20.39.19.91 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
20.39.190.185	attack	Aug 11 19:03:08 h2034429 sshd[2146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 user=r.r Aug 11 19:03:11 h2034429 sshd[2146]: Failed password for r.r from 20.39.190.185 port 37770 ssh2 Aug 11 19:03:11 h2034429 sshd[2146]: Received disconnect from 20.39.190.185 port 37770:11: Bye Bye [preauth] Aug 11 19:03:11 h2034429 sshd[2146]: Disconnected from 20.39.190.185 port 37770 [preauth] Aug 11 19:22:37 h2034429 sshd[2413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 user=r.r Aug 11 19:22:39 h2034429 sshd[2413]: Failed password for r.r from 20.39.190.185 port 42428 ssh2 Aug 11 19:22:39 h2034429 sshd[2413]: Received disconnect from 20.39.190.185 port 42428:11: Bye Bye [preauth] Aug 11 19:22:39 h2034429 sshd[2413]: Disconnected from 20.39.190.185 port 42428 [preauth] Aug 11 19:25:44 h2034429 sshd[2475]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2020-08-15 20:21:13
20.39.190.185	attackbots	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-08-09 05:31:01
20.39.190.185	attackbotsspam	Aug 1 10:34:46 vpn01 sshd[4321]: Failed password for root from 20.39.190.185 port 45872 ssh2 ...	2020-08-01 19:19:27
20.39.190.185	attack	Jul 31 07:48:08 mout sshd[7804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 user=root Jul 31 07:48:10 mout sshd[7804]: Failed password for root from 20.39.190.185 port 35830 ssh2	2020-07-31 18:21:01
20.39.190.185	attackspam	Jul 28 09:28:06 hgb10502 sshd[13216]: Invalid user hadoop from 20.39.190.185 port 55260 Jul 28 09:28:06 hgb10502 sshd[13216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 Jul 28 09:28:08 hgb10502 sshd[13216]: Failed password for invalid user hadoop from 20.39.190.185 port 55260 ssh2 Jul 28 09:28:09 hgb10502 sshd[13216]: Received disconnect from 20.39.190.185 port 55260:11: Bye Bye [preauth] Jul 28 09:28:09 hgb10502 sshd[13216]: Disconnected from 20.39.190.185 port 55260 [preauth] Jul 28 09:42:51 hgb10502 sshd[14501]: Invalid user yz from 20.39.190.185 port 45412 Jul 28 09:42:51 hgb10502 sshd[14501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.39.190.185 Jul 28 09:42:53 hgb10502 sshd[14501]: Failed password for invalid user yz from 20.39.190.185 port 45412 ssh2 Jul 28 09:42:53 hgb10502 sshd[14501]: Received disconnect from 20.39.190.185 port 45412:11: Bye Bye [preauth]........ -------------------------------	2020-07-30 01:20:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.39.19.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.39.19.91.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030900 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 10 00:26:51 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

