139.219.14.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user kissee from 139.219.14.12 port 57930	2019-12-19 04:48:33
attack	Dec 14 20:40:39 hosting sshd[3956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Dec 14 20:40:41 hosting sshd[3956]: Failed password for root from 139.219.14.12 port 45446 ssh2 ...	2019-12-15 04:06:46
attack	Dec 10 12:51:05 server sshd\[27600\]: Invalid user schnur from 139.219.14.12 Dec 10 12:51:05 server sshd\[27600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Dec 10 12:51:07 server sshd\[27600\]: Failed password for invalid user schnur from 139.219.14.12 port 41286 ssh2 Dec 10 13:22:45 server sshd\[4359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=mysql Dec 10 13:22:47 server sshd\[4359\]: Failed password for mysql from 139.219.14.12 port 38148 ssh2 ...	2019-12-10 22:12:20
attack	SSH login attempt with user guest	2019-11-24 18:15:35
attackspam	Nov 23 18:07:24 microserver sshd[57127]: Invalid user asterisk from 139.219.14.12 port 42578 Nov 23 18:07:24 microserver sshd[57127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:07:26 microserver sshd[57127]: Failed password for invalid user asterisk from 139.219.14.12 port 42578 ssh2 Nov 23 18:11:44 microserver sshd[57755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Nov 23 18:11:46 microserver sshd[57755]: Failed password for root from 139.219.14.12 port 45332 ssh2 Nov 23 18:23:44 microserver sshd[59184]: Invalid user melle from 139.219.14.12 port 53580 Nov 23 18:23:44 microserver sshd[59184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Nov 23 18:23:47 microserver sshd[59184]: Failed password for invalid user melle from 139.219.14.12 port 53580 ssh2 Nov 23 18:27:47 microserver sshd[59789]: pam_unix(sshd:auth): authe	2019-11-23 23:08:07
attackbots	$f2bV_matches	2019-10-24 14:06:03
attackspam	Oct 16 02:27:54 master sshd[28548]: Failed password for invalid user rt from 139.219.14.12 port 60300 ssh2	2019-10-16 08:55:12
attackbotsspam	Oct 10 16:14:47 MK-Soft-VM3 sshd[4895]: Failed password for root from 139.219.14.12 port 46212 ssh2 ...	2019-10-10 23:07:41
attackspambots	Oct 8 05:42:20 dev0-dcde-rnet sshd[1002]: Failed password for root from 139.219.14.12 port 52504 ssh2 Oct 8 05:47:04 dev0-dcde-rnet sshd[1025]: Failed password for root from 139.219.14.12 port 37514 ssh2	2019-10-08 18:24:30
attackbots	$f2bV_matches	2019-10-03 00:54:08
attackspambots	Oct 1 02:33:22 sachi sshd\[28916\]: Invalid user flume from 139.219.14.12 Oct 1 02:33:22 sachi sshd\[28916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Oct 1 02:33:24 sachi sshd\[28916\]: Failed password for invalid user flume from 139.219.14.12 port 52702 ssh2 Oct 1 02:38:02 sachi sshd\[29322\]: Invalid user unknown from 139.219.14.12 Oct 1 02:38:02 sachi sshd\[29322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12	2019-10-01 20:43:20
attackspam	Sep 28 03:59:03 php1 sshd\[21397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 user=root Sep 28 03:59:06 php1 sshd\[21397\]: Failed password for root from 139.219.14.12 port 57164 ssh2 Sep 28 04:06:04 php1 sshd\[22043\]: Invalid user temp from 139.219.14.12 Sep 28 04:06:04 php1 sshd\[22043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Sep 28 04:06:06 php1 sshd\[22043\]: Failed password for invalid user temp from 139.219.14.12 port 54032 ssh2	2019-09-28 22:21:23
