134.99.4.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Heinrich-Heine-Universitaet Duesseldorf

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2020-09-07T20:10:23.746610ns386461 sshd\[19371\]: Invalid user admin from 134.99.4.139 port 46680 2020-09-07T20:10:23.761232ns386461 sshd\[19371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.99.4.139 2020-09-07T20:10:25.536512ns386461 sshd\[19428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.99.4.139 user=root 2020-09-07T20:10:25.642586ns386461 sshd\[19371\]: Failed password for invalid user admin from 134.99.4.139 port 46680 ssh2 2020-09-07T20:10:27.358523ns386461 sshd\[19428\]: Failed password for root from 134.99.4.139 port 46894 ssh2 ...	2020-09-08 03:14:31
attackspambots	$f2bV_matches	2020-09-07 18:44:04

类型

评论内容

时间

attackbots

2020-09-07T20:10:23.746610ns386461 sshd\[19371\]: Invalid user admin from 134.99.4.139 port 46680
2020-09-07T20:10:23.761232ns386461 sshd\[19371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.99.4.139
2020-09-07T20:10:25.536512ns386461 sshd\[19428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.99.4.139  user=root
2020-09-07T20:10:25.642586ns386461 sshd\[19371\]: Failed password for invalid user admin from 134.99.4.139 port 46680 ssh2
2020-09-07T20:10:27.358523ns386461 sshd\[19428\]: Failed password for root from 134.99.4.139 port 46894 ssh2
...

2020-09-08 03:14:31

attackspambots

$f2bV_matches

2020-09-07 18:44:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.99.4.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.99.4.139.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090700 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 07 18:43:57 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.4.99.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.4.99.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.87.97.29	attackbots	Jul 15 01:09:41 ns37 sshd[6750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.97.29	2019-07-15 13:28:25
68.183.230.5	attackspambots	WordPress wp-login brute force :: 68.183.230.5 0.052 BYPASS [15/Jul/2019:07:04:48 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-15 14:05:51
153.36.240.126	attackspam	Jul 15 07:47:19 legacy sshd[24876]: Failed password for root from 153.36.240.126 port 19967 ssh2 Jul 15 07:47:32 legacy sshd[24881]: Failed password for root from 153.36.240.126 port 48717 ssh2 ...	2019-07-15 14:03:15
122.199.225.53	attackbots	Jul 15 06:44:22 debian sshd\[19484\]: Invalid user amandabackup from 122.199.225.53 port 37154 Jul 15 06:44:22 debian sshd\[19484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.225.53 ...	2019-07-15 13:50:31
210.179.126.136	attackspambots	Invalid user jasmine from 210.179.126.136 port 51198	2019-07-15 14:04:16
185.113.141.47	attackbots	Jul 14 22:54:45 linuxrulz sshd[23647]: Invalid user atlbhostnamebucket from 185.113.141.47 port 55226 Jul 14 22:54:45 linuxrulz sshd[23647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.113.141.47 Jul 14 22:54:47 linuxrulz sshd[23647]: Failed password for invalid user atlbhostnamebucket from 185.113.141.47 port 55226 ssh2 Jul 14 22:54:47 linuxrulz sshd[23647]: Received disconnect from 185.113.141.47 port 55226:11: Bye Bye [preauth] Jul 14 22:54:47 linuxrulz sshd[23647]: Disconnected from 185.113.141.47 port 55226 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.113.141.47	2019-07-15 13:36:05
113.164.244.98	attack	Jul 15 07:51:22 localhost sshd\[7572\]: Invalid user ela from 113.164.244.98 port 41578 Jul 15 07:51:22 localhost sshd\[7572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.164.244.98 Jul 15 07:51:24 localhost sshd\[7572\]: Failed password for invalid user ela from 113.164.244.98 port 41578 ssh2	2019-07-15 14:11:11
153.36.236.234	attackspam	Jul 15 07:24:10 * sshd[18952]: Failed password for root from 153.36.236.234 port 49580 ssh2	2019-07-15 14:13:11
139.255.52.203	attackbots	Mail sent to address hacked/leaked from Last.fm	2019-07-15 14:19:36
114.32.200.188	attack	Automatic report - Port Scan Attack	2019-07-15 14:26:55
178.219.113.38	attackbotsspam	Jul 14 22:57:36 rigel postfix/smtpd[10651]: warning: hostname host-178.219.113.38-c3.net.pl does not resolve to address 178.219.113.38: Name or service not known Jul 14 22:57:36 rigel postfix/smtpd[10651]: connect from unknown[178.219.113.38] Jul 14 22:57:36 rigel postfix/smtpd[10651]: warning: unknown[178.219.113.38]: SASL CRAM-MD5 authentication failed: authentication failure Jul 14 22:57:37 rigel postfix/smtpd[10651]: warning: unknown[178.219.113.38]: SASL PLAIN authentication failed: authentication failure Jul 14 22:57:37 rigel postfix/smtpd[10651]: warning: unknown[178.219.113.38]: SASL LOGIN authentication failed: authentication failure Jul 14 22:57:37 rigel postfix/smtpd[10651]: disconnect from unknown[178.219.113.38] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.219.113.38	2019-07-15 14:31:02
178.211.94.25	attack	Jul 15 05:45:26 mail sshd\[30343\]: Failed password for invalid user fy from 178.211.94.25 port 46334 ssh2 Jul 15 06:00:53 mail sshd\[30621\]: Invalid user build from 178.211.94.25 port 45214 Jul 15 06:00:53 mail sshd\[30621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.211.94.25 ...	2019-07-15 13:46:46
202.174.120.150	attackspambots	Jul 15 08:11:06 vps647732 sshd[7307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.174.120.150 Jul 15 08:11:08 vps647732 sshd[7307]: Failed password for invalid user user21 from 202.174.120.150 port 38422 ssh2 ...	2019-07-15 14:21:56
122.195.200.36	attackspambots	Jul 15 07:13:31 ubuntu-2gb-nbg1-dc3-1 sshd[22218]: Failed password for root from 122.195.200.36 port 18416 ssh2 Jul 15 07:13:36 ubuntu-2gb-nbg1-dc3-1 sshd[22218]: error: maximum authentication attempts exceeded for root from 122.195.200.36 port 18416 ssh2 [preauth] ...	2019-07-15 13:26:44
139.198.120.96	attack	Jul 15 02:15:01 meumeu sshd[4017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.120.96 Jul 15 02:15:02 meumeu sshd[4017]: Failed password for invalid user ubuntu from 139.198.120.96 port 40068 ssh2 Jul 15 02:20:35 meumeu sshd[5150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.120.96 ...	2019-07-15 14:10:37

最近上报的IP列表

5.124.68.109	113.196.236.9	191.208.15.70	192.127.102.81
239.79.197.254	212.230.18.153	192.122.202.5	45.55.41.113
178.128.165.11	171.236.155.243	119.152.159.108	165.22.101.43
60.137.41.244	123.206.23.158	27.72.98.32	213.243.95.30
58.56.56.174	43.227.157.152	212.34.243.234	8.55.86.72