139.199.19.219

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Invalid user lw from 139.199.19.219 port 50338	2020-04-23 04:04:06
attack	Apr 19 00:37:10 ns382633 sshd\[15008\]: Invalid user kw from 139.199.19.219 port 57888 Apr 19 00:37:10 ns382633 sshd\[15008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 Apr 19 00:37:13 ns382633 sshd\[15008\]: Failed password for invalid user kw from 139.199.19.219 port 57888 ssh2 Apr 19 00:48:32 ns382633 sshd\[17337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 user=root Apr 19 00:48:34 ns382633 sshd\[17337\]: Failed password for root from 139.199.19.219 port 38316 ssh2	2020-04-19 08:05:58
attackbots	2020-04-13T19:30:11.402505abusebot-5.cloudsearch.cf sshd[2583]: Invalid user tads from 139.199.19.219 port 56962 2020-04-13T19:30:11.412145abusebot-5.cloudsearch.cf sshd[2583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 2020-04-13T19:30:11.402505abusebot-5.cloudsearch.cf sshd[2583]: Invalid user tads from 139.199.19.219 port 56962 2020-04-13T19:30:12.968331abusebot-5.cloudsearch.cf sshd[2583]: Failed password for invalid user tads from 139.199.19.219 port 56962 ssh2 2020-04-13T19:33:22.174486abusebot-5.cloudsearch.cf sshd[2638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 user=root 2020-04-13T19:33:24.283011abusebot-5.cloudsearch.cf sshd[2638]: Failed password for root from 139.199.19.219 port 38230 ssh2 2020-04-13T19:36:51.416950abusebot-5.cloudsearch.cf sshd[2646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 ...	2020-04-14 04:27:21
attackbots	Apr 10 05:48:24 ns382633 sshd\[15420\]: Invalid user es from 139.199.19.219 port 58536 Apr 10 05:48:24 ns382633 sshd\[15420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219 Apr 10 05:48:26 ns382633 sshd\[15420\]: Failed password for invalid user es from 139.199.19.219 port 58536 ssh2 Apr 10 05:58:42 ns382633 sshd\[17321\]: Invalid user deploy from 139.199.19.219 port 42154 Apr 10 05:58:42 ns382633 sshd\[17321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.19.219	2020-04-10 12:25:10
attackbots	IP blocked	2020-04-10 04:26:31
attackbots	(sshd) Failed SSH login from 139.199.19.219 (JP/Japan/-): 5 in the last 3600 secs	2020-04-02 21:22:46

