139.9.231.117 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Huawei Public Cloud Service

主机名(hostname): unknown

机构(organization): Cloud Computing Corporation

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 139.9.231.117 to port 348	2019-12-31 22:43:53
attackspam	nmap	2019-11-13 01:31:46
attackbotsspam	Brute forcing RDP port 3389	2019-08-16 04:32:03

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.231.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40407
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.9.231.117.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 04:31:57 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

117.231.9.139.in-addr.arpa domain name pointer ecs-139-9-231-117.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
117.231.9.139.in-addr.arpa	name = ecs-139-9-231-117.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
36.111.191.73	attack	Trying ports that it shouldn't be.	2019-06-24 09:59:29
100.43.91.113	attackbotsspam	port scan and connect, tcp 443 (https)	2019-06-24 09:44:01
27.254.82.249	attack	[munged]::80 27.254.82.249 - - [24/Jun/2019:02:05:37 +0200] "POST /[munged]: HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 27.254.82.249 - - [24/Jun/2019:02:05:39 +0200] "POST /[munged]: HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 27.254.82.249 - - [24/Jun/2019:02:05:39 +0200] "POST /[munged]: HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 27.254.82.249 - - [24/Jun/2019:02:09:57 +0200] "POST /[munged]: HTTP/1.1" 200 1780 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 27.254.82.249 - - [24/Jun/2019:02:09:57 +0200] "POST /[munged]: HTTP/1.1" 200 1780 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 27.254.82.249 - - [24/Jun/2019:02:09:59 +0200] "POST /[munged]: HTTP/1.1" 200 1780 "-" "Mozilla/5.0 (X11; Ubuntu; Li	2019-06-24 10:08:16
191.53.252.112	attackspam	Jun 23 15:57:33 web1 postfix/smtpd[16458]: warning: unknown[191.53.252.112]: SASL PLAIN authentication failed: authentication failure ...	2019-06-24 09:30:46
121.40.108.57	attack	fail2ban honeypot	2019-06-24 09:53:04
39.38.24.86	attackbots	C1,WP GET /comic/wp-login.php	2019-06-24 09:45:08
177.67.165.35	attackspambots	Jun 23 17:01:07 web1 postfix/smtpd[27735]: warning: unknown[177.67.165.35]: SASL PLAIN authentication failed: authentication failure ...	2019-06-24 10:11:43
210.74.148.94	attackspambots	3389BruteforceFW22	2019-06-24 09:47:09
216.218.206.67	attackbots	GET / HTTP/1.1	2019-06-24 09:45:39
221.231.6.116	attackspambots	SSH invalid-user multiple login try	2019-06-24 10:00:21
191.37.32.7	attack	DATE:2019-06-23 21:55:07, IP:191.37.32.7, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-06-24 10:02:52
177.10.194.118	attackspam	failed_logins	2019-06-24 10:10:40
206.81.9.61	attack	missing rdns	2019-06-24 10:03:27
207.188.156.125	attack	NAME : NET-207-188-156-0-22 CIDR : 207.188.156.0/22 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - New Mexico - block certain countries :) IP: 207.188.156.125 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 10:00:03
103.39.134.126	attackspam	Received: from namchimachine.org.uk (namchimachine.org.uk. [103.39.134.126]) by mx.google.com with ESMTP id k4si7545384pgq.293.2019.06.23.10.25.12 for ; Sun, 23 Jun 2019 10:25:12 -0700 (PDT) Received-SPF: neutral (google.com: 103.39.134.126 is neither permitted nor denied by best guess record for domain of waat@iclasse.mydns.jp5) client-ip=103.39.134.126; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=gamma header.b=F87jySDZ; spf=neutral (google.com: 103.39.134.126 is neither permitted nor denied by best guess record for domain of waat@iclasse.mydns.jp5) smtp.mailfrom=waat@iclasse.mydns.jp5; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=se.edu Received: from namchimachine.org.uk (127.0.0.1) by namchimachine.org.uk id 3928052589459 for ; Mon, 1 Oct 2018 09:38:26 -0400 (envelope-from )	2019-06-24 09:36:41

最近上报的IP列表

183.15.90.48	107.134.50.182	83.141.180.55	149.199.89.90
135.115.197.30	63.243.148.218	106.48.215.230	139.9.238.94
107.114.229.148	55.138.236.93	178.30.212.246	145.147.142.185
96.182.119.121	73.11.105.91	204.95.190.82	134.215.135.60
128.82.254.19	202.170.119.6	166.188.91.14	39.117.141.205