46.239.139.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Poland

运营商(isp): University of Technology and Life Sciences Bydgoszcz

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 00:49:30

相同子网IP讨论:

IP	类型	评论内容	时间
46.239.139.16	attackbotsspam	$f2bV_matches	2019-12-31 18:35:40
46.239.139.16	attackbotsspam	Dec 30 09:33:00 vps647732 sshd[23462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.239.139.16 Dec 30 09:33:01 vps647732 sshd[23462]: Failed password for invalid user teamspeak from 46.239.139.16 port 42875 ssh2 ...	2019-12-30 16:39:14
46.239.139.16	attackspambots	Dec 26 16:58:13 [host] sshd[4244]: Invalid user admin from 46.239.139.16 Dec 26 16:58:13 [host] sshd[4244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.239.139.16 Dec 26 16:58:15 [host] sshd[4244]: Failed password for invalid user admin from 46.239.139.16 port 57304 ssh2	2019-12-27 00:56:15
46.239.139.16	attackspambots	Dec 25 13:28:09 lnxmail61 sshd[12500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.239.139.16	2019-12-25 22:55:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 46.239.139.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8492
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;46.239.139.1.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 923 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 00:49:23 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

1.139.239.46.in-addr.arpa domain name pointer gw-wsb.man.bydgoszcz.pl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.139.239.46.in-addr.arpa	name = gw-wsb.man.bydgoszcz.pl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.118.160.41	attackbots	Automatic report - Port Scan Attack	2019-10-23 15:16:47
92.119.160.6	attack	destination port 3366	2019-10-23 15:24:55
103.247.13.222	attackbots	Oct 22 20:27:49 hanapaa sshd\[24916\]: Invalid user susan from 103.247.13.222 Oct 22 20:27:49 hanapaa sshd\[24916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.247.13.222 Oct 22 20:27:51 hanapaa sshd\[24916\]: Failed password for invalid user susan from 103.247.13.222 port 35440 ssh2 Oct 22 20:32:34 hanapaa sshd\[25301\]: Invalid user visitation from 103.247.13.222 Oct 22 20:32:34 hanapaa sshd\[25301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.247.13.222	2019-10-23 14:50:49
193.112.124.31	attackbotsspam	joshuajohannes.de 193.112.124.31 \[23/Oct/2019:05:54:18 +0200\] "POST /wp-login.php HTTP/1.1" 200 5605 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" joshuajohannes.de 193.112.124.31 \[23/Oct/2019:05:54:22 +0200\] "POST /wp-login.php HTTP/1.1" 200 5611 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-23 15:01:55
193.105.24.95	attackbots	Automatic report - Banned IP Access	2019-10-23 15:25:28
162.158.219.90	attackspambots	10/23/2019-05:54:12.309357 162.158.219.90 Protocol: 6 ET POLICY Cleartext WordPress Login	2019-10-23 15:09:18
222.171.82.169	attackspambots	$f2bV_matches	2019-10-23 15:22:44
71.135.5.77	attackbotsspam	Oct 22 06:18:44 new sshd[28361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71-135-5-77.lightspeed.rlghnc.sbcglobal.net Oct 22 06:18:46 new sshd[28361]: Failed password for invalid user miner from 71.135.5.77 port 46814 ssh2 Oct 22 06:18:46 new sshd[28361]: Received disconnect from 71.135.5.77: 11: Bye Bye [preauth] Oct 22 06:23:44 new sshd[29705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71-135-5-77.lightspeed.rlghnc.sbcglobal.net Oct 22 06:23:46 new sshd[29705]: Failed password for invalid user teamspeak3 from 71.135.5.77 port 41124 ssh2 Oct 22 06:23:46 new sshd[29705]: Received disconnect from 71.135.5.77: 11: Bye Bye [preauth] Oct 22 06:27:20 new sshd[30755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71-135-5-77.lightspeed.rlghnc.sbcglobal.net user=r.r Oct 22 06:27:23 new sshd[30755]: Failed password for r.r from 71.135.5.77 port........ -------------------------------	2019-10-23 14:46:26
176.115.100.201	attackspambots	Automatic report - Banned IP Access	2019-10-23 15:19:20
207.180.198.241	attackbotsspam	Automatic report - Banned IP Access	2019-10-23 14:53:45
104.36.51.50	attackspambots	104.36.51.50 - - \[23/Oct/2019:06:38:05 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 104.36.51.50 - - \[23/Oct/2019:06:38:06 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-10-23 15:07:45
27.254.136.29	attack	Repeated brute force against a port	2019-10-23 14:48:27
220.166.78.25	attack	Oct 23 09:13:21 lnxweb62 sshd[11105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.78.25 Oct 23 09:13:21 lnxweb62 sshd[11105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.78.25	2019-10-23 15:24:37
104.244.72.221	attackbots	Oct 23 08:35:37 vpn01 sshd[25862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.72.221 Oct 23 08:35:39 vpn01 sshd[25862]: Failed password for invalid user matt from 104.244.72.221 port 39106 ssh2 ...	2019-10-23 14:54:31
111.40.50.116	attackbotsspam	2019-10-23T06:46:08.388784abusebot-5.cloudsearch.cf sshd\[32535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.40.50.116 user=root	2019-10-23 14:54:58

最近上报的IP列表

36.221.242.84	170.228.254.90	12.59.27.137	161.144.138.224
63.111.99.141	103.55.27.151	190.78.182.234	188.2.30.168
46.101.171.1	57.208.102.189	53.229.17.91	161.152.217.245
62.7.52.63	49.62.95.130	221.7.158.96	45.9.148.3
177.83.170.49	190.157.178.171	153.84.253.98	5.0.3.139