219.134.219.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
219.134.219.139	attack	Time: Sat Aug 29 17:52:04 2020 +0200 IP: 219.134.219.139 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 29 17:24:51 mail-01 sshd[7111]: Invalid user lorenza from 219.134.219.139 port 40322 Aug 29 17:24:53 mail-01 sshd[7111]: Failed password for invalid user lorenza from 219.134.219.139 port 40322 ssh2 Aug 29 17:47:34 mail-01 sshd[8353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139 user=root Aug 29 17:47:37 mail-01 sshd[8353]: Failed password for root from 219.134.219.139 port 38979 ssh2 Aug 29 17:52:01 mail-01 sshd[8548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139 user=root	2020-08-30 00:36:40
219.134.219.139	attackbotsspam	Aug 28 21:23:12 fwservlet sshd[3753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139 user=r.r Aug 28 21:23:15 fwservlet sshd[3753]: Failed password for r.r from 219.134.219.139 port 39975 ssh2 Aug 28 21:23:15 fwservlet sshd[3753]: Received disconnect from 219.134.219.139 port 39975:11: Bye Bye [preauth] Aug 28 21:23:15 fwservlet sshd[3753]: Disconnected from 219.134.219.139 port 39975 [preauth] Aug 28 21:26:38 fwservlet sshd[3880]: Invalid user allan from 219.134.219.139 Aug 28 21:26:38 fwservlet sshd[3880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139 Aug 28 21:26:40 fwservlet sshd[3880]: Failed password for invalid user allan from 219.134.219.139 port 39146 ssh2 Aug 28 21:26:40 fwservlet sshd[3880]: Received disconnect from 219.134.219.139 port 39146:11: Bye Bye [preauth] Aug 28 21:26:40 fwservlet sshd[3880]: Disconnected from 219.134.219.139 port 39146........ -------------------------------	2020-08-29 06:53:22

类型

评论内容

时间

219.134.219.139

attack

Time:     Sat Aug 29 17:52:04 2020 +0200
IP:       219.134.219.139 (CN/China/-)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Aug 29 17:24:51 mail-01 sshd[7111]: Invalid user lorenza from 219.134.219.139 port 40322
Aug 29 17:24:53 mail-01 sshd[7111]: Failed password for invalid user lorenza from 219.134.219.139 port 40322 ssh2
Aug 29 17:47:34 mail-01 sshd[8353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139  user=root
Aug 29 17:47:37 mail-01 sshd[8353]: Failed password for root from 219.134.219.139 port 38979 ssh2
Aug 29 17:52:01 mail-01 sshd[8548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139  user=root

2020-08-30 00:36:40

219.134.219.139

attackbotsspam

Aug 28 21:23:12 fwservlet sshd[3753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139  user=r.r
Aug 28 21:23:15 fwservlet sshd[3753]: Failed password for r.r from 219.134.219.139 port 39975 ssh2
Aug 28 21:23:15 fwservlet sshd[3753]: Received disconnect from 219.134.219.139 port 39975:11: Bye Bye [preauth]
Aug 28 21:23:15 fwservlet sshd[3753]: Disconnected from 219.134.219.139 port 39975 [preauth]
Aug 28 21:26:38 fwservlet sshd[3880]: Invalid user allan from 219.134.219.139
Aug 28 21:26:38 fwservlet sshd[3880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.219.139
Aug 28 21:26:40 fwservlet sshd[3880]: Failed password for invalid user allan from 219.134.219.139 port 39146 ssh2
Aug 28 21:26:40 fwservlet sshd[3880]: Received disconnect from 219.134.219.139 port 39146:11: Bye Bye [preauth]
Aug 28 21:26:40 fwservlet sshd[3880]: Disconnected from 219.134.219.139 port 39146........
-------------------------------

