2.139.209.78 - IPInfo

基本信息:

城市(city): Cabezuela del Valle

省份(region): Extremadura

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): Telefonica De Espana

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	(sshd) Failed SSH login from 2.139.209.78 (ES/Spain/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 31 05:09:26 server4 sshd[18373]: Invalid user usuario from 2.139.209.78 Aug 31 05:09:27 server4 sshd[18373]: Failed password for invalid user usuario from 2.139.209.78 port 35261 ssh2 Aug 31 05:15:07 server4 sshd[21530]: Failed password for root from 2.139.209.78 port 38041 ssh2 Aug 31 05:18:40 server4 sshd[23485]: Invalid user minecraft from 2.139.209.78 Aug 31 05:18:42 server4 sshd[23485]: Failed password for invalid user minecraft from 2.139.209.78 port 55985 ssh2	2020-08-31 17:24:53
attackbots	Aug 29 20:12:58 eddieflores sshd\[6867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 user=backup Aug 29 20:13:00 eddieflores sshd\[6867\]: Failed password for backup from 2.139.209.78 port 35830 ssh2 Aug 29 20:16:39 eddieflores sshd\[7084\]: Invalid user untu from 2.139.209.78 Aug 29 20:16:39 eddieflores sshd\[7084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 29 20:16:41 eddieflores sshd\[7084\]: Failed password for invalid user untu from 2.139.209.78 port 47416 ssh2	2020-08-30 14:32:41
attackspambots	Aug 30 03:14:54 vps768472 sshd\[1164\]: Invalid user elastic from 2.139.209.78 port 58301 Aug 30 03:14:54 vps768472 sshd\[1164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 30 03:14:57 vps768472 sshd\[1164\]: Failed password for invalid user elastic from 2.139.209.78 port 58301 ssh2 ...	2020-08-30 08:15:35
attack	2020-08-29T09:17:07.104076morrigan.ad5gb.com sshd[13799]: Invalid user kundan from 2.139.209.78 port 45356 2020-08-29T09:17:09.317738morrigan.ad5gb.com sshd[13799]: Failed password for invalid user kundan from 2.139.209.78 port 45356 ssh2	2020-08-29 23:09:10
attack	$f2bV_matches	2020-08-27 22:09:42
attackspam	Invalid user test from 2.139.209.78 port 49053	2020-08-27 07:43:50
attackbotsspam	Aug 24 00:51:47 serwer sshd\[25062\]: Invalid user alfredo from 2.139.209.78 port 47082 Aug 24 00:51:47 serwer sshd\[25062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 24 00:51:49 serwer sshd\[25062\]: Failed password for invalid user alfredo from 2.139.209.78 port 47082 ssh2 Aug 24 00:55:27 serwer sshd\[25435\]: Invalid user alejandro from 2.139.209.78 port 42746 Aug 24 00:55:27 serwer sshd\[25435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 24 00:55:29 serwer sshd\[25435\]: Failed password for invalid user alejandro from 2.139.209.78 port 42746 ssh2 Aug 24 00:58:03 serwer sshd\[25622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 user=root Aug 24 00:58:05 serwer sshd\[25622\]: Failed password for root from 2.139.209.78 port 57053 ssh2 Aug 24 01:00:15 serwer sshd\[25910\]: pam_unix$sshd:auth$: ...	2020-08-24 16:48:32
attack	Aug 23 17:16:53 rush sshd[15054]: Failed password for root from 2.139.209.78 port 36495 ssh2 Aug 23 17:22:48 rush sshd[15359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 23 17:22:51 rush sshd[15359]: Failed password for invalid user buser from 2.139.209.78 port 35947 ssh2 ...	2020-08-24 01:38:44
attackbotsspam	SSH Brute-Forcing (server2)	2020-08-22 20:21:07
attack	prod8 ...	2020-08-21 22:56:49
attack	Aug 21 14:05:30 jane sshd[6929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 21 14:05:32 jane sshd[6929]: Failed password for invalid user kenji from 2.139.209.78 port 37243 ssh2 ...	2020-08-21 20:06:35
attack	Bruteforce detected by fail2ban	2020-08-21 05:37:41
attackbots	Brute-force attempt banned	2020-08-20 22:24:30
attackspam	Aug 19 15:55:41 game-panel sshd[4419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 19 15:55:43 game-panel sshd[4419]: Failed password for invalid user sftp from 2.139.209.78 port 41601 ssh2 Aug 19 16:00:56 game-panel sshd[4597]: Failed password for root from 2.139.209.78 port 43847 ssh2	2020-08-20 00:36:53
attack	$f2bV_matches	2020-07-07 15:59:16
attackspambots	Jul 4 02:18:15 buvik sshd[14675]: Invalid user cot from 2.139.209.78 Jul 4 02:18:15 buvik sshd[14675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Jul 4 02:18:17 buvik sshd[14675]: Failed password for invalid user cot from 2.139.209.78 port 45424 ssh2 ...	2020-07-04 08:27:38
