必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
139.59.42.174 attackbotsspam
non-SMTP command used
...
2020-10-09 02:13:07
139.59.42.174 attackspambots
non-SMTP command used
...
2020-10-08 18:11:01
139.59.42.69 attackspambots
Jan  1 02:49:15 ws12vmsma01 sshd[34437]: Invalid user elake from 139.59.42.69
Jan  1 02:49:17 ws12vmsma01 sshd[34437]: Failed password for invalid user elake from 139.59.42.69 port 47266 ssh2
Jan  1 02:56:10 ws12vmsma01 sshd[35398]: Invalid user guest from 139.59.42.69
...
2020-01-01 14:13:46
139.59.42.69 attack
Unauthorized connection attempt detected from IP address 139.59.42.69 to port 22
2020-01-01 05:54:49
139.59.42.69 attackspambots
Dec 28 11:29:15 dev0-dcde-rnet sshd[13126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.42.69
Dec 28 11:29:17 dev0-dcde-rnet sshd[13126]: Failed password for invalid user trenduser from 139.59.42.69 port 51024 ssh2
Dec 28 11:32:39 dev0-dcde-rnet sshd[13191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.42.69
2019-12-28 19:44:53
139.59.42.250 attack
Automatic report - XMLRPC Attack
2019-11-19 05:19:06
139.59.42.114 attackbots
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:28:45 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:28:52 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:28:54 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:28:59 +0100] "POST /[munged]: HTTP/1.1" 200 6872 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:29:06 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 139.59.42.114 - - [30/Oct/2019:21:29:13 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubun
2019-10-31 04:52:00
139.59.42.114 attack
Automatic report - XMLRPC Attack
2019-10-29 13:29:17
139.59.42.250 attackspambots
Automatic report - Banned IP Access
2019-10-28 16:58:08
139.59.42.250 attackbotsspam
Automatic report - XMLRPC Attack
2019-10-07 15:33:05
139.59.42.250 attackspambots
fail2ban honeypot
2019-09-26 16:35:12
139.59.42.211 attackspam
160/tcp 159/tcp 158/tcp...
[2019-06-15/08-12]243pkt,65pt.(tcp)
2019-08-13 00:55:59
139.59.42.211 attack
31.07.2019 22:39:18 Connection to port 146 blocked by firewall
2019-08-01 09:17:33
139.59.42.211 attack
Unauthorized connection attempt from IP address 139.59.42.211 on Port 143(IMAP)
2019-07-30 01:45:22
139.59.42.211 attackbotsspam
MultiHost/MultiPort Probe, Scan, Hack -
2019-07-29 07:36:50
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.42.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61186
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.42.35.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:38:15 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
35.42.59.139.in-addr.arpa domain name pointer erx-a.everyring.io.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
35.42.59.139.in-addr.arpa	name = erx-a.everyring.io.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
132.232.126.232 attackspam
Automatic report - Banned IP Access
2019-11-11 20:07:44
34.76.225.49 attackbots
firewall-block, port(s): 443/tcp
2019-11-11 19:34:58
113.225.129.214 attack
Nov 11 01:13:27 eola sshd[32546]: Invalid user pi from 113.225.129.214 port 33952
Nov 11 01:13:28 eola sshd[32547]: Invalid user pi from 113.225.129.214 port 33958
Nov 11 01:13:28 eola sshd[32546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.225.129.214 
Nov 11 01:13:28 eola sshd[32547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.225.129.214 
Nov 11 01:13:30 eola sshd[32546]: Failed password for invalid user pi from 113.225.129.214 port 33952 ssh2
Nov 11 01:13:30 eola sshd[32547]: Failed password for invalid user pi from 113.225.129.214 port 33958 ssh2
Nov 11 01:13:30 eola sshd[32546]: Connection closed by 113.225.129.214 port 33952 [preauth]
Nov 11 01:13:30 eola sshd[32547]: Connection closed by 113.225.129.214 port 33958 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=113.225.129.214
2019-11-11 20:03:01
201.238.198.114 attack
Nov 10 11:54:36 host sshd[6511]: Failed password for invalid user admin from 201.238.198.114 port 11017
