139.219.136.15

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Mar 3 16:42:41 dedicated sshd[3013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.136.15 user=root Mar 3 16:42:43 dedicated sshd[3013]: Failed password for root from 139.219.136.15 port 51818 ssh2	2020-03-04 05:01:20
attack	Mar 3 05:59:24 dedicated sshd[19566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.136.15 user=root Mar 3 05:59:26 dedicated sshd[19566]: Failed password for root from 139.219.136.15 port 45484 ssh2	2020-03-03 13:07:29

类型

评论内容

时间

attackspam

Mar  3 16:42:41 dedicated sshd[3013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.136.15  user=root
Mar  3 16:42:43 dedicated sshd[3013]: Failed password for root from 139.219.136.15 port 51818 ssh2

2020-03-04 05:01:20

attack

Mar  3 05:59:24 dedicated sshd[19566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.136.15  user=root
Mar  3 05:59:26 dedicated sshd[19566]: Failed password for root from 139.219.136.15 port 45484 ssh2

2020-03-03 13:07:29

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.136.15
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20248
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.136.15.			IN	A

;; AUTHORITY SECTION:
.			400	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030201 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 13:07:18 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 15.136.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 15.136.219.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.41	attack	Jul 4 06:05:43 vm1 sshd[22670]: Failed password for root from 222.186.180.41 port 15720 ssh2 Jul 4 06:05:57 vm1 sshd[22670]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 15720 ssh2 [preauth] ...	2020-07-04 12:07:17
106.37.232.162	attackspam	Icarus honeypot on github	2020-07-04 12:11:30
124.156.103.155	attack	Jul 4 03:38:40 ip-172-31-62-245 sshd\[644\]: Failed password for root from 124.156.103.155 port 36598 ssh2\ Jul 4 03:40:40 ip-172-31-62-245 sshd\[728\]: Invalid user asw from 124.156.103.155\ Jul 4 03:40:42 ip-172-31-62-245 sshd\[728\]: Failed password for invalid user asw from 124.156.103.155 port 34192 ssh2\ Jul 4 03:42:41 ip-172-31-62-245 sshd\[754\]: Failed password for root from 124.156.103.155 port 60000 ssh2\ Jul 4 03:44:49 ip-172-31-62-245 sshd\[765\]: Failed password for root from 124.156.103.155 port 57600 ssh2\	2020-07-04 12:15:54
91.121.101.77	attack	91.121.101.77 - - [04/Jul/2020:04:52:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.101.77 - - [04/Jul/2020:04:52:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2083 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.101.77 - - [04/Jul/2020:04:52:26 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 12:12:26
167.172.38.238	attackbotsspam	Jul 3 05:26:39 XXX sshd[28830]: Invalid user apache from 167.172.38.238 port 39274	2020-07-04 12:15:33
120.92.155.102	attackspam	Jul 4 05:37:16 vps687878 sshd\[7902\]: Invalid user mycat from 120.92.155.102 port 49046 Jul 4 05:37:16 vps687878 sshd\[7902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.155.102 Jul 4 05:37:18 vps687878 sshd\[7902\]: Failed password for invalid user mycat from 120.92.155.102 port 49046 ssh2 Jul 4 05:40:42 vps687878 sshd\[8293\]: Invalid user sdt from 120.92.155.102 port 24814 Jul 4 05:40:42 vps687878 sshd\[8293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.155.102 ...	2020-07-04 11:58:47
67.216.206.250	attackspam	Jul 4 01:13:57 vm0 sshd[30173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.216.206.250 Jul 4 01:13:59 vm0 sshd[30173]: Failed password for invalid user afp from 67.216.206.250 port 58546 ssh2 ...	2020-07-04 12:09:00
117.102.197.53	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-04 12:28:07
79.138.11.247	attackspam	Telnet Server BruteForce Attack	2020-07-04 12:18:54
120.132.14.42	attack	Jul 4 06:14:24 web-main sshd[199429]: Invalid user wp from 120.132.14.42 port 36066 Jul 4 06:14:25 web-main sshd[199429]: Failed password for invalid user wp from 120.132.14.42 port 36066 ssh2 Jul 4 06:18:24 web-main sshd[199462]: Invalid user ron from 120.132.14.42 port 45292	2020-07-04 12:24:18
193.112.140.108	attackspambots	Jul 4 02:19:43 powerpi2 sshd[30647]: Invalid user deploy from 193.112.140.108 port 53394 Jul 4 02:19:45 powerpi2 sshd[30647]: Failed password for invalid user deploy from 193.112.140.108 port 53394 ssh2 Jul 4 02:23:42 powerpi2 sshd[30820]: Invalid user carolina from 193.112.140.108 port 39486 ...	2020-07-04 12:05:36
54.71.115.235	attack	54.71.115.235 - - [04/Jul/2020:00:13:53 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [04/Jul/2020:00:13:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1768 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [04/Jul/2020:00:13:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 12:10:22
177.22.91.247	attackbotsspam	2020-07-04T01:09:57.730062vps773228.ovh.net sshd[25557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.22.91.247 2020-07-04T01:09:57.712554vps773228.ovh.net sshd[25557]: Invalid user manuel from 177.22.91.247 port 58078 2020-07-04T01:09:59.927300vps773228.ovh.net sshd[25557]: Failed password for invalid user manuel from 177.22.91.247 port 58078 ssh2 2020-07-04T01:13:43.947605vps773228.ovh.net sshd[25583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.22.91.247 user=root 2020-07-04T01:13:46.500791vps773228.ovh.net sshd[25583]: Failed password for root from 177.22.91.247 port 55888 ssh2 ...	2020-07-04 12:18:32
112.85.42.174	attack	2020-07-04T06:49:24.668605snf-827550 sshd[31855]: Failed password for root from 112.85.42.174 port 50973 ssh2 2020-07-04T06:49:28.387058snf-827550 sshd[31855]: Failed password for root from 112.85.42.174 port 50973 ssh2 2020-07-04T06:49:31.164866snf-827550 sshd[31855]: Failed password for root from 112.85.42.174 port 50973 ssh2 ...	2020-07-04 11:55:04
51.83.57.157	attackbotsspam	detected by Fail2Ban	2020-07-04 12:29:57

最近上报的IP列表

36.71.235.234	191.55.195.178	149.202.208.104	59.153.234.135
30.229.43.176	94.102.51.79	185.220.100.248	92.116.132.209
90.142.48.232	36.81.7.88	118.174.146.226	27.109.227.150
2a01:4f8:150:9061::2	36.68.238.65	137.97.30.113	61.154.174.54
168.90.176.12	87.16.189.44	42.114.191.239	113.160.215.202