138.219.220.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Goldweb Barretos Servicos de Telecomunicacoes Ltda

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	failed_logins	2019-09-03 11:15:20

相同子网IP讨论:

IP	类型	评论内容	时间
138.219.220.70	attackbots	failed_logins	2020-07-09 20:00:56
138.219.220.92	attackspam	$f2bV_matches	2019-09-03 04:23:56
138.219.220.235	attackbotsspam	Aug 29 22:16:21 xeon postfix/smtpd[37542]: warning: unknown[138.219.220.235]: SASL PLAIN authentication failed: authentication failure	2019-08-30 12:06:42
138.219.220.94	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-08-19 08:53:32
138.219.220.150	attackspambots	2019-08-1522:17:51dovecot_plainauthenticatorfailedfor$g6juv4vfbuu59gqmke3kyvmued6kn$[14.225.3.16]:55054:535Incorrectauthenticationdata$set_id=info$2019-08-1522:11:59dovecot_plainauthenticatorfailedfor$ikxtaqzpbvzha0h5pkxxrvvcaow9u613$[14.225.3.16]:42385:535Incorrectauthenticationdata$set_id=info$2019-08-1522:10:53dovecot_plainauthenticatorfailedfor$dv4orrvgfo0fhuvj0p0tjntekssvsz$[139.180.137.216]:40118:535Incorrectauthenticationdata$set_id=info$2019-08-1521:58:52dovecot_plainauthenticatorfailedfor$[191.53.195.232]$[191.53.195.232]:37092:535Incorrectauthenticationdata$set_id=info$2019-08-1521:44:41dovecot_plainauthenticatorfailedfor$[177.21.198.140]$[177.21.198.140]:32780:535Incorrectauthenticationdata$set_id=info$2019-08-1521:29:56dovecot_plainauthenticatorfailedfor$[138.36.200.238]$[138.36.200.238]:52220:535Incorrectauthenticationdata$set_id=info$2019-08-1522:12:19dovecot_plainauthenticatorfailedforip-192-169-216-124.ip.secureserver.net$comgn6j34cvvnuxh64r090jhs1$[192.169.216.124]:5	2019-08-16 07:39:17
138.219.220.27	attackspam	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-08-13 08:54:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.219.220.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17398
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.219.220.139.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 11:15:09 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

