222.243.200.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Hunan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Jul 18) SRC=222.243.200.139 LEN=52 TTL=49 ID=12758 DF TCP DPT=1433 WINDOW=8192 SYN	2020-07-18 08:31:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.243.200.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.243.200.139.		IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071702 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 18 08:31:11 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 139.200.243.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.200.243.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
124.156.185.149	attackbots	Aug 15 06:29:51 mail sshd\[21969\]: Failed password for invalid user search from 124.156.185.149 port 32280 ssh2 Aug 15 06:49:33 mail sshd\[22540\]: Invalid user teamspeak from 124.156.185.149 port 12646 Aug 15 06:49:33 mail sshd\[22540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.185.149 ...	2019-08-15 17:29:03
159.89.166.50	attackspambots	Aug 15 12:23:05 yabzik sshd[13134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.166.50 Aug 15 12:23:06 yabzik sshd[13134]: Failed password for invalid user route from 159.89.166.50 port 52534 ssh2 Aug 15 12:29:46 yabzik sshd[15231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.166.50	2019-08-15 17:47:25
170.83.155.210	attackspam	Aug 14 23:16:46 hanapaa sshd\[21034\]: Invalid user matias from 170.83.155.210 Aug 14 23:16:46 hanapaa sshd\[21034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.83.155.210 Aug 14 23:16:48 hanapaa sshd\[21034\]: Failed password for invalid user matias from 170.83.155.210 port 38350 ssh2 Aug 14 23:22:05 hanapaa sshd\[21495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.83.155.210 user=root Aug 14 23:22:06 hanapaa sshd\[21495\]: Failed password for root from 170.83.155.210 port 58776 ssh2	2019-08-15 17:23:30
118.25.98.75	attack	ssh failed login	2019-08-15 18:27:07
121.152.165.213	attackspam	Aug 15 05:29:49 vps200512 sshd\[22905\]: Invalid user hdfs from 121.152.165.213 Aug 15 05:29:49 vps200512 sshd\[22905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.152.165.213 Aug 15 05:29:50 vps200512 sshd\[22905\]: Failed password for invalid user hdfs from 121.152.165.213 port 26865 ssh2 Aug 15 05:35:02 vps200512 sshd\[23049\]: Invalid user cpdemo from 121.152.165.213 Aug 15 05:35:02 vps200512 sshd\[23049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.152.165.213	2019-08-15 17:44:40
137.74.233.90	attackbotsspam	Aug 15 11:29:38 ks10 sshd[19774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.233.90 Aug 15 11:29:40 ks10 sshd[19774]: Failed password for invalid user adamp from 137.74.233.90 port 54550 ssh2 ...	2019-08-15 17:51:42
181.30.27.11	attack	Aug 15 11:29:48 rpi sshd[17271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.27.11 Aug 15 11:29:51 rpi sshd[17271]: Failed password for invalid user alexandre from 181.30.27.11 port 44035 ssh2	2019-08-15 17:39:52
177.35.123.54	attack	DATE:2019-08-15 11:29:45, IP:177.35.123.54, PORT:ssh SSH brute force auth (thor)	2019-08-15 17:46:16
51.255.42.250	attackspam	Automatic report - Banned IP Access	2019-08-15 17:35:23
115.97.6.140	attack	Splunk® : port scan detected: Aug 14 19:22:10 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=115.97.6.140 DST=104.248.11.191 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=345 DF PROTO=TCP SPT=59294 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0	2019-08-15 17:24:35
40.76.40.239	attackspambots	Aug 15 10:10:31 hcbbdb sshd\[7736\]: Invalid user mou from 40.76.40.239 Aug 15 10:10:31 hcbbdb sshd\[7736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.40.239 Aug 15 10:10:33 hcbbdb sshd\[7736\]: Failed password for invalid user mou from 40.76.40.239 port 51230 ssh2 Aug 15 10:15:32 hcbbdb sshd\[8261\]: Invalid user operator from 40.76.40.239 Aug 15 10:15:32 hcbbdb sshd\[8261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.40.239	2019-08-15 18:29:40
181.215.151.77	attackbots	(From eric@talkwithcustomer.com) Hello siegelchiropractic.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website siegelchiropractic.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website siegelchiropractic.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in Perfect Timing – as	2019-08-15 17:38:53
222.186.42.94	attack	Aug 15 00:29:44 lcprod sshd\[1479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root Aug 15 00:29:47 lcprod sshd\[1479\]: Failed password for root from 222.186.42.94 port 59978 ssh2 Aug 15 00:29:52 lcprod sshd\[1493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root Aug 15 00:29:54 lcprod sshd\[1493\]: Failed password for root from 222.186.42.94 port 17652 ssh2 Aug 15 00:30:00 lcprod sshd\[1506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root	2019-08-15 18:41:39
106.13.78.56	attackbotsspam	Aug 15 01:38:26 josie sshd[30977]: Invalid user debian from 106.13.78.56 Aug 15 01:38:26 josie sshd[30977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.56 Aug 15 01:38:28 josie sshd[30977]: Failed password for invalid user debian from 106.13.78.56 port 35400 ssh2 Aug 15 01:38:29 josie sshd[30987]: Received disconnect from 106.13.78.56: 11: Bye Bye Aug 15 02:02:09 josie sshd[13113]: Invalid user nasa123 from 106.13.78.56 Aug 15 02:02:09 josie sshd[13113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.56 Aug 15 02:02:12 josie sshd[13113]: Failed password for invalid user nasa123 from 106.13.78.56 port 50972 ssh2 Aug 15 02:02:12 josie sshd[13118]: Received disconnect from 106.13.78.56: 11: Bye Bye Aug 15 02:05:31 josie sshd[14605]: Connection closed by 106.13.78.56 Aug 15 02:11:34 josie sshd[17654]: Connection closed by 106.13.78.56 Aug 15 02:12:28 josie sshd[18934]:........ -------------------------------	2019-08-15 17:25:37
125.25.54.4	attack	Aug 14 23:40:33 php1 sshd\[715\]: Invalid user db2das1 from 125.25.54.4 Aug 14 23:40:33 php1 sshd\[715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.25.54.4 Aug 14 23:40:35 php1 sshd\[715\]: Failed password for invalid user db2das1 from 125.25.54.4 port 6503 ssh2 Aug 14 23:46:07 php1 sshd\[1245\]: Invalid user qwerty from 125.25.54.4 Aug 14 23:46:07 php1 sshd\[1245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.25.54.4	2019-08-15 17:57:18

最近上报的IP列表

190.147.250.137	98.72.10.141	185.183.32.51	209.78.214.141
74.86.170.114	84.76.54.65	176.232.105.35	86.192.68.228
12.248.220.131	73.9.24.32	121.78.112.55	59.154.30.116
69.150.142.34	146.224.193.31	145.144.209.207	49.205.103.162
175.176.30.14	176.144.149.197	62.27.89.80	37.53.58.240