220.166.42.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Sichuan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-10-09T14:52:48.863478snf-827550 sshd[9720]: Failed password for invalid user home from 220.166.42.139 port 51810 ssh2 2020-10-09T14:55:12.573643snf-827550 sshd[9999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root 2020-10-09T14:55:14.308749snf-827550 sshd[9999]: Failed password for root from 220.166.42.139 port 42214 ssh2 ...	2020-10-10 06:48:48
attackbots	2020-10-09T14:52:48.863478snf-827550 sshd[9720]: Failed password for invalid user home from 220.166.42.139 port 51810 ssh2 2020-10-09T14:55:12.573643snf-827550 sshd[9999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root 2020-10-09T14:55:14.308749snf-827550 sshd[9999]: Failed password for root from 220.166.42.139 port 42214 ssh2 ...	2020-10-09 23:02:54
attackspam	Oct 8 17:48:12 host sshd\[21280\]: Invalid user lisa from 220.166.42.139 Oct 8 17:48:12 host sshd\[21280\]: Failed password for invalid user lisa from 220.166.42.139 port 60202 ssh2 Oct 8 18:08:10 host sshd\[26200\]: Failed password for root from 220.166.42.139 port 45604 ssh2 ...	2020-10-09 14:52:04
attackspambots	2020-09-24T22:47:52.423902shield sshd\[25661\]: Invalid user ts3bot from 220.166.42.139 port 49618 2020-09-24T22:47:52.437793shield sshd\[25661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 2020-09-24T22:47:54.594774shield sshd\[25661\]: Failed password for invalid user ts3bot from 220.166.42.139 port 49618 ssh2 2020-09-24T22:52:31.047570shield sshd\[27110\]: Invalid user guest from 220.166.42.139 port 57100 2020-09-24T22:52:31.056533shield sshd\[27110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139	2020-09-25 09:24:32
attack	Aug 29 20:50:10 propaganda sshd[21584]: Connection from 220.166.42.139 port 45914 on 10.0.0.161 port 22 rdomain "" Aug 29 20:50:11 propaganda sshd[21584]: Connection closed by 220.166.42.139 port 45914 [preauth]	2020-08-30 14:40:19
attackspam	Aug 27 12:39:47 lunarastro sshd[6232]: Failed password for root from 220.166.42.139 port 43398 ssh2	2020-08-27 21:19:10
attackspam	2020-08-09T05:54:12.091979+02:00 sshd[30398]: Failed password for root from 220.166.42.139 port 48886 ssh2	2020-08-09 13:06:59
attackbotsspam	2020-08-07T13:59:13.653204amanda2.illicoweb.com sshd\[42708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root 2020-08-07T13:59:15.580061amanda2.illicoweb.com sshd\[42708\]: Failed password for root from 220.166.42.139 port 36898 ssh2 2020-08-07T14:05:21.106818amanda2.illicoweb.com sshd\[43849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root 2020-08-07T14:05:23.219504amanda2.illicoweb.com sshd\[43849\]: Failed password for root from 220.166.42.139 port 58374 ssh2 2020-08-07T14:07:20.210595amanda2.illicoweb.com sshd\[44137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root ...	2020-08-07 21:50:22
attackbots	2020-08-04T23:51:27.468779n23.at sshd[2549393]: Failed password for root from 220.166.42.139 port 38974 ssh2 2020-08-04T23:52:14.512766n23.at sshd[2549980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 user=root 2020-08-04T23:52:16.111450n23.at sshd[2549980]: Failed password for root from 220.166.42.139 port 45282 ssh2 ...	2020-08-05 07:26:07
attack	Jul 20 02:50:34 ny01 sshd[24989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 Jul 20 02:50:36 ny01 sshd[24989]: Failed password for invalid user pmm from 220.166.42.139 port 37886 ssh2 Jul 20 02:55:19 ny01 sshd[25905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139	2020-07-20 15:01:31
attack	Failed password for invalid user oracle from 220.166.42.139 port 54648 ssh2	2020-07-07 16:00:44
attackspambots	2020-06-29T05:31:40.374950shield sshd\[15623\]: Invalid user cdiaz from 220.166.42.139 port 45006 2020-06-29T05:31:40.379522shield sshd\[15623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139 2020-06-29T05:31:42.345860shield sshd\[15623\]: Failed password for invalid user cdiaz from 220.166.42.139 port 45006 ssh2 2020-06-29T05:33:58.827281shield sshd\[16162\]: Invalid user oracle from 220.166.42.139 port 33014 2020-06-29T05:33:58.831425shield sshd\[16162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.42.139	2020-06-29 17:54:01

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.166.42.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62487
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.166.42.139.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062900 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 17:53:58 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

