219.139.131.134

基本信息:

城市(city): Wuhan

省份(region): Hubei

国家(country): China

运营商(isp): ChinaNet Hubei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Oct 1 12:35:28 mockhub sshd[307470]: Invalid user amsftp from 219.139.131.134 port 39134 Oct 1 12:35:30 mockhub sshd[307470]: Failed password for invalid user amsftp from 219.139.131.134 port 39134 ssh2 Oct 1 12:37:02 mockhub sshd[307545]: Invalid user nathalie from 219.139.131.134 port 34490 ...	2020-10-02 03:47:29
attackspambots	Invalid user rohit from 219.139.131.134 port 56816	2020-10-01 20:00:24
attackbots	Oct 1 02:21:14 OPSO sshd\[27518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root Oct 1 02:21:16 OPSO sshd\[27518\]: Failed password for root from 219.139.131.134 port 43160 ssh2 Oct 1 02:24:55 OPSO sshd\[28016\]: Invalid user git from 219.139.131.134 port 40010 Oct 1 02:24:55 OPSO sshd\[28016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 Oct 1 02:24:58 OPSO sshd\[28016\]: Failed password for invalid user git from 219.139.131.134 port 40010 ssh2	2020-10-01 12:08:34
attackbots	2020-08-30T02:29:41.967383linuxbox-skyline sshd[32502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root 2020-08-30T02:29:44.260005linuxbox-skyline sshd[32502]: Failed password for root from 219.139.131.134 port 44536 ssh2 ...	2020-08-30 17:05:09
attackspambots	Aug 26 22:51:03 ns382633 sshd\[16842\]: Invalid user jeffrey from 219.139.131.134 port 52572 Aug 26 22:51:03 ns382633 sshd\[16842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 Aug 26 22:51:04 ns382633 sshd\[16842\]: Failed password for invalid user jeffrey from 219.139.131.134 port 52572 ssh2 Aug 26 23:01:04 ns382633 sshd\[18564\]: Invalid user lij from 219.139.131.134 port 44128 Aug 26 23:01:04 ns382633 sshd\[18564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134	2020-08-27 05:41:53
attackbotsspam	Aug 23 20:17:52 php1 sshd\[9011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root Aug 23 20:17:54 php1 sshd\[9011\]: Failed password for root from 219.139.131.134 port 44616 ssh2 Aug 23 20:23:33 php1 sshd\[9510\]: Invalid user gitlab from 219.139.131.134 Aug 23 20:23:33 php1 sshd\[9510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 Aug 23 20:23:35 php1 sshd\[9510\]: Failed password for invalid user gitlab from 219.139.131.134 port 50728 ssh2	2020-08-24 14:26:31
attackbotsspam	Aug 10 06:33:22 buvik sshd[14234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 Aug 10 06:33:25 buvik sshd[14234]: Failed password for invalid user ftpadmin1 from 219.139.131.134 port 58730 ssh2 Aug 10 06:36:52 buvik sshd[14681]: Invalid user qwe!@#$ from 219.139.131.134 ...	2020-08-10 12:59:41
attack	Aug 3 07:10:40 piServer sshd[29297]: Failed password for root from 219.139.131.134 port 55452 ssh2 Aug 3 07:13:13 piServer sshd[29608]: Failed password for root from 219.139.131.134 port 54942 ssh2 ...	2020-08-03 15:55:42
attack	2020-07-23T22:20:46.715134-07:00 suse-nuc sshd[16303]: Invalid user vuser from 219.139.131.134 port 52700 ...	2020-07-24 13:45:37
attackspam	Jul 19 22:38:32 jumpserver sshd[138736]: Invalid user bdm from 219.139.131.134 port 41536 Jul 19 22:38:34 jumpserver sshd[138736]: Failed password for invalid user bdm from 219.139.131.134 port 41536 ssh2 Jul 19 22:42:21 jumpserver sshd[138775]: Invalid user jie from 219.139.131.134 port 46380 ...	2020-07-20 06:46:46
attackspam	Invalid user vlad from 219.139.131.134 port 52370	2020-07-19 03:15:06
attack	$f2bV_matches	2020-06-10 20:19:50
attack	2020-05-27T07:59:25.807088afi-git.jinr.ru sshd[8085]: Failed password for root from 219.139.131.134 port 38854 ssh2 2020-05-27T08:02:15.223464afi-git.jinr.ru sshd[8857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root 2020-05-27T08:02:16.786804afi-git.jinr.ru sshd[8857]: Failed password for root from 219.139.131.134 port 46464 ssh2 2020-05-27T08:05:11.081432afi-git.jinr.ru sshd[9419]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=test 2020-05-27T08:05:13.672918afi-git.jinr.ru sshd[9419]: Failed password for test from 219.139.131.134 port 54628 ssh2 ...	2020-05-27 14:15:29
attack	web-1 [ssh] SSH Attack	2020-05-26 09:50:11
attackspambots	2020-05-25T20:39:54.312261abusebot-7.cloudsearch.cf sshd[19184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root 2020-05-25T20:39:56.492323abusebot-7.cloudsearch.cf sshd[19184]: Failed password for root from 219.139.131.134 port 41094 ssh2 2020-05-25T20:42:48.620391abusebot-7.cloudsearch.cf sshd[19329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root 2020-05-25T20:42:50.353757abusebot-7.cloudsearch.cf sshd[19329]: Failed password for root from 219.139.131.134 port 60766 ssh2 2020-05-25T20:45:43.575565abusebot-7.cloudsearch.cf sshd[19511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 user=root 2020-05-25T20:45:46.001382abusebot-7.cloudsearch.cf sshd[19511]: Failed password for root from 219.139.131.134 port 52152 ssh2 2020-05-25T20:48:59.107607abusebot-7.cloudsearch.cf sshd[19673]: Invalid user v ...	2020-05-26 06:52:16
attackspambots	May 18 23:21:42 our-server-hostname sshd[4120]: Invalid user rku from 219.139.131.134 May 18 23:21:42 our-server-hostname sshd[4120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 May 18 23:21:44 our-server-hostname sshd[4120]: Failed password for invalid user rku from 219.139.131.134 port 59266 ssh2 May 18 23:30:53 our-server-hostname sshd[5727]: Invalid user gld from 219.139.131.134 May 18 23:30:53 our-server-hostname sshd[5727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.134 May 18 23:30:55 our-server-hostname sshd[5727]: Failed password for invalid user gld from 219.139.131.134 port 54192 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=219.139.131.134	2020-05-23 15:58:58
attack	May 22 01:20:36 [host] sshd[8373]: Invalid user xs May 22 01:20:36 [host] sshd[8373]: pam_unix(sshd:a May 22 01:20:38 [host] sshd[8373]: Failed password	2020-05-22 07:52:32

