139.28.37.114 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.28.37.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52035
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.28.37.114.			IN	A

;; AUTHORITY SECTION:
.			55	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:31:06 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

114.37.28.139.in-addr.arpa domain name pointer 139.28.37.114.deltahost-ptr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.37.28.139.in-addr.arpa	name = 139.28.37.114.deltahost-ptr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
138.204.235.30	attackbotsspam	Lines containing failures of 138.204.235.30 Oct 29 01:42:35 shared11 sshd[7816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30 user=r.r Oct 29 01:42:38 shared11 sshd[7816]: Failed password for r.r from 138.204.235.30 port 51014 ssh2 Oct 29 01:42:38 shared11 sshd[7816]: Received disconnect from 138.204.235.30 port 51014:11: Bye Bye [preauth] Oct 29 01:42:38 shared11 sshd[7816]: Disconnected from authenticating user r.r 138.204.235.30 port 51014 [preauth] Oct 29 01:57:12 shared11 sshd[12485]: Invalid user asconex from 138.204.235.30 port 40713 Oct 29 01:57:12 shared11 sshd[12485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30 Oct 29 01:57:14 shared11 sshd[12485]: Failed password for invalid user asconex from 138.204.235.30 port 40713 ssh2 Oct 29 01:57:14 shared11 sshd[12485]: Received disconnect from 138.204.235.30 port 40713:11: Bye Bye [preauth] Oct 29 01:57........ ------------------------------	2019-10-31 16:48:00
192.3.207.82	attackspambots	\[2019-10-31 04:00:57\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '192.3.207.82:50273' - Wrong password \[2019-10-31 04:00:57\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-31T04:00:57.430-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5211",SessionID="0x7fdf2ca2e638",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.207.82/50273",Challenge="33d40208",ReceivedChallenge="33d40208",ReceivedHash="953d47ffb7936b7d489229963bd5bf74" \[2019-10-31 04:10:51\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '192.3.207.82:62088' - Wrong password \[2019-10-31 04:10:51\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-31T04:10:51.472-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5300",SessionID="0x7fdf2c364088",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.207.82	2019-10-31 16:20:55
106.52.4.104	attackspam	2019-10-31T08:21:44.878704homeassistant sshd[12307]: Invalid user testdb from 106.52.4.104 port 49508 2019-10-31T08:21:44.885731homeassistant sshd[12307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.4.104 ...	2019-10-31 16:25:18
180.178.102.138	attackspambots	1433/tcp 445/tcp... [2019-09-25/10-31]11pkt,2pt.(tcp)	2019-10-31 16:24:08
202.74.238.87	attackbotsspam	/var/log/messages:Oct 31 01:13:17 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1572484397.296:114621): pid=12731 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=12732 suid=74 rport=55458 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=202.74.238.87 terminal=? res=success' /var/log/messages:Oct 31 01:13:17 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1572484397.300:114622): pid=12731 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=12732 suid=74 rport=55458 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=202.74.238.87 terminal=? res=success' /var/log/messages:Oct 31 01:13:18 sanyalnet-cloud-vps fail2ban.filter[1538]: INFO [sshd] Fou........ -------------------------------	2019-10-31 16:39:58
58.64.200.114	attack	1433/tcp 445/tcp... [2019-09-05/10-31]15pkt,2pt.(tcp)	2019-10-31 16:31:49
51.38.126.92	attack	Oct 31 06:22:37 vps647732 sshd[12868]: Failed password for root from 51.38.126.92 port 56288 ssh2 ...	2019-10-31 16:28:10
182.254.223.249	attackspambots	1433/tcp 445/tcp 1433/tcp [2019-10-18/31]3pkt	2019-10-31 16:48:55
68.235.152.83	attackspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2019-10-31 16:23:52
51.77.145.82	attackbots	$f2bV_matches	2019-10-31 16:13:23
106.13.138.238	attackspambots	Oct 31 05:05:27 legacy sshd[583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.238 Oct 31 05:05:29 legacy sshd[583]: Failed password for invalid user vv from 106.13.138.238 port 52190 ssh2 Oct 31 05:10:37 legacy sshd[727]: Failed password for root from 106.13.138.238 port 33882 ssh2 ...	2019-10-31 16:35:20
111.93.242.226	attack	2019-10-31T04:39:11.069834abusebot-6.cloudsearch.cf sshd\[32757\]: Invalid user git from 111.93.242.226 port 59222	2019-10-31 16:16:41
94.191.78.128	attackspambots	Oct 31 03:45:52 marvibiene sshd[39400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128 user=root Oct 31 03:45:54 marvibiene sshd[39400]: Failed password for root from 94.191.78.128 port 58130 ssh2 Oct 31 03:50:59 marvibiene sshd[39461]: Invalid user user from 94.191.78.128 port 38660 ...	2019-10-31 16:21:36
40.113.227.232	attackbots	Oct 31 06:10:11 server sshd\[24769\]: User root from 40.113.227.232 not allowed because listed in DenyUsers Oct 31 06:10:11 server sshd\[24769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.227.232 user=root Oct 31 06:10:13 server sshd\[24769\]: Failed password for invalid user root from 40.113.227.232 port 33166 ssh2 Oct 31 06:14:59 server sshd\[14153\]: User root from 40.113.227.232 not allowed because listed in DenyUsers Oct 31 06:14:59 server sshd\[14153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.227.232 user=root	2019-10-31 16:18:41
180.183.18.28	attackbotsspam	Honeypot attack, port: 445, PTR: mx-ll-180.183.18-28.dynamic.3bb.co.th.	2019-10-31 16:24:45

最近上报的IP列表

139.30.8.152	139.28.39.76	139.30.8.153	139.30.8.196
139.45.196.73	139.30.8.197	139.45.197.123	139.4.125.34
139.45.197.186	139.45.252.15	118.254.140.96	139.45.250.90
139.45.252.16	139.45.197.124	139.47.101.16	139.47.112.23
139.47.132.1	139.47.108.95	139.47.132.129	139.47.133.1