attackspam	Apr 18 16:07:08 server sshd[9739]: Failed password for root from 2.139.209.78 port 46434 ssh2 Apr 18 16:12:36 server sshd[13734]: Failed password for invalid user pr from 2.139.209.78 port 51051 ssh2 Apr 18 16:17:01 server sshd[17354]: Failed password for invalid user ubuntu from 2.139.209.78 port 40275 ssh2	2020-04-18 22:22:15
attackspambots	2020-04-16T06:33:51.2038871495-001 sshd[38737]: Failed password for invalid user wp from 2.139.209.78 port 32903 ssh2 2020-04-16T06:37:15.4820771495-001 sshd[38831]: Invalid user paola from 2.139.209.78 port 36340 2020-04-16T06:37:15.4853941495-001 sshd[38831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.red-2-139-209.staticip.rima-tde.net 2020-04-16T06:37:15.4820771495-001 sshd[38831]: Invalid user paola from 2.139.209.78 port 36340 2020-04-16T06:37:17.6061641495-001 sshd[38831]: Failed password for invalid user paola from 2.139.209.78 port 36340 ssh2 2020-04-16T06:40:55.1481521495-001 sshd[38883]: Invalid user deploy from 2.139.209.78 port 39771 ...	2020-04-16 19:22:10
attackbotsspam	Apr 7 06:27:06 ny01 sshd[12662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Apr 7 06:27:08 ny01 sshd[12662]: Failed password for invalid user bot from 2.139.209.78 port 58826 ssh2 Apr 7 06:30:57 ny01 sshd[13277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78	2020-04-07 18:56:33
attackbotsspam	Apr 5 16:30:08 ws12vmsma01 sshd[11392]: Failed password for root from 2.139.209.78 port 59763 ssh2 Apr 5 16:33:50 ws12vmsma01 sshd[11998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.red-2-139-209.staticip.rima-tde.net user=root Apr 5 16:33:51 ws12vmsma01 sshd[11998]: Failed password for root from 2.139.209.78 port 36212 ssh2 ...	2020-04-06 04:52:48
attackbotsspam	Invalid user oracle from 2.139.209.78 port 34539	2020-03-23 04:52:10
attackbots	B: Abusive ssh attack	2020-03-19 00:03:28
attackspam	Invalid user lihao from 2.139.209.78 port 57982	2020-03-18 06:20:24
attackspambots	Mar 10 02:40:28 areeb-Workstation sshd[13671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 10 02:40:30 areeb-Workstation sshd[13671]: Failed password for invalid user qwe789asd45651 from 2.139.209.78 port 39695 ssh2 ...	2020-03-10 05:11:47
attackbots	SSH Brute-Forcing (server1)	2020-03-08 14:17:47
attackbotsspam	Mar 6 15:03:15 localhost sshd\[26561\]: Invalid user cron from 2.139.209.78 Mar 6 15:03:15 localhost sshd\[26561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 6 15:03:17 localhost sshd\[26561\]: Failed password for invalid user cron from 2.139.209.78 port 50862 ssh2 Mar 6 15:07:25 localhost sshd\[26833\]: Invalid user sistemas from 2.139.209.78 Mar 6 15:07:25 localhost sshd\[26833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 ...	2020-03-06 22:15:15
attackspam	Mar 4 22:53:27 * sshd[30410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 4 22:53:28 * sshd[30410]: Failed password for invalid user green from 2.139.209.78 port 55651 ssh2	2020-03-05 06:51:55
attack	Mar 3 08:47:56 NPSTNNYC01T sshd[15745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 3 08:47:59 NPSTNNYC01T sshd[15745]: Failed password for invalid user tester from 2.139.209.78 port 59385 ssh2 Mar 3 08:56:44 NPSTNNYC01T sshd[16133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 ...	2020-03-03 21:58:17
attackspambots	Mar 3 02:15:37 NPSTNNYC01T sshd[27537]: Failed password for sshd from 2.139.209.78 port 55876 ssh2 Mar 3 02:24:00 NPSTNNYC01T sshd[27999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 3 02:24:02 NPSTNNYC01T sshd[27999]: Failed password for invalid user watari from 2.139.209.78 port 44016 ssh2 ...	2020-03-03 15:33:01
attack	Invalid user youtrack from 2.139.209.78 port 34309	2020-02-25 08:10:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.209.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12268
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.139.209.78.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050600 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 00:17:53 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