相同子网IP讨论:

IP	类型	评论内容	时间
219.139.131.21	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-21 19:11:17
219.139.131.131	attackbotsspam	May 9 00:52:56 sip sshd[171091]: Invalid user kodiak from 219.139.131.131 port 39632 May 9 00:52:58 sip sshd[171091]: Failed password for invalid user kodiak from 219.139.131.131 port 39632 ssh2 May 9 00:55:38 sip sshd[171170]: Invalid user sharon from 219.139.131.131 port 55040 ...	2020-05-09 07:28:42
219.139.131.131	attackbotsspam	Apr 12 15:11:34 pve sshd[23182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.131 Apr 12 15:11:35 pve sshd[23182]: Failed password for invalid user students from 219.139.131.131 port 43700 ssh2 Apr 12 15:19:24 pve sshd[29413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.131	2020-04-12 21:56:27
219.139.131.131	attack	SASL PLAIN auth failed: ruser=...	2020-04-10 09:20:58
219.139.131.131	attack	Apr 1 09:52:13 server sshd[14507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.131 user=r.r Apr 1 09:52:16 server sshd[14507]: Failed password for r.r from 219.139.131.131 port 44748 ssh2 Apr 1 09:52:16 server sshd[14507]: Received disconnect from 219.139.131.131: 11: Bye Bye [preauth] Apr 1 09:54:19 server sshd[14520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.131 user=r.r Apr 1 09:54:21 server sshd[14520]: Failed password for r.r from 219.139.131.131 port 59760 ssh2 Apr 1 09:54:21 server sshd[14520]: Received disconnect from 219.139.131.131: 11: Bye Bye [preauth] Apr 1 09:59:03 server sshd[14600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.139.131.131 user=r.r Apr 1 09:59:05 server sshd[14600]: Failed password for r.r from 219.139.131.131 port 39470 ssh2 Apr 1 09:59:06 server sshd[14600]: Receive........ -------------------------------	2020-04-02 01:05:50
219.139.131.138	attackbots	Feb 4 03:26:17 host dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=219.139.131.138, lip=62.210.151.217, session= Feb 4 03:26:24 host dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=219.139.131.138, lip=62.210.151.217, session=<+/DTw7adwuLbi4OK> ...	2020-02-05 14:27:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.139.131.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.139.131.134.		IN	A

