139.81.34.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.81.34.17	attackspambots	NAME : NXNET-SOLUTIONS CIDR : 139.81.192.0/21 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - Georgia - block certain countries :) IP: 139.81.34.17 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-22 10:56:18

类型

评论内容

时间

139.81.34.17

attackspambots

NAME : NXNET-SOLUTIONS CIDR : 139.81.192.0/21 | STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - Georgia - block certain countries :) IP: 139.81.34.17  Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery https://help-dysk.pl

2019-06-22 10:56:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.81.34.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49783
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.81.34.12.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:41:04 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 12.34.81.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.34.81.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.108.244.4	attack	Sep 25 04:16:04 aat-srv002 sshd[5342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.244.4 Sep 25 04:16:06 aat-srv002 sshd[5342]: Failed password for invalid user temp from 103.108.244.4 port 50890 ssh2 Sep 25 04:21:10 aat-srv002 sshd[5487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.244.4 Sep 25 04:21:12 aat-srv002 sshd[5487]: Failed password for invalid user radmin from 103.108.244.4 port 35294 ssh2 ...	2019-09-25 17:36:01
62.94.244.235	attackspam	Sep 25 07:05:03 site2 sshd\[50474\]: Invalid user chromeuser from 62.94.244.235Sep 25 07:05:05 site2 sshd\[50474\]: Failed password for invalid user chromeuser from 62.94.244.235 port 49952 ssh2Sep 25 07:09:51 site2 sshd\[51355\]: Invalid user dead from 62.94.244.235Sep 25 07:09:53 site2 sshd\[51355\]: Failed password for invalid user dead from 62.94.244.235 port 38878 ssh2Sep 25 07:14:50 site2 sshd\[51566\]: Invalid user ashish from 62.94.244.235 ...	2019-09-25 17:01:58
46.229.168.131	attackspambots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2019-09-25 17:31:22
149.202.52.221	attackbots	Automatic report - Banned IP Access	2019-09-25 17:17:35
113.215.58.114	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.215.58.114/ CN - 1H : (1998) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN24139 IP : 113.215.58.114 CIDR : 113.215.32.0/19 PREFIX COUNT : 57 UNIQUE IP COUNT : 524288 WYKRYTE ATAKI Z ASN24139 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-25 17:21:26
222.186.175.183	attackbots	SSH Brute Force, server-1 sshd[19548]: Failed password for root from 222.186.175.183 port 24664 ssh2	2019-09-25 17:39:46
157.230.109.166	attackspambots	Sep 24 22:58:53 auw2 sshd\[31197\]: Invalid user oracle from 157.230.109.166 Sep 24 22:58:53 auw2 sshd\[31197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 Sep 24 22:58:56 auw2 sshd\[31197\]: Failed password for invalid user oracle from 157.230.109.166 port 47418 ssh2 Sep 24 23:02:23 auw2 sshd\[31598\]: Invalid user aelred from 157.230.109.166 Sep 24 23:02:23 auw2 sshd\[31598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166	2019-09-25 17:15:44
117.50.12.10	attackbots	Sep 25 14:21:54 gw1 sshd[14938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.12.10 Sep 25 14:21:56 gw1 sshd[14938]: Failed password for invalid user nancy from 117.50.12.10 port 40452 ssh2 ...	2019-09-25 17:31:10
83.161.67.152	attackbotsspam	[WedSep2505:49:54.1560962019][:error][pid4375:tid46955285743360][client83.161.67.152:43000][client83.161.67.152]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"MJ12bot"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"373"][id"333515"][rev"4"][msg"Atomicorp.comWAFRules:MJ12Distributedbotdetected\(Disablethisruleifyouwanttoallowthisbot\)"][severity"WARNING"][tag"no_ar"][hostname"concettoformale.com"][uri"/robots.txt"][unique_id"XYrj4iFTt8mc9deKcLifLAAAAI8"][WedSep2505:49:56.8006792019][:error][pid26556:tid46955289945856][client83.161.67.152:53580][client83.161.67.152]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"MJ12bot"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"373"][id"333515"][rev"4"][msg"Atomicorp.comWAFRules:MJ12Distributedbotdetected\(Disablethisruleifyouwanttoallowthisbot\)"][severity"WARNING"][tag"no_ar"][hostname"concettofor	2019-09-25 17:06:18
183.90.240.80	attack	Scanning and Vuln Attempts	2019-09-25 17:45:13
81.22.45.65	attack	Port scan on 3 port(s): 39180 39215 39919	2019-09-25 17:04:04
175.197.74.237	attackbotsspam	Sep 25 11:20:49 tux-35-217 sshd\[21236\]: Invalid user test2 from 175.197.74.237 port 16787 Sep 25 11:20:49 tux-35-217 sshd\[21236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.74.237 Sep 25 11:20:51 tux-35-217 sshd\[21236\]: Failed password for invalid user test2 from 175.197.74.237 port 16787 ssh2 Sep 25 11:25:23 tux-35-217 sshd\[21242\]: Invalid user csgoo from 175.197.74.237 port 52456 Sep 25 11:25:23 tux-35-217 sshd\[21242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.74.237 ...	2019-09-25 17:29:11
157.55.39.157	attackbotsspam	Automatic report - Banned IP Access	2019-09-25 17:23:40
159.203.201.120	attack	port scan and connect, tcp 8080 (http-proxy)	2019-09-25 17:43:19
77.247.109.28	attackbotsspam	\[2019-09-25 04:59:43\] NOTICE\[1970\] chan_sip.c: Registration from '"699" \' failed for '77.247.109.28:5073' - Wrong password \[2019-09-25 04:59:43\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T04:59:43.710-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="699",SessionID="0x7f9b34044128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.28/5073",Challenge="20d7d370",ReceivedChallenge="20d7d370",ReceivedHash="888f44d93a3bbd6c0fb945ca4315e1c2" \[2019-09-25 04:59:44\] SECURITY\[1978\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-25T04:59:44.366-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441519470422",SessionID="0x7f9b342eee58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.28/5073",ACLName="no_extension_match" \[2019-09-25 04:59:44\] SECURITY\[1978\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-25T04:	2019-09-25 17:05:32

最近上报的IP列表

139.81.142.88	139.81.34.179	139.81.34.118	139.81.35.84
139.81.35.81	118.254.209.100	139.81.34.29	139.81.37.85
139.81.35.98	139.81.37.86	139.81.36.241	139.81.38.42
139.81.38.75	139.81.6.49	139.81.39.167	139.81.39.100
139.81.6.90	139.81.54.80	118.254.209.102	139.81.64.180