139.162.13.158

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Linode LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Fail2Ban Ban Triggered	2020-06-10 16:25:21

相同子网IP讨论:

IP	类型	评论内容	时间
139.162.137.207	attackbots	Port Scan detected from 139.162.137.207 (DE/Germany/Hesse/Frankfurt am Main/li1403-207.members.linode.com). 4 hits in the last 66 seconds	2020-09-22 03:35:06
139.162.137.207	attack	Port Scan detected from 139.162.137.207 (DE/Germany/Hesse/Frankfurt am Main/li1403-207.members.linode.com). 4 hits in the last 66 seconds	2020-09-21 19:21:43
139.162.138.232	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.138.232 to port 8080 [T]	2020-08-29 20:39:59
139.162.138.232	attack	28.8.2020, 13:04:49 info pop3-login: Disconnected (no auth attempts in 2 secs): user=<>, rip=139.162.138.232, lip=xx.xx.xx.xx 28.8.2020, 13:04:47 info pop3-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=139.162.138.232, lip=xx.xx.xx.xx	2020-08-28 23:43:17
139.162.138.232	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 139.162.138.232.li.binaryedge.ninja.	2020-07-13 14:54:08
139.162.13.228	attackbotsspam	Oct 5 11:22:14 wbs sshd\[6312\]: Invalid user Alarm@2017 from 139.162.13.228 Oct 5 11:22:14 wbs sshd\[6312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li855-228.members.linode.com Oct 5 11:22:16 wbs sshd\[6312\]: Failed password for invalid user Alarm@2017 from 139.162.13.228 port 48888 ssh2 Oct 5 11:26:36 wbs sshd\[6676\]: Invalid user Galaxy@123 from 139.162.13.228 Oct 5 11:26:36 wbs sshd\[6676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li855-228.members.linode.com	2019-10-06 05:38:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.13.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46073
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.162.13.158.			IN	A

;; AUTHORITY SECTION:
.			386	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061000 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 10 16:25:15 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

