177.40.149.139

基本信息:

城市(city): Rio de Janeiro

省份(region): Rio de Janeiro

国家(country): Brazil

运营商(isp): Vivo S.A.

主机名(hostname): unknown

机构(organization): Telefonica Data S.A.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2019-07-25 01:15:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 177.40.149.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51740
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;177.40.149.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 01:15:08 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

139.149.40.177.in-addr.arpa domain name pointer 177.40.149.139.static.host.gvt.net.br.

NSLOOKUP信息:

Server:		183.60.82.98
Address:	183.60.82.98#53

Non-authoritative answer:
139.149.40.177.in-addr.arpa	name = 177.40.149.139.static.host.gvt.net.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
101.96.113.50	attackspambots	Oct 14 18:08:05 hpm sshd\[4186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root Oct 14 18:08:06 hpm sshd\[4186\]: Failed password for root from 101.96.113.50 port 39230 ssh2 Oct 14 18:12:46 hpm sshd\[4690\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50 user=root Oct 14 18:12:47 hpm sshd\[4690\]: Failed password for root from 101.96.113.50 port 49866 ssh2 Oct 14 18:17:26 hpm sshd\[5092\]: Invalid user manager from 101.96.113.50 Oct 14 18:17:26 hpm sshd\[5092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.113.50	2019-10-15 12:26:08
185.176.27.246	attackbots	10/15/2019-00:13:11.553880 185.176.27.246 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-15 12:21:28
222.186.175.215	attackbots	Oct 15 05:58:44 nextcloud sshd\[25419\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Oct 15 05:58:46 nextcloud sshd\[25419\]: Failed password for root from 222.186.175.215 port 53132 ssh2 Oct 15 05:59:04 nextcloud sshd\[25419\]: Failed password for root from 222.186.175.215 port 53132 ssh2 ...	2019-10-15 12:06:22
124.204.36.138	attackbots	Port Scan detected from 124.204.36.138 (CN/China/-). 4 hits in the last 136 seconds	2019-10-15 12:02:13
109.185.181.14	attack	Oct 14 21:51:14 imap-login: Info: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:14 imap-login: Info: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\<71wvMOSU1ABtubUO\>\ Oct 14 21:51:32 imap-login: Info: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:33 imap-login: Info: Disconnected $auth failed, 1 attempts in 14 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:38 imap-login: Info: Disconnected $no auth attempts in 16 secs$: user=\<\>, rip=109.185.181.14, lip=192.168.100.101, session=\<7IAmMuSUtwBtubUO\>\ Oct 14 21:51:47 imap-login: Info: Disconnected \(no aut	2019-10-15 07:49:04
125.162.227.100	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/125.162.227.100/ ID - 1H : (38) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ID NAME ASN : ASN7713 IP : 125.162.227.100 CIDR : 125.162.224.0/22 PREFIX COUNT : 2255 UNIQUE IP COUNT : 2765312 WYKRYTE ATAKI Z ASN7713 : 1H - 1 3H - 1 6H - 4 12H - 8 24H - 9 DateTime : 2019-10-15 05:54:37 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-15 12:14:42
27.116.60.106	attackbotsspam	Scanning and Vuln Attempts	2019-10-15 12:11:11
222.186.175.151	attackbotsspam	Oct 15 06:10:03 ks10 sshd[24318]: Failed password for root from 222.186.175.151 port 24506 ssh2 Oct 15 06:10:07 ks10 sshd[24318]: Failed password for root from 222.186.175.151 port 24506 ssh2 ...	2019-10-15 12:16:48
185.36.81.233	attackbots	Rude login attack (49 tries in 1d)	2019-10-15 07:50:18
31.31.225.65	attackbotsspam	Scanning and Vuln Attempts	2019-10-15 12:03:20
31.13.227.4	attackspambots	[munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:03 +0200] "POST /[munged]: HTTP/1.1" 200 9278 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:07 +0200] "POST /[munged]: HTTP/1.1" 200 4586 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:09 +0200] "POST /[munged]: HTTP/1.1" 200 4586 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:11 +0200] "POST /[munged]: HTTP/1.1" 200 4586 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:13 +0200] "POST /[munged]: HTTP/1.1" 200 4586 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 31.13.227.4 - - [15/Oct/2019:01:45:15 +0200] "POST	2019-10-15 07:54:28
40.73.76.102	attack	Oct 15 05:38:39 mail1 sshd\[21709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.76.102 user=root Oct 15 05:38:41 mail1 sshd\[21709\]: Failed password for root from 40.73.76.102 port 41102 ssh2 Oct 15 05:55:33 mail1 sshd\[29342\]: Invalid user cr from 40.73.76.102 port 57006 Oct 15 05:55:33 mail1 sshd\[29342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.76.102 Oct 15 05:55:35 mail1 sshd\[29342\]: Failed password for invalid user cr from 40.73.76.102 port 57006 ssh2 ...	2019-10-15 12:14:07
76.103.161.19	attackspam	Oct 15 05:50:55 XXX sshd[8953]: Invalid user eka from 76.103.161.19 port 35222	2019-10-15 12:27:44
134.249.133.197	attackbotsspam	$f2bV_matches	2019-10-15 07:46:01
140.207.114.222	attackspambots	Oct 14 18:00:01 web9 sshd\[7886\]: Invalid user vinci from 140.207.114.222 Oct 14 18:00:01 web9 sshd\[7886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.207.114.222 Oct 14 18:00:03 web9 sshd\[7886\]: Failed password for invalid user vinci from 140.207.114.222 port 22085 ssh2 Oct 14 18:04:13 web9 sshd\[8456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.207.114.222 user=root Oct 14 18:04:16 web9 sshd\[8456\]: Failed password for root from 140.207.114.222 port 61664 ssh2	2019-10-15 12:04:40

最近上报的IP列表

193.110.62.242	115.58.54.63	147.208.176.91	14.53.255.170
182.232.166.21	125.150.171.169	2003:f1:bdc:1b39:cc78:fe82:c236:40c6	47.214.1.207
125.133.144.52	70.88.251.235	134.163.34.104	208.238.123.202
189.79.248.238	207.177.70.42	202.79.18.243	2003:d7:4f40:39e7:c4ff:2d8c:2894:b38b
110.49.228.138	117.125.221.151	57.119.39.207	2a01:c23:b837:ba00:15c7:344:dbea:42ce