2020-08-29 06:53:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.134.219.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43149
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.134.219.12.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021400 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 01:56:14 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 12.219.134.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.219.134.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.58.198.185	attackbots	Aug 22 03:11:18 server sshd\[6627\]: Invalid user nagios from 37.58.198.185 port 47766 Aug 22 03:11:18 server sshd\[6627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.58.198.185 Aug 22 03:11:20 server sshd\[6627\]: Failed password for invalid user nagios from 37.58.198.185 port 47766 ssh2 Aug 22 03:15:36 server sshd\[11850\]: Invalid user want from 37.58.198.185 port 43100 Aug 22 03:15:36 server sshd\[11850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.58.198.185	2019-08-22 08:17:10
148.70.63.163	attack	Aug 22 02:25:32 bouncer sshd\[9215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.63.163 user=root Aug 22 02:25:34 bouncer sshd\[9215\]: Failed password for root from 148.70.63.163 port 47070 ssh2 Aug 22 02:30:47 bouncer sshd\[9236\]: Invalid user cam from 148.70.63.163 port 38710 ...	2019-08-22 09:14:46
177.125.40.145	attackbots	failed_logins	2019-08-22 08:52:34
118.25.96.30	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-08-22 08:50:38
139.59.74.183	attackbots	Aug 21 14:21:24 lcprod sshd\[2563\]: Invalid user scan from 139.59.74.183 Aug 21 14:21:24 lcprod sshd\[2563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183 Aug 21 14:21:25 lcprod sshd\[2563\]: Failed password for invalid user scan from 139.59.74.183 port 34648 ssh2 Aug 21 14:26:02 lcprod sshd\[2998\]: Invalid user mongod from 139.59.74.183 Aug 21 14:26:03 lcprod sshd\[2998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183	2019-08-22 08:37:53
185.77.81.119	attackbotsspam	Aug 21 22:27:26 hermescis postfix/smtpd\[8587\]: NOQUEUE: reject: RCPT from server.deansanderson.co.uk\[185.77.81.119\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-08-22 08:25:43
106.13.38.86	attack	Aug 21 14:38:59 hanapaa sshd\[25690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.86 user=uucp Aug 21 14:39:01 hanapaa sshd\[25690\]: Failed password for uucp from 106.13.38.86 port 36240 ssh2 Aug 21 14:44:10 hanapaa sshd\[26264\]: Invalid user aura from 106.13.38.86 Aug 21 14:44:10 hanapaa sshd\[26264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.86 Aug 21 14:44:12 hanapaa sshd\[26264\]: Failed password for invalid user aura from 106.13.38.86 port 47958 ssh2	2019-08-22 08:59:03
185.143.221.60	attackbots	Aug 22 02:31:55 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.221.60 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=27774 PROTO=TCP SPT=49559 DPT=21841 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-22 08:43:36
98.144.230.245	attackbotsspam	vps1:sshd-InvalidUser	2019-08-22 08:38:33
153.3.139.224	attack	Aug 21 12:26:54 kapalua sshd\[3846\]: Invalid user usuario from 153.3.139.224 Aug 21 12:26:54 kapalua sshd\[3846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.3.139.224 Aug 21 12:26:56 kapalua sshd\[3846\]: Failed password for invalid user usuario from 153.3.139.224 port 41837 ssh2 Aug 21 12:26:58 kapalua sshd\[3846\]: Failed password for invalid user usuario from 153.3.139.224 port 41837 ssh2 Aug 21 12:26:59 kapalua sshd\[3846\]: Failed password for invalid user usuario from 153.3.139.224 port 41837 ssh2	2019-08-22 09:04:41
177.21.199.50	attack	failed_logins	2019-08-22 08:40:21
178.128.215.16	attackbotsspam	Aug 21 14:18:13 lcprod sshd\[2222\]: Invalid user 1234567 from 178.128.215.16 Aug 21 14:18:13 lcprod sshd\[2222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16 Aug 21 14:18:16 lcprod sshd\[2222\]: Failed password for invalid user 1234567 from 178.128.215.16 port 49140 ssh2 Aug 21 14:23:10 lcprod sshd\[2703\]: Invalid user gmodserver123 from 178.128.215.16 Aug 21 14:23:10 lcprod sshd\[2703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16	2019-08-22 08:31:55
54.38.183.181	attackbots	Aug 22 02:14:47 icinga sshd[28404]: Failed password for root from 54.38.183.181 port 47154 ssh2 ...	2019-08-22 08:56:49
157.230.33.207	attackspam	Aug 22 02:58:45 lnxded63 sshd[1823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.33.207 Aug 22 02:58:45 lnxded63 sshd[1823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.33.207	2019-08-22 09:04:15
206.189.181.215	attack	Aug 21 14:09:50 hanapaa sshd\[23027\]: Invalid user administrador from 206.189.181.215 Aug 21 14:09:50 hanapaa sshd\[23027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.181.215 Aug 21 14:09:51 hanapaa sshd\[23027\]: Failed password for invalid user administrador from 206.189.181.215 port 43628 ssh2 Aug 21 14:13:47 hanapaa sshd\[23358\]: Invalid user jmulholland from 206.189.181.215 Aug 21 14:13:47 hanapaa sshd\[23358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.181.215	2019-08-22 08:27:46

最近上报的IP列表

65.5.68.8	55.214.214.237	147.191.54.246	168.120.142.139
152.210.116.220	43.237.96.204	55.99.18.57	100.22.183.236
16.57.27.248	184.73.106.223	130.170.139.71	240.104.165.139
231.16.153.51	225.25.152.246	171.29.136.197	182.164.34.126
103.41.59.32	230.116.44.92	131.87.70.245	128.26.111.158