Host 91.19.39.20.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 91.19.39.20.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
113.141.66.227	attackbots	1433/tcp [2019-10-11]1pkt	2019-10-11 16:14:32
45.23.108.9	attackbots	Automatic report - Banned IP Access	2019-10-11 16:14:47
45.114.143.201	attackspam	Oct 11 04:08:44 www_kotimaassa_fi sshd[11825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.143.201 Oct 11 04:08:46 www_kotimaassa_fi sshd[11825]: Failed password for invalid user P@r0la_111 from 45.114.143.201 port 60758 ssh2 ...	2019-10-11 16:15:04
91.121.205.83	attack	Oct 10 18:48:48 sachi sshd\[22723\]: Invalid user Hotdog@2017 from 91.121.205.83 Oct 10 18:48:48 sachi sshd\[22723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=telecharge5.vega5.fr Oct 10 18:48:49 sachi sshd\[22723\]: Failed password for invalid user Hotdog@2017 from 91.121.205.83 port 59808 ssh2 Oct 10 18:55:49 sachi sshd\[23322\]: Invalid user Citroen from 91.121.205.83 Oct 10 18:55:49 sachi sshd\[23322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=telecharge5.vega5.fr	2019-10-11 16:22:56
114.38.1.62	attack	19/10/10@23:52:20: FAIL: IoT-Telnet address from=114.38.1.62 ...	2019-10-11 16:12:44
185.176.27.42	attackspambots	10/11/2019-03:31:49.683209 185.176.27.42 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-11 16:05:55
119.29.52.46	attackspam	Oct 11 09:20:32 microserver sshd[38741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.52.46 user=root Oct 11 09:20:34 microserver sshd[38741]: Failed password for root from 119.29.52.46 port 41068 ssh2 Oct 11 09:25:35 microserver sshd[39446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.52.46 user=root Oct 11 09:25:39 microserver sshd[39446]: Failed password for root from 119.29.52.46 port 44040 ssh2 Oct 11 09:29:54 microserver sshd[39750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.52.46 user=root Oct 11 09:42:52 microserver sshd[41739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.52.46 user=root Oct 11 09:42:55 microserver sshd[41739]: Failed password for root from 119.29.52.46 port 55756 ssh2 Oct 11 09:47:24 microserver sshd[42449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=	2019-10-11 16:03:39
165.227.143.37	attack	Oct 11 06:55:27 dedicated sshd[16887]: Invalid user P4ssw0rt3@1 from 165.227.143.37 port 50664	2019-10-11 16:03:14
182.254.223.249	attack	" "	2019-10-11 16:01:51
46.101.77.5	attackbotsspam	Oct 7 04:04:59 econome sshd[15989]: reveeclipse mapping checking getaddrinfo for barclays.chatbot.capco.io [46.101.77.5] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 04:04:59 econome sshd[15989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.77.5 user=r.r Oct 7 04:05:01 econome sshd[15989]: Failed password for r.r from 46.101.77.5 port 39214 ssh2 Oct 7 04:05:01 econome sshd[15989]: Received disconnect from 46.101.77.5: 11: Bye Bye [preauth] Oct 7 04:24:16 econome sshd[17102]: reveeclipse mapping checking getaddrinfo for barclays.chatbot.capco.io [46.101.77.5] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 04:24:16 econome sshd[17102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.77.5 user=r.r Oct 7 04:24:18 econome sshd[17102]: Failed password .... truncated .... Oct 7 04:04:59 econome sshd[15989]: reveeclipse mapping checking getaddrinfo for barclays.chatbot.capco.io........ -------------------------------	2019-10-11 16:16:36
51.91.249.144	attack	"Fail2Ban detected SSH brute force attempt"	2019-10-11 16:20:01
201.184.242.42	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/201.184.242.42/ CO - 1H : (8) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CO NAME ASN : ASN13489 IP : 201.184.242.42 CIDR : 201.184.0.0/15 PREFIX COUNT : 20 UNIQUE IP COUNT : 237568 WYKRYTE ATAKI Z ASN13489 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 3 DateTime : 2019-10-11 05:52:09 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 16:18:06
113.3.33.110	attackspambots	Unauthorised access (Oct 11) SRC=113.3.33.110 LEN=40 TTL=49 ID=14276 TCP DPT=8080 WINDOW=61855 SYN Unauthorised access (Oct 11) SRC=113.3.33.110 LEN=40 TTL=49 ID=1481 TCP DPT=8080 WINDOW=38895 SYN Unauthorised access (Oct 11) SRC=113.3.33.110 LEN=40 TTL=49 ID=41403 TCP DPT=8080 WINDOW=61855 SYN Unauthorised access (Oct 10) SRC=113.3.33.110 LEN=40 TTL=49 ID=25756 TCP DPT=8080 WINDOW=28943 SYN Unauthorised access (Oct 10) SRC=113.3.33.110 LEN=40 TTL=49 ID=5846 TCP DPT=8080 WINDOW=28943 SYN Unauthorised access (Oct 9) SRC=113.3.33.110 LEN=40 TTL=49 ID=881 TCP DPT=8080 WINDOW=13151 SYN	2019-10-11 15:55:02
187.235.44.84	attack	XSS Attack	2019-10-11 15:54:15
23.94.133.72	attackbotsspam	Oct 11 10:14:41 dedicated sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.133.72 user=root Oct 11 10:14:43 dedicated sshd[9680]: Failed password for root from 23.94.133.72 port 60802 ssh2	2019-10-11 16:27:33

最近上报的IP列表

87.43.70.128	218.167.14.203	212.90.25.74	229.163.219.156
187.177.40.205	53.233.164.177	126.13.93.39	206.189.3.82
241.240.66.35	184.59.77.232	75.173.234.230	91.17.81.51
182.16.60.3	253.193.54.196	146.68.127.86	99.31.5.151
86.22.53.62	152.254.179.48	149.170.56.172	146.19.253.202