39.96.201.119 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	11/15/2019-01:25:47.472938 39.96.201.119 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-15 17:57:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.96.201.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53364
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.96.201.119.			IN	A

;; AUTHORITY SECTION:
.			485	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111500 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 15 17:57:12 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 119.201.96.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.201.96.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.248.168.220	attackspam	NL_IPV_<177>1589975401 [1:2403464:57416] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 83 [Classification: Misc Attack] [Priority: 2]: {TCP} 89.248.168.220:53622	2020-05-20 22:17:32
61.19.19.114	attack	Attempted connection to port 445.	2020-05-20 21:53:52
86.120.218.146	attackbots	TCP (SYN) 86.120.218.146:30306 -> port 23, len 44	2020-05-20 21:48:59
45.55.88.16	attack	May 20 15:51:36 [host] sshd[22465]: Invalid user a May 20 15:51:36 [host] sshd[22465]: pam_unix(sshd: May 20 15:51:38 [host] sshd[22465]: Failed passwor	2020-05-20 22:24:54
171.236.43.155	attack	Unauthorized connection attempt from IP address 171.236.43.155 on Port 445(SMB)	2020-05-20 22:04:13
114.34.179.132	attack	Attempted connection to port 8000.	2020-05-20 22:13:32
42.243.111.90	attack	Attempted connection to port 1433.	2020-05-20 21:56:56
159.65.66.103	attackspambots	TCP (SYN) 159.65.66.103:48376 -> port 18478, len 44	2020-05-20 21:43:29
139.228.2.31	attack	May 20 09:24:15 mxgate1 postfix/postscreen[9735]: CONNECT from [139.228.2.31]:19005 to [176.31.12.44]:25 May 20 09:24:15 mxgate1 postfix/dnsblog[9881]: addr 139.228.2.31 listed by domain cbl.abuseat.org as 127.0.0.2 May 20 09:24:15 mxgate1 postfix/dnsblog[10396]: addr 139.228.2.31 listed by domain zen.spamhaus.org as 127.0.0.4 May 20 09:24:15 mxgate1 postfix/dnsblog[10396]: addr 139.228.2.31 listed by domain zen.spamhaus.org as 127.0.0.11 May 20 09:24:15 mxgate1 postfix/dnsblog[9880]: addr 139.228.2.31 listed by domain b.barracudacentral.org as 127.0.0.2 May 20 09:24:21 mxgate1 postfix/postscreen[9735]: DNSBL rank 4 for [139.228.2.31]:19005 May x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.228.2.31	2020-05-20 21:56:35
167.99.87.82	attack	2020-05-20 12:27:55,990 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.87.82 2020-05-20 13:02:31,482 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.87.82 2020-05-20 13:38:34,298 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.87.82 2020-05-20 14:15:03,961 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.87.82 2020-05-20 14:48:56,415 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.87.82 ...	2020-05-20 22:19:51
222.186.180.41	attack	May 20 09:38:15 NPSTNNYC01T sshd[13373]: Failed password for root from 222.186.180.41 port 53312 ssh2 May 20 09:38:18 NPSTNNYC01T sshd[13373]: Failed password for root from 222.186.180.41 port 53312 ssh2 May 20 09:38:21 NPSTNNYC01T sshd[13373]: Failed password for root from 222.186.180.41 port 53312 ssh2 May 20 09:38:24 NPSTNNYC01T sshd[13373]: Failed password for root from 222.186.180.41 port 53312 ssh2 ...	2020-05-20 22:01:45
123.31.32.150	attack	May 20 05:23:49 lanister sshd[7644]: Invalid user wsgw from 123.31.32.150 May 20 05:23:49 lanister sshd[7644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.32.150 May 20 05:23:49 lanister sshd[7644]: Invalid user wsgw from 123.31.32.150 May 20 05:23:51 lanister sshd[7644]: Failed password for invalid user wsgw from 123.31.32.150 port 57766 ssh2	2020-05-20 22:04:39
78.180.97.215	attackbotsspam	Attempted connection to port 8080.	2020-05-20 21:49:22
222.186.175.217	attackbotsspam	May 20 14:10:54 ip-172-31-62-245 sshd\[18379\]: Failed password for root from 222.186.175.217 port 15252 ssh2\ May 20 14:11:12 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:16 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:19 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:22 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\	2020-05-20 22:12:32
217.11.184.165	attackspambots	Unauthorized connection attempt from IP address 217.11.184.165 on Port 445(SMB)	2020-05-20 22:16:43

最近上报的IP列表

205.177.2.219	179.97.198.248	34.64.110.155	39.137.19.5
45.162.99.126	82.76.245.28	85.214.60.200	218.19.169.35
114.164.105.250	138.201.14.212	47.174.177.129	36.71.232.215
1.53.115.157	121.202.77.110	223.130.31.133	183.89.212.93
114.222.216.218	213.230.119.138	175.184.250.27	49.36.26.211