139.77.252.17 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.77.252.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31539
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.77.252.17.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010502 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 06 09:33:21 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 17.252.77.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 17.252.77.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.180.24.191	attackspam	Unauthorised access (Aug 20) SRC=111.180.24.191 LEN=40 TTL=49 ID=52122 TCP DPT=8080 WINDOW=60885 SYN Unauthorised access (Aug 20) SRC=111.180.24.191 LEN=40 TTL=49 ID=57751 TCP DPT=8080 WINDOW=60885 SYN Unauthorised access (Aug 19) SRC=111.180.24.191 LEN=40 TTL=49 ID=17463 TCP DPT=8080 WINDOW=26011 SYN Unauthorised access (Aug 18) SRC=111.180.24.191 LEN=40 TTL=49 ID=59605 TCP DPT=8080 WINDOW=60885 SYN	2020-08-20 21:31:52
201.122.102.21	attackbots	Aug 20 15:04:56 cho sshd[1151815]: Failed password for root from 201.122.102.21 port 42668 ssh2 Aug 20 15:08:36 cho sshd[1152117]: Invalid user test from 201.122.102.21 port 40736 Aug 20 15:08:36 cho sshd[1152117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.122.102.21 Aug 20 15:08:36 cho sshd[1152117]: Invalid user test from 201.122.102.21 port 40736 Aug 20 15:08:38 cho sshd[1152117]: Failed password for invalid user test from 201.122.102.21 port 40736 ssh2 ...	2020-08-20 21:14:12
41.36.102.106	attackbots	Unauthorised access (Aug 20) SRC=41.36.102.106 LEN=52 TTL=116 ID=22019 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-20 21:43:32
167.99.78.164	attackbotsspam	167.99.78.164 - - [20/Aug/2020:13:42:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1927 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.78.164 - - [20/Aug/2020:13:42:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1868 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.78.164 - - [20/Aug/2020:13:42:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-20 21:24:48
117.6.240.170	attack	Aug 20 06:07:27 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=117.6.240.170, lip=185.198.26.142, TLS, session= ...	2020-08-20 21:23:28
185.176.27.86	attack	Fail2Ban Ban Triggered	2020-08-20 21:10:54
95.42.20.192	attack	AbusiveCrawling	2020-08-20 21:16:48
212.94.8.41	attackbots	Aug 20 13:54:42 ajax sshd[8036]: Failed password for root from 212.94.8.41 port 43696 ssh2 Aug 20 13:57:26 ajax sshd[8978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.94.8.41	2020-08-20 21:39:57
103.230.241.16	attackspam	Aug 20 13:02:10 vps-51d81928 sshd[770742]: Invalid user ydy from 103.230.241.16 port 38690 Aug 20 13:02:10 vps-51d81928 sshd[770742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.230.241.16 Aug 20 13:02:10 vps-51d81928 sshd[770742]: Invalid user ydy from 103.230.241.16 port 38690 Aug 20 13:02:13 vps-51d81928 sshd[770742]: Failed password for invalid user ydy from 103.230.241.16 port 38690 ssh2 Aug 20 13:03:34 vps-51d81928 sshd[770791]: Invalid user yjy from 103.230.241.16 port 60344 ...	2020-08-20 21:19:37
185.108.106.215	attackspambots	query suspecte, attemp SQL injection log:/scripts/wallpaper_page.php?name=/etc/passwd	2020-08-20 21:15:20
117.211.70.70	attack	117.211.70.70 - [20/Aug/2020:16:22:56 +0300] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 117.211.70.70 - [20/Aug/2020:16:24:34 +0300] "POST /xmlrpc.php HTTP/1.1" 404 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" ...	2020-08-20 21:26:17
139.226.35.190	attack	Aug 20 14:07:46 sshgateway sshd\[21166\]: Invalid user omt from 139.226.35.190 Aug 20 14:07:46 sshgateway sshd\[21166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.226.35.190 Aug 20 14:07:47 sshgateway sshd\[21166\]: Failed password for invalid user omt from 139.226.35.190 port 3556 ssh2	2020-08-20 21:05:44
153.131.176.4	attackbots	Lines containing failures of 153.131.176.4 (max 1000) Aug 19 16:35:47 localhost sshd[28437]: Invalid user samba from 153.131.176.4 port 61947 Aug 19 16:35:47 localhost sshd[28437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.131.176.4 Aug 19 16:35:49 localhost sshd[28437]: Failed password for invalid user samba from 153.131.176.4 port 61947 ssh2 Aug 19 16:35:51 localhost sshd[28437]: Received disconnect from 153.131.176.4 port 61947:11: Bye Bye [preauth] Aug 19 16:35:51 localhost sshd[28437]: Disconnected from invalid user samba 153.131.176.4 port 61947 [preauth] Aug 19 16:46:32 localhost sshd[329]: Did not receive identification string from 153.131.176.4 port 56173 Aug 19 16:50:09 localhost sshd[1681]: Invalid user nagios from 153.131.176.4 port 61476 Aug 19 16:50:09 localhost sshd[1681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.131.176.4 Aug 19 16:50:11 localhost sshd[1........ ------------------------------	2020-08-20 21:36:43
197.135.48.139	attack	Aug 19 15:30:58 nxxxxxxx0 sshd[15653]: Invalid user erick from 197.135.48.139 Aug 19 15:30:58 nxxxxxxx0 sshd[15653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.135.48.139 Aug 19 15:31:00 nxxxxxxx0 sshd[15653]: Failed password for invalid user erick from 197.135.48.139 port 36301 ssh2 Aug 19 15:31:01 nxxxxxxx0 sshd[15653]: Received disconnect from 197.135.48.139: 11: Bye Bye [preauth] Aug 19 15:36:00 nxxxxxxx0 sshd[16138]: Invalid user ftpuser from 197.135.48.139 Aug 19 15:36:00 nxxxxxxx0 sshd[16138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.135.48.139 Aug 19 15:36:02 nxxxxxxx0 sshd[16138]: Failed password for invalid user ftpuser from 197.135.48.139 port 58598 ssh2 Aug 19 15:36:03 nxxxxxxx0 sshd[16138]: Received disconnect from 197.135.48.139: 11: Bye Bye [preauth] Aug 19 15:42:24 nxxxxxxx0 sshd[16738]: Invalid user tia from 197.135.48.139 Aug 19 15:42:24 nxxxxxxx0 sshd........ -------------------------------	2020-08-20 21:29:22
27.65.107.188	attackspam	1597925250 - 08/20/2020 14:07:30 Host: 27.65.107.188/27.65.107.188 Port: 445 TCP Blocked	2020-08-20 21:20:57

最近上报的IP列表

247.240.183.61	22.119.169.94	59.244.18.9	11.40.201.99
235.236.40.15	105.120.155.175	35.21.28.214	42.209.211.249
198.90.224.208	10.0.13.217	166.23.181.175	252.23.229.193
130.177.55.228	167.74.232.146	10.253.199.162	57.72.193.90
116.196.93.56	64.21.129.218	12.251.47.138	55.2.77.247