139.9.225.69 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.9.225.150	attack	PHP DIESCAN Information Disclosure Vulnerability	2019-11-17 23:25:29
139.9.225.150	attack	139.9.225.150 - - [16/Nov/2019:09:50:24 -0500] "GET /webdav/ HTTP/1.1" 301 185 "-" "Mozilla/5.0" 139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpmyadmin/scripts/db___.init.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 139.9.225.150 - - [16/Nov/2019:09:50:50 -0500] "GET /pma/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ...	2019-11-17 01:55:30

类型

评论内容

时间

139.9.225.150

attack

PHP DIESCAN Information Disclosure Vulnerability

2019-11-17 23:25:29

139.9.225.150

attack

139.9.225.150 - - [16/Nov/2019:09:50:24 -0500] "GET /webdav/ HTTP/1.1" 301 185 "-" "Mozilla/5.0"
139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0"
139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0"
139.9.225.150 - - [16/Nov/2019:09:50:48 -0500] "GET /phpmyadmin/scripts/db___.init.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0"
139.9.225.150 - - [16/Nov/2019:09:50:50 -0500] "GET /pma/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0"
...

2019-11-17 01:55:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.225.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7844
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.9.225.69.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:41:31 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

69.225.9.139.in-addr.arpa domain name pointer ecs-139-9-225-69.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
69.225.9.139.in-addr.arpa	name = ecs-139-9-225-69.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
181.129.182.43	attackspambots	Unauthorized connection attempt from IP address 181.129.182.43 on Port 445(SMB)	2020-07-04 03:24:32
192.241.216.31	attack	Port scan: Attack repeated for 24 hours	2020-07-04 03:05:32
51.81.137.174	attackspambots	07/03/2020-15:06:58.919374 51.81.137.174 Protocol: 17 ET SCAN Sipvicious Scan	2020-07-04 03:18:34
202.137.155.78	attackbotsspam	Brute force attempt	2020-07-04 02:57:57
31.220.0.39	attack	Automatic report - Banned IP Access	2020-07-04 03:21:02
96.255.208.211	attack	Brute forcing email accounts	2020-07-04 03:00:40
185.133.193.182	attack	Jul 3 20:31:32 lnxweb61 sshd[20248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.133.193.182 Jul 3 20:31:32 lnxweb61 sshd[20248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.133.193.182	2020-07-04 03:02:01
80.82.65.60	attack	[Fri Jul 03 10:41:41 2020] - Syn Flood From IP: 80.82.65.60 Port: 44100	2020-07-04 03:14:13
41.86.163.113	attackspam	Unauthorized connection attempt from IP address 41.86.163.113 on Port 445(SMB)	2020-07-04 03:06:10
51.83.75.97	attack	detected by Fail2Ban	2020-07-04 02:47:11
209.141.47.92	attackbotsspam	Unauthorized connection attempt detected from IP address 209.141.47.92 to port 22	2020-07-04 03:13:40
92.246.243.163	attackspam	Jul 3 08:43:34 web1 sshd\[13293\]: Invalid user admin from 92.246.243.163 Jul 3 08:43:34 web1 sshd\[13293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.243.163 Jul 3 08:43:36 web1 sshd\[13293\]: Failed password for invalid user admin from 92.246.243.163 port 60960 ssh2 Jul 3 08:49:33 web1 sshd\[13805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.243.163 user=root Jul 3 08:49:36 web1 sshd\[13805\]: Failed password for root from 92.246.243.163 port 59468 ssh2	2020-07-04 02:54:05
39.42.90.228	attackspam	[Fri Jul 03 02:05:27 2020] - Syn Flood From IP: 39.42.90.228 Port: 61589	2020-07-04 03:28:50
222.186.30.112	attackbots	Jul 3 21:01:27 v22018053744266470 sshd[18815]: Failed password for root from 222.186.30.112 port 40549 ssh2 Jul 3 21:01:35 v22018053744266470 sshd[18826]: Failed password for root from 222.186.30.112 port 16025 ssh2 ...	2020-07-04 03:06:53
217.23.10.20	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-03T18:02:10Z and 2020-07-03T18:31:44Z	2020-07-04 02:47:40

最近上报的IP列表

139.9.23.90	118.254.209.12	118.254.209.120	118.254.209.123
106.6.164.17	118.254.209.125	174.148.15.201	118.254.209.127
118.254.209.130	118.254.209.134	139.99.135.250	139.99.138.36
139.99.138.191	139.99.148.152	139.99.138.248	139.99.136.115
139.99.136.17	139.99.144.232	139.99.143.100	139.99.141.196