94.180.139.44 - IPInfo

基本信息:

城市(city): Kazan’

省份(region): Tatarstan Republic

国家(country): Russia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): JSC ER-Telecom Holding

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.180.139.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15154
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.180.139.44.			IN	A

;; AUTHORITY SECTION:
.			2401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062701 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 23:49:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

44.139.180.94.in-addr.arpa domain name pointer 94x180x139x44.dynamic.kzn.ertelecom.ru.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
44.139.180.94.in-addr.arpa	name = 94x180x139x44.dynamic.kzn.ertelecom.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
35.180.243.229	attackbots	[SatFeb0105:55:03.4634772020][:error][pid21558:tid47092718393088][client35.180.243.229:59454][client35.180.243.229]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"fit-easy.com"][uri"/.env"][unique_id"XjUEp1lw@ITNBo5tuwhVOgAAAVI"][SatFeb0105:55:04.1422642020][:error][pid21463:tid47092612081408][client35.180.243.229:60096][client35.180.243.229]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf	2020-02-01 15:34:51
80.82.77.139	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 515 proto: TCP cat: Misc Attack	2020-02-01 15:02:16
37.187.107.63	attackspam	Invalid user rohan from 37.187.107.63 port 41408	2020-02-01 15:01:01
31.28.41.185	attack	Automatic report - Port Scan Attack	2020-02-01 14:57:18
176.194.189.39	attackbots	Feb 1 08:30:25 cp sshd[29638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.194.189.39	2020-02-01 15:39:47
124.227.197.26	attackbots	Unauthorized connection attempt detected from IP address 124.227.197.26 to port 2220 [J]	2020-02-01 15:37:57
222.186.30.31	attack	2020-02-01T08:22:31.920889scmdmz1 sshd[10465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.31 user=root 2020-02-01T08:22:33.893279scmdmz1 sshd[10465]: Failed password for root from 222.186.30.31 port 44668 ssh2 2020-02-01T08:22:37.383509scmdmz1 sshd[10465]: Failed password for root from 222.186.30.31 port 44668 ssh2 2020-02-01T08:22:31.920889scmdmz1 sshd[10465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.31 user=root 2020-02-01T08:22:33.893279scmdmz1 sshd[10465]: Failed password for root from 222.186.30.31 port 44668 ssh2 2020-02-01T08:22:37.383509scmdmz1 sshd[10465]: Failed password for root from 222.186.30.31 port 44668 ssh2 2020-02-01T08:22:31.920889scmdmz1 sshd[10465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.31 user=root 2020-02-01T08:22:33.893279scmdmz1 sshd[10465]: Failed password for root from 222.186.30.31 port 44668 ssh2 2020-02-0	2020-02-01 15:26:10
162.243.128.119	attack	1580532962 - 02/01/2020 05:56:02 Host: zg-0131a-196.stretchoid.com/162.243.128.119 Port: 5632 UDP Blocked	2020-02-01 14:58:51
1.2.225.68	attackbots	Unauthorized connection attempt from IP address 1.2.225.68 on Port 445(SMB)	2020-02-01 15:35:44
194.55.185.63	attackspam	FROM MAYAK CONSULTING	2020-02-01 15:12:55
222.186.42.155	attack	Unauthorized connection attempt detected from IP address 222.186.42.155 to port 22 [J]	2020-02-01 15:28:20
114.245.45.181	attack	Feb 1 07:14:46 debian-2gb-nbg1-2 kernel: \[2796943.683736\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.245.45.181 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=9872 DF PROTO=TCP SPT=58539 DPT=24237 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 1 07:14:46 debian-2gb-nbg1-2 kernel: \[2796943.704120\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.245.45.181 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=9873 DF PROTO=TCP SPT=58540 DPT=247 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 1 07:14:46 debian-2gb-nbg1-2 kernel: \[2796943.716479\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.245.45.181 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=9874 DF PROTO=TCP SPT=58541 DPT=48432 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-01 15:03:31
123.6.27.7	attack	Unauthorized connection attempt detected from IP address 123.6.27.7 to port 2220 [J]	2020-02-01 14:55:28
122.51.243.139	attack	Invalid user test1 from 122.51.243.139 port 35866	2020-02-01 15:08:21
111.231.89.197	attackbotsspam	Unauthorized connection attempt detected from IP address 111.231.89.197 to port 2220 [J]	2020-02-01 15:02:33

最近上报的IP列表

125.166.164.207	18.228.231.43	68.219.7.232	199.137.79.97
79.175.252.138	144.177.49.242	104.168.71.166	180.249.79.147
122.65.19.246	63.239.204.195	72.226.198.115	198.203.28.157
65.88.241.2	176.233.181.125	189.92.19.80	162.221.188.250
111.64.113.136	177.21.130.165	154.48.130.88	52.225.82.48