2.139.248.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	SSH Brute-Forcing (server1)	2020-07-07 01:43:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.248.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27538
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.139.248.169.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070601 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 07 01:43:03 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

169.248.139.2.in-addr.arpa domain name pointer 169.red-2-139-248.staticip.rima-tde.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
169.248.139.2.in-addr.arpa	name = 169.red-2-139-248.staticip.rima-tde.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
171.6.214.106	attackbotsspam	Autoban 171.6.214.106 AUTH/CONNECT	2020-04-20 07:49:19
103.145.12.24	attack	[2020-04-19 19:54:30] NOTICE[1170][C-000027a0] chan_sip.c: Call from '' (103.145.12.24:60517) to extension '01146520458214' rejected because extension not found in context 'public'. [2020-04-19 19:54:30] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T19:54:30.359-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146520458214",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.24/60517",ACLName="no_extension_match" [2020-04-19 19:54:31] NOTICE[1170][C-000027a1] chan_sip.c: Call from '' (103.145.12.24:50202) to extension '01146812111503' rejected because extension not found in context 'public'. [2020-04-19 19:54:31] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T19:54:31.468-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146812111503",SessionID="0x7f6c08099cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103. ...	2020-04-20 08:04:24
103.79.90.72	attackbotsspam	3x Failed Password	2020-04-20 07:41:31
95.167.225.85	attack	Apr 19 14:28:50 : SSH login attempts with invalid user	2020-04-20 08:00:00
218.78.36.85	attackbots	Apr 20 04:37:54 gw1 sshd[4858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.36.85 Apr 20 04:37:57 gw1 sshd[4858]: Failed password for invalid user qy from 218.78.36.85 port 37238 ssh2 ...	2020-04-20 08:01:44
217.133.58.148	attackbotsspam	Apr 19 20:07:40 game-panel sshd[30533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.133.58.148 Apr 19 20:07:42 game-panel sshd[30533]: Failed password for invalid user guest from 217.133.58.148 port 44089 ssh2 Apr 19 20:12:35 game-panel sshd[30775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.133.58.148	2020-04-20 08:07:53
128.199.118.27	attack	Apr 20 01:12:59 host sshd[27935]: Invalid user lx from 128.199.118.27 port 34030 ...	2020-04-20 07:52:34
49.234.124.225	attackbotsspam	Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:28 DAAP sshd[2214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:29 DAAP sshd[2214]: Failed password for invalid user ftpuser from 49.234.124.225 port 54706 ssh2 Apr 20 01:17:28 DAAP sshd[2215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:29 DAAP sshd[2215]: Failed password for invalid user ftpuser from 49.234.124.225 port 54708 ssh2 ...	2020-04-20 07:55:50
104.248.176.46	attackbotsspam	Apr 19 23:11:48 vlre-nyc-1 sshd\[5583\]: Invalid user ig from 104.248.176.46 Apr 19 23:11:48 vlre-nyc-1 sshd\[5583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.176.46 Apr 19 23:11:51 vlre-nyc-1 sshd\[5583\]: Failed password for invalid user ig from 104.248.176.46 port 32970 ssh2 Apr 19 23:15:48 vlre-nyc-1 sshd\[5727\]: Invalid user iy from 104.248.176.46 Apr 19 23:15:48 vlre-nyc-1 sshd\[5727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.176.46 ...	2020-04-20 07:42:44
221.12.124.190	attackspam	Apr 19 20:26:43 firewall sshd[4868]: Invalid user eber from 221.12.124.190 Apr 19 20:26:46 firewall sshd[4868]: Failed password for invalid user eber from 221.12.124.190 port 53824 ssh2 Apr 19 20:31:30 firewall sshd[5024]: Invalid user paulo from 221.12.124.190 ...	2020-04-20 08:13:39
44.233.207.93	attack	SSH brute force	2020-04-20 08:07:37
177.92.138.120	attackbots	1587327150 - 04/19/2020 22:12:30 Host: 177.92.138.120/177.92.138.120 Port: 445 TCP Blocked	2020-04-20 08:14:10
49.51.160.139	attack	Apr 19 22:13:04 vpn01 sshd[6518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 Apr 19 22:13:06 vpn01 sshd[6518]: Failed password for invalid user bi from 49.51.160.139 port 48050 ssh2 ...	2020-04-20 07:44:10
27.155.65.3	attackspambots	Apr 20 00:36:36 vps sshd[698373]: Failed password for invalid user hr from 27.155.65.3 port 2182 ssh2 Apr 20 00:39:48 vps sshd[711892]: Invalid user gitlab-runner from 27.155.65.3 port 28719 Apr 20 00:39:48 vps sshd[711892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.155.65.3 Apr 20 00:39:50 vps sshd[711892]: Failed password for invalid user gitlab-runner from 27.155.65.3 port 28719 ssh2 Apr 20 00:47:09 vps sshd[751043]: Invalid user ubuntu from 27.155.65.3 port 17797 ...	2020-04-20 08:12:36
202.175.46.170	attackspambots	SSH Brute Force	2020-04-20 08:00:51

最近上报的IP列表

111.72.197.211	23.254.147.186	154.94.7.170	183.80.255.23
42.115.146.21	78.180.15.243	60.167.176.227	217.23.12.117
187.143.239.211	183.78.192.155	171.249.207.248	119.96.158.87
116.108.40.236	106.52.155.213	95.5.43.88	111.92.191.77
93.91.116.53	2.228.138.58	222.186.45.82	213.92.250.6