2019-11-11 19:36:28
47.93.11.251 attackbotsspam
Unauthorised access (Nov 11) SRC=47.93.11.251 LEN=60 TTL=46 ID=14012 DF TCP DPT=8080 WINDOW=29200 SYN
2019-11-11 19:37:27
120.92.12.108 attackbotsspam
ThinkPHP Remote Code Execution Vulnerability, PTR: PTR record not found
2019-11-11 20:11:35
217.8.117.37 attack
HTTP/80/443 Probe, Hack -
2019-11-11 20:11:52
139.59.78.179 attackspam
Nov 11 08:17:55 our-server-hostname postfix/smtpd[31243]: connect from unknown[139.59.78.179]
Nov x@x
Nov 11 08:17:56 our-server-hostname postfix/smtpd[31243]: lost connection after RCPT from unknown[139.59.78.179]
Nov 11 08:17:56 our-server-hostname postfix/smtpd[31243]: disconnect from unknown[139.59.78.179]
Nov 11 09:11:38 our-server-hostname postfix/smtpd[5416]: connect from unknown[139.59.78.179]
Nov x@x
Nov 11 09:11:39 our-server-hostname postfix/smtpd[5416]: lost connection after RCPT from unknown[139.59.78.179]
Nov 11 09:11:39 our-server-hostname postfix/smtpd[5416]: disconnect from unknown[139.59.78.179]
Nov 11 09:19:19 our-server-hostname postfix/smtpd[5650]: connect from unknown[139.59.78.179]
Nov x@x
Nov 11 09:19:21 our-server-hostname postfix/smtpd[5650]: lost connection after RCPT from unknown[139.59.78.179]
Nov 11 09:19:21 our-server-hostname postfix/smtpd[5650]: disconnect from unknown[139.59.78.179]
Nov 11 09:42:24 our-server-hostname postfix/smtpd[9025........
-------------------------------
2019-11-11 19:36:11
125.22.76.25 attackspambots
Port 1433 Scan
2019-11-11 19:52:08
14.18.93.114 attackspam
Nov 11 10:24:41 srv1 sshd[16412]: Failed password for www-data from 14.18.93.114 port 58056 ssh2
Nov 11 10:29:07 srv1 sshd[16641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.93.114
...
2019-11-11 19:32:44
106.13.173.141 attack
Nov 11 07:17:23 vps666546 sshd\[2303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141  user=root
Nov 11 07:17:25 vps666546 sshd\[2303\]: Failed password for root from 106.13.173.141 port 48080 ssh2
Nov 11 07:22:21 vps666546 sshd\[2432\]: Invalid user lotte from 106.13.173.141 port 56166
Nov 11 07:22:21 vps666546 sshd\[2432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141
Nov 11 07:22:23 vps666546 sshd\[2432\]: Failed password for invalid user lotte from 106.13.173.141 port 56166 ssh2
...
2019-11-11 19:54:29
111.231.50.90 attack
Nov 10 21:44:24 host2 sshd[14188]: Invalid user ketcheson from 111.231.50.90
Nov 10 21:44:24 host2 sshd[14188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.50.90 
Nov 10 21:44:26 host2 sshd[14188]: Failed password for invalid user ketcheson from 111.231.50.90 port 47384 ssh2
Nov 10 21:44:26 host2 sshd[14188]: Received disconnect from 111.231.50.90: 11: Bye Bye [preauth]
Nov 10 22:09:46 host2 sshd[16349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.50.90  user=r.r
Nov 10 22:09:48 host2 sshd[16349]: Failed password for r.r from 111.231.50.90 port 42776 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=111.231.50.90
2019-11-11 19:55:24
2.132.84.155 attackbotsspam
Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: CONNECT from [2.132.84.155]:48639 to [176.31.12.44]:25
Nov 11 07:05:18 mxgate1 postfix/dnsblog[31182]: addr 2.132.84.155 listed by domain zen.spamhaus.org as 127.0.0.11
Nov 11 07:05:18 mxgate1 postfix/dnsblog[31184]: addr 2.132.84.155 listed by domain cbl.abuseat.org as 127.0.0.2
Nov 11 07:05:18 mxgate1 postfix/dnsblog[31182]: addr 2.132.84.155 listed by domain zen.spamhaus.org as 127.0.0.4
Nov 11 07:05:18 mxgate1 postfix/dnsblog[31201]: addr 2.132.84.155 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: PREGREET 21 after 0.16 from [2.132.84.155]:48639: EHLO [2.132.84.155]

Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: DNSBL rank 4 for [2.132.84.155]:48639
Nov x@x
Nov 11 07:05:19 mxgate1 postfix/postscreen[31181]: HANGUP after 0.56 from [2.132.84.155]:48639 in tests after SMTP handshake
Nov 11 07:05:19 mxgate1 postfix/postscreen[31181]: DISCONNECT [2.132.84.155]........
