213.157.48.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kazakhstan

运营商(isp): Astel JSC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 213.157.48.139 on Port 445(SMB)	2020-02-15 05:27:35
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-08 17:25:51

相同子网IP讨论:

IP	类型	评论内容	时间
213.157.48.133	attackspam	Dec 16 10:29:42 web8 sshd\[29238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 16 10:29:45 web8 sshd\[29238\]: Failed password for root from 213.157.48.133 port 46170 ssh2 Dec 16 10:35:11 web8 sshd\[31742\]: Invalid user jeraci from 213.157.48.133 Dec 16 10:35:11 web8 sshd\[31742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 16 10:35:13 web8 sshd\[31742\]: Failed password for invalid user jeraci from 213.157.48.133 port 49554 ssh2	2019-12-16 20:01:31
213.157.48.133	attackspambots	Dec 15 13:01:29 wbs sshd\[25519\]: Invalid user icclaw from 213.157.48.133 Dec 15 13:01:29 wbs sshd\[25519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 15 13:01:31 wbs sshd\[25519\]: Failed password for invalid user icclaw from 213.157.48.133 port 35476 ssh2 Dec 15 13:07:31 wbs sshd\[26178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 15 13:07:33 wbs sshd\[26178\]: Failed password for root from 213.157.48.133 port 43410 ssh2	2019-12-16 07:13:38
213.157.48.133	attack	Dec 15 17:53:05 web8 sshd\[23720\]: Invalid user clementia from 213.157.48.133 Dec 15 17:53:05 web8 sshd\[23720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 15 17:53:07 web8 sshd\[23720\]: Failed password for invalid user clementia from 213.157.48.133 port 50762 ssh2 Dec 15 17:59:14 web8 sshd\[26549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 15 17:59:16 web8 sshd\[26549\]: Failed password for root from 213.157.48.133 port 58460 ssh2	2019-12-16 02:02:51
213.157.48.133	attackspambots	Dec 10 20:19:46 game-panel sshd[28670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 10 20:19:48 game-panel sshd[28670]: Failed password for invalid user bruce from 213.157.48.133 port 33600 ssh2 Dec 10 20:25:58 game-panel sshd[28927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133	2019-12-11 08:38:42
213.157.48.133	attackspam	Dec 1 23:20:56 webhost01 sshd[17430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 1 23:20:58 webhost01 sshd[17430]: Failed password for invalid user lawlaw from 213.157.48.133 port 40300 ssh2 ...	2019-12-02 01:37:26
213.157.48.133	attackbots	Nov 29 07:27:57 vpn01 sshd[27411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Nov 29 07:27:59 vpn01 sshd[27411]: Failed password for invalid user ellermann from 213.157.48.133 port 59470 ssh2 ...	2019-11-29 16:16:56
213.157.48.133	attack	Nov 20 08:32:12 vmanager6029 sshd\[21906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Nov 20 08:32:14 vmanager6029 sshd\[21906\]: Failed password for root from 213.157.48.133 port 38870 ssh2 Nov 20 08:36:29 vmanager6029 sshd\[21987\]: Invalid user aimax from 213.157.48.133 port 47692	2019-11-20 15:46:25
213.157.48.133	attackbots	$f2bV_matches	2019-11-12 20:37:42
213.157.48.133	attackbots	Oct 18 05:58:43 game-panel sshd[23606]: Failed password for root from 213.157.48.133 port 59400 ssh2 Oct 18 06:03:29 game-panel sshd[23787]: Failed password for root from 213.157.48.133 port 42880 ssh2	2019-10-18 15:09:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.157.48.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56649
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.157.48.139.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 17:25:44 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.48.157.213.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.48.157.213.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
