139.9.231.117 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Huawei Public Cloud Service

主机名(hostname): unknown

机构(organization): Cloud Computing Corporation

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 139.9.231.117 to port 348	2019-12-31 22:43:53
attackspam	nmap	2019-11-13 01:31:46
attackbotsspam	Brute forcing RDP port 3389	2019-08-16 04:32:03

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.231.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40407
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.9.231.117.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 04:31:57 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

117.231.9.139.in-addr.arpa domain name pointer ecs-139-9-231-117.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
117.231.9.139.in-addr.arpa	name = ecs-139-9-231-117.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.111.194.171	attackbotsspam	SG - - [10/Oct/2020:20:51:58 +0300] POST /xmlrpc.php HTTP/1.1 404 9434 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-10-11 15:16:48
200.40.42.54	attackbotsspam	(sshd) Failed SSH login from 200.40.42.54 (UY/Uruguay/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 02:06:57 server2 sshd[22330]: Invalid user tomcat7 from 200.40.42.54 Oct 11 02:06:59 server2 sshd[22330]: Failed password for invalid user tomcat7 from 200.40.42.54 port 32800 ssh2 Oct 11 02:33:25 server2 sshd[6372]: Invalid user testwww from 200.40.42.54 Oct 11 02:33:27 server2 sshd[6372]: Failed password for invalid user testwww from 200.40.42.54 port 59898 ssh2 Oct 11 02:38:15 server2 sshd[8870]: Failed password for root from 200.40.42.54 port 37234 ssh2	2020-10-11 15:27:06
37.59.58.8	attackspam	2020-10-11T06:49:51.057498abusebot-3.cloudsearch.cf sshd[16198]: Invalid user home from 37.59.58.8 port 40776 2020-10-11T06:49:51.063610abusebot-3.cloudsearch.cf sshd[16198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns378511.ip-37-59-58.eu 2020-10-11T06:49:51.057498abusebot-3.cloudsearch.cf sshd[16198]: Invalid user home from 37.59.58.8 port 40776 2020-10-11T06:49:53.074874abusebot-3.cloudsearch.cf sshd[16198]: Failed password for invalid user home from 37.59.58.8 port 40776 ssh2 2020-10-11T06:55:37.261242abusebot-3.cloudsearch.cf sshd[16260]: Invalid user zope from 37.59.58.8 port 46098 2020-10-11T06:55:37.266981abusebot-3.cloudsearch.cf sshd[16260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns378511.ip-37-59-58.eu 2020-10-11T06:55:37.261242abusebot-3.cloudsearch.cf sshd[16260]: Invalid user zope from 37.59.58.8 port 46098 2020-10-11T06:55:39.444158abusebot-3.cloudsearch.cf sshd[16260]: Failed ...	2020-10-11 15:05:44
186.242.208.120	attack	Automatic report - Port Scan Attack	2020-10-11 14:55:01
220.120.106.254	attackbots	Oct 11 12:03:36 mx sshd[1347880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 Oct 11 12:03:36 mx sshd[1347880]: Invalid user game from 220.120.106.254 port 49530 Oct 11 12:03:38 mx sshd[1347880]: Failed password for invalid user game from 220.120.106.254 port 49530 ssh2 Oct 11 12:08:00 mx sshd[1347991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 user=root Oct 11 12:08:02 mx sshd[1347991]: Failed password for root from 220.120.106.254 port 39072 ssh2 ...	2020-10-11 14:53:48
142.93.211.36	attack	Fail2Ban	2020-10-11 15:21:45
163.172.154.178	attackbots	2020-10-11T14:07:03.197068hostname sshd[23513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.154.178 user=root 2020-10-11T14:07:05.215843hostname sshd[23513]: Failed password for root from 163.172.154.178 port 47488 ssh2 ...	2020-10-11 15:17:27
61.216.161.223	attack	Unauthorised access (Oct 10) SRC=61.216.161.223 LEN=40 TTL=45 ID=55733 TCP DPT=23 WINDOW=50122 SYN	2020-10-11 15:30:40
116.196.120.254	attackbots	Oct 11 08:04:55 inter-technics sshd[4340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.120.254 user=root Oct 11 08:04:58 inter-technics sshd[4340]: Failed password for root from 116.196.120.254 port 40636 ssh2 Oct 11 08:14:49 inter-technics sshd[5105]: Invalid user n3os from 116.196.120.254 port 46736 Oct 11 08:14:49 inter-technics sshd[5105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.120.254 Oct 11 08:14:49 inter-technics sshd[5105]: Invalid user n3os from 116.196.120.254 port 46736 Oct 11 08:14:51 inter-technics sshd[5105]: Failed password for invalid user n3os from 116.196.120.254 port 46736 ssh2 ...	2020-10-11 15:24:51
222.186.42.213	attackbots	$f2bV_matches	2020-10-11 15:15:21
67.216.193.100	attackspam	2020-10-10T23:06:27.299231linuxbox-skyline sshd[24654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.216.193.100 user=root 2020-10-10T23:06:29.273751linuxbox-skyline sshd[24654]: Failed password for root from 67.216.193.100 port 55272 ssh2 ...	2020-10-11 15:06:34
150.109.57.43	attack	Oct 11 01:12:05 ws12vmsma01 sshd[24991]: Failed password for root from 150.109.57.43 port 34722 ssh2 Oct 11 01:13:34 ws12vmsma01 sshd[25198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.57.43 user=root Oct 11 01:13:36 ws12vmsma01 sshd[25198]: Failed password for root from 150.109.57.43 port 59198 ssh2 ...	2020-10-11 15:02:16
51.255.173.222	attack	Brute-force attempt banned	2020-10-11 15:31:49
222.185.235.186	attackbotsspam	Oct 3 06:28:39 roki-contabo sshd\[31517\]: Invalid user javier from 222.185.235.186 Oct 3 06:28:39 roki-contabo sshd\[31517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.185.235.186 Oct 3 06:28:41 roki-contabo sshd\[31517\]: Failed password for invalid user javier from 222.185.235.186 port 58094 ssh2 Oct 3 07:00:46 roki-contabo sshd\[32162\]: Invalid user sysadmin from 222.185.235.186 Oct 3 07:00:46 roki-contabo sshd\[32162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.185.235.186 ...	2020-10-11 15:23:09
123.23.183.76	attackbots	Icarus honeypot on github	2020-10-11 15:11:12

最近上报的IP列表

183.15.90.48	107.134.50.182	83.141.180.55	149.199.89.90
135.115.197.30	63.243.148.218	106.48.215.230	139.9.238.94
107.114.229.148	55.138.236.93	178.30.212.246	145.147.142.185
96.182.119.121	73.11.105.91	204.95.190.82	134.215.135.60
128.82.254.19	202.170.119.6	166.188.91.14	39.117.141.205