219.135.139.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Mar 26 05:43:59 WHD8 postfix/smtpd\[94626\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 6 07:18:50 WHD8 postfix/smtpd\[93580\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 6 07:18:59 WHD8 postfix/smtpd\[93467\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-06 02:49:23

类型

评论内容

时间

attackbotsspam

Mar 26 05:43:59 WHD8 postfix/smtpd\[94626\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  6 07:18:50 WHD8 postfix/smtpd\[93580\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  6 07:18:59 WHD8 postfix/smtpd\[93467\]: warning: unknown\[219.135.139.243\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...

2020-05-06 02:49:23

相同子网IP讨论:

IP	类型	评论内容	时间
219.135.139.130	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-07-17 00:45:22
219.135.139.242	attackbots	Mar 23 01:05:03 WHD8 postfix/smtpd\[49804\]: warning: unknown\[219.135.139.242\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 23 01:05:11 WHD8 postfix/smtpd\[49869\]: warning: unknown\[219.135.139.242\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 31 00:02:49 WHD8 postfix/smtpd\[35160\]: warning: unknown\[219.135.139.242\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-06 03:04:46
219.135.139.244	attackspam	Dec 31 09:53:01 web1 postfix/smtpd[26895]: warning: unknown[219.135.139.244]: SASL LOGIN authentication failed: authentication failure ...	2019-12-31 23:54:28
219.135.139.242	attackspam	Dec 31 09:53:07 web1 postfix/smtpd[27446]: warning: unknown[219.135.139.242]: SASL LOGIN authentication failed: authentication failure ...	2019-12-31 23:46:07
219.135.139.245	attackbots	Dec 31 09:53:11 web1 postfix/smtpd[27446]: warning: unknown[219.135.139.245]: SASL LOGIN authentication failed: authentication failure ...	2019-12-31 23:43:37
219.135.139.245	attack	Nov 17 00:21:23 mail postfix/smtpd[14787]: warning: unknown[219.135.139.245]: SASL LOGIN authentication failed: authentication failure	2019-11-17 21:06:08
219.135.139.242	attack	Nov 17 00:21:31 mail postfix/smtpd[14815]: warning: unknown[219.135.139.242]: SASL LOGIN authentication failed: authentication failure	2019-11-17 20:59:20
219.135.139.244	attackspam	2019-10-21 22:51:20 dovecot_login authenticator failed for (sienawx.org) [219.135.139.244]:23459 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=nologin@lerctr.org) 2019-10-21 22:51:55 dovecot_login authenticator failed for (sienawx.org) [219.135.139.244]:16062 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=android@lerctr.org) 2019-10-21 22:52:12 dovecot_login authenticator failed for (sienawx.org) [219.135.139.244]:62968 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=android@lerctr.org) ...	2019-10-22 16:44:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.135.139.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59818
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.135.139.243.		IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050501 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 02:49:18 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

243.139.135.219.in-addr.arpa domain name pointer 243.139.135.219.broad.gz.gd.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
243.139.135.219.in-addr.arpa	name = 243.139.135.219.broad.gz.gd.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.107.177.11	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:43,408 INFO [shellcode_manager] (116.107.177.11) no match, writing hexdump (83bc4e3a71dae41d4d4d5c1e140f4c9b :2115567) - MS17010 (EternalBlue)	2019-07-03 16:43:40
81.22.45.9	attack	Jul 3 07:07:44 TCP Attack: SRC=81.22.45.9 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=240 PROTO=TCP SPT=44002 DPT=3910 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-03 16:25:29
41.202.163.76	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:46,390 INFO [shellcode_manager] (41.202.163.76) no match, writing hexdump (39bf2d517c4f13b27919bd13bb59a24f :2410300) - MS17010 (EternalBlue)	2019-07-03 16:27:49
190.165.187.178	attack	Jul 3 06:50:01 srv-4 sshd\[18207\]: Invalid user admin from 190.165.187.178 Jul 3 06:50:01 srv-4 sshd\[18207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.165.187.178 Jul 3 06:50:03 srv-4 sshd\[18207\]: Failed password for invalid user admin from 190.165.187.178 port 53824 ssh2 ...	2019-07-03 16:24:11
14.185.159.147	attack	445/tcp 445/tcp 445/tcp [2019-07-03]3pkt	2019-07-03 16:53:59
41.232.76.99	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-07-03 16:35:27
185.224.88.162	attackbots	Banned for posting to wp-login.php without referer {"redirect_to":"","user_email":"master@createsimpledomain.icu","user_login":"mastericuuu","wp-submit":"Register"}	2019-07-03 16:44:58
95.80.64.108	attackspam	Sending SPAM email	2019-07-03 16:26:56
177.17.189.234	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:40:47,958 INFO [shellcode_manager] (177.17.189.234) no match, writing hexdump (4ae8fd074f9dd953fed15c0f58c9c10ddc3e991517 :2392137) - MS17010 (EternalBlue)	2019-07-03 16:45:22
106.12.96.76	attack	23/tcp [2019-07-03]1pkt	2019-07-03 17:07:38
180.154.178.119	attackbotsspam	Telnetd brute force attack detected by fail2ban	2019-07-03 16:46:17
112.115.134.254	attackspam	21/tcp 21/tcp [2019-07-03]2pkt	2019-07-03 16:50:20
36.233.98.200	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:47,120 INFO [shellcode_manager] (36.233.98.200) no match, writing hexdump (9d3c1a7aed4cfc7027167888b05a4005 :2316521) - SMB (Unknown)	2019-07-03 16:21:13
107.170.249.90	attackbots	5351/udp 21753/tcp 32228/tcp... [2019-05-02/07-03]53pkt,47pt.(tcp),3pt.(udp)	2019-07-03 16:30:57
197.230.101.34	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:25:07,878 INFO [shellcode_manager] (197.230.101.34) no match, writing hexdump (c5c992fb33d5615bdc5e0cb9a7aefcce :2307670) - MS17010 (EternalBlue)	2019-07-03 16:32:12

最近上报的IP列表

91.234.99.209	253.118.169.204	185.206.225.140	193.95.62.242
31.170.62.245	144.217.255.56	95.92.110.33	197.48.65.210
24.181.67.58	123.16.144.149	94.191.118.222	103.15.83.137
218.149.143.251	172.75.133.74	157.230.32.113	123.185.134.236
185.238.109.10	162.134.39.255	5.189.127.147	88.12.135.244