139.27.235.196

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.27.235.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26328
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.27.235.196.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020601 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 05:25:17 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 196.235.27.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 196.235.27.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.245.252.225	attack	TCP (SYN) 157.245.252.225:32767 -> port 8545, len 44	2020-09-09 03:26:40
183.66.65.203	attack	Sep 8 10:44:56 root sshd[32475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.66.65.203 ...	2020-09-09 03:34:41
134.209.123.101	attackspambots	134.209.123.101 - - [08/Sep/2020:19:25:02 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.123.101 - - [08/Sep/2020:19:25:03 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.123.101 - - [08/Sep/2020:19:25:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 03:19:01
204.137.152.97	attackbots	Icarus honeypot on github	2020-09-09 03:20:14
192.241.227.136	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-09 03:01:20
78.128.113.120	attackbots	Sep 8 20:11:26 galaxy event: galaxy/lswi: smtp: cbrockmann@lswi.de [78.128.113.120] authentication failure using internet password Sep 8 20:11:28 galaxy event: galaxy/lswi: smtp: cbrockmann [78.128.113.120] authentication failure using internet password Sep 8 20:13:03 galaxy event: galaxy/lswi: smtp: info@lswi.de [78.128.113.120] authentication failure using internet password Sep 8 20:13:05 galaxy event: galaxy/lswi: smtp: info [78.128.113.120] authentication failure using internet password Sep 8 20:16:29 galaxy event: galaxy/lswi: smtp: carsten.brockmann@lswi.de [78.128.113.120] authentication failure using internet password ...	2020-09-09 03:11:02
37.21.159.235	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-09 03:03:45
51.222.14.28	attack	SSH brute force	2020-09-09 03:03:30
192.232.253.241	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-09 03:22:36
95.167.225.85	attackspam	2020-09-08T08:43:24.4042081495-001 sshd[16873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.225.85 user=root 2020-09-08T08:43:27.1559711495-001 sshd[16873]: Failed password for root from 95.167.225.85 port 59946 ssh2 2020-09-08T08:49:02.9704331495-001 sshd[17139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.225.85 user=root 2020-09-08T08:49:04.1215961495-001 sshd[17139]: Failed password for root from 95.167.225.85 port 60576 ssh2 2020-09-08T08:54:34.1977521495-001 sshd[17413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.225.85 user=root 2020-09-08T08:54:36.5934371495-001 sshd[17413]: Failed password for root from 95.167.225.85 port 33002 ssh2 ...	2020-09-09 03:14:25
140.143.13.177	attackspambots	Port Scan/VNC login attempt ...	2020-09-09 03:07:26
41.140.242.36	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-09 03:11:57
37.59.47.61	attackbots	(cxs) cxs mod_security triggered by 37.59.47.61 (FR/France/ns3000828.ip-37-59-47.eu): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_CXS; Logs: [Tue Sep 08 20:09:11.063353 2020] [:error] [pid 2555618:tid 47466686805760] [client 37.59.47.61:61609] [client 37.59.47.61] ModSecurity: Access denied with code 403 (phase 2). File "/tmp/20200908-200909-X1fIxRXGPD0CMJAoChHCpAAAAQA-file-Ujn7XG" rejected by the approver script "/etc/cxs/cxscgi.sh": 0 [file "/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"] [line "7"] [id "1010101"] [msg "ConfigServer Exploit Scanner (cxs) triggered"] [severity "CRITICAL"] [hostname "teknasmuceh.si"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "X1fIxRXGPD0CMJAoChHCpAAAAQA"]	2020-09-09 03:04:28
49.233.111.193	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-09 03:02:05
72.210.252.148	attack	Dovecot Invalid User Login Attempt.	2020-09-09 03:32:25

最近上报的IP列表

193.194.58.105	164.229.171.153	41.219.141.6	62.12.103.10
91.86.135.142	108.218.17.171	69.157.134.131	178.194.190.209
255.221.7.224	39.175.51.207	178.144.205.136	130.39.193.119
129.201.224.43	35.174.4.74	214.169.82.125	47.6.243.46
230.13.172.178	196.89.226.17	63.216.250.185	47.180.137.151