2.139.209.78 - IPInfo

基本信息:

城市(city): Cabezuela del Valle

省份(region): Extremadura

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): Telefonica De Espana

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	(sshd) Failed SSH login from 2.139.209.78 (ES/Spain/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 31 05:09:26 server4 sshd[18373]: Invalid user usuario from 2.139.209.78 Aug 31 05:09:27 server4 sshd[18373]: Failed password for invalid user usuario from 2.139.209.78 port 35261 ssh2 Aug 31 05:15:07 server4 sshd[21530]: Failed password for root from 2.139.209.78 port 38041 ssh2 Aug 31 05:18:40 server4 sshd[23485]: Invalid user minecraft from 2.139.209.78 Aug 31 05:18:42 server4 sshd[23485]: Failed password for invalid user minecraft from 2.139.209.78 port 55985 ssh2	2020-08-31 17:24:53
attackbots	Aug 29 20:12:58 eddieflores sshd\[6867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 user=backup Aug 29 20:13:00 eddieflores sshd\[6867\]: Failed password for backup from 2.139.209.78 port 35830 ssh2 Aug 29 20:16:39 eddieflores sshd\[7084\]: Invalid user untu from 2.139.209.78 Aug 29 20:16:39 eddieflores sshd\[7084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 29 20:16:41 eddieflores sshd\[7084\]: Failed password for invalid user untu from 2.139.209.78 port 47416 ssh2	2020-08-30 14:32:41
attackspambots	Aug 30 03:14:54 vps768472 sshd\[1164\]: Invalid user elastic from 2.139.209.78 port 58301 Aug 30 03:14:54 vps768472 sshd\[1164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 30 03:14:57 vps768472 sshd\[1164\]: Failed password for invalid user elastic from 2.139.209.78 port 58301 ssh2 ...	2020-08-30 08:15:35
attack	2020-08-29T09:17:07.104076morrigan.ad5gb.com sshd[13799]: Invalid user kundan from 2.139.209.78 port 45356 2020-08-29T09:17:09.317738morrigan.ad5gb.com sshd[13799]: Failed password for invalid user kundan from 2.139.209.78 port 45356 ssh2	2020-08-29 23:09:10
attack	$f2bV_matches	2020-08-27 22:09:42
attackspam	Invalid user test from 2.139.209.78 port 49053	2020-08-27 07:43:50
attackbotsspam	Aug 24 00:51:47 serwer sshd\[25062\]: Invalid user alfredo from 2.139.209.78 port 47082 Aug 24 00:51:47 serwer sshd\[25062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 24 00:51:49 serwer sshd\[25062\]: Failed password for invalid user alfredo from 2.139.209.78 port 47082 ssh2 Aug 24 00:55:27 serwer sshd\[25435\]: Invalid user alejandro from 2.139.209.78 port 42746 Aug 24 00:55:27 serwer sshd\[25435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 24 00:55:29 serwer sshd\[25435\]: Failed password for invalid user alejandro from 2.139.209.78 port 42746 ssh2 Aug 24 00:58:03 serwer sshd\[25622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 user=root Aug 24 00:58:05 serwer sshd\[25622\]: Failed password for root from 2.139.209.78 port 57053 ssh2 Aug 24 01:00:15 serwer sshd\[25910\]: pam_unix$sshd:auth$: ...	2020-08-24 16:48:32
attack	Aug 23 17:16:53 rush sshd[15054]: Failed password for root from 2.139.209.78 port 36495 ssh2 Aug 23 17:22:48 rush sshd[15359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 23 17:22:51 rush sshd[15359]: Failed password for invalid user buser from 2.139.209.78 port 35947 ssh2 ...	2020-08-24 01:38:44
attackbotsspam	SSH Brute-Forcing (server2)	2020-08-22 20:21:07
attack	prod8 ...	2020-08-21 22:56:49
attack	Aug 21 14:05:30 jane sshd[6929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 21 14:05:32 jane sshd[6929]: Failed password for invalid user kenji from 2.139.209.78 port 37243 ssh2 ...	2020-08-21 20:06:35
attack	Bruteforce detected by fail2ban	2020-08-21 05:37:41
attackbots	Brute-force attempt banned	2020-08-20 22:24:30
attackspam	Aug 19 15:55:41 game-panel sshd[4419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Aug 19 15:55:43 game-panel sshd[4419]: Failed password for invalid user sftp from 2.139.209.78 port 41601 ssh2 Aug 19 16:00:56 game-panel sshd[4597]: Failed password for root from 2.139.209.78 port 43847 ssh2	2020-08-20 00:36:53
attack	$f2bV_matches	2020-07-07 15:59:16
attackspambots	Jul 4 02:18:15 buvik sshd[14675]: Invalid user cot from 2.139.209.78 Jul 4 02:18:15 buvik sshd[14675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Jul 4 02:18:17 buvik sshd[14675]: Failed password for invalid user cot from 2.139.209.78 port 45424 ssh2 ...	2020-07-04 08:27:38
