139.9.13.143 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Huawei Cloud Service data center

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.9.131.58	attackspam	Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Failed password for r.r from 139.9.131.58 port 47748 ssh2 Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Received disconnect from 139.9.131.58: 11: Bye Bye [preauth] Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:48:11 nxxxxxxx0 sshd[20638]: Failed password for r.r from 139.9.131.58 port 33564 ssh2 Sep 22 18:48:11 nxxxxxxx0 sshd[20638........ -------------------------------	2020-09-23 22:11:01
139.9.131.58	attackbotsspam	Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Failed password for r.r from 139.9.131.58 port 47748 ssh2 Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Received disconnect from 139.9.131.58: 11: Bye Bye [preauth] Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:48:11 nxxxxxxx0 sshd[20638]: Failed password for r.r from 139.9.131.58 port 33564 ssh2 Sep 22 18:48:11 nxxxxxxx0 sshd[20638........ -------------------------------	2020-09-23 14:29:53
139.9.131.58	attack	Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Failed password for r.r from 139.9.131.58 port 47748 ssh2 Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Received disconnect from 139.9.131.58: 11: Bye Bye [preauth] Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:48:11 nxxxxxxx0 sshd[20638]: Failed password for r.r from 139.9.131.58 port 33564 ssh2 Sep 22 18:48:11 nxxxxxxx0 sshd[20638........ -------------------------------	2020-09-23 06:19:56
139.9.138.93	attack	Port scan on 2 port(s): 2375 2376	2020-02-20 18:16:05
139.9.137.99	attackbots	" "	2019-11-26 13:02:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.13.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56305
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.9.13.143.			IN	A

;; AUTHORITY SECTION:
.			2474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071800 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 18 23:45:10 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

143.13.9.139.in-addr.arpa domain name pointer ecs-139-9-13-143.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
143.13.9.139.in-addr.arpa	name = ecs-139-9-13-143.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
149.56.129.68	attack	$f2bV_matches	2020-07-18 02:42:25
142.44.252.26	attackspam	(mod_security) mod_security (id:211190) triggered by 142.44.252.26 (CA/Canada/ip26.ip-142-44-252.net): 5 in the last 3600 secs	2020-07-18 02:12:44
89.248.168.107	attack	firewall-block, port(s): 8071/tcp, 8201/tcp, 8229/tcp, 8240/tcp, 8257/tcp, 8262/tcp, 8285/tcp, 8427/tcp, 8454/tcp, 8510/tcp, 8519/tcp, 8540/tcp, 8550/tcp, 8610/tcp, 8615/tcp, 8630/tcp, 8642/tcp, 8646/tcp, 8682/tcp, 8692/tcp, 8728/tcp, 8730/tcp, 8748/tcp, 8782/tcp, 8789/tcp, 8792/tcp, 8812/tcp, 8816/tcp, 8835/tcp, 8851/tcp, 8894/tcp, 8900/tcp, 8910/tcp, 8916/tcp, 8919/tcp, 8922/tcp, 8957/tcp, 8979/tcp, 8988/tcp, 8996/tcp, 9000/tcp	2020-07-18 02:09:15
64.225.70.13	attackspam	Jul 17 13:59:19 NPSTNNYC01T sshd[20908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.70.13 Jul 17 13:59:21 NPSTNNYC01T sshd[20908]: Failed password for invalid user est from 64.225.70.13 port 52096 ssh2 Jul 17 14:08:29 NPSTNNYC01T sshd[21559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.70.13 ...	2020-07-18 02:14:21
180.76.163.33	attackbotsspam	fail2ban	2020-07-18 02:24:42
51.91.212.81	attackbotsspam	07/17/2020-14:19:10.397402 51.91.212.81 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2020-07-18 02:29:38
106.12.69.68	attackbotsspam	Jul 17 19:06:23 debian-2gb-nbg1-2 kernel: \[17264137.483763\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.12.69.68 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=57119 PROTO=TCP SPT=52524 DPT=29286 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-18 02:03:16
43.226.150.20	attackbotsspam	Invalid user michael from 43.226.150.20 port 57626	2020-07-18 02:38:33
151.69.206.10	attack	Jul 17 20:41:39 rancher-0 sshd[416083]: Invalid user git from 151.69.206.10 port 49430 ...	2020-07-18 02:42:09
192.241.235.220	attackbotsspam	UDP 192.241.235.220:40569 -> port 161, len 71	2020-07-18 02:05:43
36.111.184.80	attackspam	Jul 17 15:21:38 rancher-0 sshd[407936]: Invalid user odl from 36.111.184.80 port 49732 ...	2020-07-18 02:29:52
185.220.101.163	attackspam	CMS (WordPress or Joomla) login attempt.	2020-07-18 02:06:34
49.233.140.233	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-18 02:39:19
13.64.65.0	attackspambots	Jul 16 22:42:23 olgosrv01 sshd[7672]: Invalid user vtl from 13.64.65.0 Jul 16 22:42:23 olgosrv01 sshd[7672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.65.0 Jul 16 22:42:25 olgosrv01 sshd[7672]: Failed password for invalid user vtl from 13.64.65.0 port 38818 ssh2 Jul 16 22:42:26 olgosrv01 sshd[7672]: Received disconnect from 13.64.65.0: 11: Bye Bye [preauth] Jul 16 22:50:19 olgosrv01 sshd[8160]: Invalid user ma from 13.64.65.0 Jul 16 22:50:19 olgosrv01 sshd[8160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.65.0 Jul 16 22:50:21 olgosrv01 sshd[8160]: Failed password for invalid user ma from 13.64.65.0 port 44618 ssh2 Jul 16 22:50:21 olgosrv01 sshd[8160]: Received disconnect from 13.64.65.0: 11: Bye Bye [preauth] Jul 16 22:55:15 olgosrv01 sshd[8464]: Invalid user testappl from 13.64.65.0 Jul 16 22:55:15 olgosrv01 sshd[8464]: pam_unix(sshd:auth): authentication failure; l........ -------------------------------	2020-07-18 02:19:04
178.62.60.233	attackbotsspam	Jul 17 20:14:04 hidden sshd[44730]: Invalid user wifi from 178.62.60.233 port 48984 Jul 17 20:14:04 hidden sshd[44730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 Jul 17 20:14:04 hidden sshd[44730]: Invalid user wifi from 178.62.60.233 port 48984 Jul 17 20:14:04 hidden sshd[44730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 Jul 17 20:14:04 hidden sshd[44730]: Invalid user wifi from 178.62.60.233 port 48984 Jul 17 20:14:04 hidden sshd[44730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 Jul 17 20:14:07 hidden sshd[44730]: Failed password for invalid user wifi from 178.62.60.233 port 48984 ssh2	2020-07-18 02:32:05

最近上报的IP列表

57.5.238.163	82.80.61.194	181.245.121.76	222.72.147.10
139.94.27.190	2600:1700:1730:d910:cf5:25c5:525e:acc0	50.243.132.133	2a02:8108:8240:2378:cbf:8284:4596:d31f
175.167.230.11	91.98.157.40	95.103.86.190	24.121.113.74
116.52.177.115	180.27.220.186	14.234.176.133	54.38.169.85
212.139.225.24	191.195.136.78	122.26.81.184	80.240.60.103