77.247.181.165	attack	xmlrpc attack	2020-06-03 15:04:25
222.186.30.35	attack	Jun 3 08:42:14 MainVPS sshd[23145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Jun 3 08:42:16 MainVPS sshd[23145]: Failed password for root from 222.186.30.35 port 47384 ssh2 Jun 3 08:42:25 MainVPS sshd[23291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Jun 3 08:42:27 MainVPS sshd[23291]: Failed password for root from 222.186.30.35 port 38232 ssh2 Jun 3 08:42:35 MainVPS sshd[23402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Jun 3 08:42:37 MainVPS sshd[23402]: Failed password for root from 222.186.30.35 port 36030 ssh2 ...	2020-06-03 14:44:40
168.232.198.218	attackbotsspam	Jun 3 07:53:49 PorscheCustomer sshd[23702]: Failed password for root from 168.232.198.218 port 58120 ssh2 Jun 3 07:55:57 PorscheCustomer sshd[23785]: Failed password for root from 168.232.198.218 port 59672 ssh2 ...	2020-06-03 14:50:40
52.232.246.89	attackbotsspam	Jun 3 08:03:39 hosting sshd[21455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.232.246.89 user=root Jun 3 08:03:40 hosting sshd[21455]: Failed password for root from 52.232.246.89 port 46416 ssh2 ...	2020-06-03 15:06:27
171.99.131.74	attack	(imapd) Failed IMAP login from 171.99.131.74 (TH/Thailand/171-99-131-74.static.asianet.co.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 3 08:25:44 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=171.99.131.74, lip=5.63.12.44, TLS: Connection closed, session=	2020-06-03 14:39:35
81.215.226.50	attackspam	Unauthorized connection attempt detected from IP address 81.215.226.50 to port 2323	2020-06-03 14:57:42
222.186.175.148	attack	Jun 3 08:44:33 eventyay sshd[6190]: Failed password for root from 222.186.175.148 port 19584 ssh2 Jun 3 08:44:37 eventyay sshd[6190]: Failed password for root from 222.186.175.148 port 19584 ssh2 Jun 3 08:44:40 eventyay sshd[6190]: Failed password for root from 222.186.175.148 port 19584 ssh2 Jun 3 08:44:46 eventyay sshd[6190]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 19584 ssh2 [preauth] ...	2020-06-03 14:48:29
192.241.151.77	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-03 14:51:46
106.12.45.30	attackbotsspam	k+ssh-bruteforce	2020-06-03 14:49:09
58.87.114.217	attackbots	2020-06-03 06:11:58,499 fail2ban.actions [937]: NOTICE [sshd] Ban 58.87.114.217 2020-06-03 06:45:32,959 fail2ban.actions [937]: NOTICE [sshd] Ban 58.87.114.217 2020-06-03 07:18:59,296 fail2ban.actions [937]: NOTICE [sshd] Ban 58.87.114.217 2020-06-03 07:52:52,729 fail2ban.actions [937]: NOTICE [sshd] Ban 58.87.114.217 2020-06-03 08:26:53,027 fail2ban.actions [937]: NOTICE [sshd] Ban 58.87.114.217 ...	2020-06-03 15:02:56
161.35.45.230	attack	SSH/22 MH Probe, BF, Hack -	2020-06-03 15:06:46
180.168.141.246	attack	Jun 3 08:39:18 vps647732 sshd[26648]: Failed password for root from 180.168.141.246 port 51310 ssh2 ...	2020-06-03 14:48:09
51.161.34.8	attackbots	2020-06-03T06:55:46.713213+02:00 sshd[29946]: Failed password for root from 51.161.34.8 port 35262 ssh2	2020-06-03 14:33:17
123.27.91.165	attackbots	20/6/2@23:55:14: FAIL: Alarm-Intrusion address from=123.27.91.165 ...	2020-06-03 15:00:13
62.210.185.4	attackbotsspam	62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.185.4 - - [03/Jun/2020:07:42:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-06-03 14:43:11

最近上报的IP列表

223.30.5.13	121.187.10.162	109.75.37.20	223.17.85.204
54.223.144.91	62.80.235.224	49.146.41.98	76.98.110.187
14.207.138.99	47.52.62.174	157.52.171.5	94.64.61.79
185.51.201.244	123.193.80.144	106.12.171.65	197.98.12.234
201.134.205.138	111.240.76.229	45.148.10.176	39.98.69.84

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表