attackbots	Sep 6 01:38:46 xtremcommunity sshd\[28955\]: Invalid user bots from 139.219.14.12 port 34886 Sep 6 01:38:46 xtremcommunity sshd\[28955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 Sep 6 01:38:48 xtremcommunity sshd\[28955\]: Failed password for invalid user bots from 139.219.14.12 port 34886 ssh2 Sep 6 01:42:06 xtremcommunity sshd\[29098\]: Invalid user hduser from 139.219.14.12 port 33616 Sep 6 01:42:06 xtremcommunity sshd\[29098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.14.12 ...	2019-09-06 20:43:41
attackbotsspam	Aug 30 16:11:21 XXXXXX sshd[60014]: Invalid user enzo from 139.219.14.12 port 57362	2019-08-31 03:00:31
attackbots	Aug 30 03:05:27 www2 sshd\[13803\]: Invalid user yunmen from 139.219.14.12Aug 30 03:05:29 www2 sshd\[13803\]: Failed password for invalid user yunmen from 139.219.14.12 port 35960 ssh2Aug 30 03:10:40 www2 sshd\[14356\]: Invalid user harmeet from 139.219.14.12 ...	2019-08-30 13:15:29

相同子网IP讨论:

IP	类型	评论内容	时间
139.219.140.60	attack	Mar 31 01:48:56 vps sshd[269848]: Failed password for root from 139.219.140.60 port 37932 ssh2 Mar 31 01:52:27 vps sshd[290396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=root Mar 31 01:52:29 vps sshd[290396]: Failed password for root from 139.219.140.60 port 33290 ssh2 Mar 31 01:56:08 vps sshd[311274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=root Mar 31 01:56:10 vps sshd[311274]: Failed password for root from 139.219.140.60 port 54292 ssh2 ...	2020-03-31 08:59:40
139.219.140.60	attackspambots	2020-03-28T12:29:23.601490ldap.arvenenaske.de sshd[106299]: Connection from 139.219.140.60 port 36424 on 5.199.128.55 port 22 rdomain "" 2020-03-28T12:29:25.243782ldap.arvenenaske.de sshd[106299]: Invalid user ed from 139.219.140.60 port 36424 2020-03-28T12:29:25.249738ldap.arvenenaske.de sshd[106299]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 user=ed 2020-03-28T12:29:25.250555ldap.arvenenaske.de sshd[106299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.140.60 2020-03-28T12:29:23.601490ldap.arvenenaske.de sshd[106299]: Connection from 139.219.140.60 port 36424 on 5.199.128.55 port 22 rdomain "" 2020-03-28T12:29:25.243782ldap.arvenenaske.de sshd[106299]: Invalid user ed from 139.219.140.60 port 36424 2020-03-28T12:29:27.642535ldap.arvenenaske.de sshd[106299]: Failed password for invalid user ed from 139.219.140.60 port 36424 ssh2 2020-03-28T12:36:33.735048ldap.a........ ------------------------------	2020-03-28 22:25:15
139.219.143.176	attack	Feb 12 15:51:36 firewall sshd[28842]: Invalid user disney from 139.219.143.176 Feb 12 15:51:39 firewall sshd[28842]: Failed password for invalid user disney from 139.219.143.176 port 19928 ssh2 Feb 12 15:55:03 firewall sshd[29019]: Invalid user sabiya from 139.219.143.176 ...	2020-02-13 05:03:14
139.219.143.176	attackbots	Jan 11 15:01:00 mout sshd[22360]: Invalid user 2wsx3edc from 139.219.143.176 port 36501	2020-01-11 22:35:27
139.219.143.176	attackspambots	Dec 27 14:39:20 raspberrypi sshd\[28372\]: Invalid user stokoe from 139.219.143.176Dec 27 14:39:23 raspberrypi sshd\[28372\]: Failed password for invalid user stokoe from 139.219.143.176 port 22672 ssh2Dec 27 14:52:19 raspberrypi sshd\[29526\]: Failed password for mysql from 139.219.143.176 port 57537 ssh2 ...	2019-12-27 23:35:37
139.219.143.176	attackbotsspam	sshd jail - ssh hack attempt	2019-12-11 04:53:47
139.219.143.176	attack	$f2bV_matches	2019-12-05 04:07:10
