111.231.139.133

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Faster Internet Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-14 03:41:53

相同子网IP讨论:

IP	类型	评论内容	时间
111.231.139.30	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-21T22:31:53Z and 2020-08-21T22:37:54Z	2020-08-22 06:44:20
111.231.139.30	attackspambots	Aug 4 05:16:41 game-panel sshd[7944]: Failed password for root from 111.231.139.30 port 33537 ssh2 Aug 4 05:20:47 game-panel sshd[8072]: Failed password for root from 111.231.139.30 port 58043 ssh2	2020-08-04 16:44:30
111.231.139.30	attackbots	DATE:2020-08-02 09:20:40,IP:111.231.139.30,MATCHES:10,PORT:ssh	2020-08-02 18:14:32
111.231.139.30	attackbots	Jul 28 22:17:53 santamaria sshd\[19274\]: Invalid user alias from 111.231.139.30 Jul 28 22:17:53 santamaria sshd\[19274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 Jul 28 22:17:56 santamaria sshd\[19274\]: Failed password for invalid user alias from 111.231.139.30 port 56103 ssh2 ...	2020-07-29 04:51:38
111.231.139.30	attack	Jul 20 08:29:44 hosting sshd[25731]: Invalid user rw from 111.231.139.30 port 33542 ...	2020-07-20 13:37:17
111.231.139.30	attack	Jul 11 02:27:44 Tower sshd[24650]: Connection from 111.231.139.30 port 60892 on 192.168.10.220 port 22 rdomain "" Jul 11 02:27:46 Tower sshd[24650]: Invalid user imani from 111.231.139.30 port 60892 Jul 11 02:27:46 Tower sshd[24650]: error: Could not get shadow information for NOUSER Jul 11 02:27:46 Tower sshd[24650]: Failed password for invalid user imani from 111.231.139.30 port 60892 ssh2 Jul 11 02:27:46 Tower sshd[24650]: Received disconnect from 111.231.139.30 port 60892:11: Bye Bye [preauth] Jul 11 02:27:46 Tower sshd[24650]: Disconnected from invalid user imani 111.231.139.30 port 60892 [preauth]	2020-07-11 16:54:15
111.231.139.30	attackspambots	Jul 9 13:32:54 ws22vmsma01 sshd[198340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 Jul 9 13:32:56 ws22vmsma01 sshd[198340]: Failed password for invalid user view from 111.231.139.30 port 34131 ssh2 ...	2020-07-10 02:00:13
111.231.139.30	attackbotsspam	Jun 22 23:39:01 ArkNodeAT sshd\[29693\]: Invalid user deploy from 111.231.139.30 Jun 22 23:39:01 ArkNodeAT sshd\[29693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 Jun 22 23:39:03 ArkNodeAT sshd\[29693\]: Failed password for invalid user deploy from 111.231.139.30 port 48585 ssh2	2020-06-23 06:07:46
111.231.139.30	attackbotsspam	Jun 10 09:55:55 h1745522 sshd[18800]: Invalid user admin from 111.231.139.30 port 42372 Jun 10 09:55:55 h1745522 sshd[18800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 Jun 10 09:55:55 h1745522 sshd[18800]: Invalid user admin from 111.231.139.30 port 42372 Jun 10 09:55:57 h1745522 sshd[18800]: Failed password for invalid user admin from 111.231.139.30 port 42372 ssh2 Jun 10 09:59:31 h1745522 sshd[19003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 user=root Jun 10 09:59:33 h1745522 sshd[19003]: Failed password for root from 111.231.139.30 port 38938 ssh2 Jun 10 10:03:03 h1745522 sshd[19121]: Invalid user admin from 111.231.139.30 port 35498 Jun 10 10:03:03 h1745522 sshd[19121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 Jun 10 10:03:03 h1745522 sshd[19121]: Invalid user admin from 111.231.139.30 port 35498 Ju ...	2020-06-10 16:15:55
111.231.139.30	attackbotsspam	SSH bruteforce	2020-06-07 18:27:30
111.231.139.30	attackbots	Failed password for invalid user debian from 111.231.139.30 port 51780 ssh2	2020-05-30 17:45:55
111.231.139.30	attack	May 22 07:57:06 nextcloud sshd\[22005\]: Invalid user ecz from 111.231.139.30 May 22 07:57:06 nextcloud sshd\[22005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 May 22 07:57:07 nextcloud sshd\[22005\]: Failed password for invalid user ecz from 111.231.139.30 port 39437 ssh2	2020-05-22 17:02:44
111.231.139.30	attack	May 3 10:29:41 scw-6657dc sshd[1987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 May 3 10:29:41 scw-6657dc sshd[1987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 May 3 10:29:43 scw-6657dc sshd[1987]: Failed password for invalid user bruno from 111.231.139.30 port 35033 ssh2 ...	2020-05-03 19:21:58
111.231.139.30	attackbots	SSH Brute Force	2020-04-29 12:18:04
111.231.139.30	attackspam	Invalid user joerg from 111.231.139.30 port 38050	2020-04-29 06:12:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.231.139.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42230
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.231.139.133.		IN	A