attackspam	Apr 18 16:07:08 server sshd[9739]: Failed password for root from 2.139.209.78 port 46434 ssh2 Apr 18 16:12:36 server sshd[13734]: Failed password for invalid user pr from 2.139.209.78 port 51051 ssh2 Apr 18 16:17:01 server sshd[17354]: Failed password for invalid user ubuntu from 2.139.209.78 port 40275 ssh2	2020-04-18 22:22:15
attackspambots	2020-04-16T06:33:51.2038871495-001 sshd[38737]: Failed password for invalid user wp from 2.139.209.78 port 32903 ssh2 2020-04-16T06:37:15.4820771495-001 sshd[38831]: Invalid user paola from 2.139.209.78 port 36340 2020-04-16T06:37:15.4853941495-001 sshd[38831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.red-2-139-209.staticip.rima-tde.net 2020-04-16T06:37:15.4820771495-001 sshd[38831]: Invalid user paola from 2.139.209.78 port 36340 2020-04-16T06:37:17.6061641495-001 sshd[38831]: Failed password for invalid user paola from 2.139.209.78 port 36340 ssh2 2020-04-16T06:40:55.1481521495-001 sshd[38883]: Invalid user deploy from 2.139.209.78 port 39771 ...	2020-04-16 19:22:10
attackbotsspam	Apr 7 06:27:06 ny01 sshd[12662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Apr 7 06:27:08 ny01 sshd[12662]: Failed password for invalid user bot from 2.139.209.78 port 58826 ssh2 Apr 7 06:30:57 ny01 sshd[13277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78	2020-04-07 18:56:33
attackbotsspam	Apr 5 16:30:08 ws12vmsma01 sshd[11392]: Failed password for root from 2.139.209.78 port 59763 ssh2 Apr 5 16:33:50 ws12vmsma01 sshd[11998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.red-2-139-209.staticip.rima-tde.net user=root Apr 5 16:33:51 ws12vmsma01 sshd[11998]: Failed password for root from 2.139.209.78 port 36212 ssh2 ...	2020-04-06 04:52:48
attackbotsspam	Invalid user oracle from 2.139.209.78 port 34539	2020-03-23 04:52:10
attackbots	B: Abusive ssh attack	2020-03-19 00:03:28
attackspam	Invalid user lihao from 2.139.209.78 port 57982	2020-03-18 06:20:24
attackspambots	Mar 10 02:40:28 areeb-Workstation sshd[13671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 10 02:40:30 areeb-Workstation sshd[13671]: Failed password for invalid user qwe789asd45651 from 2.139.209.78 port 39695 ssh2 ...	2020-03-10 05:11:47
attackbots	SSH Brute-Forcing (server1)	2020-03-08 14:17:47
attackbotsspam	Mar 6 15:03:15 localhost sshd\[26561\]: Invalid user cron from 2.139.209.78 Mar 6 15:03:15 localhost sshd\[26561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 6 15:03:17 localhost sshd\[26561\]: Failed password for invalid user cron from 2.139.209.78 port 50862 ssh2 Mar 6 15:07:25 localhost sshd\[26833\]: Invalid user sistemas from 2.139.209.78 Mar 6 15:07:25 localhost sshd\[26833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 ...	2020-03-06 22:15:15
attackspam	Mar 4 22:53:27 * sshd[30410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 4 22:53:28 * sshd[30410]: Failed password for invalid user green from 2.139.209.78 port 55651 ssh2	2020-03-05 06:51:55
attack	Mar 3 08:47:56 NPSTNNYC01T sshd[15745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 3 08:47:59 NPSTNNYC01T sshd[15745]: Failed password for invalid user tester from 2.139.209.78 port 59385 ssh2 Mar 3 08:56:44 NPSTNNYC01T sshd[16133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 ...	2020-03-03 21:58:17
attackspambots	Mar 3 02:15:37 NPSTNNYC01T sshd[27537]: Failed password for sshd from 2.139.209.78 port 55876 ssh2 Mar 3 02:24:00 NPSTNNYC01T sshd[27999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.209.78 Mar 3 02:24:02 NPSTNNYC01T sshd[27999]: Failed password for invalid user watari from 2.139.209.78 port 44016 ssh2 ...	2020-03-03 15:33:01
attack	Invalid user youtrack from 2.139.209.78 port 34309	2020-02-25 08:10:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.209.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12268
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.139.209.78.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050600 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 00:17:53 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