139.219.143.176	attack	ssh failed login	2019-12-02 21:33:36
139.219.143.176	attackspambots	[Aegis] @ 2019-11-30 14:36:47 0000 -> Multiple authentication failures.	2019-12-01 00:07:13
139.219.143.176	attackspam	Nov 28 11:50:11 server sshd\[18425\]: Invalid user test from 139.219.143.176 Nov 28 11:50:11 server sshd\[18425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 Nov 28 11:50:13 server sshd\[18425\]: Failed password for invalid user test from 139.219.143.176 port 49903 ssh2 Nov 28 12:02:05 server sshd\[21409\]: Invalid user backup from 139.219.143.176 Nov 28 12:02:05 server sshd\[21409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 ...	2019-11-28 18:07:22
139.219.143.176	attack	$f2bV_matches	2019-11-14 01:27:50
139.219.143.176	attack	SSH Brute Force, server-1 sshd[23486]: Failed password for root from 139.219.143.176 port 44323 ssh2	2019-11-05 07:30:29
139.219.143.176	attackspambots	Oct 27 10:52:40 vps647732 sshd[2276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.143.176 Oct 27 10:52:42 vps647732 sshd[2276]: Failed password for invalid user minecraft from 139.219.143.176 port 38592 ssh2 ...	2019-10-27 18:13:25
139.219.143.176	attack	Automatic report - Banned IP Access	2019-10-23 03:21:02
139.219.143.176	attack	Sep 30 09:54:01 pkdns2 sshd\[24757\]: Invalid user minecraft3 from 139.219.143.176Sep 30 09:54:03 pkdns2 sshd\[24757\]: Failed password for invalid user minecraft3 from 139.219.143.176 port 64981 ssh2Sep 30 09:58:41 pkdns2 sshd\[24969\]: Invalid user yin from 139.219.143.176Sep 30 09:58:43 pkdns2 sshd\[24969\]: Failed password for invalid user yin from 139.219.143.176 port 48086 ssh2Sep 30 10:03:27 pkdns2 sshd\[25188\]: Invalid user jack from 139.219.143.176Sep 30 10:03:29 pkdns2 sshd\[25188\]: Failed password for invalid user jack from 139.219.143.176 port 31207 ssh2 ...	2019-09-30 19:56:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.14.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55767
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.14.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 13:15:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 12.14.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 12.14.219.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.30.35	attackbots	Jan 25 13:36:45 ws24vmsma01 sshd[93573]: Failed password for root from 222.186.30.35 port 44514 ssh2 ...	2020-01-26 01:38:00
125.224.166.62	attackbotsspam	Honeypot attack, port: 5555, PTR: 125-224-166-62.dynamic-ip.hinet.net.	2020-01-26 01:04:49
220.229.71.153	attackbots	20/1/25@08:12:34: FAIL: Alarm-Network address from=220.229.71.153 ...	2020-01-26 01:01:31
122.155.1.148	attackspam	Unauthorized connection attempt detected from IP address 122.155.1.148 to port 2220 [J]	2020-01-26 01:29:39
222.186.175.217	attackspambots	2020-01-25T17:19:17.428561abusebot-7.cloudsearch.cf sshd[1596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-25T17:19:19.099681abusebot-7.cloudsearch.cf sshd[1596]: Failed password for root from 222.186.175.217 port 30184 ssh2 2020-01-25T17:19:22.424747abusebot-7.cloudsearch.cf sshd[1596]: Failed password for root from 222.186.175.217 port 30184 ssh2 2020-01-25T17:19:17.428561abusebot-7.cloudsearch.cf sshd[1596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-25T17:19:19.099681abusebot-7.cloudsearch.cf sshd[1596]: Failed password for root from 222.186.175.217 port 30184 ssh2 2020-01-25T17:19:22.424747abusebot-7.cloudsearch.cf sshd[1596]: Failed password for root from 222.186.175.217 port 30184 ssh2 2020-01-25T17:19:17.428561abusebot-7.cloudsearch.cf sshd[1596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ...	2020-01-26 01:22:58
