139.199.219.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH login attempts with user root.	2019-11-30 06:29:52

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.219.235	attackspam	Feb 16 21:19:36 server sshd\[22281\]: Invalid user coleen from 139.199.219.235 Feb 16 21:19:36 server sshd\[22281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Feb 16 21:19:39 server sshd\[22281\]: Failed password for invalid user coleen from 139.199.219.235 port 36022 ssh2 Feb 16 21:27:33 server sshd\[23829\]: Invalid user student from 139.199.219.235 Feb 16 21:27:33 server sshd\[23829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 ...	2020-02-17 04:09:14
139.199.219.235	attack	Feb 4 19:10:06 pornomens sshd\[32488\]: Invalid user kenzo from 139.199.219.235 port 47550 Feb 4 19:10:06 pornomens sshd\[32488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Feb 4 19:10:08 pornomens sshd\[32488\]: Failed password for invalid user kenzo from 139.199.219.235 port 47550 ssh2 ...	2020-02-05 03:47:00
139.199.219.235	attack	Automatic report - SSH Brute-Force Attack	2020-01-31 21:32:37
139.199.219.235	attackspam	$f2bV_matches	2020-01-12 00:16:12
139.199.219.235	attack	Invalid user nginx from 139.199.219.235 port 55142	2020-01-10 23:42:38
139.199.219.235	attackspambots	Invalid user gabat from 139.199.219.235 port 35536	2019-12-27 08:38:54
139.199.219.235	attack	Dec 14 13:21:04 areeb-Workstation sshd[10906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 14 13:21:06 areeb-Workstation sshd[10906]: Failed password for invalid user sressler from 139.199.219.235 port 33796 ssh2 ...	2019-12-14 15:54:44
139.199.219.235	attack	Dec 6 09:39:20 vps647732 sshd[19522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 6 09:39:21 vps647732 sshd[19522]: Failed password for invalid user plesk from 139.199.219.235 port 37994 ssh2 ...	2019-12-06 20:12:41
139.199.219.235	attackbots	Dec 3 06:49:54 meumeu sshd[32644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 3 06:49:57 meumeu sshd[32644]: Failed password for invalid user ftpuser from 139.199.219.235 port 43954 ssh2 Dec 3 06:56:38 meumeu sshd[1161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 ...	2019-12-03 14:16:49
139.199.219.235	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-01 04:27:07
139.199.219.235	attackbots	Nov 28 08:39:13 server sshd\[2367\]: Invalid user admin from 139.199.219.235 Nov 28 08:39:13 server sshd\[2367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 28 08:39:15 server sshd\[2367\]: Failed password for invalid user admin from 139.199.219.235 port 57238 ssh2 Nov 28 09:28:39 server sshd\[15133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 user=root Nov 28 09:28:41 server sshd\[15133\]: Failed password for root from 139.199.219.235 port 36634 ssh2 ...	2019-11-28 16:06:09
139.199.219.235	attackbots	Nov 28 03:25:38 ws24vmsma01 sshd[117684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 28 03:25:39 ws24vmsma01 sshd[117684]: Failed password for invalid user admin from 139.199.219.235 port 36246 ssh2 ...	2019-11-28 14:28:34
139.199.219.235	attack	Nov 20 07:25:54 jane sshd[15978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 20 07:25:56 jane sshd[15978]: Failed password for invalid user storhaug from 139.199.219.235 port 50590 ssh2 ...	2019-11-20 18:08:15
139.199.219.235	attackbots	Automatic report - SSH Brute-Force Attack	2019-11-15 16:41:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.219.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.219.2.			IN	A

;; AUTHORITY SECTION:
.			312	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:29:49 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 2.219.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.219.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.88.213.190	attackspambots	20 attempts against mh-ssh on comet.magehost.pro	2019-07-29 22:33:48
46.3.96.67	attackspam	Jul 29 16:01:06 lumpi kernel: INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=46.3.96.67 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=45595 PROTO=TCP SPT=44201 DPT=9521 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-07-29 22:39:26
189.230.93.43	attackspam	Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445	2019-07-29 22:25:28
66.249.73.142	attackbots	Automatic report - Banned IP Access	2019-07-29 23:20:31
134.175.109.203	attackbots	SSH/22 MH Probe, BF, Hack -	2019-07-29 22:43:57
132.232.59.247	attack	SSH/22 MH Probe, BF, Hack -	2019-07-29 22:52:37
91.206.15.33	attack	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-29 22:10:28
51.75.52.127	attackbotsspam	Jul 29 15:26:05 loc sshd\[21049\]: Did not receive identification string from 51.75.52.127 port 45434 ...	2019-07-29 22:19:34
115.164.45.96	attackbotsspam	PHI,WP GET /wp-login.php	2019-07-29 23:06:18
118.68.74.71	attackbots	Trying to (more than 3 packets) bruteforce (not open) telnet port 23	2019-07-29 22:33:09
201.93.81.227	attack	Jul 29 09:18:30 aat-srv002 sshd[11457]: Failed password for root from 201.93.81.227 port 57266 ssh2 Jul 29 09:24:01 aat-srv002 sshd[11609]: Failed password for root from 201.93.81.227 port 54121 ssh2 Jul 29 09:29:38 aat-srv002 sshd[11687]: Failed password for root from 201.93.81.227 port 50974 ssh2 ...	2019-07-29 22:48:15
46.3.96.66	attack	29.07.2019 14:16:20 Connection to port 9418 blocked by firewall	2019-07-29 22:40:03
94.23.46.106	attackbotsspam	EventTime:Mon Jul 29 16:42:28 AEST 2019,Protocol:UDP,VendorEventCode:RT_FLOW_SESSION_DENY,TargetPort:53,SourceIP:94.23.46.106,SourcePort:47784	2019-07-29 22:43:30
193.81.36.50	attackbots	Jul 29 05:29:00 TORMINT sshd\[26037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.81.36.50 user=root Jul 29 05:29:02 TORMINT sshd\[26037\]: Failed password for root from 193.81.36.50 port 59166 ssh2 Jul 29 05:33:37 TORMINT sshd\[26173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.81.36.50 user=root ...	2019-07-29 23:10:47
123.110.113.95	attackbotsspam	5555/tcp 5555/tcp 5555/tcp [2019-07-29]3pkt	2019-07-29 22:32:38

最近上报的IP列表

122.155.11.5	122.51.49.9	121.22.111.110	121.130.93.2
121.66.224.9	119.29.203.1	108.162.210.154	134.209.24.63
119.29.10.2	118.98.127.1	118.24.114.1	117.157.15.2
115.112.143.1	114.118.96.2	114.112.58.1	119.90.3.21
113.200.236.6	111.93.200.5	111.68.104.1	221.232.130.26