124.119.139.208

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Xinjiang Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Tried to find non-existing directory/file on the server	2020-05-06 06:48:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.119.139.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33559
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.119.139.208.		IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050502 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 06:48:33 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 208.139.119.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 208.139.119.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.17.96.170	attackspam	209.17.96.170 was recorded 13 times by 10 hosts attempting to connect to the following ports: 5985,5910,5906,135,2323,44818,5901,5289,5000,5902. Incident counter (4h, 24h, all-time): 13, 46, 783	2019-11-27 13:50:16
132.232.132.103	attackspam	Nov 27 07:31:17 sauna sshd[36818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.132.103 Nov 27 07:31:19 sauna sshd[36818]: Failed password for invalid user papa123 from 132.232.132.103 port 49776 ssh2 ...	2019-11-27 13:41:28
81.22.45.20	attackbotsspam	Fail2Ban Ban Triggered	2019-11-27 13:56:45
106.13.110.74	attackbotsspam	Automatic report - Banned IP Access	2019-11-27 14:07:30
95.216.242.209	attackbots	[WedNov2705:57:16.5884822019][:error][pid769:tid47011380348672][client95.216.242.209:40360][client95.216.242.209]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"pizzerialaregina.ch"][uri"/tbl.sql"][unique_id"Xd4CLBvyAdLbgwOQSD8HhQAAAEg"][WedNov2705:57:18.2178952019][:error][pid773:tid47011295090432][client95.216.242.209:40788][client95.216.242.209]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"]	2019-11-27 13:48:15
197.211.9.62	attackspambots	Nov 26 19:36:48 wbs sshd\[18084\]: Invalid user deed from 197.211.9.62 Nov 26 19:36:48 wbs sshd\[18084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.211.9.62 Nov 26 19:36:50 wbs sshd\[18084\]: Failed password for invalid user deed from 197.211.9.62 port 41558 ssh2 Nov 26 19:45:02 wbs sshd\[18856\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.211.9.62 user=root Nov 26 19:45:04 wbs sshd\[18856\]: Failed password for root from 197.211.9.62 port 51392 ssh2	2019-11-27 14:09:00
218.92.0.148	attack	Nov 27 00:55:04 plusreed sshd[29663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Nov 27 00:55:05 plusreed sshd[29663]: Failed password for root from 218.92.0.148 port 50382 ssh2 ...	2019-11-27 14:10:06
37.59.100.22	attack	Nov 26 19:45:01 sachi sshd\[32122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=22.ip-37-59-100.eu user=root Nov 26 19:45:03 sachi sshd\[32122\]: Failed password for root from 37.59.100.22 port 51671 ssh2 Nov 26 19:51:05 sachi sshd\[32662\]: Invalid user francois from 37.59.100.22 Nov 26 19:51:05 sachi sshd\[32662\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=22.ip-37-59-100.eu Nov 26 19:51:07 sachi sshd\[32662\]: Failed password for invalid user francois from 37.59.100.22 port 41482 ssh2	2019-11-27 14:03:48
211.35.76.241	attack	Nov 27 06:17:38 microserver sshd[27105]: Invalid user koppenhauer from 211.35.76.241 port 52159 Nov 27 06:17:38 microserver sshd[27105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 Nov 27 06:17:39 microserver sshd[27105]: Failed password for invalid user koppenhauer from 211.35.76.241 port 52159 ssh2 Nov 27 06:24:29 microserver sshd[27852]: Invalid user tomschi from 211.35.76.241 port 37802 Nov 27 06:24:29 microserver sshd[27852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 Nov 27 06:37:41 microserver sshd[29780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 user=root Nov 27 06:37:43 microserver sshd[29780]: Failed password for root from 211.35.76.241 port 37309 ssh2 Nov 27 06:44:27 microserver sshd[30538]: Invalid user admin from 211.35.76.241 port 51171 Nov 27 06:44:27 microserver sshd[30538]: pam_unix(sshd:auth): authentication failure	2019-11-27 13:46:43
218.92.0.138	attackbotsspam	Nov 27 07:09:10 dcd-gentoo sshd[29770]: User root from 218.92.0.138 not allowed because none of user's groups are listed in AllowGroups Nov 27 07:09:12 dcd-gentoo sshd[29770]: error: PAM: Authentication failure for illegal user root from 218.92.0.138 Nov 27 07:09:10 dcd-gentoo sshd[29770]: User root from 218.92.0.138 not allowed because none of user's groups are listed in AllowGroups Nov 27 07:09:12 dcd-gentoo sshd[29770]: error: PAM: Authentication failure for illegal user root from 218.92.0.138 Nov 27 07:09:10 dcd-gentoo sshd[29770]: User root from 218.92.0.138 not allowed because none of user's groups are listed in AllowGroups Nov 27 07:09:12 dcd-gentoo sshd[29770]: error: PAM: Authentication failure for illegal user root from 218.92.0.138 Nov 27 07:09:12 dcd-gentoo sshd[29770]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.138 port 19460 ssh2 ...	2019-11-27 14:11:24
173.162.229.10	attackbots	2019-11-27T05:29:05.297968abusebot-5.cloudsearch.cf sshd\[9591\]: Invalid user dj from 173.162.229.10 port 38296	2019-11-27 13:42:51
1.160.58.186	attackspambots	Banned for posting to wp-login.php without referer {"log":"agent-68473","pwd":"opencart","wp-submit":"Log In","redirect_to":"http:\/\/ckhomeinfo.com\/wp-admin\/","testcookie":"1"}	2019-11-27 13:29:46
211.20.181.186	attackbots	Nov 26 19:33:32 tdfoods sshd\[22902\]: Invalid user user2 from 211.20.181.186 Nov 26 19:33:32 tdfoods sshd\[22902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.20.181.186 Nov 26 19:33:33 tdfoods sshd\[22902\]: Failed password for invalid user user2 from 211.20.181.186 port 9988 ssh2 Nov 26 19:40:46 tdfoods sshd\[23625\]: Invalid user ayter from 211.20.181.186 Nov 26 19:40:46 tdfoods sshd\[23625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.20.181.186	2019-11-27 13:59:38
27.128.175.209	attackbots	Nov 26 19:47:14 kapalua sshd\[10437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.175.209 user=root Nov 26 19:47:17 kapalua sshd\[10437\]: Failed password for root from 27.128.175.209 port 53954 ssh2 Nov 26 19:51:57 kapalua sshd\[10818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.175.209 user=root Nov 26 19:51:59 kapalua sshd\[10818\]: Failed password for root from 27.128.175.209 port 59978 ssh2 Nov 26 19:56:36 kapalua sshd\[11174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.175.209 user=root	2019-11-27 13:58:19
46.101.210.153	attack	Banned for posting to wp-login.php without referer {"log":"admin","pwd":"","wp-submit":"Log In","redirect_to":"http:\/\/jimpendleyrealtor.com\/wp-admin\/","testcookie":"1"}	2019-11-27 14:12:49

最近上报的IP列表

41.148.66.205	114.219.8.128	157.55.80.209	176.240.188.38
180.25.33.83	78.32.134.221	81.18.232.70	187.163.71.55
198.64.18.214	126.162.254.127	58.68.69.202	75.161.28.218
189.19.117.223	64.74.170.121	115.31.21.251	58.165.212.194
209.255.73.148	100.63.121.21	97.48.109.141	88.139.126.200