139.9.138.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Huawei Public Cloud Service

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan on 2 port(s): 2375 2376	2020-02-20 18:16:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.138.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37237
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.9.138.93.			IN	A

;; AUTHORITY SECTION:
.			521	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022001 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 18:16:01 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

93.138.9.139.in-addr.arpa domain name pointer ecs-139-9-138-93.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.138.9.139.in-addr.arpa	name = ecs-139-9-138-93.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
1.4.182.65	attack	Unauthorized connection attempt from IP address 1.4.182.65 on Port 445(SMB)	2020-03-05 21:11:51
148.70.136.94	attack	Mar 5 18:25:15 areeb-Workstation sshd[14615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.136.94 Mar 5 18:25:16 areeb-Workstation sshd[14615]: Failed password for invalid user pi from 148.70.136.94 port 58053 ssh2 ...	2020-03-05 20:56:01
206.189.202.165	attackbotsspam	Mar 5 07:48:25 MainVPS sshd[29656]: Invalid user sinusbot from 206.189.202.165 port 51604 Mar 5 07:48:25 MainVPS sshd[29656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.202.165 Mar 5 07:48:25 MainVPS sshd[29656]: Invalid user sinusbot from 206.189.202.165 port 51604 Mar 5 07:48:27 MainVPS sshd[29656]: Failed password for invalid user sinusbot from 206.189.202.165 port 51604 ssh2 Mar 5 07:51:38 MainVPS sshd[3600]: Invalid user dev from 206.189.202.165 port 53030 ...	2020-03-05 21:15:11
92.53.65.40	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 439 proto: TCP cat: Misc Attack	2020-03-05 21:14:47
31.5.167.12	attack	9530/tcp 9530/tcp [2020-02-25/03-05]2pkt	2020-03-05 21:02:40
103.111.83.174	attackbotsspam	60001/tcp 23/tcp [2020-02-21/03-05]2pkt	2020-03-05 21:28:20
183.80.243.62	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-02-21/03-05]5pkt,1pt.(tcp)	2020-03-05 20:52:44
113.172.112.140	attackbots	suspicious action Thu, 05 Mar 2020 10:35:42 -0300	2020-03-05 21:38:39
63.33.165.173	attack	Mar 4 19:03:18 hpm sshd\[13763\]: Invalid user report from 63.33.165.173 Mar 4 19:03:18 hpm sshd\[13763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-63-33-165-173.eu-west-1.compute.amazonaws.com Mar 4 19:03:20 hpm sshd\[13763\]: Failed password for invalid user report from 63.33.165.173 port 47950 ssh2 Mar 4 19:11:44 hpm sshd\[14388\]: Invalid user ec2-user from 63.33.165.173 Mar 4 19:11:44 hpm sshd\[14388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-63-33-165-173.eu-west-1.compute.amazonaws.com	2020-03-05 21:29:59
46.101.19.133	attack	Mar 5 02:26:03 tdfoods sshd\[28093\]: Invalid user telnet from 46.101.19.133 Mar 5 02:26:03 tdfoods sshd\[28093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.19.133 Mar 5 02:26:04 tdfoods sshd\[28093\]: Failed password for invalid user telnet from 46.101.19.133 port 52360 ssh2 Mar 5 02:35:01 tdfoods sshd\[28946\]: Invalid user laraht from 46.101.19.133 Mar 5 02:35:01 tdfoods sshd\[28946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.19.133	2020-03-05 20:59:35
220.133.219.103	attackbots	Honeypot attack, port: 81, PTR: 220-133-219-103.HINET-IP.hinet.net.	2020-03-05 21:09:27
104.190.223.19	attack	" "	2020-03-05 21:16:37
165.22.144.147	attackspambots	2020-03-05T12:11:11.910413vps773228.ovh.net sshd[16104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.144.147 2020-03-05T12:11:11.891943vps773228.ovh.net sshd[16104]: Invalid user mailtest from 165.22.144.147 port 52734 2020-03-05T12:11:14.500605vps773228.ovh.net sshd[16104]: Failed password for invalid user mailtest from 165.22.144.147 port 52734 ssh2 2020-03-05T13:12:23.497065vps773228.ovh.net sshd[17265]: Invalid user web from 165.22.144.147 port 36626 2020-03-05T13:12:23.508572vps773228.ovh.net sshd[17265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.144.147 2020-03-05T13:12:23.497065vps773228.ovh.net sshd[17265]: Invalid user web from 165.22.144.147 port 36626 2020-03-05T13:12:25.199960vps773228.ovh.net sshd[17265]: Failed password for invalid user web from 165.22.144.147 port 36626 ssh2 2020-03-05T13:21:15.870890vps773228.ovh.net sshd[17406]: Invalid user dongtingting from 165.22. ...	2020-03-05 21:03:27
91.220.81.105	attack	Взломали аккаунт Steam сайт cwskins.fun	2020-03-05 21:33:58
137.74.167.228	attackbots	Mar 3 03:06:25 host sshd[25015]: Invalid user first from 137.74.167.228 port 40066 Mar 3 03:06:25 host sshd[25015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.167.228 Mar 3 03:06:27 host sshd[25015]: Failed password for invalid user first from 137.74.167.228 port 40066 ssh2 Mar 3 03:06:27 host sshd[25015]: Received disconnect from 137.74.167.228 port 40066:11: Bye Bye [preauth] Mar 3 03:06:27 host sshd[25015]: Disconnected from invalid user first 137.74.167.228 port 40066 [preauth] Mar 3 03:23:47 host sshd[25315]: User r.r from 137.74.167.228 not allowed because none of user's groups are listed in AllowGroups Mar 3 03:23:47 host sshd[25315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.167.228 user=r.r Mar 3 03:23:48 host sshd[25315]: Failed password for invalid user r.r from 137.74.167.228 port 47548 ssh2 Mar 3 03:23:48 host sshd[25315]: Received disconnect f........ -------------------------------	2020-03-05 20:53:38

最近上报的IP列表

177.11.92.222	207.31.47.254	197.65.101.37	132.26.72.165
40.238.251.157	40.89.130.21	186.251.177.123	107.174.243.86
113.161.42.99	144.145.134.55	112.185.90.78	188.148.149.113
212.200.31.30	3.82.218.170	203.195.252.223	118.71.97.96
222.90.72.229	101.109.121.160	95.170.140.34	123.27.89.51