195.91.139.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): Cronyx Plus Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Oct 21) SRC=195.91.139.243 LEN=52 TTL=120 ID=1466 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-21 17:38:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.91.139.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61747
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.91.139.243.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 02 12:13:12 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 243.139.91.195.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 243.139.91.195.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
97.87.51.228	attackbots	WEB_SERVER 403 Forbidden	2020-05-07 23:45:32
132.145.110.173	attackspambots	May 7 17:14:49 vps639187 sshd\[24441\]: Invalid user testuser from 132.145.110.173 port 18441 May 7 17:14:49 vps639187 sshd\[24441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.110.173 May 7 17:14:51 vps639187 sshd\[24441\]: Failed password for invalid user testuser from 132.145.110.173 port 18441 ssh2 ...	2020-05-07 23:43:02
185.143.74.73	attack	May 7 17:50:55 relay postfix/smtpd\[21418\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 17:51:22 relay postfix/smtpd\[15609\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 17:52:02 relay postfix/smtpd\[25206\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 17:52:29 relay postfix/smtpd\[15609\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 17:53:12 relay postfix/smtpd\[21418\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-08 00:06:31
103.70.145.215	attack	May 7 13:55:53 mail.srvfarm.net postfix/smtpd[882593]: NOQUEUE: reject: RCPT from unknown[103.70.145.215]: 554 5.7.1 Service unavailable; Client host [103.70.145.215] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?103.70.145.215; from= to= proto=ESMTP helo= May 7 13:55:54 mail.srvfarm.net postfix/smtpd[882593]: NOQUEUE: reject: RCPT from unknown[103.70.145.215]: 554 5.7.1 Service unavailable; Client host [103.70.145.215] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?103.70.145.215; from= to= proto=ESMTP helo= May 7 13:55:55 mail.srvfarm.net postfix/smtpd[882593]: NOQUEUE: reject: RCPT from unknown[103.70.145.215]: 554 5.7.1 Service unavailable; Client host [103.70.145.215] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?103.70.145.215; from= to=	2020-05-08 00:20:55
90.189.197.237	attack	Unauthorized connection attempt detected from IP address 90.189.197.237 to port 23 [T]	2020-05-08 00:25:39
210.211.117.41	attackspam	May 7 14:03:15 *** sshd[6577]: Invalid user docker from 210.211.117.41	2020-05-07 23:55:56
128.199.253.146	attack	...	2020-05-07 23:56:19
185.176.27.54	attackspam	05/07/2020-11:34:20.121130 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-07 23:54:49
51.77.135.89	attackbots	WordPress user registration, really-simple-captcha js check bypass	2020-05-07 23:42:22
183.11.235.24	attackspambots	May 7 15:50:53 cloud sshd[15935]: Failed password for root from 183.11.235.24 port 38923 ssh2	2020-05-08 00:24:26
112.218.66.91	attack	May 7 13:45:28 web01.agentur-b-2.de postfix/smtpd[192906]: NOQUEUE: reject: RCPT from unknown[112.218.66.91]: 554 5.7.1 Service unavailable; Client host [112.218.66.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/112.218.66.91 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<4rx.com> May 7 13:45:30 web01.agentur-b-2.de postfix/smtpd[192906]: NOQUEUE: reject: RCPT from unknown[112.218.66.91]: 554 5.7.1 Service unavailable; Client host [112.218.66.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/112.218.66.91 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<4rx.com> May 7 13:45:32 web01.agentur-b-2.de postfix/smtpd[192906]: NOQUEUE: reject: RCPT from unknown[112.218.66.91]: 554 5.7.1 Service unavailable; Client host [112.218.66.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/112.218.66.91 / https://www.spamhaus.or	2020-05-08 00:20:35
139.99.121.6	attackbotsspam	139.99.121.6 - - \[07/May/2020:14:49:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:41 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-07 23:58:04
185.175.93.23	attackspam	05/07/2020-18:19:19.011120 185.175.93.23 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-08 00:40:02
180.106.83.17	attack	5x Failed Password	2020-05-07 23:58:35
122.51.216.146	attack	2020-05-07T14:58:41.814118afi-git.jinr.ru sshd[27787]: Failed password for root from 122.51.216.146 port 39746 ssh2 2020-05-07T14:59:08.690644afi-git.jinr.ru sshd[27809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.216.146 user=root 2020-05-07T14:59:11.129372afi-git.jinr.ru sshd[27809]: Failed password for root from 122.51.216.146 port 41088 ssh2 2020-05-07T14:59:12.328522afi-git.jinr.ru sshd[27981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.216.146 user=root 2020-05-07T14:59:13.985298afi-git.jinr.ru sshd[27981]: Failed password for root from 122.51.216.146 port 45140 ssh2 ...	2020-05-08 00:27:58

最近上报的IP列表

184.154.47.3	184.105.247.242	171.100.119.102	124.41.228.122
223.197.92.122	139.59.180.53	129.204.15.159	200.13.161.68
196.52.43.113	105.149.44.83	196.52.43.98	5.196.68.203
202.51.114.2	88.12.27.44	85.175.97.176	103.29.156.10
185.200.118.44	157.230.163.6	134.209.90.139	23.100.232.233