2.139.193.157 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 2.139.193.157 on Port 445(SMB)	2020-02-01 02:34:57
attackspam	Unauthorized connection attempt from IP address 2.139.193.157 on Port 445(SMB)	2019-12-07 05:50:55

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.193.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41039
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.139.193.157.			IN	A

;; AUTHORITY SECTION:
.			1614	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 12 15:44:11 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

157.193.139.2.in-addr.arpa domain name pointer 157.red-2-139-193.staticip.rima-tde.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
157.193.139.2.in-addr.arpa	name = 157.red-2-139-193.staticip.rima-tde.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
134.73.51.184	attackbotsspam	Mar 5 06:42:47 mail.srvfarm.net postfix/smtpd[304676]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:42:48 mail.srvfarm.net postfix/smtpd[759064]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:46:00 mail.srvfarm.net postfix/smtpd[1068686]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:47:03 mail.srvfarm.net postfix/smtpd[1068645]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Send	2020-03-05 15:51:51
177.155.142.16	attackspam	Automatic report - Port Scan Attack	2020-03-05 16:05:29
222.186.42.136	attackspambots	Mar 5 03:03:10 plusreed sshd[30930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Mar 5 03:03:12 plusreed sshd[30930]: Failed password for root from 222.186.42.136 port 31440 ssh2 ...	2020-03-05 16:03:56
190.94.18.2	attackbotsspam	$f2bV_matches	2020-03-05 15:46:25
45.82.34.238	attackspambots	Mar 5 05:28:44 web01 postfix/smtpd[25364]: connect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:28:44 web01 policyd-spf[25367]: None; identhostnamey=helo; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar 5 05:28:44 web01 policyd-spf[25367]: Pass; identhostnamey=mailfrom; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar x@x Mar 5 05:28:44 web01 postfix/smtpd[25364]: disconnect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:32:36 web01 postfix/smtpd[25361]: connect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:32:36 web01 policyd-spf[25366]: None; identhostnamey=helo; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar 5 05:32:36 web01 policyd-spf[25366]: Pass; identhostnamey=mailfrom; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar x@x Mar 5 05:32:36 web01 postfix/smtpd[25361]: disconnect from dance.geomaticvista.com[45.82.34.238] Mar 5........ -------------------------------	2020-03-05 15:59:02
133.242.132.151	attack	Mar 5 13:04:23 areeb-Workstation sshd[11755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.132.151 Mar 5 13:04:26 areeb-Workstation sshd[11755]: Failed password for invalid user couch from 133.242.132.151 port 49334 ssh2 ...	2020-03-05 15:44:02
165.22.33.32	attack	Mar 5 08:46:40 sd-53420 sshd\[13615\]: Invalid user qdxx from 165.22.33.32 Mar 5 08:46:40 sd-53420 sshd\[13615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 Mar 5 08:46:42 sd-53420 sshd\[13615\]: Failed password for invalid user qdxx from 165.22.33.32 port 56404 ssh2 Mar 5 08:52:49 sd-53420 sshd\[14159\]: Invalid user wangyu from 165.22.33.32 Mar 5 08:52:49 sd-53420 sshd\[14159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 ...	2020-03-05 16:10:45
222.186.175.217	attack	Mar 5 09:25:31 [host] sshd[10453]: pam_unix(sshd: Mar 5 09:25:33 [host] sshd[10453]: Failed passwor Mar 5 09:25:37 [host] sshd[10453]: Failed passwor	2020-03-05 16:26:43
185.143.223.97	attackspambots	Mar 5 08:10:24 mail.srvfarm.net postfix/smtpd[1304578]: NOQUEUE: reject: RCPT from unknown[185.143.223.97]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 08:10:24 mail.srvfarm.net postfix/smtpd[1304578]: NOQUEUE: reject: RCPT from unknown[185.143.223.97]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 08:10:24 mail.srvfarm.net postfix/smtpd[1304578]: NOQUEUE: reject: RCPT from unknown[185.143.223.97]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 08:10:24 mail.srvfarm.net postfix/smtpd[1304578]: NOQUEUE: reject: RCPT from unknown[185.143.223.97]: 554 5.7.1	2020-03-05 15:50:50
195.231.3.188	attackspambots	Mar 5 07:48:13 mail.srvfarm.net postfix/smtpd[1291147]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 07:48:13 mail.srvfarm.net postfix/smtpd[1291147]: lost connection after AUTH from unknown[195.231.3.188] Mar 5 07:48:44 mail.srvfarm.net postfix/smtpd[1284849]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 07:48:44 mail.srvfarm.net postfix/smtpd[1284849]: lost connection after AUTH from unknown[195.231.3.188] Mar 5 07:50:08 mail.srvfarm.net postfix/smtpd[1291030]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-05 15:49:27
94.96.115.148	attack	Email rejected due to spam filtering	2020-03-05 16:15:46
222.186.175.215	attackspam	2020-03-05T02:57:02.812884xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-03-05T02:56:56.238829xentho-1 sshd[263063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root 2020-03-05T02:56:58.465909xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-03-05T02:57:02.812884xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-03-05T02:57:07.634723xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-03-05T02:56:56.238829xentho-1 sshd[263063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root 2020-03-05T02:56:58.465909xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-03-05T02:57:02.812884xentho-1 sshd[263063]: Failed password for root from 222.186.175.215 port 28604 ssh2 2020-0 ...	2020-03-05 16:03:29
63.82.48.223	attack	Mar 5 06:32:05 mail.srvfarm.net postfix/smtpd[301281]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:32:34 mail.srvfarm.net postfix/smtpd[304677]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:36:29 mail.srvfarm.net postfix/smtpd[304676]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:36:29 mail.srvfarm.net postfix/smtpd[303285]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.8	2020-03-05 15:55:16
45.6.72.17	attackbots	SSH login attempts.	2020-03-05 16:08:15
217.61.57.72	attackspam	Mar 5 08:39:26 relay postfix/smtpd\[2712\]: warning: unknown\[217.61.57.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:40:33 relay postfix/smtpd\[1614\]: warning: unknown\[217.61.57.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:42:13 relay postfix/smtpd\[2226\]: warning: unknown\[217.61.57.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:43:19 relay postfix/smtpd\[2226\]: warning: unknown\[217.61.57.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 5 08:44:57 relay postfix/smtpd\[2166\]: warning: unknown\[217.61.57.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-05 15:49:00

最近上报的IP列表

178.19.180.202	110.133.141.10	203.171.227.205	78.207.105.133
28.214.34.93	24.231.89.180	81.170.216.236	222.170.168.106
125.21.179.190	2.187.22.39	217.22.112.178	51.83.77.224
123.25.121.215	162.243.149.170	94.249.34.6	205.185.120.241
104.238.37.208	192.169.243.124	89.38.145.93	195.25.27.89