139.219.1.73 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ssh failed login	2020-02-11 17:37:39
attack	SSH Login Bruteforce	2020-01-18 23:34:30
attackbots	Invalid user kernel from 139.219.1.73 port 40916	2020-01-18 02:36:40

相同子网IP讨论:

IP	类型	评论内容	时间
139.219.1.112	attack	2020-10-06T23:54:53.081516ionos.janbro.de sshd[222999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-06T23:54:54.834592ionos.janbro.de sshd[222999]: Failed password for root from 139.219.1.112 port 48082 ssh2 2020-10-06T23:58:53.872309ionos.janbro.de sshd[223001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-06T23:58:55.906422ionos.janbro.de sshd[223001]: Failed password for root from 139.219.1.112 port 51258 ssh2 2020-10-07T00:02:47.911169ionos.janbro.de sshd[223022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-07T00:02:50.070472ionos.janbro.de sshd[223022]: Failed password for root from 139.219.1.112 port 54432 ssh2 2020-10-07T00:06:47.097202ionos.janbro.de sshd[223029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ...	2020-10-08 01:49:38
139.219.1.112	attack	2020-10-06T23:54:53.081516ionos.janbro.de sshd[222999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-06T23:54:54.834592ionos.janbro.de sshd[222999]: Failed password for root from 139.219.1.112 port 48082 ssh2 2020-10-06T23:58:53.872309ionos.janbro.de sshd[223001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-06T23:58:55.906422ionos.janbro.de sshd[223001]: Failed password for root from 139.219.1.112 port 51258 ssh2 2020-10-07T00:02:47.911169ionos.janbro.de sshd[223022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 user=root 2020-10-07T00:02:50.070472ionos.janbro.de sshd[223022]: Failed password for root from 139.219.1.112 port 54432 ssh2 2020-10-07T00:06:47.097202ionos.janbro.de sshd[223029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ...	2020-10-07 17:58:00
139.219.11.254	attackspambots	2020-10-07T04:24:28.732143billing sshd[11343]: Failed password for root from 139.219.11.254 port 58792 ssh2 2020-10-07T04:29:16.495199billing sshd[22178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.11.254 user=root 2020-10-07T04:29:18.811131billing sshd[22178]: Failed password for root from 139.219.11.254 port 60970 ssh2 ...	2020-10-07 07:24:26
139.219.11.254	attack	Oct 6 10:40:55 mail sshd[6207]: Failed password for root from 139.219.11.254 port 56568 ssh2 ...	2020-10-06 23:48:20
139.219.11.254	attack	SSH Brute-Force Attack	2020-10-06 15:36:41
139.219.11.254	attackbots	Oct 1 15:13:08 mellenthin sshd[25510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.11.254 user=root Oct 1 15:13:10 mellenthin sshd[25510]: Failed password for invalid user root from 139.219.11.254 port 45166 ssh2	2020-10-02 02:53:29
139.219.11.254	attackspam	$f2bV_matches	2020-10-01 19:04:50
139.219.11.254	attack	Sep 19 22:42:08 NG-HHDC-SVS-001 sshd[23649]: Invalid user test from 139.219.11.254 ...	2020-09-19 23:17:45
139.219.11.254	attackbots	SSH brutforce	2020-09-19 06:43:21
139.219.13.163	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-31 00:00:12
139.219.13.163	attackspam	Aug 18 00:58:21 firewall sshd[26159]: Failed password for invalid user pi from 139.219.13.163 port 57234 ssh2 Aug 18 01:00:09 firewall sshd[26217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 user=root Aug 18 01:00:11 firewall sshd[26217]: Failed password for root from 139.219.13.163 port 54190 ssh2 ...	2020-08-18 12:15:23
139.219.13.163	attack	2020-08-17T15:15:58.512728vps1033 sshd[25995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 2020-08-17T15:15:58.508749vps1033 sshd[25995]: Invalid user odoo from 139.219.13.163 port 54178 2020-08-17T15:16:00.879162vps1033 sshd[25995]: Failed password for invalid user odoo from 139.219.13.163 port 54178 ssh2 2020-08-17T15:19:01.684501vps1033 sshd[32377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 user=root 2020-08-17T15:19:03.174303vps1033 sshd[32377]: Failed password for root from 139.219.13.163 port 58462 ssh2 ...	2020-08-18 00:19:49
139.219.13.163	attackbots	reported through recidive - multiple failed attempts(SSH)	2020-08-16 07:30:15
139.219.13.163	attack	2020-08-05T02:45:47.205393hostname sshd[117209]: Failed password for root from 139.219.13.163 port 38614 ssh2 ...	2020-08-07 03:06:35
139.219.13.163	attackspambots	Aug 4 12:15:31 eventyay sshd[17591]: Failed password for root from 139.219.13.163 port 52612 ssh2 Aug 4 12:18:37 eventyay sshd[17718]: Failed password for root from 139.219.13.163 port 40292 ssh2 ...	2020-08-04 21:31:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.1.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21910
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.1.73.			IN	A

