139.99.148.152

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.148.4	attackbots	139.99.148.4 - - [07/Oct/2020:15:35:38 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [07/Oct/2020:16:01:07 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-08 04:29:11
139.99.148.4	attack	Attempted WordPress login: "GET /wp-login.php"	2020-10-07 20:48:50
139.99.148.4	attackspam	139.99.148.4 - - [07/Oct/2020:02:44:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [07/Oct/2020:02:44:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2328 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [07/Oct/2020:02:44:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2376 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 12:33:19
139.99.148.4	attackspambots	Automatic report - XMLRPC Attack	2020-09-21 01:35:44
139.99.148.4	attack	139.99.148.4 - - [20/Sep/2020:09:02:17 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [20/Sep/2020:09:02:19 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [20/Sep/2020:09:02:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-20 17:34:25
139.99.148.4	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-12 23:56:56
139.99.148.4	attackspam	139.99.148.4 - - [12/Sep/2020:07:11:02 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [12/Sep/2020:07:11:04 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [12/Sep/2020:07:11:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-12 15:59:01
139.99.148.4	attackspam	139.99.148.4 - - [11/Sep/2020:17:53:47 +0100] "POST /wp-login.php HTTP/1.1" 200 2221 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [11/Sep/2020:17:53:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2147 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [11/Sep/2020:17:53:50 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 07:46:05
139.99.148.4	attackspambots	Automatic report - XMLRPC Attack	2020-09-09 02:41:56
139.99.148.4	attack	139.99.148.4 has been banned for [WebApp Attack] ...	2020-09-08 18:12:42
139.99.148.4	attack	139.99.148.4 - - [14/Aug/2020:12:21:41 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [14/Aug/2020:12:21:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [14/Aug/2020:12:21:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-14 20:21:14
139.99.148.4	attackspam	139.99.148.4 - - [07/Aug/2020:06:52:42 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [07/Aug/2020:07:05:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 10519 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-07 13:49:44
139.99.148.4	attackbots	139.99.148.4 - - [31/Jul/2020:15:11:09 +0100] "POST /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [31/Jul/2020:15:11:16 +0100] "POST /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [31/Jul/2020:15:11:22 +0100] "POST /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-01 02:05:11
139.99.148.4	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-07-30 07:41:44
139.99.148.4	attackbots	139.99.148.4 - - [27/Jul/2020:15:16:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1968 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [27/Jul/2020:15:16:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [27/Jul/2020:15:16:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 23:21:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.148.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.99.148.152.			IN	A

;; AUTHORITY SECTION:
.			350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:41:55 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

152.148.99.139.in-addr.arpa domain name pointer ns547198.ip-139-99-148.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
152.148.99.139.in-addr.arpa	name = ns547198.ip-139-99-148.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.239.120	attackbotsspam	Oct 11 22:23:31 ns381471 sshd[5093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.239.120 Oct 11 22:23:33 ns381471 sshd[5093]: Failed password for invalid user takuya from 106.13.239.120 port 58732 ssh2	2020-10-12 04:52:28
105.103.55.196	attackspam	Port Scan: TCP/443	2020-10-12 05:06:47
177.124.1.199	attackbots	Attempts against non-existent wp-login	2020-10-12 04:44:58
38.88.102.147	attack	Port Scan: TCP/443	2020-10-12 04:51:09
104.248.147.78	attack	Oct 11 20:48:43 scw-tender-jepsen sshd[13544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.147.78 Oct 11 20:48:45 scw-tender-jepsen sshd[13544]: Failed password for invalid user reno from 104.248.147.78 port 49718 ssh2	2020-10-12 04:49:48
49.88.112.77	attack	October 11 2020, 02:23:52 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-10-12 04:42:59
158.140.180.71	attackspam	158.140.180.71 - - [10/Oct/2020:22:35:08 +0000] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 158.140.180.71 - - [10/Oct/2020:22:39:12 +0000] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 158.140.180.71 - - [10/Oct/2020:22:40:15 +0000] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 158.140.180.71 - - [10/Oct/2020:22:41:15 +0000] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 158.140.180.71 - - [10/Oct/2020:22:42:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-"	2020-10-12 04:51:29
45.55.58.74	attack	srv02 Mass scanning activity detected Target: 8088(omniorb) ..	2020-10-12 04:38:17
45.248.69.106	attackspambots	web-1 [ssh] SSH Attack	2020-10-12 04:37:36
37.46.150.205	attackbots	Invalid user ubnt from 37.46.150.205 port 57508	2020-10-12 05:10:04
62.210.151.21	attackspambots	[2020-10-10 18:10:43] NOTICE[1182][C-00002a57] chan_sip.c: Call from '' (62.210.151.21:58557) to extension '9008441665529305' rejected because extension not found in context 'public'. [2020-10-10 18:10:43] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-10T18:10:43.226-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9008441665529305",SessionID="0x7f22f81cd5d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/58557",ACLName="no_extension_match" [2020-10-10 18:10:49] NOTICE[1182][C-00002a58] chan_sip.c: Call from '' (62.210.151.21:53109) to extension '9994441665529305' rejected because extension not found in context 'public'. [2020-10-10 18:10:49] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-10T18:10:49.251-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9994441665529305",SessionID="0x7f22f840f098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/ ...	2020-10-12 04:54:19
119.45.12.105	attackbotsspam	Invalid user zimbra from 119.45.12.105 port 44170	2020-10-12 05:05:32
174.219.150.202	attack	Brute forcing email accounts	2020-10-12 04:55:36
119.45.213.69	attackbotsspam	2020-10-11T14:54:24.701839abusebot-3.cloudsearch.cf sshd[22363]: Invalid user whipple from 119.45.213.69 port 44104 2020-10-11T14:54:24.709874abusebot-3.cloudsearch.cf sshd[22363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.213.69 2020-10-11T14:54:24.701839abusebot-3.cloudsearch.cf sshd[22363]: Invalid user whipple from 119.45.213.69 port 44104 2020-10-11T14:54:26.604339abusebot-3.cloudsearch.cf sshd[22363]: Failed password for invalid user whipple from 119.45.213.69 port 44104 ssh2 2020-10-11T14:58:19.398323abusebot-3.cloudsearch.cf sshd[22369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.213.69 user=root 2020-10-11T14:58:21.216977abusebot-3.cloudsearch.cf sshd[22369]: Failed password for root from 119.45.213.69 port 52454 ssh2 2020-10-11T15:01:56.354069abusebot-3.cloudsearch.cf sshd[22387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119. ...	2020-10-12 04:56:10
111.88.42.89	attackspambots	Brute forcing email accounts	2020-10-12 04:53:32

最近上报的IP列表

139.99.138.191	139.99.138.248	139.99.136.115	139.99.136.17
139.99.144.232	139.99.143.100	139.99.141.196	118.254.209.139
139.99.148.148	139.99.149.124	139.99.149.173	139.99.149.48
139.99.152.32	139.99.153.48	139.99.155.3	139.99.155.12
118.254.209.141	139.99.149.8	237.52.117.217	139.99.155.60

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表