78.209.139.2.in-addr.arpa domain name pointer 78.red-2-139-209.staticip.rima-tde.net.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
78.209.139.2.in-addr.arpa	name = 78.red-2-139-209.staticip.rima-tde.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.14	attackbots	" "	2020-03-18 00:49:30
203.195.157.36	attack	Mar 17 13:14:16 jane sshd[10341]: Failed password for root from 203.195.157.36 port 10485 ssh2 Mar 17 13:16:51 jane sshd[14723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.157.36 ...	2020-03-18 00:45:11
177.47.140.248	attack	CMS (WordPress or Joomla) login attempt.	2020-03-18 01:03:39
192.241.133.33	attack	SSH Authentication Attempts Exceeded	2020-03-18 00:53:33
178.22.145.234	attackbotsspam	2020-03-16 19:03:06 server sshd[60357]: Failed password for invalid user root from 178.22.145.234 port 41852 ssh2	2020-03-18 01:17:23
103.229.199.254	attackbotsspam	$f2bV_matches	2020-03-18 00:57:49
1.172.224.163	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-18 01:20:39
112.85.42.232	attackbotsspam	1363 connection attempt	2020-03-18 00:52:47
125.165.113.150	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 17-03-2020 08:40:10.	2020-03-18 01:06:40
64.225.111.233	attackspam	Mar 17 02:24:44 euve59663 sshd[19737]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D64.= 225.111.233 user=3Dr.r Mar 17 02:24:45 euve59663 sshd[19737]: Failed password for r.r from 64= .225.111.233 port 45308 ssh2 Mar 17 02:24:45 euve59663 sshd[19737]: Received disconnect from 64.225.= 111.233: 11: Bye Bye [preauth] Mar 17 02:45:47 euve59663 sshd[15538]: Invalid user elastic from 64.225= .111.233 Mar 17 02:45:47 euve59663 sshd[15538]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D64.= 225.111.233=20 Mar 17 02:45:49 euve59663 sshd[15538]: Failed password for invalid user= elastic from 64.225.111.233 port 57088 ssh2 Mar 17 02:45:49 euve59663 sshd[15538]: Received disconnect from 64.225.= 111.233: 11: Bye Bye [preauth] Mar 17 02:55:10 euve59663 sshd[15622]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D64......... -------------------------------	2020-03-18 01:00:32
1.31.7.175	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-18 01:21:44
27.78.14.83	attack	SSH brute-force: detected 12 distinct usernames within a 24-hour window.	2020-03-18 01:27:04
106.13.212.194	attackbots	Mar 17 04:40:30 plusreed sshd[1143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.212.194 user=root Mar 17 04:40:31 plusreed sshd[1143]: Failed password for root from 106.13.212.194 port 53244 ssh2 ...	2020-03-18 00:40:42
113.20.98.232	attackbots	1584434401 - 03/17/2020 09:40:01 Host: 113.20.98.232/113.20.98.232 Port: 445 TCP Blocked	2020-03-18 01:21:18
124.77.119.40	attackbots	Lines containing failures of 124.77.119.40 Mar 17 11:29:13 siirappi sshd[5619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.77.119.40 user=r.r Mar 17 11:29:15 siirappi sshd[5619]: Failed password for r.r from 124.77.119.40 port 51298 ssh2 Mar 17 11:29:17 siirappi sshd[5619]: Received disconnect from 124.77.119.40 port 51298:11: Normal Shutdown [preauth] Mar 17 11:29:17 siirappi sshd[5619]: Disconnected from authenticating user r.r 124.77.119.40 port 51298 [preauth] Mar 17 11:53:08 siirappi sshd[6051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.77.119.40 user=r.r Mar 17 11:53:10 siirappi sshd[6051]: Failed password for r.r from 124.77.119.40 port 47142 ssh2 Mar 17 11:53:12 siirappi sshd[6051]: Received disconnect from 124.77.119.40 port 47142:11: Normal Shutdown [preauth] Mar 17 11:53:12 siirappi sshd[6051]: Disconnected from authenticating user r.r 124.77.119.40 port 47142 ........ ------------------------------	2020-03-18 01:18:55

最近上报的IP列表

166.36.164.116	168.167.79.105	62.4.15.163	52.79.156.20
130.200.53.41	123.23.54.108	157.186.146.255	14.32.124.239
166.82.156.83	66.228.45.154	54.36.148.8	117.154.7.68
64.233.167.121	104.27.130.225	32.16.7.135	66.251.181.124
81.201.125.163	101.207.245.23	190.80.159.182	188.165.174.156