-------------------------------
2019-11-11 19:37:42
35.240.253.241 attackbots
Nov 11 06:43:35 rb06 sshd[8555]: Failed password for invalid user xmodem from 35.240.253.241 port 37441 ssh2
Nov 11 06:43:35 rb06 sshd[8555]: Received disconnect from 35.240.253.241: 11: Bye Bye [preauth]
Nov 11 07:00:31 rb06 sshd[14041]: Failed password for r.r from 35.240.253.241 port 46961 ssh2
Nov 11 07:00:31 rb06 sshd[14041]: Received disconnect from 35.240.253.241: 11: Bye Bye [preauth]
Nov 11 07:04:37 rb06 sshd[26074]: Failed password for invalid user ig from 35.240.253.241 port 38240 ssh2
Nov 11 07:04:38 rb06 sshd[26074]: Received disconnect from 35.240.253.241: 11: Bye Bye [preauth]
Nov 11 07:08:33 rb06 sshd[26682]: Failed password for invalid user moses from 35.240.253.241 port 57749 ssh2
Nov 11 07:08:33 rb06 sshd[26682]: Received disconnect from 35.240.253.241: 11: Bye Bye [preauth]
Nov 11 07:12:29 rb06 sshd[28071]: Failed password for invalid user host from 35.240.253.241 port 49026 ssh2
Nov 11 07:12:29 rb06 sshd[28071]: Received disconnect from 35.240.253.2........
-------------------------------
2019-11-11 20:09:36
42.112.180.93 attackspam
Nov 11 07:12:26 mxgate1 postfix/postscreen[31181]: CONNECT from [42.112.180.93]:51268 to [176.31.12.44]:25
Nov 11 07:12:26 mxgate1 postfix/dnsblog[31471]: addr 42.112.180.93 listed by domain cbl.abuseat.org as 127.0.0.2
Nov 11 07:12:26 mxgate1 postfix/dnsblog[31467]: addr 42.112.180.93 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Nov 11 07:12:26 mxgate1 postfix/dnsblog[31468]: addr 42.112.180.93 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 11 07:12:26 mxgate1 postfix/dnsblog[31470]: addr 42.112.180.93 listed by domain zen.spamhaus.org as 127.0.0.4
Nov 11 07:12:26 mxgate1 postfix/dnsblog[31470]: addr 42.112.180.93 listed by domain zen.spamhaus.org as 127.0.0.11
Nov 11 07:12:32 mxgate1 postfix/postscreen[31181]: DNSBL rank 5 for [42.112.180.93]:51268
Nov x@x
Nov 11 07:12:33 mxgate1 postfix/postscreen[31181]: HANGUP after 1.1 from [42.112.180.93]:51268 in tests after SMTP handshake
Nov 11 07:12:33 mxgate1 postfix/postscreen[31181]: DISCONNECT [42.112.180.9........
-------------------------------
2019-11-11 19:57:52

最近上报的IP列表

139.59.42.190 139.59.42.63 139.59.42.82 139.59.41.86
139.59.43.1 139.59.42.156 139.59.42.170 139.59.41.84
118.254.202.38 139.59.43.188 139.59.43.155 139.59.44.169
139.59.44.144 139.59.44.108 139.59.45.120 139.59.45.210
139.59.44.48 139.59.45.242 139.59.43.209 139.59.45.254