139.220.219.138.in-addr.arpa domain name pointer 138-219-220-139.goldweb.com.br.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.220.219.138.in-addr.arpa	name = 138-219-220-139.goldweb.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.21.240.24	attack	Tried sshing with brute force.	2020-06-12 14:35:26
106.13.191.132	attackbotsspam	Jun 12 07:56:01 ncomp sshd[6778]: Invalid user teamspeak3 from 106.13.191.132 Jun 12 07:56:01 ncomp sshd[6778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.191.132 Jun 12 07:56:01 ncomp sshd[6778]: Invalid user teamspeak3 from 106.13.191.132 Jun 12 07:56:02 ncomp sshd[6778]: Failed password for invalid user teamspeak3 from 106.13.191.132 port 34756 ssh2	2020-06-12 14:09:48
185.176.27.26	attack	TCP (SYN) 185.176.27.26:41482 -> port 21288, len 44	2020-06-12 14:43:38
210.105.82.53	attackspam	2020-06-12T07:05:27.019082galaxy.wi.uni-potsdam.de sshd[21908]: Invalid user jacques from 210.105.82.53 port 53022 2020-06-12T07:05:27.021519galaxy.wi.uni-potsdam.de sshd[21908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.105.82.53 2020-06-12T07:05:27.019082galaxy.wi.uni-potsdam.de sshd[21908]: Invalid user jacques from 210.105.82.53 port 53022 2020-06-12T07:05:29.052695galaxy.wi.uni-potsdam.de sshd[21908]: Failed password for invalid user jacques from 210.105.82.53 port 53022 ssh2 2020-06-12T07:08:04.434977galaxy.wi.uni-potsdam.de sshd[22242]: Invalid user ubnt from 210.105.82.53 port 37028 2020-06-12T07:08:04.436989galaxy.wi.uni-potsdam.de sshd[22242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.105.82.53 2020-06-12T07:08:04.434977galaxy.wi.uni-potsdam.de sshd[22242]: Invalid user ubnt from 210.105.82.53 port 37028 2020-06-12T07:08:06.352996galaxy.wi.uni-potsdam.de sshd[22242]: Failed pas ...	2020-06-12 14:18:01
116.22.196.188	attack	Invalid user backups from 116.22.196.188 port 34302	2020-06-12 14:45:59
106.12.161.99	attackbotsspam	Jun 12 07:34:47 sigma sshd\[26261\]: Invalid user user2 from 106.12.161.99Jun 12 07:34:48 sigma sshd\[26261\]: Failed password for invalid user user2 from 106.12.161.99 port 57928 ssh2 ...	2020-06-12 14:46:29
111.229.139.95	attackbotsspam	Jun 12 08:03:34 jane sshd[13189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.139.95 Jun 12 08:03:36 jane sshd[13189]: Failed password for invalid user anaconda from 111.229.139.95 port 49657 ssh2 ...	2020-06-12 14:19:58
118.25.144.133	attack	Jun 12 06:09:11 h2779839 sshd[19576]: Invalid user akinniyi from 118.25.144.133 port 38058 Jun 12 06:09:11 h2779839 sshd[19576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.133 Jun 12 06:09:11 h2779839 sshd[19576]: Invalid user akinniyi from 118.25.144.133 port 38058 Jun 12 06:09:11 h2779839 sshd[19576]: Failed password for invalid user akinniyi from 118.25.144.133 port 38058 ssh2 Jun 12 06:13:49 h2779839 sshd[19660]: Invalid user zhushaopei from 118.25.144.133 port 35638 Jun 12 06:13:49 h2779839 sshd[19660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.133 Jun 12 06:13:49 h2779839 sshd[19660]: Invalid user zhushaopei from 118.25.144.133 port 35638 Jun 12 06:13:51 h2779839 sshd[19660]: Failed password for invalid user zhushaopei from 118.25.144.133 port 35638 ssh2 Jun 12 06:18:35 h2779839 sshd[19721]: Invalid user azureadmin from 118.25.144.133 port 33222 ...	2020-06-12 14:32:13
163.172.187.114	attack	Jun 12 08:02:20 vpn01 sshd[2933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.187.114 Jun 12 08:02:21 vpn01 sshd[2933]: Failed password for invalid user nagios from 163.172.187.114 port 60550 ssh2 ...	2020-06-12 14:16:44
134.122.28.208	attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.28.208 Invalid user FDB_DIF from 134.122.28.208 port 58058 Failed password for invalid user FDB_DIF from 134.122.28.208 port 58058 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.28.208 user=root Failed password for root from 134.122.28.208 port 54872 ssh2	2020-06-12 14:04:09
3.248.204.14	attackbots	12.06.2020 05:56:33 - Wordpress fail Detected by ELinOX-ALM	2020-06-12 14:20:15
51.77.109.98	attackbotsspam	Jun 12 08:07:49 lnxmysql61 sshd[6259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 Jun 12 08:07:51 lnxmysql61 sshd[6259]: Failed password for invalid user syj from 51.77.109.98 port 52774 ssh2 Jun 12 08:11:56 lnxmysql61 sshd[7629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98	2020-06-12 14:12:16
134.209.7.179	attackbots	Jun 12 05:56:33 ns37 sshd[7918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.7.179	2020-06-12 14:18:18
103.205.180.188	attack	$f2bV_matches	2020-06-12 14:47:30
51.75.83.77	attackbots	Jun 11 20:07:40 web9 sshd\[19804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.83.77 user=root Jun 11 20:07:42 web9 sshd\[19804\]: Failed password for root from 51.75.83.77 port 43188 ssh2 Jun 11 20:11:09 web9 sshd\[20268\]: Invalid user monitor from 51.75.83.77 Jun 11 20:11:09 web9 sshd\[20268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.83.77 Jun 11 20:11:11 web9 sshd\[20268\]: Failed password for invalid user monitor from 51.75.83.77 port 46172 ssh2	2020-06-12 14:25:45

最近上报的IP列表

187.190.221.204	74.63.253.38	210.1.246.66	191.81.213.236
227.10.186.196	117.83.54.158	23.235.222.79	182.161.45.50
118.169.80.23	220.163.134.109	113.172.164.0	23.101.128.68
179.43.149.23	103.221.224.98	103.134.25.70	212.233.119.42
66.249.79.112	103.206.112.179	80.73.87.222	123.16.150.40