;; AUTHORITY SECTION:
.			269	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111301 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 14 03:41:50 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 133.139.231.111.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 133.139.231.111.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.48.192.60	attackbotsspam	leo_www	2020-06-06 07:02:57
195.54.167.120	attackbots	Multiport scan : 26 ports scanned 4601 4604 4605 4607 4610 4611 4612 4614 4615 4616 4617 4618 4619 4621 4622 4623 4624 4625 4629 5940 5941 5942 5944 5946 5950 5956	2020-06-06 07:16:31
60.199.131.62	attackspam	Jun 6 00:18:20 ns381471 sshd[15207]: Failed password for root from 60.199.131.62 port 40350 ssh2	2020-06-06 07:01:58
112.85.42.178	attackspambots	Jun 6 01:12:49 mail sshd\[12372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jun 6 01:12:50 mail sshd\[12372\]: Failed password for root from 112.85.42.178 port 39703 ssh2 Jun 6 01:12:53 mail sshd\[12372\]: Failed password for root from 112.85.42.178 port 39703 ssh2 ...	2020-06-06 07:18:34
114.231.46.241	attackspambots	unknown[114.231.46.241]: SASL LOGIN authentication failed	2020-06-06 07:25:47
93.65.154.163	attackbots	1591388748 - 06/05/2020 22:25:48 Host: 93.65.154.163/93.65.154.163 Port: 445 TCP Blocked	2020-06-06 07:23:42
121.46.248.220	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-06 07:21:26
145.239.92.211	attack	Jun 6 00:41:21 vps639187 sshd\[2514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.92.211 user=root Jun 6 00:41:23 vps639187 sshd\[2514\]: Failed password for root from 145.239.92.211 port 56864 ssh2 Jun 6 00:44:42 vps639187 sshd\[2581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.92.211 user=root ...	2020-06-06 07:10:30
177.68.126.20	attackspam	Port Scan detected! ...	2020-06-06 07:04:18
139.59.81.166	attackbotsspam	TCP (SYN) 139.59.81.166:51010 -> port 6046, len 44	2020-06-06 07:10:59
106.75.98.178	attack	Lines containing failures of 106.75.98.178 Jun 3 00:43:47 kmh-wsh-001-nbg01 sshd[18116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.98.178 user=r.r Jun 3 00:43:50 kmh-wsh-001-nbg01 sshd[18116]: Failed password for r.r from 106.75.98.178 port 33794 ssh2 Jun 3 00:43:52 kmh-wsh-001-nbg01 sshd[18116]: Received disconnect from 106.75.98.178 port 33794:11: Bye Bye [preauth] Jun 3 00:43:52 kmh-wsh-001-nbg01 sshd[18116]: Disconnected from authenticating user r.r 106.75.98.178 port 33794 [preauth] Jun 3 01:20:47 kmh-wsh-001-nbg01 sshd[22928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.98.178 user=r.r Jun 3 01:20:49 kmh-wsh-001-nbg01 sshd[22928]: Failed password for r.r from 106.75.98.178 port 51186 ssh2 Jun 3 01:20:51 kmh-wsh-001-nbg01 sshd[22928]: Received disconnect from 106.75.98.178 port 51186:11: Bye Bye [preauth] Jun 3 01:20:51 kmh-wsh-001-nbg01 sshd[22928]: Dis........ ------------------------------	2020-06-06 06:57:36
164.132.42.32	attack	Jun 6 00:23:42 abendstille sshd\[24522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32 user=root Jun 6 00:23:44 abendstille sshd\[24522\]: Failed password for root from 164.132.42.32 port 33880 ssh2 Jun 6 00:27:12 abendstille sshd\[27979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32 user=root Jun 6 00:27:14 abendstille sshd\[27979\]: Failed password for root from 164.132.42.32 port 37400 ssh2 Jun 6 00:30:46 abendstille sshd\[31209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32 user=root ...	2020-06-06 07:10:16
178.62.18.185	attack	POST /wp-login.php HTTP/1.1 POST /wp-login.php HTTP/1.1 POST /wp-login.php HTTP/1.1	2020-06-06 07:03:48
59.144.139.18	attackspambots	Brute-force attempt banned	2020-06-06 07:17:43
222.186.175.151	attackbotsspam	Jun 6 01:01:46 minden010 sshd[10676]: Failed password for root from 222.186.175.151 port 10048 ssh2 Jun 6 01:01:56 minden010 sshd[10676]: Failed password for root from 222.186.175.151 port 10048 ssh2 Jun 6 01:01:59 minden010 sshd[10676]: Failed password for root from 222.186.175.151 port 10048 ssh2 Jun 6 01:01:59 minden010 sshd[10676]: error: maximum authentication attempts exceeded for root from 222.186.175.151 port 10048 ssh2 [preauth] ...	2020-06-06 07:12:19

最近上报的IP列表

18.208.103.205	119.171.148.36	108.82.229.113	171.15.2.252
83.18.193.105	95.52.161.11	111.225.216.67	128.196.182.250
102.83.82.60	60.111.129.200	81.88.86.130	3.104.178.187
95.216.212.165	70.141.17.98	179.108.254.128	1.123.219.26
77.178.243.142	221.82.85.205	162.166.196.225	90.229.79.125