;; AUTHORITY SECTION:
.			261	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 02:36:36 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 73.1.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 73.1.219.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
132.232.59.136	attackbotsspam	Nov 24 19:54:17 firewall sshd[3226]: Invalid user mccormick from 132.232.59.136 Nov 24 19:54:19 firewall sshd[3226]: Failed password for invalid user mccormick from 132.232.59.136 port 57360 ssh2 Nov 24 19:58:31 firewall sshd[3307]: Invalid user gdm from 132.232.59.136 ...	2019-11-25 07:46:28
156.236.70.215	attack	Nov 24 13:33:08 web9 sshd\[2772\]: Invalid user broumas from 156.236.70.215 Nov 24 13:33:08 web9 sshd\[2772\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.236.70.215 Nov 24 13:33:10 web9 sshd\[2772\]: Failed password for invalid user broumas from 156.236.70.215 port 45720 ssh2 Nov 24 13:40:13 web9 sshd\[3739\]: Invalid user simy from 156.236.70.215 Nov 24 13:40:13 web9 sshd\[3739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.236.70.215	2019-11-25 07:59:17
60.181.111.6	attack	DATE:2019-11-24 23:58:30, IP:60.181.111.6, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-11-25 07:48:54
46.101.224.144	attackspam	2019-11-25T00:13:19.031231stark.klein-stark.info sshd\[21893\]: Invalid user fake from 46.101.224.144 port 46274 2019-11-25T00:13:19.044012stark.klein-stark.info sshd\[21893\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.224.144 2019-11-25T00:13:21.196418stark.klein-stark.info sshd\[21893\]: Failed password for invalid user fake from 46.101.224.144 port 46274 ssh2 ...	2019-11-25 07:29:54
193.31.24.113	attack	11/25/2019-00:58:18.615335 193.31.24.113 Protocol: 6 ET GAMES MINECRAFT Server response outbound	2019-11-25 08:00:22
185.162.235.107	attackspam	Unauthorized connection attempt from IP address 185.162.235.107 on Port 25(SMTP)	2019-11-25 07:56:39
185.86.164.100	attackbots	multiple attempts at wp-login using admin	2019-11-25 07:47:51
84.194.203.119	attack	Syn flood / slowloris	2019-11-25 07:33:15
76.66.104.8	attackbots	Automatic report - Port Scan Attack	2019-11-25 07:49:26
200.111.137.132	attackbotsspam	Nov 24 13:10:37 hpm sshd\[29628\]: Invalid user test1235 from 200.111.137.132 Nov 24 13:10:37 hpm sshd\[29628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132 Nov 24 13:10:39 hpm sshd\[29628\]: Failed password for invalid user test1235 from 200.111.137.132 port 37718 ssh2 Nov 24 13:17:05 hpm sshd\[30192\]: Invalid user !@\#\$%\^ from 200.111.137.132 Nov 24 13:17:05 hpm sshd\[30192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132	2019-11-25 07:52:02
189.90.255.173	attackbots	Nov 24 13:37:18 wbs sshd\[22254\]: Invalid user whitsell from 189.90.255.173 Nov 24 13:37:18 wbs sshd\[22254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-189-90-255-173.isp.valenet.com.br Nov 24 13:37:21 wbs sshd\[22254\]: Failed password for invalid user whitsell from 189.90.255.173 port 55865 ssh2 Nov 24 13:45:18 wbs sshd\[23037\]: Invalid user testing from 189.90.255.173 Nov 24 13:45:18 wbs sshd\[23037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-189-90-255-173.isp.valenet.com.br	2019-11-25 07:47:29
94.177.250.221	attackbots	Nov 25 01:34:15 sauna sshd[215997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221 Nov 25 01:34:16 sauna sshd[215997]: Failed password for invalid user atanu from 94.177.250.221 port 60980 ssh2 ...	2019-11-25 07:46:48
106.12.106.78	attackbots	Nov 24 23:53:03 ovpn sshd\[19946\]: Invalid user cbaird2 from 106.12.106.78 Nov 24 23:53:03 ovpn sshd\[19946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.106.78 Nov 24 23:53:05 ovpn sshd\[19946\]: Failed password for invalid user cbaird2 from 106.12.106.78 port 54696 ssh2 Nov 24 23:58:56 ovpn sshd\[21380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.106.78 user=root Nov 24 23:58:58 ovpn sshd\[21380\]: Failed password for root from 106.12.106.78 port 54200 ssh2	2019-11-25 07:29:37
182.76.165.86	attackspam	2019-11-24T22:59:01.152006abusebot.cloudsearch.cf sshd\[7534\]: Invalid user stampfli from 182.76.165.86 port 56798	2019-11-25 07:26:50
222.232.29.235	attackbotsspam	Sep 5 10:04:47 vtv3 sshd[28097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 Sep 5 10:15:27 vtv3 sshd[1334]: Invalid user postgres from 222.232.29.235 port 54940 Sep 5 10:15:27 vtv3 sshd[1334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 Sep 5 10:15:29 vtv3 sshd[1334]: Failed password for invalid user postgres from 222.232.29.235 port 54940 ssh2 Sep 5 10:20:37 vtv3 sshd[4015]: Invalid user sysop from 222.232.29.235 port 42300 Sep 5 10:20:37 vtv3 sshd[4015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 Sep 5 10:31:08 vtv3 sshd[9019]: Invalid user postgres from 222.232.29.235 port 45252 Sep 5 10:31:08 vtv3 sshd[9019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 Sep 5 10:31:10 vtv3 sshd[9019]: Failed password for invalid user postgres from 222.232.29.235 port 45252 ssh2 Se	2019-11-25 08:02:34

最近上报的IP列表

111.200.216.72	106.13.38.58	103.81.51.4	51.91.158.160
110.88.55.188	47.225.167.217	35.200.103.202	47.89.161.92
34.93.76.111	13.126.34.182	223.95.81.159	223.16.2.52
222.119.161.155	202.39.28.8	188.149.155.92	33.122.75.35
185.249.198.46	93.250.158.149	146.199.171.103	138.201.95.98