219.54.33.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.54.33.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.54.33.139.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120700 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 07 17:52:01 CST 2024
;; MSG SIZE  rcvd: 106

HOST信息:

139.33.54.219.in-addr.arpa domain name pointer softbank219054033139.bbtec.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.33.54.219.in-addr.arpa	name = softbank219054033139.bbtec.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.156.186.188	attackbotsspam	May 22 14:59:45 ns381471 sshd[11568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.156.186.188 May 22 14:59:47 ns381471 sshd[11568]: Failed password for invalid user ind from 45.156.186.188 port 53884 ssh2	2020-05-22 21:00:27
85.93.44.34	attackbotsspam	20/5/22@07:55:09: FAIL: Alarm-Network address from=85.93.44.34 ...	2020-05-22 21:05:31
89.40.73.231	attackbots	[Fri May 22 18:54:29.004331 2020] [:error] [pid 17334:tid 140533717956352] [client 89.40.73.231:65444] [client 89.40.73.231] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "Xse9dWNHAVP8-kBLHCfUfgAAAkk"] ...	2020-05-22 21:42:24
23.94.166.6	attack	(From claudiauclement@yahoo.com) Hi, We are wondering if you would be interested in our service, where we can provide you with a dofollow link from Amazon (DA 96) back to familychiropractorsofridgewood.com? The price is just $77 per link, via Paypal. To explain what DA is and the benefit for your website, along with a sample of an existing link, please read here: https://justpaste.it/4fnds If you'd be interested in learning more, reply to this email but please make sure you include the word INTERESTED in the subject line field, so we can get to your reply sooner. Kind Regards, Claudia	2020-05-22 21:32:25
178.252.87.52	attackbotsspam	1590148500 - 05/22/2020 13:55:00 Host: 178.252.87.52/178.252.87.52 Port: 445 TCP Blocked	2020-05-22 21:11:16
89.40.73.249	attack	[Fri May 22 18:54:27.969794 2020] [:error] [pid 17334:tid 140533709563648] [client 89.40.73.249:61470] [client 89.40.73.249] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xse9c2NHAVP8-kBLHCfUfQAAAko"] ...	2020-05-22 21:44:32
23.95.128.10	attack	(From claudiauclement@yahoo.com) Hi, We are wondering if you would be interested in our service, where we can provide you with a dofollow link from Amazon (DA 96) back to familychiropractorsofridgewood.com? The price is just $77 per link, via Paypal. To explain what DA is and the benefit for your website, along with a sample of an existing link, please read here: https://justpaste.it/4fnds If you'd be interested in learning more, reply to this email but please make sure you include the word INTERESTED in the subject line field, so we can get to your reply sooner. Kind Regards, Claudia	2020-05-22 21:23:53
125.99.46.50	attack	May 22 09:56:46 firewall sshd[1212]: Invalid user tug from 125.99.46.50 May 22 09:56:48 firewall sshd[1212]: Failed password for invalid user tug from 125.99.46.50 port 51182 ssh2 May 22 10:01:31 firewall sshd[1395]: Invalid user buo from 125.99.46.50 ...	2020-05-22 21:26:07
170.254.3.146	attackbots	Brute forcing RDP port 3389	2020-05-22 21:07:50
187.101.22.2	attackspam	k+ssh-bruteforce	2020-05-22 21:28:45
145.239.236.107	attack	May 21 23:01:32 netserv300 sshd[6798]: Connection from 145.239.236.107 port 53682 on 178.63.236.19 port 22 May 21 23:01:40 netserv300 sshd[6801]: Connection from 145.239.236.107 port 52846 on 178.63.236.19 port 22 May 21 23:01:50 netserv300 sshd[6803]: Connection from 145.239.236.107 port 46670 on 178.63.236.19 port 22 May 21 23:01:58 netserv300 sshd[6805]: Connection from 145.239.236.107 port 40362 on 178.63.236.19 port 22 May 21 23:02:06 netserv300 sshd[6807]: Connection from 145.239.236.107 port 33120 on 178.63.236.19 port 22 May 21 23:02:13 netserv300 sshd[6810]: Connection from 145.239.236.107 port 54930 on 178.63.236.19 port 22 May 21 23:02:21 netserv300 sshd[6812]: Connection from 145.239.236.107 port 49292 on 178.63.236.19 port 22 May 21 23:02:27 netserv300 sshd[6814]: Connection from 145.239.236.107 port 41614 on 178.63.236.19 port 22 May 21 23:02:34 netserv300 sshd[6816]: Connection from 145.239.236.107 port 35098 on 178.63.236.19 port 22 May 21 23:02:41 netser........ ------------------------------	2020-05-22 21:19:45
112.85.42.89	attack	May 22 14:59:44 piServer sshd[29190]: Failed password for root from 112.85.42.89 port 20410 ssh2 May 22 14:59:47 piServer sshd[29190]: Failed password for root from 112.85.42.89 port 20410 ssh2 May 22 14:59:51 piServer sshd[29190]: Failed password for root from 112.85.42.89 port 20410 ssh2 ...	2020-05-22 21:11:58
14.171.14.143	attackbotsspam	2020-05-22T14:55:05.094074mail1.gph.lt auth[6207]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=r.gaidukeviciene@gph.lt rhost=14.171.14.143 ...	2020-05-22 21:08:50
2001:41d0:a:f94a::1	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-05-22 21:13:36
119.27.189.46	attackspam	May 19 09:10:08 edebian sshd[10703]: Failed password for invalid user url from 119.27.189.46 port 50004 ssh2 ...	2020-05-22 21:39:54

最近上报的IP列表

5.149.74.134	71.33.221.242	240.93.247.104	250.103.163.175
219.125.199.190	168.158.117.197	176.254.83.233	196.143.64.220
229.36.116.214	186.6.204.99	104.13.156.138	69.8.156.195
40.173.26.111	41.224.212.225	148.215.19.222	198.183.34.88
209.171.55.162	251.8.77.58	49.230.55.90	131.185.126.86