113.254.223.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): HGC Global Communications Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 5555, PTR: 139-223-254-113-on-nets.com.	2020-01-05 00:26:09

相同子网IP讨论:

IP	类型	评论内容	时间
113.254.223.249	attackspambots	Honeypot attack, port: 445, PTR: 249-223-254-113-on-nets.com.	2020-01-14 13:23:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.254.223.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39617
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.254.223.139.		IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 00:26:04 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

139.223.254.113.in-addr.arpa domain name pointer 139-223-254-113-on-nets.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.223.254.113.in-addr.arpa	name = 139-223-254-113-on-nets.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.98	attackspam	11/25/2019-02:11:27.115672 185.176.27.98 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-25 15:30:27
46.105.29.160	attackbots	2019-11-25T07:32:16.633660abusebot-2.cloudsearch.cf sshd\[21797\]: Invalid user tejal from 46.105.29.160 port 53994	2019-11-25 15:38:28
218.92.0.199	attackbots	Nov 25 08:47:12 dcd-gentoo sshd[2525]: User root from 218.92.0.199 not allowed because none of user's groups are listed in AllowGroups Nov 25 08:47:15 dcd-gentoo sshd[2525]: error: PAM: Authentication failure for illegal user root from 218.92.0.199 Nov 25 08:47:12 dcd-gentoo sshd[2525]: User root from 218.92.0.199 not allowed because none of user's groups are listed in AllowGroups Nov 25 08:47:15 dcd-gentoo sshd[2525]: error: PAM: Authentication failure for illegal user root from 218.92.0.199 Nov 25 08:47:12 dcd-gentoo sshd[2525]: User root from 218.92.0.199 not allowed because none of user's groups are listed in AllowGroups Nov 25 08:47:15 dcd-gentoo sshd[2525]: error: PAM: Authentication failure for illegal user root from 218.92.0.199 Nov 25 08:47:15 dcd-gentoo sshd[2525]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.199 port 48812 ssh2 ...	2019-11-25 15:49:50
139.155.45.196	attackspam	Nov 19 13:50:58 vtv3 sshd[16059]: Failed password for invalid user ching from 139.155.45.196 port 55778 ssh2 Nov 19 13:55:51 vtv3 sshd[17348]: Failed password for root from 139.155.45.196 port 34672 ssh2 Nov 19 14:06:46 vtv3 sshd[20231]: Failed password for root from 139.155.45.196 port 48986 ssh2 Nov 19 14:12:28 vtv3 sshd[21649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 Nov 19 14:12:29 vtv3 sshd[21649]: Failed password for invalid user nt from 139.155.45.196 port 56166 ssh2 Nov 19 14:27:02 vtv3 sshd[25609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 Nov 19 14:27:05 vtv3 sshd[25609]: Failed password for invalid user mysql from 139.155.45.196 port 49314 ssh2 Nov 19 14:34:29 vtv3 sshd[27402]: Failed password for root from 139.155.45.196 port 56590 ssh2 Nov 19 14:49:09 vtv3 sshd[31332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 N	2019-11-25 15:54:31
51.255.173.222	attackspam	Nov 25 01:25:29 linuxvps sshd\[15451\]: Invalid user cardenal from 51.255.173.222 Nov 25 01:25:29 linuxvps sshd\[15451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.173.222 Nov 25 01:25:31 linuxvps sshd\[15451\]: Failed password for invalid user cardenal from 51.255.173.222 port 42300 ssh2 Nov 25 01:31:37 linuxvps sshd\[19151\]: Invalid user lab from 51.255.173.222 Nov 25 01:31:37 linuxvps sshd\[19151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.173.222	2019-11-25 15:25:37
51.38.239.50	attackspam	Nov 25 09:09:18 www sshd\[63460\]: Invalid user hoch from 51.38.239.50 Nov 25 09:09:18 www sshd\[63460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.239.50 Nov 25 09:09:20 www sshd\[63460\]: Failed password for invalid user hoch from 51.38.239.50 port 47494 ssh2 ...	2019-11-25 15:27:06
51.91.139.32	attackspam	11/25/2019-01:54:08.062484 51.91.139.32 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-25 15:26:05
151.233.53.54	attack	Fail2Ban Ban Triggered	2019-11-25 15:32:06
202.96.137.99	attack	Port Scan 1433	2019-11-25 15:41:08
115.68.220.10	attackspambots	Nov 25 07:25:26 meumeu sshd[25292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.220.10 Nov 25 07:25:28 meumeu sshd[25292]: Failed password for invalid user test from 115.68.220.10 port 44692 ssh2 Nov 25 07:31:24 meumeu sshd[25932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.220.10 ...	2019-11-25 15:34:36
80.211.9.57	attackbotsspam	Nov 25 06:32:52 server sshd\[32677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cloud-io.cloud user=nagios Nov 25 06:32:54 server sshd\[32677\]: Failed password for nagios from 80.211.9.57 port 32866 ssh2 Nov 25 10:32:28 server sshd\[29813\]: Invalid user butter from 80.211.9.57 Nov 25 10:32:28 server sshd\[29813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cloud-io.cloud Nov 25 10:32:31 server sshd\[29813\]: Failed password for invalid user butter from 80.211.9.57 port 34394 ssh2 ...	2019-11-25 15:36:39
61.55.158.84	attackspambots	Unauthorised access (Nov 25) SRC=61.55.158.84 LEN=44 TTL=234 ID=11340 TCP DPT=1433 WINDOW=1024 SYN	2019-11-25 15:47:13
168.181.49.66	attackspambots	$f2bV_matches	2019-11-25 15:19:43
202.131.231.210	attackspam	2019-11-25T07:05:46.512835shield sshd\[18116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.231.210 user=root 2019-11-25T07:05:48.548245shield sshd\[18116\]: Failed password for root from 202.131.231.210 port 56306 ssh2 2019-11-25T07:13:01.839048shield sshd\[20046\]: Invalid user mckinney from 202.131.231.210 port 36920 2019-11-25T07:13:01.843179shield sshd\[20046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.231.210 2019-11-25T07:13:03.928816shield sshd\[20046\]: Failed password for invalid user mckinney from 202.131.231.210 port 36920 ssh2	2019-11-25 15:28:46
70.54.173.44	attackspam	70.54.173.44 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 15:24:14

最近上报的IP列表

12.30.231.124	188.118.88.226	47.120.48.228	153.44.133.199
167.7.232.79	144.107.133.14	136.122.203.168	123.140.107.150
189.97.28.14	179.161.239.198	207.200.78.78	184.22.44.81
113.20.101.225	121.234.31.213	177.170.245.214	84.193.161.117
76.183.36.150	219.73.116.105	131.108.35.57	235.241.173.204