185.139.236.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Delta Centric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 10 04:31:20 ny01 sshd[20378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Dec 10 04:31:22 ny01 sshd[20378]: Failed password for invalid user webmaster from 185.139.236.20 port 56310 ssh2 Dec 10 04:37:01 ny01 sshd[20911]: Failed password for root from 185.139.236.20 port 35672 ssh2	2019-12-10 19:15:25
attack	Dec 9 22:28:11 gw1 sshd[26786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Dec 9 22:28:13 gw1 sshd[26786]: Failed password for invalid user kip from 185.139.236.20 port 50482 ssh2 ...	2019-12-10 04:36:26
attackbotsspam	Dec 6 09:48:08 pi sshd\[10911\]: Failed password for invalid user 012345 from 185.139.236.20 port 53292 ssh2 Dec 6 09:53:44 pi sshd\[11222\]: Invalid user sanitary from 185.139.236.20 port 35218 Dec 6 09:53:44 pi sshd\[11222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Dec 6 09:53:46 pi sshd\[11222\]: Failed password for invalid user sanitary from 185.139.236.20 port 35218 ssh2 Dec 6 09:59:16 pi sshd\[11557\]: Invalid user hibbs from 185.139.236.20 port 44684 ...	2019-12-06 19:48:13
attackspam	Dec 6 01:18:12 nextcloud sshd\[27797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 user=daemon Dec 6 01:18:13 nextcloud sshd\[27797\]: Failed password for daemon from 185.139.236.20 port 46556 ssh2 Dec 6 01:28:20 nextcloud sshd\[7377\]: Invalid user shiraishi from 185.139.236.20 Dec 6 01:28:20 nextcloud sshd\[7377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 ...	2019-12-06 08:46:03
attackspambots	Nov 27 16:57:45 *** sshd[9898]: User root from 185.139.236.20 not allowed because not listed in AllowUsers	2019-11-28 06:03:33
attackbots	Nov 25 08:52:54 server sshd\[3279\]: Invalid user backup from 185.139.236.20 Nov 25 08:52:54 server sshd\[3279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Nov 25 08:52:57 server sshd\[3279\]: Failed password for invalid user backup from 185.139.236.20 port 40062 ssh2 Nov 25 09:31:34 server sshd\[12629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 user=root Nov 25 09:31:36 server sshd\[12629\]: Failed password for root from 185.139.236.20 port 35668 ssh2 ...	2019-11-25 14:40:42
attackbotsspam	Nov 24 05:22:50 vtv3 sshd[17750]: Failed password for root from 185.139.236.20 port 38282 ssh2 Nov 24 05:28:47 vtv3 sshd[20321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Nov 24 05:28:48 vtv3 sshd[20321]: Failed password for invalid user smmsp from 185.139.236.20 port 45818 ssh2 Nov 24 05:40:41 vtv3 sshd[25692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Nov 24 05:40:43 vtv3 sshd[25692]: Failed password for invalid user mermelstein from 185.139.236.20 port 44530 ssh2 Nov 24 05:46:41 vtv3 sshd[28424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Nov 24 05:58:40 vtv3 sshd[1361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 Nov 24 05:58:42 vtv3 sshd[1361]: Failed password for invalid user biliamee from 185.139.236.20 port 52852 ssh2 Nov 24 06:04:46 vtv3 sshd[3947]: Failed pas	2019-11-24 14:48:36
attackspambots	2019-08-17T20:30:08.100173 sshd[29469]: Invalid user donny from 185.139.236.20 port 48250 2019-08-17T20:30:08.113847 sshd[29469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.139.236.20 2019-08-17T20:30:08.100173 sshd[29469]: Invalid user donny from 185.139.236.20 port 48250 2019-08-17T20:30:10.395457 sshd[29469]: Failed password for invalid user donny from 185.139.236.20 port 48250 ssh2 2019-08-17T20:35:47.055642 sshd[29523]: Invalid user 123456 from 185.139.236.20 port 59098 ...	2019-08-18 02:44:42
attack	2019-08-16T03:34:04.667998abusebot-2.cloudsearch.cf sshd\[30371\]: Invalid user mustang from 185.139.236.20 port 49050	2019-08-16 12:05:33

相同子网IP讨论:

IP	类型	评论内容	时间
185.139.236.68	attackbots	(sshd) Failed SSH login from 185.139.236.68 (RS/Serbia/-): 10 in the last 3600 secs	2020-01-19 15:56:35
185.139.236.68	attack	Unauthorized connection attempt detected from IP address 185.139.236.68 to port 2220 [J]	2020-01-19 08:21:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.139.236.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8581
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;185.139.236.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081503 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 12:05:27 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 20.236.139.185.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.236.139.185.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
142.196.28.228	attackspam	Port Scan: TCP/5270	2019-08-24 13:23:57
142.4.216.11	attack	Port Scan: TCP/445	2019-08-24 13:24:23
171.15.186.118	attack	Port Scan: TCP/8080	2019-08-24 12:52:20
51.158.124.108	attack	Invalid user shl from 51.158.124.108 port 37842	2019-08-24 13:05:55
27.206.244.178	attackbotsspam	Port Scan: TCP/8080	2019-08-24 13:09:32
40.137.191.210	attackspambots	Port Scan: UDP/137	2019-08-24 13:07:33
166.62.82.3	attackbotsspam	Port Scan: TCP/445	2019-08-24 12:52:56
51.68.227.49	attack	Aug 24 04:41:08 DAAP sshd[19184]: Invalid user downloader from 51.68.227.49 port 39584 Aug 24 04:41:08 DAAP sshd[19184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.227.49 Aug 24 04:41:08 DAAP sshd[19184]: Invalid user downloader from 51.68.227.49 port 39584 Aug 24 04:41:11 DAAP sshd[19184]: Failed password for invalid user downloader from 51.68.227.49 port 39584 ssh2 Aug 24 04:44:57 DAAP sshd[19217]: Invalid user noc from 51.68.227.49 port 57246 ...	2019-08-24 13:42:09
178.128.212.191	attackbots	Port Scan: TCP/10000	2019-08-24 13:22:10
175.161.1.191	attack	Port Scan: TCP/60001	2019-08-24 13:22:44
213.152.162.154	attackspambots	Port Scan: UDP/53	2019-08-24 12:43:43
185.217.0.200	attackbotsspam	Port Scan: TCP/8080	2019-08-24 12:49:10
190.96.47.2	attackspam	Port Scan: TCP/445	2019-08-24 12:47:31
12.161.186.102	attackbotsspam	Port Scan: UDP/137	2019-08-24 13:10:31
109.176.133.128	attackbotsspam	SMB Server BruteForce Attack	2019-08-24 13:29:35

最近上报的IP列表

73.82.168.112	69.30.233.42	207.148.72.137	91.96.228.55
186.207.128.104	34.90.247.253	137.171.5.189	187.135.183.76
19.22.59.227	202.66.182.186	197.202.59.27	182.38.202.140
151.32.225.214	60.22.179.233	39.107.222.96	194.4.56.209
186.224.247.70	120.31.71.235	125.161.104.198	56.106.204.103