78.209.139.2.in-addr.arpa domain name pointer 78.red-2-139-209.staticip.rima-tde.net.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
78.209.139.2.in-addr.arpa	name = 78.red-2-139-209.staticip.rima-tde.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
183.165.41.24	attackbots	badbot	2019-11-23 08:40:56
89.46.238.117	attackspam	Automatic report - Port Scan Attack	2019-11-23 09:02:31
51.38.234.54	attackspambots	Nov 23 01:32:09 SilenceServices sshd[32031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.234.54 Nov 23 01:32:11 SilenceServices sshd[32031]: Failed password for invalid user octave from 51.38.234.54 port 35688 ssh2 Nov 23 01:35:32 SilenceServices sshd[1848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.234.54	2019-11-23 08:38:28
46.38.144.146	attackbotsspam	Nov 23 01:58:15 webserver postfix/smtpd\[6263\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 01:58:52 webserver postfix/smtpd\[3760\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 01:59:29 webserver postfix/smtpd\[3760\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 02:00:04 webserver postfix/smtpd\[2089\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 02:00:41 webserver postfix/smtpd\[6263\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-23 09:06:00
201.114.252.23	attackbots	Nov 23 01:31:04 sd-53420 sshd\[24225\]: Invalid user miegl from 201.114.252.23 Nov 23 01:31:04 sd-53420 sshd\[24225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.252.23 Nov 23 01:31:06 sd-53420 sshd\[24225\]: Failed password for invalid user miegl from 201.114.252.23 port 56672 ssh2 Nov 23 01:39:32 sd-53420 sshd\[26366\]: Invalid user test from 201.114.252.23 Nov 23 01:39:32 sd-53420 sshd\[26366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.252.23 ...	2019-11-23 08:57:01
45.74.67.83	attackbots	$f2bV_matches	2019-11-23 08:58:32
125.120.207.42	attackspam	badbot	2019-11-23 08:39:15
192.64.118.227	attackspam	Brute-force attempt banned	2019-11-23 08:34:27
175.173.222.203	attackbotsspam	badbot	2019-11-23 08:42:13
148.70.59.114	attackbotsspam	(sshd) Failed SSH login from 148.70.59.114 (-): 5 in the last 3600 secs	2019-11-23 08:59:17
221.120.236.50	attack	Nov 23 01:12:44 lnxmysql61 sshd[15999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.120.236.50	2019-11-23 08:37:59
113.162.150.241	attack	Nov 22 23:45:14 mail postfix/smtpd[19942]: warning: unknown[113.162.150.241]: SASL PLAIN authentication failed: Nov 22 23:47:38 mail postfix/smtps/smtpd[18366]: warning: unknown[113.162.150.241]: SASL PLAIN authentication failed: Nov 22 23:51:39 mail postfix/smtps/smtpd[18637]: warning: unknown[113.162.150.241]: SASL PLAIN authentication failed:	2019-11-23 08:48:06
107.189.10.231	attackspam	Nov 21 13:15:09 w sshd[10019]: Invalid user ubnt from 107.189.10.231 Nov 21 13:15:09 w sshd[10019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.10.231 Nov 21 13:15:11 w sshd[10019]: Failed password for invalid user ubnt from 107.189.10.231 port 54186 ssh2 Nov 21 13:15:11 w sshd[10019]: Received disconnect from 107.189.10.231: 11: Bye Bye [preauth] Nov 21 13:15:13 w sshd[10021]: Invalid user admin from 107.189.10.231 Nov 21 13:15:13 w sshd[10021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.10.231 Nov 21 13:15:15 w sshd[10021]: Failed password for invalid user admin from 107.189.10.231 port 55412 ssh2 Nov 21 13:15:15 w sshd[10021]: Received disconnect from 107.189.10.231: 11: Bye Bye [preauth] Nov 21 13:15:18 w sshd[10023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.10.231 user=r.r Nov 21 13:15:20 w sshd[10023]: F........ -------------------------------	2019-11-23 08:54:52
222.186.175.202	attackbotsspam	Nov 23 01:05:07 localhost sshd\[95392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Nov 23 01:05:09 localhost sshd\[95392\]: Failed password for root from 222.186.175.202 port 13924 ssh2 Nov 23 01:05:13 localhost sshd\[95392\]: Failed password for root from 222.186.175.202 port 13924 ssh2 Nov 23 01:05:15 localhost sshd\[95392\]: Failed password for root from 222.186.175.202 port 13924 ssh2 Nov 23 01:05:18 localhost sshd\[95392\]: Failed password for root from 222.186.175.202 port 13924 ssh2 ...	2019-11-23 09:11:08
106.75.252.57	attack	2019-11-22T23:53:59.0802381240 sshd\[2363\]: Invalid user relational from 106.75.252.57 port 53604 2019-11-22T23:53:59.0833081240 sshd\[2363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 2019-11-22T23:54:01.5595211240 sshd\[2363\]: Failed password for invalid user relational from 106.75.252.57 port 53604 ssh2 ...	2019-11-23 08:49:09

最近上报的IP列表

166.36.164.116	168.167.79.105	62.4.15.163	52.79.156.20
130.200.53.41	123.23.54.108	157.186.146.255	14.32.124.239
166.82.156.83	66.228.45.154	54.36.148.8	117.154.7.68
64.233.167.121	104.27.130.225	32.16.7.135	66.251.181.124
81.201.125.163	101.207.245.23	190.80.159.182	188.165.174.156