM
2020-05-12 14:07:32
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.194.166.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38211
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.194.166.138.		IN	A

;; AUTHORITY SECTION:
.			342	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061602 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 07:55:16 CST 2020
;; MSG SIZE  rcvd: 119
HOST信息:
138.166.194.139.in-addr.arpa domain name pointer fm-dyn-139-194-166-138.fast.net.id.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.166.194.139.in-addr.arpa	name = fm-dyn-139-194-166-138.fast.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
91.209.54.54 attackbotsspam
$f2bV_matches
2020-02-07 01:46:59
91.215.169.46 attackbotsspam
*** Phishing website that camouflaged Apple.com.
http://setting-input-personal-support-id-apple.info/
2020-02-07 01:03:47
92.63.194.148 attackspam
02/06/2020-11:02:07.815087 92.63.194.148 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-02-07 01:42:34
80.66.81.143 attack
Feb  6 18:37:44 relay postfix/smtpd\[21932\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 18:37:59 relay postfix/smtpd\[24340\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 18:38:17 relay postfix/smtpd\[21931\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 18:38:40 relay postfix/smtpd\[20697\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 18:41:55 relay postfix/smtpd\[21931\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-02-07 01:42:51
80.211.67.90 attack
$f2bV_matches
2020-02-07 01:15:19
54.37.233.192 attack
Feb  6 16:27:26 *** sshd[31160]: Invalid user sag from 54.37.233.192
2020-02-07 01:19:20
163.44.194.42 attack
163.44.194.42 - - [06/Feb/2020:18:52:19 +0300] "POST /wp-login.php HTTP/1.1" 200 2568 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-02-07 01:14:51
222.186.15.10 attackbots
...
2020-02-07 01:30:47
96.254.80.74 attackspambots
DATE:2020-02-06 14:42:53, IP:96.254.80.74, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)
2020-02-07 01:36:23
219.85.3.158 attackbotsspam
1580996591 - 02/06/2020 14:43:11 Host: 219.85.3.158/219.85.3.158 Port: 445 TCP Blocked
2020-02-07 01:21:59
124.244.207.80 attack
Feb  6 00:40:20 cumulus sshd[14948]: Invalid user dlp from 124.244.207.80 port 33006
Feb  6 00:40:20 cumulus sshd[14948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.207.80
Feb  6 00:40:23 cumulus sshd[14948]: Failed password for invalid user dlp from 124.244.207.80 port 33006 ssh2
Feb  6 00:40:23 cumulus sshd[14948]: Received disconnect from 124.244.207.80 port 33006:11: Bye Bye [preauth]
Feb  6 00:40:23 cumulus sshd[14948]: Disconnected from 124.244.207.80 port 33006 [preauth]
Feb  6 00:54:28 cumulus sshd[15347]: Invalid user cpj from 124.244.207.80 port 55306
Feb  6 00:54:28 cumulus sshd[15347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.207.80
Feb  6 00:54:30 cumulus sshd[15347]: Failed password for invalid user cpj from 124.244.207.80 port 55306 ssh2
Feb  6 00:54:30 cumulus sshd[15347]: Received disconnect from 124.244.207.80 port 55306:11: Bye Bye [preauth]
Feb........
-------------------------------
2020-02-07 01:33:24
51.254.49.97 attackbots
Unauthorised access (Feb  6) SRC=51.254.49.97 LEN=60 TTL=53 ID=64718 DF TCP DPT=135 WINDOW=5840 SYN
2020-02-07 01:04:31
185.27.194.229 attack
RDP login attempts with various logins including Remoto
2020-02-07 01:32:53
45.40.166.141 attackspambots
02/06/2020-18:18:00.179198 45.40.166.141 Protocol: 6 ET POLICY Cleartext WordPress Login
2020-02-07 01:44:30
193.56.28.220 attackbots
Feb  6 17:51:06 v22019058497090703 postfix/smtpd[23382]: warning: unknown[193.56.28.220]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 17:51:12 v22019058497090703 postfix/smtpd[23382]: warning: unknown[193.56.28.220]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Feb  6 17:51:22 v22019058497090703 postfix/smtpd[23382]: warning: unknown[193.56.28.220]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-02-07 01:32:35

最近上报的IP列表

118.68.122.35 106.67.62.134 203.24.49.194 31.24.144.113
90.229.33.167 50.97.95.226 212.150.246.98 59.14.213.225
111.254.2.159 191.236.160.136 81.93.70.54 66.122.157.154
153.214.247.217 180.30.143.250 80.2.206.138 47.91.179.181
188.230.22.24 206.189.18.109 90.63.79.176 206.72.198.42