78.139.106.172

基本信息:

城市(city): Kamensk-Ural'skiy

省份(region): Sverdlovskaya Oblast'

国家(country): Russia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Closed Joint Stock Company Radiotelephone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 78.139.106.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36366
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;78.139.106.172.			IN	A

;; AUTHORITY SECTION:
.			3201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 28 21:04:49 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

172.106.139.78.in-addr.arpa domain name pointer 172-106-139-78.kamensktel.ru.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
172.106.139.78.in-addr.arpa	name = 172-106-139-78.kamensktel.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
37.187.73.206	attackbotsspam	37.187.73.206 - - [24/Aug/2020:08:01:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2264 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.187.73.206 - - [24/Aug/2020:08:01:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2195 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.187.73.206 - - [24/Aug/2020:08:01:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 15:43:48
149.202.175.255	attackbotsspam	Aug 24 08:44:59 * sshd[14002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.175.255 Aug 24 08:45:01 * sshd[14002]: Failed password for invalid user libuuid from 149.202.175.255 port 57531 ssh2	2020-08-24 15:39:05
206.189.73.164	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-24 15:51:29
182.61.187.66	attack	$f2bV_matches	2020-08-24 15:29:41
136.243.72.5	attack	Aug 24 09:54:17 relay postfix/smtpd\[15211\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[16159\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[16156\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[15115\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[15667\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[15742\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[15578\]: warning: mon.risse-it.de\[136.243.72.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 24 09:54:17 relay postfix/smtpd\[15196\]: warning: ...	2020-08-24 15:57:35
207.244.70.35	attack	$f2bV_matches	2020-08-24 15:49:31
47.104.85.14	attackbotsspam	47.104.85.14 - - [24/Aug/2020:06:45:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2448 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.104.85.14 - - [24/Aug/2020:06:45:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2449 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.104.85.14 - - [24/Aug/2020:06:45:24 +0100] "POST /wp-login.php HTTP/1.1" 200 2450 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 15:27:45
175.138.108.78	attackspam	SSH Brute-Forcing (server1)	2020-08-24 15:24:12
203.195.204.106	attackbots	Aug 24 14:18:40 itv-usvr-01 sshd[10663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.204.106 user=root Aug 24 14:18:43 itv-usvr-01 sshd[10663]: Failed password for root from 203.195.204.106 port 47032 ssh2	2020-08-24 16:13:49
110.171.101.232	attackbots	SSH brutforce	2020-08-24 15:24:34
178.132.135.84	attack	Port probing on unauthorized port 445	2020-08-24 15:23:16
118.40.248.20	attackspam	Bruteforce detected by fail2ban	2020-08-24 16:13:01
209.97.138.179	attack	Aug 23 11:33:45 Tower sshd[4739]: refused connect from 47.94.1.121 (47.94.1.121) Aug 24 01:26:17 Tower sshd[4739]: Connection from 209.97.138.179 port 45490 on 192.168.10.220 port 22 rdomain "" Aug 24 01:26:18 Tower sshd[4739]: Invalid user sia from 209.97.138.179 port 45490 Aug 24 01:26:18 Tower sshd[4739]: error: Could not get shadow information for NOUSER Aug 24 01:26:18 Tower sshd[4739]: Failed password for invalid user sia from 209.97.138.179 port 45490 ssh2 Aug 24 01:26:18 Tower sshd[4739]: Received disconnect from 209.97.138.179 port 45490:11: Bye Bye [preauth] Aug 24 01:26:18 Tower sshd[4739]: Disconnected from invalid user sia 209.97.138.179 port 45490 [preauth]	2020-08-24 15:41:30
80.92.113.84	attackbots	Aug 24 08:45:15 ns382633 sshd\[9452\]: Invalid user jennifer from 80.92.113.84 port 39918 Aug 24 08:45:15 ns382633 sshd\[9452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.92.113.84 Aug 24 08:45:17 ns382633 sshd\[9452\]: Failed password for invalid user jennifer from 80.92.113.84 port 39918 ssh2 Aug 24 08:55:05 ns382633 sshd\[10759\]: Invalid user payment from 80.92.113.84 port 56762 Aug 24 08:55:05 ns382633 sshd\[10759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.92.113.84	2020-08-24 15:40:20
210.14.142.85	attackspam	Aug 24 04:31:59 firewall sshd[28349]: Invalid user ucc from 210.14.142.85 Aug 24 04:32:01 firewall sshd[28349]: Failed password for invalid user ucc from 210.14.142.85 port 44316 ssh2 Aug 24 04:35:45 firewall sshd[28449]: Invalid user lin from 210.14.142.85 ...	2020-08-24 15:37:36

最近上报的IP列表

172.172.191.9	113.53.29.185	24.0.251.44	81.163.14.210
40.5.173.67	125.16.17.127	123.201.174.51	77.95.56.150
74.82.47.58	111.19.65.165	59.36.241.68	108.240.173.189
65.135.251.181	178.92.250.142	64.218.157.4	14.172.255.60
47.52.94.241	190.96.109.22	51.235.75.75	145.220.166.183