139.19.117.195

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Max-Planck-Institut fuer Informatik

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	recursive dns scanner	2020-08-17 07:18:20
attackbotsspam	Port scanning [2 denied]	2020-06-24 15:20:58

相同子网IP讨论:

IP	类型	评论内容	时间
139.19.117.8	attack	" "	2019-11-22 18:58:02
139.19.117.8	attackspambots	3389BruteforceFW23	2019-10-22 18:25:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.19.117.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.19.117.195.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062400 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 15:20:51 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

195.117.19.139.in-addr.arpa domain name pointer inet-research-scan-1.mpi-inf.mpg.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
195.117.19.139.in-addr.arpa	name = inet-research-scan-1.mpi-inf.mpg.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.238.62.154	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-18T09:15:39Z and 2020-09-18T09:23:39Z	2020-09-18 19:14:06
143.255.8.2	attackspambots	Sep 18 12:24:43 nextcloud sshd\[19214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.255.8.2 user=root Sep 18 12:24:44 nextcloud sshd\[19214\]: Failed password for root from 143.255.8.2 port 38986 ssh2 Sep 18 12:29:27 nextcloud sshd\[24682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.255.8.2 user=root	2020-09-18 18:53:28
185.86.164.99	attack	CMS (WordPress or Joomla) login attempt.	2020-09-18 18:43:57
192.241.211.94	attackbotsspam	Sep 18 08:19:44 vlre-nyc-1 sshd\[4745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.94 user=root Sep 18 08:19:45 vlre-nyc-1 sshd\[4745\]: Failed password for root from 192.241.211.94 port 48518 ssh2 Sep 18 08:23:28 vlre-nyc-1 sshd\[4815\]: Invalid user ibmadrc from 192.241.211.94 Sep 18 08:23:28 vlre-nyc-1 sshd\[4815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.94 Sep 18 08:23:31 vlre-nyc-1 sshd\[4815\]: Failed password for invalid user ibmadrc from 192.241.211.94 port 58626 ssh2 ...	2020-09-18 18:39:05
198.245.61.43	attack	198.245.61.43 - - [18/Sep/2020:11:43:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.61.43 - - [18/Sep/2020:11:43:43 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.61.43 - - [18/Sep/2020:11:43:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-18 18:43:33
193.56.28.14	attackbots	Sep 18 12:21:18 galaxy event: galaxy/lswi: smtp: no-reply@uni-potsdam.de [193.56.28.14] authentication failure using internet password Sep 18 12:22:38 galaxy event: galaxy/lswi: smtp: no-reply@uni-potsdam.de [193.56.28.14] authentication failure using internet password Sep 18 12:25:57 galaxy event: galaxy/lswi: smtp: help@uni-potsdam.de [193.56.28.14] authentication failure using internet password Sep 18 12:27:20 galaxy event: galaxy/lswi: smtp: help@uni-potsdam.de [193.56.28.14] authentication failure using internet password Sep 18 12:30:37 galaxy event: galaxy/lswi: smtp: helpdesk@uni-potsdam.de [193.56.28.14] authentication failure using internet password ...	2020-09-18 19:02:35
104.248.143.177	attackbotsspam	Sep 18 12:29:03 db sshd[20486]: User root from 104.248.143.177 not allowed because none of user's groups are listed in AllowGroups ...	2020-09-18 18:54:49
222.186.180.147	attackspambots	2020-09-18T11:09:14.296430abusebot-3.cloudsearch.cf sshd[9925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-09-18T11:09:15.884439abusebot-3.cloudsearch.cf sshd[9925]: Failed password for root from 222.186.180.147 port 17766 ssh2 2020-09-18T11:09:19.042173abusebot-3.cloudsearch.cf sshd[9925]: Failed password for root from 222.186.180.147 port 17766 ssh2 2020-09-18T11:09:14.296430abusebot-3.cloudsearch.cf sshd[9925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-09-18T11:09:15.884439abusebot-3.cloudsearch.cf sshd[9925]: Failed password for root from 222.186.180.147 port 17766 ssh2 2020-09-18T11:09:19.042173abusebot-3.cloudsearch.cf sshd[9925]: Failed password for root from 222.186.180.147 port 17766 ssh2 2020-09-18T11:09:14.296430abusebot-3.cloudsearch.cf sshd[9925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ...	2020-09-18 19:12:09
106.52.23.108	attackspambots	Invalid user test2 from 106.52.23.108 port 51628	2020-09-18 18:48:49
51.254.220.61	attackspambots	Sep 18 10:24:04 email sshd\[6630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.61 user=root Sep 18 10:24:06 email sshd\[6630\]: Failed password for root from 51.254.220.61 port 52598 ssh2 Sep 18 10:27:16 email sshd\[7218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.61 user=root Sep 18 10:27:18 email sshd\[7218\]: Failed password for root from 51.254.220.61 port 53538 ssh2 Sep 18 10:30:33 email sshd\[7824\]: Invalid user austin from 51.254.220.61 ...	2020-09-18 18:45:59
159.203.179.230	attack	Sep 18 05:30:00 ns381471 sshd[27465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230 Sep 18 05:30:02 ns381471 sshd[27465]: Failed password for invalid user operator from 159.203.179.230 port 39486 ssh2	2020-09-18 18:58:33
175.24.133.232	attackbots	Sep 18 12:08:38 vm1 sshd[31719]: Failed password for root from 175.24.133.232 port 39132 ssh2 ...	2020-09-18 18:55:01
167.71.177.236	attackspam	Sep 18 10:12:17 124388 sshd[31622]: Failed password for invalid user servercsgo from 167.71.177.236 port 52966 ssh2 Sep 18 10:15:57 124388 sshd[31758]: Invalid user gratia from 167.71.177.236 port 36428 Sep 18 10:15:57 124388 sshd[31758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.177.236 Sep 18 10:15:57 124388 sshd[31758]: Invalid user gratia from 167.71.177.236 port 36428 Sep 18 10:16:00 124388 sshd[31758]: Failed password for invalid user gratia from 167.71.177.236 port 36428 ssh2	2020-09-18 18:56:03
182.61.12.9	attack	Sep 18 07:55:42 host1 sshd[34755]: Invalid user new from 182.61.12.9 port 54692 Sep 18 07:55:44 host1 sshd[34755]: Failed password for invalid user new from 182.61.12.9 port 54692 ssh2 Sep 18 07:55:42 host1 sshd[34755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.12.9 Sep 18 07:55:42 host1 sshd[34755]: Invalid user new from 182.61.12.9 port 54692 Sep 18 07:55:44 host1 sshd[34755]: Failed password for invalid user new from 182.61.12.9 port 54692 ssh2 ...	2020-09-18 18:54:35
36.156.153.112	attackbots	(sshd) Failed SSH login from 36.156.153.112 (CN/China/-): 5 in the last 3600 secs	2020-09-18 18:49:35

最近上报的IP列表

199.199.225.15	119.167.35.176	195.54.167.55	69.163.224.103
138.204.100.70	109.116.231.139	62.210.172.100	124.239.221.13
5.235.169.203	112.116.200.244	188.217.255.122	83.18.177.54
60.167.177.154	178.22.123.135	106.12.88.133	36.156.153.112
101.55.28.3	193.77.150.253	189.99.99.1	251.227.224.87