42.178.9.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorised access (Aug 29) SRC=42.178.9.139 LEN=40 TTL=49 ID=5449 TCP DPT=8080 WINDOW=59295 SYN Unauthorised access (Aug 29) SRC=42.178.9.139 LEN=40 TTL=49 ID=55274 TCP DPT=8080 WINDOW=47612 SYN	2019-08-30 05:26:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.178.9.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44709
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.178.9.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082901 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 05:26:46 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.9.178.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.9.178.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.221.222.198	attack	WordPress wp-login brute force :: 103.221.222.198 0.128 BYPASS [29/Aug/2019:02:26:08 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-29 06:13:53
181.138.241.254	attackbots	Automatic report - Port Scan Attack	2019-08-29 06:19:50
31.182.57.162	attack	SSH Bruteforce attack	2019-08-29 06:46:49
180.126.237.152	attackspambots	Aug 28 15:10:59 ms-srv sshd[15150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.126.237.152 user=root Aug 28 15:11:01 ms-srv sshd[15150]: Failed password for invalid user root from 180.126.237.152 port 53650 ssh2	2019-08-29 06:50:22
118.32.211.24	attack	" "	2019-08-29 06:16:45
54.37.136.170	attackspam	Aug 28 09:31:39 auw2 sshd\[13153\]: Invalid user mz from 54.37.136.170 Aug 28 09:31:39 auw2 sshd\[13153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-54-37-136.eu Aug 28 09:31:41 auw2 sshd\[13153\]: Failed password for invalid user mz from 54.37.136.170 port 43816 ssh2 Aug 28 09:35:46 auw2 sshd\[13566\]: Invalid user dixie from 54.37.136.170 Aug 28 09:35:46 auw2 sshd\[13566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-54-37-136.eu	2019-08-29 06:37:54
79.154.90.162	attackspambots	Spam Timestamp : 28-Aug-19 14:42 BlockList Provider combined abuse (754)	2019-08-29 06:26:33
138.68.4.8	attackbotsspam	Aug 28 21:43:03 lcl-usvr-01 sshd[10966]: Invalid user serge from 138.68.4.8 Aug 28 21:43:03 lcl-usvr-01 sshd[10966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.8 Aug 28 21:43:03 lcl-usvr-01 sshd[10966]: Invalid user serge from 138.68.4.8 Aug 28 21:43:04 lcl-usvr-01 sshd[10966]: Failed password for invalid user serge from 138.68.4.8 port 52074 ssh2 Aug 28 21:52:59 lcl-usvr-01 sshd[13572]: Invalid user argo from 138.68.4.8	2019-08-29 06:35:11
128.234.8.9	attack	Aug 28 15:48:43 h2421860 postfix/postscreen[23344]: CONNECT from [128.234.8.9]:39194 to [85.214.119.52]:25 Aug 28 15:48:43 h2421860 postfix/dnsblog[23347]: addr 128.234.8.9 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Aug 28 15:48:43 h2421860 postfix/dnsblog[23352]: addr 128.234.8.9 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 28 15:48:43 h2421860 postfix/dnsblog[23352]: addr 128.234.8.9 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 28 15:48:43 h2421860 postfix/dnsblog[23352]: addr 128.234.8.9 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 28 15:48:43 h2421860 postfix/dnsblog[23352]: addr 128.234.8.9 listed by domain Unknown.trblspam.com as 185.53.179.7 Aug 28 15:48:43 h2421860 postfix/dnsblog[23351]: addr 128.234.8.9 listed by domain dnsbl.sorbs.net as 127.0.0.6 Aug 28 15:48:43 h2421860 postfix/dnsblog[23349]: addr 128.234.8.9 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 28 15:48:45 h2421860 postfix/dnsblog[23348]: addr 128.234.8.9 list........ -------------------------------	2019-08-29 06:20:25
52.253.228.47	attackbotsspam	Aug 28 21:47:24 meumeu sshd[23643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.253.228.47 Aug 28 21:47:26 meumeu sshd[23643]: Failed password for invalid user mcedit from 52.253.228.47 port 1344 ssh2 Aug 28 21:51:52 meumeu sshd[24283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.253.228.47 ...	2019-08-29 06:26:13
112.64.32.118	attackspam	Aug 28 07:56:09 hanapaa sshd\[18028\]: Invalid user snake from 112.64.32.118 Aug 28 07:56:09 hanapaa sshd\[18028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Aug 28 07:56:11 hanapaa sshd\[18028\]: Failed password for invalid user snake from 112.64.32.118 port 41190 ssh2 Aug 28 07:59:29 hanapaa sshd\[18359\]: Invalid user administrador from 112.64.32.118 Aug 28 07:59:29 hanapaa sshd\[18359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118	2019-08-29 06:29:00
42.115.138.180	attackbotsspam	Aug 29 00:34:25 vps647732 sshd[6936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.115.138.180 Aug 29 00:34:27 vps647732 sshd[6936]: Failed password for invalid user service from 42.115.138.180 port 34538 ssh2 ...	2019-08-29 06:38:25
103.93.194.171	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-08-29 06:10:28
218.92.0.171	attackbotsspam	Aug 28 07:13:29 php2 sshd\[22633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Aug 28 07:13:31 php2 sshd\[22633\]: Failed password for root from 218.92.0.171 port 46466 ssh2 Aug 28 07:13:42 php2 sshd\[22633\]: Failed password for root from 218.92.0.171 port 46466 ssh2 Aug 28 07:13:45 php2 sshd\[22633\]: Failed password for root from 218.92.0.171 port 46466 ssh2 Aug 28 07:13:47 php2 sshd\[22672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root	2019-08-29 06:49:22
13.92.136.239	attackbotsspam	Invalid user daniele from 13.92.136.239 port 60212	2019-08-29 06:22:19

最近上报的IP列表

123.148.242.206	92.201.20.122	190.77.108.7	106.51.75.185
61.137.233.234	187.26.163.97	103.77.127.58	177.138.170.110
85.167.35.125	181.174.55.16	103.89.168.211	36.226.104.72
149.46.161.108	23.156.89.209	34.73.111.158	14.192.211.236
185.211.246.158	1.53.31.84	149.142.197.2	122.171.213.191