158.13.162.139.in-addr.arpa domain name pointer li855-158.members.linode.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.13.162.139.in-addr.arpa	name = li855-158.members.linode.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.217.0.101	attack	Multiport scan : 24 ports scanned 6900 6901 6903 6905 6909 6910 6911 6920 6921 6922 6923 6924 6925 6929 6931 6932 6935 6937 6939 6940 6941 6943 6946 6947	2020-06-05 06:01:44
51.91.157.101	attackspam	Jun 4 23:25:37 santamaria sshd\[15285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.101 user=root Jun 4 23:25:39 santamaria sshd\[15285\]: Failed password for root from 51.91.157.101 port 57192 ssh2 Jun 4 23:28:58 santamaria sshd\[15346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.101 user=root ...	2020-06-05 06:09:35
92.118.160.5	attackspambots	W 31101,/var/log/nginx/access.log,-,-	2020-06-05 06:25:49
87.27.143.210	attackspam	DATE:2020-06-04 22:22:33, IP:87.27.143.210, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-06-05 06:02:06
36.133.38.45	attackbots	Jun 4 22:02:56 mail sshd[16162]: Failed password for root from 36.133.38.45 port 38430 ssh2 ...	2020-06-05 05:56:23
187.37.122.107	attackbotsspam	Jun 4 17:47:13 xxxx sshd[26785]: Address 187.37.122.107 maps to bb257a6b.virtua.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 4 17:47:13 xxxx sshd[26785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.37.122.107 user=r.r Jun 4 17:47:15 xxxx sshd[26785]: Failed password for r.r from 187.37.122.107 port 64289 ssh2 Jun 4 18:44:47 xxxx sshd[26919]: Address 187.37.122.107 maps to bb257a6b.virtua.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 4 18:44:47 xxxx sshd[26919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.37.122.107 user=r.r Jun 4 18:44:49 xxxx sshd[26919]: Failed password for r.r from 187.37.122.107 port 12193 ssh2 Jun 4 18:50:30 xxxx sshd[26926]: Address 187.37.122.107 maps to bb257a6b.virtua.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 4 18:50:30 xxxx s........ -------------------------------	2020-06-05 06:03:43
125.45.12.117	attackbots	Jun 5 06:18:17 web1 sshd[23916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.45.12.117 user=root Jun 5 06:18:19 web1 sshd[23916]: Failed password for root from 125.45.12.117 port 44762 ssh2 Jun 5 06:32:09 web1 sshd[27326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.45.12.117 user=root Jun 5 06:32:11 web1 sshd[27326]: Failed password for root from 125.45.12.117 port 39528 ssh2 Jun 5 06:36:15 web1 sshd[28368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.45.12.117 user=root Jun 5 06:36:17 web1 sshd[28368]: Failed password for root from 125.45.12.117 port 58862 ssh2 Jun 5 06:39:34 web1 sshd[29115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.45.12.117 user=root Jun 5 06:39:36 web1 sshd[29115]: Failed password for root from 125.45.12.117 port 49948 ssh2 Jun 5 06:42:31 web1 sshd[29873]: pa ...	2020-06-05 06:28:07
178.128.88.244	attackspambots	2020-06-05T01:00:17.347762afi-git.jinr.ru sshd[29772]: Failed password for root from 178.128.88.244 port 50738 ssh2 2020-06-05T01:02:38.788729afi-git.jinr.ru sshd[30338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.88.244 user=root 2020-06-05T01:02:41.258475afi-git.jinr.ru sshd[30338]: Failed password for root from 178.128.88.244 port 57966 ssh2 2020-06-05T01:04:56.956771afi-git.jinr.ru sshd[30867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.88.244 user=root 2020-06-05T01:04:59.371340afi-git.jinr.ru sshd[30867]: Failed password for root from 178.128.88.244 port 36962 ssh2 ...	2020-06-05 06:30:35
213.37.40.162	attackbotsspam	Jun 4 22:26:22 cdc sshd[5987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.37.40.162 user=root Jun 4 22:26:24 cdc sshd[5987]: Failed password for invalid user root from 213.37.40.162 port 53618 ssh2	2020-06-05 05:57:00
222.186.175.148	attack	Jun 4 23:57:22 pve1 sshd[23512]: Failed password for root from 222.186.175.148 port 35728 ssh2 Jun 4 23:57:28 pve1 sshd[23512]: Failed password for root from 222.186.175.148 port 35728 ssh2 ...	2020-06-05 05:58:38
173.212.206.89	attackbots	Lines containing failures of 173.212.206.89 Jun 4 19:26:24 kmh-vmh-003-fsn07 sshd[16618]: Did not receive identification string from 173.212.206.89 port 36314 Jun 4 19:26:32 kmh-vmh-003-fsn07 sshd[16637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.206.89 user=r.r Jun 4 19:26:34 kmh-vmh-003-fsn07 sshd[16637]: Failed password for r.r from 173.212.206.89 port 50196 ssh2 Jun 4 19:26:35 kmh-vmh-003-fsn07 sshd[16637]: Received disconnect from 173.212.206.89 port 50196:11: Normal Shutdown, Thank you for playing [preauth] Jun 4 19:26:35 kmh-vmh-003-fsn07 sshd[16637]: Disconnected from authenticating user r.r 173.212.206.89 port 50196 [preauth] Jun 4 19:26:45 kmh-vmh-003-fsn07 sshd[16662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.206.89 user=r.r Jun 4 19:26:48 kmh-vmh-003-fsn07 sshd[16662]: Failed password for r.r from 173.212.206.89 port 54418 ssh2 Jun 4 19:26:48........ ------------------------------	2020-06-05 06:06:12
190.79.251.133	attackbots	SMB Server BruteForce Attack	2020-06-05 06:20:03
222.186.42.155	attackbotsspam	2020-06-04T17:24:17.096806morrigan.ad5gb.com sshd[2961]: Failed password for root from 222.186.42.155 port 11107 ssh2 2020-06-04T17:24:20.039154morrigan.ad5gb.com sshd[2961]: Failed password for root from 222.186.42.155 port 11107 ssh2 2020-06-04T17:24:22.510583morrigan.ad5gb.com sshd[2961]: Failed password for root from 222.186.42.155 port 11107 ssh2	2020-06-05 06:26:11
106.12.49.118	attackspambots	2020-06-04T15:58:23.5808851495-001 sshd[4202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T15:58:25.2741011495-001 sshd[4202]: Failed password for root from 106.12.49.118 port 33728 ssh2 2020-06-04T16:01:20.6117241495-001 sshd[4394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:01:22.6057411495-001 sshd[4394]: Failed password for root from 106.12.49.118 port 46298 ssh2 2020-06-04T16:04:12.5568491495-001 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root 2020-06-04T16:04:14.4958551495-001 sshd[4507]: Failed password for root from 106.12.49.118 port 58860 ssh2 ...	2020-06-05 05:53:41
201.166.145.219	attackbotsspam	Jun 4 23:33:12 jane sshd[20278]: Failed password for root from 201.166.145.219 port 38638 ssh2 ...	2020-06-05 06:26:25

最近上报的IP列表

191.53.249.246	113.109.114.20	37.49.224.100	117.54.104.26
36.81.6.50	183.6.159.141	118.189.178.93	45.125.65.74
187.188.141.239	121.131.192.96	182.58.177.168	113.176.101.19
107.148.129.179	129.204.80.188	196.200.160.25	103.244.36.246
192.35.169.42	161.117.231.87	128.199.126.87	93.113.110.143