139.42.166.220.in-addr.arpa domain name pointer 139.42.166.220.broad.dy.sc.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.42.166.220.in-addr.arpa	name = 139.42.166.220.broad.dy.sc.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
112.85.42.172	attackbotsspam	Aug 30 19:24:16 web9 sshd\[24225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Aug 30 19:24:18 web9 sshd\[24225\]: Failed password for root from 112.85.42.172 port 28700 ssh2 Aug 30 19:24:28 web9 sshd\[24225\]: Failed password for root from 112.85.42.172 port 28700 ssh2 Aug 30 19:24:32 web9 sshd\[24225\]: Failed password for root from 112.85.42.172 port 28700 ssh2 Aug 30 19:24:38 web9 sshd\[24260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root	2020-08-31 19:23:43
185.47.65.30	attackbots	2020-08-31T08:06:45.144815paragon sshd[931916]: Failed password for root from 185.47.65.30 port 59760 ssh2 2020-08-31T08:11:40.448238paragon sshd[932280]: Invalid user roy from 185.47.65.30 port 37532 2020-08-31T08:11:40.450852paragon sshd[932280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.47.65.30 2020-08-31T08:11:40.448238paragon sshd[932280]: Invalid user roy from 185.47.65.30 port 37532 2020-08-31T08:11:42.022522paragon sshd[932280]: Failed password for invalid user roy from 185.47.65.30 port 37532 ssh2 ...	2020-08-31 19:30:08
200.206.81.154	attackbotsspam	Invalid user gabby from 200.206.81.154 port 43401	2020-08-31 18:58:02
68.183.89.147	attack	Invalid user ten from 68.183.89.147 port 43030	2020-08-31 19:22:10
144.76.3.79	attack	20 attempts against mh-misbehave-ban on sea	2020-08-31 19:01:08
167.86.122.102	attack	Aug 31 03:54:27 dignus sshd[16083]: Failed password for invalid user wwwroot from 167.86.122.102 port 54708 ssh2 Aug 31 03:57:47 dignus sshd[16526]: Invalid user user5 from 167.86.122.102 port 59414 Aug 31 03:57:47 dignus sshd[16526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.122.102 Aug 31 03:57:48 dignus sshd[16526]: Failed password for invalid user user5 from 167.86.122.102 port 59414 ssh2 Aug 31 04:00:59 dignus sshd[16942]: Invalid user alex from 167.86.122.102 port 35884 ...	2020-08-31 19:14:51
14.140.95.157	attack	2020-08-30T23:54:52.885623linuxbox-skyline sshd[48178]: Invalid user sysadmin from 14.140.95.157 port 39046 ...	2020-08-31 18:55:00
45.14.150.86	attack	Invalid user trainee from 45.14.150.86 port 59320	2020-08-31 19:32:48
187.162.120.141	attackbotsspam	Automatic report - Port Scan Attack	2020-08-31 19:07:55
120.92.114.71	attack	120.92.114.71 (CN/China/-), 7 distributed sshd attacks on account [oracle] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Aug 31 01:20:25 server2 sshd[32747]: Invalid user oracle from 165.22.226.170 Aug 31 01:20:26 server2 sshd[32747]: Failed password for invalid user oracle from 165.22.226.170 port 44744 ssh2 Aug 31 01:18:33 server2 sshd[31304]: Failed password for invalid user oracle from 109.205.45.246 port 44806 ssh2 Aug 31 01:56:25 server2 sshd[29298]: Invalid user oracle from 120.92.114.71 Aug 31 01:53:17 server2 sshd[26670]: Failed password for invalid user oracle from 159.65.224.137 port 38344 ssh2 Aug 31 01:18:32 server2 sshd[31304]: Invalid user oracle from 109.205.45.246 Aug 31 01:53:15 server2 sshd[26670]: Invalid user oracle from 159.65.224.137 IP Addresses Blocked: 165.22.226.170 (CA/Canada/-) 109.205.45.246 (GE/Georgia/-)	2020-08-31 18:57:36
45.119.82.132	attack	45.119.82.132 - - \[31/Aug/2020:12:46:43 +0300\] "POST /WORDPRESS/xmlrpc.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/60.0.3112.113 Safari/537.36" "-" 45.119.82.132 - - \[31/Aug/2020:12:46:43 +0300\] "POST /wordpress/xmlrpc.php HTTP/1.1" 200 443 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/60.0.3112.113 Safari/537.36" "-" ...	2020-08-31 19:32:15
81.68.69.42	attackspam	Port Scan detected! ...	2020-08-31 19:01:28
187.189.11.49	attackbotsspam	Invalid user admin from 187.189.11.49 port 34528	2020-08-31 19:19:27
192.99.12.24	attackbots	Aug 31 05:30:38 h2646465 sshd[27239]: Invalid user lighttpd from 192.99.12.24 Aug 31 05:30:38 h2646465 sshd[27239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.12.24 Aug 31 05:30:38 h2646465 sshd[27239]: Invalid user lighttpd from 192.99.12.24 Aug 31 05:30:41 h2646465 sshd[27239]: Failed password for invalid user lighttpd from 192.99.12.24 port 35912 ssh2 Aug 31 05:45:02 h2646465 sshd[28909]: Invalid user es from 192.99.12.24 Aug 31 05:45:02 h2646465 sshd[28909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.12.24 Aug 31 05:45:02 h2646465 sshd[28909]: Invalid user es from 192.99.12.24 Aug 31 05:45:04 h2646465 sshd[28909]: Failed password for invalid user es from 192.99.12.24 port 39688 ssh2 Aug 31 05:47:41 h2646465 sshd[29416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.12.24 user=root Aug 31 05:47:43 h2646465 sshd[29416]: Failed password for root from 192.99	2020-08-31 19:29:50
14.253.97.150	attackbotsspam	1598845683 - 08/31/2020 05:48:03 Host: 14.253.97.150/14.253.97.150 Port: 445 TCP Blocked	2020-08-31 19:21:24

最近上报的IP列表

0.93.73.73	81.188.181.47	224.191.119.193	74.188.104.77
141.61.64.104	163.172.216.182	248.176.109.55	55.228.234.189
124.225.145.200	179.238.189.186	78.30.219.192	5.7.15.97
123.206.228.251	2.156.142.249	40.195.88.157	2001:41d0:203:6706::
195.236.5.203	69.240.103.139	32.237.249.152	174.89.112.78