159.89.139.29 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
159.89.139.110	attackspam	159.89.139.110 - - [05/Sep/2020:15:10:24 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [05/Sep/2020:15:10:25 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [05/Sep/2020:15:10:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-05 22:31:57
159.89.139.110	attackbotsspam	159.89.139.110 - - [04/Sep/2020:17:50:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [04/Sep/2020:17:51:00 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [04/Sep/2020:17:51:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-05 14:09:05
159.89.139.110	attackbots	159.89.139.110 - - [04/Sep/2020:17:50:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [04/Sep/2020:17:51:00 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [04/Sep/2020:17:51:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-05 06:52:10
159.89.139.110	attackbotsspam	159.89.139.110 - - [31/Aug/2020:09:41:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8537 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [31/Aug/2020:09:41:44 +0200] "POST /wp-login.php HTTP/1.1" 200 8788 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [31/Aug/2020:09:41:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-31 18:11:40
159.89.139.110	attack	159.89.139.110 - - [25/Jul/2020:05:00:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [25/Jul/2020:05:00:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1994 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [25/Jul/2020:05:00:10 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-25 12:26:34
159.89.139.110	attackspam	159.89.139.110 - - [24/Jul/2020:07:36:57 +0100] "POST /wp-login.php HTTP/1.1" 200 4437 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [24/Jul/2020:07:36:58 +0100] "POST /xmlrpc.php HTTP/1.1" 200 271 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.139.110 - - [24/Jul/2020:07:53:08 +0100] "POST /wp-login.php HTTP/1.1" 200 4475 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-24 19:16:29
159.89.139.149	attackspam	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-06-14 22:35:15
159.89.139.149	attackspam	C1,WP GET /conni-club/home/wp-includes/wlwmanifest.xml GET /kramkiste/home/wp-includes/wlwmanifest.xml	2020-06-08 22:49:30
159.89.139.220	attack	firewall-block, port(s): 22703/tcp	2020-04-19 05:19:25
159.89.139.228	attackspambots	Mar 10 05:56:07 * sshd[32388]: Failed password for root from 159.89.139.228 port 38032 ssh2	2020-03-10 13:50:11
159.89.139.220	attackbotsspam	Jan 23 13:55:23 odroid64 sshd\[4802\]: Invalid user tester from 159.89.139.220 Jan 23 13:55:23 odroid64 sshd\[4802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.220 ...	2020-03-06 05:54:58
159.89.139.228	attack	2020-03-01T14:22:42.769477shield sshd\[25151\]: Invalid user test from 159.89.139.228 port 58302 2020-03-01T14:22:42.774383shield sshd\[25151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228 2020-03-01T14:22:45.350259shield sshd\[25151\]: Failed password for invalid user test from 159.89.139.228 port 58302 ssh2 2020-03-01T14:28:00.054019shield sshd\[26046\]: Invalid user sinus from 159.89.139.228 port 54494 2020-03-01T14:28:00.057971shield sshd\[26046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228	2020-03-01 22:38:19
159.89.139.228	attackspambots	DATE:2020-02-29 01:06:10, IP:159.89.139.228, PORT:ssh SSH brute force auth (docker-dc)	2020-02-29 08:51:20
159.89.139.228	attack	Feb 20 13:30:37 ws26vmsma01 sshd[8080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228 Feb 20 13:30:39 ws26vmsma01 sshd[8080]: Failed password for invalid user ftp from 159.89.139.228 port 59200 ssh2 ...	2020-02-20 21:33:38
159.89.139.149	attack	Automatic report - XMLRPC Attack	2020-02-19 00:02:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.89.139.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48767
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.89.139.29.			IN	A

