139.219.10.63 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shanghai Blue Cloud Technology Co.,Ltd

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jul 15 16:03:25 rpi sshd[12435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63 Jul 15 16:03:26 rpi sshd[12435]: Failed password for invalid user l4d2server from 139.219.10.63 port 54358 ssh2	2019-07-15 22:25:35
attackbotsspam	Jul 15 06:43:48 localhost sshd\[60944\]: Invalid user ubuntu from 139.219.10.63 port 47716 Jul 15 06:43:48 localhost sshd\[60944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63 ...	2019-07-15 13:58:30
attackspam	Jul 1 22:36:48 server sshd\[223044\]: Invalid user test from 139.219.10.63 Jul 1 22:36:48 server sshd\[223044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63 Jul 1 22:36:50 server sshd\[223044\]: Failed password for invalid user test from 139.219.10.63 port 52488 ssh2 ...	2019-07-12 07:43:47

类型

评论内容

时间

attackspambots

Jul 15 16:03:25 rpi sshd[12435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63 
Jul 15 16:03:26 rpi sshd[12435]: Failed password for invalid user l4d2server from 139.219.10.63 port 54358 ssh2

2019-07-15 22:25:35

attackbotsspam

Jul 15 06:43:48 localhost sshd\[60944\]: Invalid user ubuntu from 139.219.10.63 port 47716
Jul 15 06:43:48 localhost sshd\[60944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63
...

2019-07-15 13:58:30

attackspam

Jul  1 22:36:48 server sshd\[223044\]: Invalid user test from 139.219.10.63
Jul  1 22:36:48 server sshd\[223044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63
Jul  1 22:36:50 server sshd\[223044\]: Failed password for invalid user test from 139.219.10.63 port 52488 ssh2
...

2019-07-12 07:43:47

相同子网IP讨论:

IP	类型	评论内容	时间
139.219.100.94	attackspam	2020-01-02T17:36:38.841192suse-nuc sshd[10688]: Invalid user ftpuser from 139.219.100.94 port 38646 ...	2020-02-25 12:17:58
139.219.100.94	attack	$f2bV_matches	2020-02-14 05:33:53
139.219.100.94	attackspam	Jan 21 17:17:06 localhost sshd\[2730\]: Invalid user bill from 139.219.100.94 port 36530 Jan 21 17:17:06 localhost sshd\[2730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.100.94 Jan 21 17:17:07 localhost sshd\[2730\]: Failed password for invalid user bill from 139.219.100.94 port 36530 ssh2	2020-01-22 00:32:54
139.219.100.94	attackspambots	2019-12-23T15:58:57.815085shield sshd\[9215\]: Invalid user zamarian from 139.219.100.94 port 37638 2019-12-23T15:58:57.819676shield sshd\[9215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.100.94 2019-12-23T15:58:59.353912shield sshd\[9215\]: Failed password for invalid user zamarian from 139.219.100.94 port 37638 ssh2 2019-12-23T16:04:40.720069shield sshd\[11000\]: Invalid user ppppp from 139.219.100.94 port 59598 2019-12-23T16:04:40.724156shield sshd\[11000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.100.94	2019-12-24 03:26:49
139.219.107.11	attack	2019-08-16T09:02:35.085370abusebot-6.cloudsearch.cf sshd\[4528\]: Invalid user menu from 139.219.107.11 port 51748	2019-08-16 23:07:32
139.219.107.11	attackspambots	Mar 5 19:37:16 vtv3 sshd\[24643\]: Invalid user bh from 139.219.107.11 port 37436 Mar 5 19:37:16 vtv3 sshd\[24643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Mar 5 19:37:18 vtv3 sshd\[24643\]: Failed password for invalid user bh from 139.219.107.11 port 37436 ssh2 Mar 5 19:46:18 vtv3 sshd\[27594\]: Invalid user vagrant from 139.219.107.11 port 42684 Mar 5 19:46:18 vtv3 sshd\[27594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Mar 24 01:18:35 vtv3 sshd\[30021\]: Invalid user wp from 139.219.107.11 port 47716 Mar 24 01:18:35 vtv3 sshd\[30021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Mar 24 01:18:37 vtv3 sshd\[30021\]: Failed password for invalid user wp from 139.219.107.11 port 47716 ssh2 Mar 24 01:24:11 vtv3 sshd\[32229\]: Invalid user kh from 139.219.107.11 port 55076 Mar 24 01:24:11 vtv3 sshd\[32229\]: pam_unix\	2019-08-08 00:37:52
139.219.107.11	attackbotsspam	Automatic report - Web App Attack	2019-07-12 07:42:08
139.219.107.11	attackbotsspam	k+ssh-bruteforce	2019-07-11 03:27:19
139.219.107.11	attackbots	Jul 10 08:50:39 ip-172-31-1-72 sshd\[24496\]: Invalid user srv from 139.219.107.11 Jul 10 08:50:39 ip-172-31-1-72 sshd\[24496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Jul 10 08:50:41 ip-172-31-1-72 sshd\[24496\]: Failed password for invalid user srv from 139.219.107.11 port 46174 ssh2 Jul 10 08:59:29 ip-172-31-1-72 sshd\[24575\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 user=root Jul 10 08:59:32 ip-172-31-1-72 sshd\[24575\]: Failed password for root from 139.219.107.11 port 56558 ssh2	2019-07-10 17:06:22
139.219.107.11	attack	Jul 9 03:30:03 MK-Soft-VM4 sshd\[19814\]: Invalid user tania from 139.219.107.11 port 51252 Jul 9 03:30:03 MK-Soft-VM4 sshd\[19814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Jul 9 03:30:05 MK-Soft-VM4 sshd\[19814\]: Failed password for invalid user tania from 139.219.107.11 port 51252 ssh2 ...	2019-07-09 14:40:37
139.219.107.11	attackspambots	Jul 7 01:34:54 vps sshd[28551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Jul 7 01:34:56 vps sshd[28551]: Failed password for invalid user devhdfc from 139.219.107.11 port 44462 ssh2 Jul 7 01:50:23 vps sshd[29122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 ...	2019-07-07 08:56:51