123.22.148.104	attackspambots	Jan 25 14:12:05 debian-2gb-nbg1-2 kernel: \[2217199.322020\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=123.22.148.104 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=45385 DF PROTO=TCP SPT=60251 DPT=8291 WINDOW=64240 RES=0x00 SYN URGP=0	2020-01-26 01:29:24
24.221.206.236	attackspambots	Unauthorized connection attempt detected from IP address 24.221.206.236 to port 22 [J]	2020-01-26 01:08:35
45.77.135.36	attackbots	scan z	2020-01-26 01:15:41
66.117.1.195	attackspam	Unauthorized connection attempt detected from IP address 66.117.1.195 to port 2220 [J]	2020-01-26 01:21:25
152.32.185.30	attackspambots	Unauthorized connection attempt detected from IP address 152.32.185.30 to port 2220 [J]	2020-01-26 01:15:12
2a02:120b:2c63:2340:2d50:86fa:ce7c:6197	attackspambots	2020-01-2515:09:27dovecot_plainauthenticatorfailedfor$[IPv6:2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]$[2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]:59429:535Incorrectauthenticationdata$set_id=info@fisioterapiapisu.ch$2020-01-2515:09:33dovecot_loginauthenticatorfailedfor$[IPv6:2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]$[2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]:59429:535Incorrectauthenticationdata$set_id=info@fisioterapiapisu.ch$2020-01-2515:09:39dovecot_plainauthenticatorfailedfor$[IPv6:2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]$[2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]:59430:535Incorrectauthenticationdata$set_id=info@fisioterapiapisu.ch$2020-01-2515:09:45dovecot_loginauthenticatorfailedfor$[IPv6:2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]$[2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]:59430:535Incorrectauthenticationdata$set_id=info@fisioterapiapisu.ch$2020-01-2515:37:48dovecot_plainauthenticatorfailedfor$[IPv6:2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]$[2a02:120b:2c63:2340:2d50:86fa:ce7c:6197]:59466:535Incorr	2020-01-26 01:11:00
40.73.119.194	attackspam	Jan 25 17:14:14 sd-53420 sshd\[5127\]: Invalid user batman from 40.73.119.194 Jan 25 17:14:14 sd-53420 sshd\[5127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.119.194 Jan 25 17:14:16 sd-53420 sshd\[5127\]: Failed password for invalid user batman from 40.73.119.194 port 38312 ssh2 Jan 25 17:16:26 sd-53420 sshd\[5497\]: Invalid user doran from 40.73.119.194 Jan 25 17:16:26 sd-53420 sshd\[5497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.119.194 ...	2020-01-26 01:10:04
65.60.182.212	attackspam	Unauthorized connection attempt detected from IP address 65.60.182.212 to port 2220 [J]	2020-01-26 01:08:11
79.175.16.249	attack	Unauthorized connection attempt from IP address 79.175.16.249 on Port 445(SMB)	2020-01-26 01:32:19
196.201.107.185	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-26 01:00:51

最近上报的IP列表

117.69.30.219	101.20.196.215	139.255.46.6	114.39.195.226
85.27.180.197	193.242.151.221	187.95.56.163	180.241.24.29
70.168.93.204	60.184.125.163	171.97.10.63	93.190.217.54
177.184.247.49	95.58.18.2	118.238.210.203	112.33.39.40
196.164.68.113	217.133.101.101	182.35.85.119	138.68.212.127