;; AUTHORITY SECTION:
.			1	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:42:54 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 29.139.89.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 29.139.89.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.80.67	attack	Jul 2 21:49:03 mail postfix/smtpd\[25585\]: warning: unknown\[141.98.80.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 2 21:49:11 mail postfix/smtpd\[25585\]: warning: unknown\[141.98.80.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 2 22:27:32 mail postfix/smtpd\[26265\]: warning: unknown\[141.98.80.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 2 22:27:43 mail postfix/smtpd\[26265\]: warning: unknown\[141.98.80.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-03 04:57:24
188.191.213.209	attack	WordPress XMLRPC scan :: 188.191.213.209 0.240 BYPASS [02/Jul/2019:23:39:26 1000] [censored_4] "GET /xmlrpc.php HTTP/1.1" 405 53 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1"	2019-07-03 05:29:15
197.246.224.103	attackspambots	37215/tcp [2019-07-02]1pkt	2019-07-03 04:56:56
52.184.98.106	attackbots	52.184.98.106 - - [02/Jul/2019:15:39:05 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.184.98.106 - - [02/Jul/2019:15:39:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.184.98.106 - - [02/Jul/2019:15:39:07 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.184.98.106 - - [02/Jul/2019:15:39:07 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.184.98.106 - - [02/Jul/2019:15:39:08 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.184.98.106 - - [02/Jul/2019:15:39:09 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-03 05:35:08
45.125.65.77	attack	Rude login attack (15 tries in 1d)	2019-07-03 05:36:58
185.176.26.103	attackspambots	firewall-block, port(s): 62389/tcp	2019-07-03 05:06:48
101.21.234.67	attackbots	5500/tcp [2019-07-02]1pkt	2019-07-03 04:54:02
85.234.3.12	attackspam	[portscan] Port scan	2019-07-03 05:27:53
193.201.224.12	attack	Jul 2 22:09:54 srv206 sshd[24821]: Invalid user 0 from 193.201.224.12 Jul 2 22:09:54 srv206 sshd[24821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.201.224.12 Jul 2 22:09:54 srv206 sshd[24821]: Invalid user 0 from 193.201.224.12 Jul 2 22:09:56 srv206 sshd[24821]: Failed password for invalid user 0 from 193.201.224.12 port 39888 ssh2 ...	2019-07-03 05:19:13
187.60.97.209	attackspam	Jul 2 22:02:34 localhost sshd\[31962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.60.97.209 user=root Jul 2 22:02:36 localhost sshd\[31962\]: Failed password for root from 187.60.97.209 port 43794 ssh2 ...	2019-07-03 05:08:03
162.243.144.116	attack	" "	2019-07-03 05:31:22
1.174.76.99	attackspambots	Trying to deliver email spam, but blocked by RBL	2019-07-03 05:35:59
45.122.222.193	attack	Jul 2 15:39:45 albuquerque sshd\[31558\]: Invalid user admin from 45.122.222.193Jul 2 15:39:47 albuquerque sshd\[31558\]: Failed password for invalid user admin from 45.122.222.193 port 37586 ssh2Jul 2 15:39:50 albuquerque sshd\[31558\]: Failed password for invalid user admin from 45.122.222.193 port 37586 ssh2 ...	2019-07-03 05:20:04
42.230.7.138	attackspam	Jul 2 15:39:57 tuxlinux sshd[25648]: Invalid user admin from 42.230.7.138 port 41181 Jul 2 15:39:57 tuxlinux sshd[25648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.230.7.138 Jul 2 15:39:57 tuxlinux sshd[25648]: Invalid user admin from 42.230.7.138 port 41181 Jul 2 15:39:57 tuxlinux sshd[25648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.230.7.138 Jul 2 15:39:57 tuxlinux sshd[25648]: Invalid user admin from 42.230.7.138 port 41181 Jul 2 15:39:57 tuxlinux sshd[25648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.230.7.138 Jul 2 15:39:59 tuxlinux sshd[25648]: Failed password for invalid user admin from 42.230.7.138 port 41181 ssh2 ...	2019-07-03 05:16:55
142.44.164.251	attackbotsspam	fail2ban honeypot	2019-07-03 05:38:26

最近上报的IP列表

159.89.138.204	159.89.133.221	159.89.143.134	159.89.141.152
159.89.144.159	159.89.139.46	159.89.146.131	159.89.144.252
159.89.144.50	159.89.144.213	159.89.148.163	159.89.147.6
159.89.148.105	159.89.144.229	159.89.148.139	159.89.146.217
159.89.144.195	159.89.15.153	159.89.152.193	159.89.151.91

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表