;; AUTHORITY SECTION:
.			363	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052102 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 07:52:27 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 134.131.139.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.131.139.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.255.106.70	attackspam	chaangnoifulda.de 51.255.106.70 \[20/Oct/2019:22:43:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5874 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" chaangnoifulda.de 51.255.106.70 \[20/Oct/2019:22:43:28 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4097 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-21 08:32:07
54.37.151.239	attackspambots	Oct 20 23:03:14 XXX sshd[57424]: Invalid user backup from 54.37.151.239 port 55539	2019-10-21 08:11:19
178.128.162.10	attack	Oct 21 05:52:22 pornomens sshd\[29875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.162.10 user=root Oct 21 05:52:24 pornomens sshd\[29875\]: Failed password for root from 178.128.162.10 port 54016 ssh2 Oct 21 05:56:11 pornomens sshd\[29879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.162.10 user=root ...	2019-10-21 12:00:36
14.226.54.35	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.226.54.35/ VN - 1H : (38) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN45899 IP : 14.226.54.35 CIDR : 14.226.48.0/21 PREFIX COUNT : 2411 UNIQUE IP COUNT : 7209216 ATTACKS DETECTED ASN45899 : 1H - 1 3H - 1 6H - 2 12H - 4 24H - 7 DateTime : 2019-10-21 05:56:10 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-21 12:01:08
181.49.164.253	attack	Oct 20 10:18:56 auw2 sshd\[9647\]: Invalid user hen from 181.49.164.253 Oct 20 10:18:56 auw2 sshd\[9647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.164.253 Oct 20 10:18:58 auw2 sshd\[9647\]: Failed password for invalid user hen from 181.49.164.253 port 54272 ssh2 Oct 20 10:22:50 auw2 sshd\[9968\]: Invalid user abc123!@\# from 181.49.164.253 Oct 20 10:22:50 auw2 sshd\[9968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.164.253	2019-10-21 08:10:08
121.157.82.218	attack	Oct 21 00:49:42 bouncer sshd\[783\]: Invalid user justin1 from 121.157.82.218 port 47862 Oct 21 00:49:42 bouncer sshd\[783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.218 Oct 21 00:49:44 bouncer sshd\[783\]: Failed password for invalid user justin1 from 121.157.82.218 port 47862 ssh2 ...	2019-10-21 08:26:25
49.255.179.216	attackbots	Oct 20 11:52:21 wbs sshd\[29473\]: Invalid user 123qwe from 49.255.179.216 Oct 20 11:52:21 wbs sshd\[29473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.179.216 Oct 20 11:52:23 wbs sshd\[29473\]: Failed password for invalid user 123qwe from 49.255.179.216 port 49620 ssh2 Oct 20 11:57:27 wbs sshd\[29847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.179.216 user=www-data Oct 20 11:57:29 wbs sshd\[29847\]: Failed password for www-data from 49.255.179.216 port 33066 ssh2	2019-10-21 08:11:44
202.5.20.192	attackbotsspam	2019-10-21T01:30:08.037145tmaserv sshd\[27441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.5.20.192 user=root 2019-10-21T01:30:09.623769tmaserv sshd\[27441\]: Failed password for root from 202.5.20.192 port 41877 ssh2 2019-10-21T01:33:40.625784tmaserv sshd\[30071\]: Invalid user angela from 202.5.20.192 port 28708 2019-10-21T01:33:40.630274tmaserv sshd\[30071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.5.20.192 2019-10-21T01:33:42.988748tmaserv sshd\[30071\]: Failed password for invalid user angela from 202.5.20.192 port 28708 ssh2 2019-10-21T01:37:16.918361tmaserv sshd\[30423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.5.20.192 user=root ...	2019-10-21 08:13:51