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.197.45	attack	$f2bV_matches	2020-09-17 00:45:09
139.199.197.45	attack	$f2bV_matches	2020-09-16 17:00:33
139.199.196.23	attack	2967/tcp 8080/tcp [2020-03-02/23]2pkt	2020-03-23 18:27:20
139.199.193.202	attackspambots	Mar 22 01:58:20 Ubuntu-1404-trusty-64-minimal sshd\[32595\]: Invalid user dasusr1 from 139.199.193.202 Mar 22 01:58:20 Ubuntu-1404-trusty-64-minimal sshd\[32595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 Mar 22 01:58:21 Ubuntu-1404-trusty-64-minimal sshd\[32595\]: Failed password for invalid user dasusr1 from 139.199.193.202 port 33424 ssh2 Mar 22 02:02:29 Ubuntu-1404-trusty-64-minimal sshd\[6984\]: Invalid user ts3 from 139.199.193.202 Mar 22 02:02:29 Ubuntu-1404-trusty-64-minimal sshd\[6984\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202	2020-03-22 09:15:24
139.199.193.202	attackspam	Mar 19 14:23:06 h1745522 sshd[1663]: Invalid user jboss from 139.199.193.202 port 43522 Mar 19 14:23:06 h1745522 sshd[1663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 Mar 19 14:23:06 h1745522 sshd[1663]: Invalid user jboss from 139.199.193.202 port 43522 Mar 19 14:23:08 h1745522 sshd[1663]: Failed password for invalid user jboss from 139.199.193.202 port 43522 ssh2 Mar 19 14:26:13 h1745522 sshd[1903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 user=root Mar 19 14:26:15 h1745522 sshd[1903]: Failed password for root from 139.199.193.202 port 50068 ssh2 Mar 19 14:29:16 h1745522 sshd[2072]: Invalid user mqm from 139.199.193.202 port 56616 Mar 19 14:29:17 h1745522 sshd[2072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 Mar 19 14:29:16 h1745522 sshd[2072]: Invalid user mqm from 139.199.193.202 port 56616 Mar 19 ...	2020-03-20 01:42:56
139.199.19.227	attack	404 NOT FOUND	2020-03-18 12:15:33
139.199.193.202	attackspambots	fail2ban	2020-03-07 09:39:17
139.199.193.202	attack	Brute-force attempt banned	2020-03-03 22:08:22
139.199.193.202	attackspam	Unauthorized connection attempt detected from IP address 139.199.193.202 to port 2220 [J]	2020-02-01 02:22:20
139.199.191.112	attackspam	Unauthorized connection attempt detected from IP address 139.199.191.112 to port 1433 [J]	2020-01-27 01:52:36
139.199.193.202	attackspam	Unauthorized connection attempt detected from IP address 139.199.193.202 to port 2220 [J]	2020-01-25 21:17:37
139.199.19.227	attackbotsspam	Unauthorized connection attempt detected from IP address 139.199.19.227 to port 1433 [T]	2020-01-15 23:15:37
139.199.193.202	attackspambots	2020-01-09T16:01:13.301811scmdmz1 sshd[21932]: Invalid user yvx from 139.199.193.202 port 41860 2020-01-09T16:01:13.304323scmdmz1 sshd[21932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 2020-01-09T16:01:13.301811scmdmz1 sshd[21932]: Invalid user yvx from 139.199.193.202 port 41860 2020-01-09T16:01:15.281543scmdmz1 sshd[21932]: Failed password for invalid user yvx from 139.199.193.202 port 41860 ssh2 2020-01-09T16:07:41.762178scmdmz1 sshd[22481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 user=nobody 2020-01-09T16:07:43.673766scmdmz1 sshd[22481]: Failed password for nobody from 139.199.193.202 port 50214 ssh2 ...	2020-01-10 00:03:00
139.199.191.112	attackbotsspam	Unauthorized connection attempt detected from IP address 139.199.191.112 to port 445	2019-12-31 09:13:46
139.199.191.112	attack	Unauthorized connection attempt detected from IP address 139.199.191.112 to port 1433	2019-12-31 02:58:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.19.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1385
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.19.219.			IN	A