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.10.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56009
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.10.63.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 04:36:13 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 63.10.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 63.10.219.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
34.66.101.36	attackbotsspam	$f2bV_matches	2020-08-03 15:35:06
54.36.180.236	attackspambots	Aug 3 05:54:12 ns37 sshd[8369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.180.236	2020-08-03 15:27:43
42.236.10.93	attackspambots	port scan and connect, tcp 443 (https)	2020-08-03 15:31:18
193.33.240.91	attackspam	Aug 3 09:15:47 abendstille sshd\[3819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.33.240.91 user=root Aug 3 09:15:49 abendstille sshd\[3819\]: Failed password for root from 193.33.240.91 port 33533 ssh2 Aug 3 09:19:45 abendstille sshd\[7781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.33.240.91 user=root Aug 3 09:19:47 abendstille sshd\[7781\]: Failed password for root from 193.33.240.91 port 53488 ssh2 Aug 3 09:23:32 abendstille sshd\[11529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.33.240.91 user=root ...	2020-08-03 15:59:00
43.226.158.202	attackbotsspam	Aug 3 08:29:01 vestacp sshd[17490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.158.202 user=r.r Aug 3 08:29:03 vestacp sshd[17490]: Failed password for r.r from 43.226.158.202 port 41079 ssh2 Aug 3 08:29:05 vestacp sshd[17490]: Received disconnect from 43.226.158.202 port 41079:11: Bye Bye [preauth] Aug 3 08:29:05 vestacp sshd[17490]: Disconnected from authenticating user r.r 43.226.158.202 port 41079 [preauth] Aug 3 08:31:00 vestacp sshd[17672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.158.202 user=r.r Aug 3 08:31:01 vestacp sshd[17672]: Failed password for r.r from 43.226.158.202 port 49335 ssh2 Aug 3 08:31:03 vestacp sshd[17672]: Received disconnect from 43.226.158.202 port 49335:11: Bye Bye [preauth] Aug 3 08:31:03 vestacp sshd[17672]: Disconnected from authenticating user r.r 43.226.158.202 port 49335 [preauth] Aug 3 08:31:53 vestacp sshd[17716]: pam........ -------------------------------	2020-08-03 15:45:05
118.70.85.164	attack	20/8/2@23:54:15: FAIL: Alarm-Intrusion address from=118.70.85.164 ...	2020-08-03 15:25:27
104.143.37.38	attackspambots	Aug 3 09:11:07 lukav-desktop sshd\[7130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.143.37.38 user=root Aug 3 09:11:09 lukav-desktop sshd\[7130\]: Failed password for root from 104.143.37.38 port 55366 ssh2 Aug 3 09:15:42 lukav-desktop sshd\[26647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.143.37.38 user=root Aug 3 09:15:44 lukav-desktop sshd\[26647\]: Failed password for root from 104.143.37.38 port 40368 ssh2 Aug 3 09:20:10 lukav-desktop sshd\[26736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.143.37.38 user=root	2020-08-03 15:40:06
139.59.135.84	attack	$f2bV_matches	2020-08-03 15:49:08
110.164.189.53	attackspambots	Aug 3 07:18:55 jumpserver sshd[370251]: Failed password for root from 110.164.189.53 port 43480 ssh2 Aug 3 07:20:13 jumpserver sshd[370269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.189.53 user=root Aug 3 07:20:15 jumpserver sshd[370269]: Failed password for root from 110.164.189.53 port 32944 ssh2 ...	2020-08-03 15:32:19
87.251.74.30	attackspam	TCP (SYN) 87.251.74.30:15380 -> port 1080, len 60	2020-08-03 15:44:04
222.186.30.35	attackspambots	Aug 3 09:28:49 v22018053744266470 sshd[12519]: Failed password for root from 222.186.30.35 port 62081 ssh2 Aug 3 09:28:59 v22018053744266470 sshd[12532]: Failed password for root from 222.186.30.35 port 45505 ssh2 ...	2020-08-03 15:31:49
191.234.178.140	attackspambots	2020-08-03T05:53:58.410833ks3355764 sshd[21173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.234.178.140 user=root 2020-08-03T05:54:00.494494ks3355764 sshd[21173]: Failed password for root from 191.234.178.140 port 35936 ssh2 ...	2020-08-03 15:36:10
128.14.141.103	attackbots	Port scan: Attack repeated for 24 hours	2020-08-03 15:48:37
222.186.30.218	attackspam	Aug 3 09:30:44 vps647732 sshd[4786]: Failed password for root from 222.186.30.218 port 45155 ssh2 ...	2020-08-03 15:42:31
51.75.126.131	attackspam	<6 unauthorized SSH connections	2020-08-03 15:52:57

最近上报的IP列表

154.48.224.89	69.162.127.162	187.189.88.182	182.61.14.163
151.80.47.25	89.6.100.127	69.64.56.249	209.17.96.242
178.128.246.54	125.163.232.17	69.12.67.85	203.198.130.227
178.128.89.118	89.217.216.20	80.74.119.64	177.54.97.125
68.183.225.17	27.72.147.233	92.46.228.197	85.21.64.193