159.89.122.208	attackbots	Oct 19 04:27:36 HOST sshd[24996]: Failed password for invalid user nipa from 159.89.122.208 port 51698 ssh2 Oct 19 04:27:36 HOST sshd[24996]: Received disconnect from 159.89.122.208: 11: Bye Bye [preauth] Oct 19 04:32:52 HOST sshd[25145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.122.208 user=r.r Oct 19 04:32:53 HOST sshd[25145]: Failed password for r.r from 159.89.122.208 port 44684 ssh2 Oct 19 04:32:53 HOST sshd[25145]: Received disconnect from 159.89.122.208: 11: Bye Bye [preauth] Oct 19 04:36:33 HOST sshd[25214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.122.208 user=r.r Oct 19 04:36:35 HOST sshd[25214]: Failed password for r.r from 159.89.122.208 port 57064 ssh2 Oct 19 04:36:35 HOST sshd[25214]: Received disconnect from 159.89.122.208: 11: Bye Bye [preauth] Oct 19 04:40:27 HOST sshd[25378]: Failed password for invalid user web from 159.89.122.208 port 41208 s........ -------------------------------	2019-10-21 08:29:24
206.189.155.76	attackbots	miraniessen.de 206.189.155.76 \[20/Oct/2019:22:22:23 +0200\] "POST /wp-login.php HTTP/1.1" 200 5974 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" miraniessen.de 206.189.155.76 \[20/Oct/2019:22:22:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 5975 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-21 08:21:46
92.118.37.86	attackbots	10/20/2019-23:55:58.948580 92.118.37.86 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-21 12:13:38
171.97.116.124	attack	Automatic report - Port Scan Attack	2019-10-21 08:31:48
27.154.20.222	attackspam	Oct 21 05:56:05 vps01 sshd[30368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.154.20.222 Oct 21 05:56:08 vps01 sshd[30368]: Failed password for invalid user chase from 27.154.20.222 port 19310 ssh2	2019-10-21 12:04:50
140.143.22.200	attackspambots	Oct 20 12:20:42 php1 sshd\[24369\]: Invalid user valera from 140.143.22.200 Oct 20 12:20:42 php1 sshd\[24369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.22.200 Oct 20 12:20:44 php1 sshd\[24369\]: Failed password for invalid user valera from 140.143.22.200 port 43072 ssh2 Oct 20 12:25:08 php1 sshd\[24897\]: Invalid user songswell from 140.143.22.200 Oct 20 12:25:08 php1 sshd\[24897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.22.200	2019-10-21 08:10:35
115.160.171.76	attack	Oct 21 05:55:59 mail sshd\[31943\]: Invalid user webadmin from 115.160.171.76 Oct 21 05:55:59 mail sshd\[31943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.160.171.76 Oct 21 05:56:02 mail sshd\[31943\]: Failed password for invalid user webadmin from 115.160.171.76 port 33673 ssh2 ...	2019-10-21 12:09:18

最近上报的IP列表

101.50.205.142	65.99.227.30	32.154.153.155	88.184.188.198
75.46.58.172	184.251.105.106	184.226.75.19	112.17.62.165
63.49.41.32	110.251.36.151	129.21.137.11	196.80.77.93
213.37.98.157	178.125.131.8	31.231.70.215	51.158.110.2
219.51.7.12	190.236.197.228	146.243.77.166	93.0.37.99

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表