219.139.158.116

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Hubei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorised access (Dec 8) SRC=219.139.158.116 LEN=40 TTL=242 ID=34934 TCP DPT=1433 WINDOW=1024 SYN	2019-12-09 01:36:58

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.139.158.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.139.158.116.		IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120800 1800 900 604800 86400

;; Query time: 223 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 09 01:36:55 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 116.158.139.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 116.158.139.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.83.9.138	attackbots	k+ssh-bruteforce	2019-07-25 06:11:03
198.108.67.56	attackspambots	Splunk® : port scan detected: Jul 24 17:23:09 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=198.108.67.56 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=39 ID=61530 PROTO=TCP SPT=11041 DPT=9389 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-25 05:56:44
185.220.101.50	attackspambots	Invalid user guest from 185.220.101.50 port 42473	2019-07-25 06:07:47
198.108.67.110	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2019-07-25 06:13:51
119.183.62.242	attackspam	23/tcp [2019-07-24]1pkt	2019-07-25 05:41:13
185.234.216.95	attackspambots	Jul 24 23:44:57 relay postfix/smtpd\[14991\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 23:45:50 relay postfix/smtpd\[17717\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 23:51:16 relay postfix/smtpd\[14991\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 23:52:09 relay postfix/smtpd\[17717\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 23:57:34 relay postfix/smtpd\[20339\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-25 06:09:21
63.143.35.146	attackbotsspam	\[2019-07-24 17:43:49\] NOTICE\[20804\] chan_sip.c: Registration from '\' failed for '63.143.35.146:61828' - Wrong password \[2019-07-24 17:43:49\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-24T17:43:49.728-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="921",SessionID="0x7f06f823f758",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.146/61828",Challenge="37d7bfe7",ReceivedChallenge="37d7bfe7",ReceivedHash="fed903f65a0d398e694dfe1870f91060" \[2019-07-24 17:44:18\] NOTICE\[20804\] chan_sip.c: Registration from '\' failed for '63.143.35.146:58184' - Wrong password \[2019-07-24 17:44:18\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-24T17:44:18.501-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6060",SessionID="0x7f06f8009f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.	2019-07-25 05:59:09
171.231.132.137	attack	445/tcp [2019-07-24]1pkt	2019-07-25 05:43:26
185.35.139.72	attackspambots	Automatic report - Banned IP Access	2019-07-25 05:42:35
153.36.236.242	attackbotsspam	Jul 24 18:06:40 TORMINT sshd\[7978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.242 user=root Jul 24 18:06:43 TORMINT sshd\[7978\]: Failed password for root from 153.36.236.242 port 60834 ssh2 Jul 24 18:06:51 TORMINT sshd\[7997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.242 user=root ...	2019-07-25 06:10:29
2604:180:3:ba4::8374	attackbotsspam	xmlrpc attack	2019-07-25 05:35:47
188.84.189.235	attackbots	Jul 24 18:05:21 TORMINT sshd\[7916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.84.189.235 user=root Jul 24 18:05:24 TORMINT sshd\[7916\]: Failed password for root from 188.84.189.235 port 56486 ssh2 Jul 24 18:09:41 TORMINT sshd\[9375\]: Invalid user fi from 188.84.189.235 Jul 24 18:09:41 TORMINT sshd\[9375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.84.189.235 ...	2019-07-25 06:10:06
45.55.157.147	attackspam	Invalid user postgres from 45.55.157.147 port 32846	2019-07-25 05:48:50
23.244.5.2	attackbots	firewall-block, port(s): 445/tcp	2019-07-25 05:52:40
36.75.57.89	attackspambots	Jul 23 20:03:55 kmh-mb-001 sshd[23655]: Invalid user t from 36.75.57.89 port 33885 Jul 23 20:03:55 kmh-mb-001 sshd[23655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.75.57.89 Jul 23 20:03:57 kmh-mb-001 sshd[23655]: Failed password for invalid user t from 36.75.57.89 port 33885 ssh2 Jul 23 20:03:57 kmh-mb-001 sshd[23655]: Received disconnect from 36.75.57.89 port 33885:11: Bye Bye [preauth] Jul 23 20:03:57 kmh-mb-001 sshd[23655]: Disconnected from 36.75.57.89 port 33885 [preauth] Jul 23 20:14:12 kmh-mb-001 sshd[24079]: Invalid user koha from 36.75.57.89 port 63124 Jul 23 20:14:12 kmh-mb-001 sshd[24079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.75.57.89 Jul 23 20:14:14 kmh-mb-001 sshd[24079]: Failed password for invalid user koha from 36.75.57.89 port 63124 ssh2 Jul 23 20:14:14 kmh-mb-001 sshd[24079]: Received disconnect from 36.75.57.89 port 63124:11: Bye Bye [preauth] Jul 2........ -------------------------------	2019-07-25 06:06:56

最近上报的IP列表

106.54.225.156	78.85.49.183	157.120.255.38	78.40.15.208
113.53.202.146	49.88.67.232	148.70.159.181	185.129.190.155
177.198.79.138	27.148.205.56	202.91.9.10	71.17.185.7
103.80.249.130	64.32.76.148	185.143.223.154	222.249.249.6
52.184.199.30	60.28.114.5	58.216.251.76	229.194.198.143