;; AUTHORITY SECTION:
.			128	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 11:36:00 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 219.19.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 219.19.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.13.39.126	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-07-13 08:40:00
54.37.204.154	attack	Jul 12 00:04:48 * sshd[25686]: Failed password for invalid user hadoop from 54.37.204.154 port 39174 ssh2 Jul 12 00:09:42 * sshd[25768]: Failed password for invalid user master from 54.37.204.154 port 41404 ssh2 Jul 12 00:11:04 * sshd[25772]: Failed password for invalid user akee from 54.37.204.154 port 58176 ssh2 Jul 12 00:12:27 * sshd[25774]: Failed password for invalid user tobias from 54.37.204.154 port 46712 ssh2 Jul 12 00:13:52 * sshd[25778]: Failed password for invalid user admin from 54.37.204.154 port 35248 ssh2 Jul 12 00:15:12 * sshd[25786]: Failed password for invalid user movies from 54.37.204.154 port 52020 ssh2 Jul 12 00:16:34 * sshd[25790]: Failed password for invalid user amministratore from 54.37.204.154 port 40556 ssh2 Jul 12 00:17:59 * sshd[25797]: Failed password for invalid user test from 54.37.204.154 port 57324 ssh2	2019-07-13 08:02:56
187.144.219.8	attack	Unauthorized connection attempt from IP address 187.144.219.8 on Port 445(SMB)	2019-07-13 08:39:32
182.61.34.79	attackspam	Jul 11 23:18:28 vtv3 sshd\[28668\]: Invalid user public from 182.61.34.79 port 45092 Jul 11 23:18:28 vtv3 sshd\[28668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.34.79 Jul 11 23:18:31 vtv3 sshd\[28668\]: Failed password for invalid user public from 182.61.34.79 port 45092 ssh2 Jul 11 23:27:21 vtv3 sshd\[829\]: Invalid user git2 from 182.61.34.79 port 6220 Jul 11 23:27:21 vtv3 sshd\[829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.34.79 Jul 11 23:50:46 vtv3 sshd\[12264\]: Invalid user admwizzbe from 182.61.34.79 port 42327 Jul 11 23:50:46 vtv3 sshd\[12264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.34.79 Jul 11 23:50:47 vtv3 sshd\[12264\]: Failed password for invalid user admwizzbe from 182.61.34.79 port 42327 ssh2 Jul 11 23:56:34 vtv3 sshd\[14971\]: Invalid user aman from 182.61.34.79 port 35364 Jul 11 23:56:35 vtv3 sshd\[14971\]: pam_unix\(s	2019-07-13 08:16:56
158.199.195.169	attackbots	Triggered by Fail2Ban	2019-07-13 08:12:52
134.175.141.166	attack	Brute force attempt	2019-07-13 08:25:43
37.232.132.165	attackspambots	Unauthorized connection attempt from IP address 37.232.132.165 on Port 445(SMB)	2019-07-13 08:37:02
222.107.26.125	attackspambots	Jul 12 10:26:48 * sshd[4920]: Failed password for invalid user tl from 222.107.26.125 port 60000 ssh2 Jul 12 10:48:16 * sshd[5343]: Failed password for invalid user vimal from 222.107.26.125 port 39252 ssh2 Jul 12 11:02:47 * sshd[5570]: Failed password for invalid user git from 222.107.26.125 port 41550 ssh2 Jul 12 11:17:16 * sshd[5829]: Failed password for invalid user students from 222.107.26.125 port 43848 ssh2 Jul 12 11:31:40 * sshd[6069]: Failed password for invalid user superman from 222.107.26.125 port 46140 ssh2 Jul 12 11:46:07 * sshd[6378]: Failed password for invalid user shoutcast from 222.107.26.125 port 48432 ssh2 Jul 12 12:00:41 * sshd[6595]: Failed password for invalid user rsyncd from 222.107.26.125 port 50732 ssh2 Jul 12 12:15:11 * sshd[6907]: Failed password for invalid user mahesh from 222.107.26.125 port 53026 ssh2 Jul 12 12:29:44 * sshd[7192]: Failed password for invalid user helpdesk from 222.107.26.125 port 55320 ssh2 Jul 12 12:59:08 * sshd[7769]: Failed password for	2019-07-13 08:27:44
65.220.84.27	attackbots	2019-07-12T20:15:01.185031abusebot-8.cloudsearch.cf sshd\[29085\]: Invalid user dp from 65.220.84.27 port 58942	2019-07-13 08:33:16
223.171.32.56	attackbotsspam	2019-07-13T06:58:59.553075enmeeting.mahidol.ac.th sshd\[11968\]: Invalid user c1 from 223.171.32.56 port 37800 2019-07-13T06:58:59.571833enmeeting.mahidol.ac.th sshd\[11968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.56 2019-07-13T06:59:01.826227enmeeting.mahidol.ac.th sshd\[11968\]: Failed password for invalid user c1 from 223.171.32.56 port 37800 ssh2 ...	2019-07-13 08:08:14
46.101.88.10	attack	Invalid user alan from 46.101.88.10 port 33155	2019-07-13 08:11:35
123.207.233.84	attackbots	Jul 13 01:14:09 mail sshd\[27468\]: Failed password for invalid user css from 123.207.233.84 port 35076 ssh2 Jul 13 01:31:05 mail sshd\[27547\]: Invalid user market from 123.207.233.84 port 35764 Jul 13 01:31:05 mail sshd\[27547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.233.84 ...	2019-07-13 08:41:33
170.81.200.92	attackspambots	2019-07-12T23:45:10.701663abusebot-4.cloudsearch.cf sshd\[3908\]: Invalid user student from 170.81.200.92 port 56506	2019-07-13 08:18:43
134.249.232.248	attack	Unauthorized connection attempt from IP address 134.249.232.248 on Port 445(SMB)	2019-07-13 08:37:49
41.46.198.223	attackbots	Jul 12 22:23:28 *** sshd[17760]: Failed password for invalid user admin from 41.46.198.223 port 54156 ssh2	2019-07-13 08:21:46

最近上报的IP列表

173.97.114.63	165.138.159.92	126.3.108.76	17.243.76.180
105.183.49.152	203.112.30.22	110.77.238.80	147.160.171.85
89.128.65.66	65.171.44.96	152.1.82.16	37.15.144.201
33.62.60.204	219.110.125.126	171.45.147.20	115.225.82.4
41.248.190.5	175.115.29.50	115.111.11.61	127.202.121.139