114.202.139.173

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	(sshd) Failed SSH login from 114.202.139.173 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 09:00:51 server2 sshd[20244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 user=named Sep 16 09:00:53 server2 sshd[20244]: Failed password for named from 114.202.139.173 port 41530 ssh2 Sep 16 09:02:36 server2 sshd[22066]: Invalid user asterisk from 114.202.139.173 Sep 16 09:02:36 server2 sshd[22066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Sep 16 09:02:38 server2 sshd[22066]: Failed password for invalid user asterisk from 114.202.139.173 port 57848 ssh2	2020-09-16 23:00:15
attackspam	Sep 15 18:56:18 ny01 sshd[4744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Sep 15 18:56:20 ny01 sshd[4744]: Failed password for invalid user qttbc from 114.202.139.173 port 37596 ssh2 Sep 15 19:01:06 ny01 sshd[5609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173	2020-09-16 07:18:14
attackbotsspam	Aug 11 06:37:49 piServer sshd[5530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Aug 11 06:37:52 piServer sshd[5530]: Failed password for invalid user m9ff from 114.202.139.173 port 58780 ssh2 Aug 11 06:43:05 piServer sshd[6122]: Failed password for root from 114.202.139.173 port 51792 ssh2 ...	2020-08-11 13:27:14
attackspambots	Jul 26 07:10:04 journals sshd\[20408\]: Invalid user git from 114.202.139.173 Jul 26 07:10:04 journals sshd\[20408\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Jul 26 07:10:06 journals sshd\[20408\]: Failed password for invalid user git from 114.202.139.173 port 53480 ssh2 Jul 26 07:12:31 journals sshd\[20697\]: Invalid user beth from 114.202.139.173 Jul 26 07:12:31 journals sshd\[20697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 ...	2020-07-26 12:19:30
attackbots	Jul 20 04:55:03 gospond sshd[32464]: Invalid user manager from 114.202.139.173 port 58698 ...	2020-07-20 14:31:35
attackbots	Jul 14 13:31:00 php1 sshd\[24419\]: Invalid user web from 114.202.139.173 Jul 14 13:31:00 php1 sshd\[24419\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Jul 14 13:31:02 php1 sshd\[24419\]: Failed password for invalid user web from 114.202.139.173 port 36722 ssh2 Jul 14 13:33:13 php1 sshd\[24606\]: Invalid user mo from 114.202.139.173 Jul 14 13:33:13 php1 sshd\[24606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173	2020-07-15 09:46:44
attack	Jul 9 15:23:06 pkdns2 sshd\[16636\]: Invalid user couchdb from 114.202.139.173Jul 9 15:23:08 pkdns2 sshd\[16636\]: Failed password for invalid user couchdb from 114.202.139.173 port 58802 ssh2Jul 9 15:23:42 pkdns2 sshd\[16641\]: Invalid user userftp from 114.202.139.173Jul 9 15:23:44 pkdns2 sshd\[16641\]: Failed password for invalid user userftp from 114.202.139.173 port 36130 ssh2Jul 9 15:24:18 pkdns2 sshd\[16671\]: Invalid user cadence from 114.202.139.173Jul 9 15:24:21 pkdns2 sshd\[16671\]: Failed password for invalid user cadence from 114.202.139.173 port 41708 ssh2 ...	2020-07-09 22:56:25
attack	Invalid user college from 114.202.139.173 port 49846	2020-06-14 13:27:48
attack	May 26 18:51:21 cdc sshd[27376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 May 26 18:51:23 cdc sshd[27376]: Failed password for invalid user ggutierrez from 114.202.139.173 port 33200 ssh2	2020-05-27 06:38:18
attackbotsspam	May 22 22:13:46 rotator sshd\[15904\]: Invalid user ytb from 114.202.139.173May 22 22:13:49 rotator sshd\[15904\]: Failed password for invalid user ytb from 114.202.139.173 port 36268 ssh2May 22 22:16:34 rotator sshd\[16660\]: Invalid user hvg from 114.202.139.173May 22 22:16:36 rotator sshd\[16660\]: Failed password for invalid user hvg from 114.202.139.173 port 35840 ssh2May 22 22:19:29 rotator sshd\[16676\]: Invalid user xtr from 114.202.139.173May 22 22:19:31 rotator sshd\[16676\]: Failed password for invalid user xtr from 114.202.139.173 port 35444 ssh2 ...	2020-05-23 04:36:32
attack	May 15 01:58:58 NPSTNNYC01T sshd[22456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 May 15 01:59:00 NPSTNNYC01T sshd[22456]: Failed password for invalid user office from 114.202.139.173 port 49544 ssh2 May 15 02:01:47 NPSTNNYC01T sshd[22801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 ...	2020-05-15 14:22:26
attackbotsspam	$f2bV_matches	2020-05-01 17:10:04
attackbotsspam	2020-04-30T05:05:26.698023shield sshd\[32445\]: Invalid user look from 114.202.139.173 port 36312 2020-04-30T05:05:26.702668shield sshd\[32445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 2020-04-30T05:05:29.007966shield sshd\[32445\]: Failed password for invalid user look from 114.202.139.173 port 36312 ssh2 2020-04-30T05:07:47.063216shield sshd\[350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 user=root 2020-04-30T05:07:49.062728shield sshd\[350\]: Failed password for root from 114.202.139.173 port 58152 ssh2	2020-04-30 17:25:11
attackspam	Apr 27 14:46:00 srv-ubuntu-dev3 sshd[125029]: Invalid user eth from 114.202.139.173 Apr 27 14:46:00 srv-ubuntu-dev3 sshd[125029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Apr 27 14:46:00 srv-ubuntu-dev3 sshd[125029]: Invalid user eth from 114.202.139.173 Apr 27 14:46:02 srv-ubuntu-dev3 sshd[125029]: Failed password for invalid user eth from 114.202.139.173 port 52490 ssh2 Apr 27 14:49:43 srv-ubuntu-dev3 sshd[126436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 user=root Apr 27 14:49:45 srv-ubuntu-dev3 sshd[126436]: Failed password for root from 114.202.139.173 port 60494 ssh2 Apr 27 14:54:08 srv-ubuntu-dev3 sshd[127159]: Invalid user 126 from 114.202.139.173 Apr 27 14:54:08 srv-ubuntu-dev3 sshd[127159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Apr 27 14:54:08 srv-ubuntu-dev3 sshd[127159]: Invalid user ...	2020-04-27 23:18:33
attackbots	Invalid user up from 114.202.139.173 port 42050	2020-04-21 20:55:54
attack	Feb 29 06:42:57 MK-Soft-Root1 sshd[4738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Feb 29 06:42:58 MK-Soft-Root1 sshd[4738]: Failed password for invalid user Michelle from 114.202.139.173 port 59340 ssh2 ...	2020-02-29 16:39:17
attack	Feb 9 04:59:43 firewall sshd[5116]: Invalid user vpn from 114.202.139.173 Feb 9 04:59:45 firewall sshd[5116]: Failed password for invalid user vpn from 114.202.139.173 port 38888 ssh2 Feb 9 05:02:54 firewall sshd[5238]: Invalid user fsq from 114.202.139.173 ...	2020-02-09 21:09:32
attack	Unauthorized connection attempt detected from IP address 114.202.139.173 to port 2220 [J]	2020-01-29 14:03:42
attack	Jan 27 06:01:45 [host] sshd[7465]: Invalid user deploy from 114.202.139.173 Jan 27 06:01:45 [host] sshd[7465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Jan 27 06:01:47 [host] sshd[7465]: Failed password for invalid user deploy from 114.202.139.173 port 38428 ssh2	2020-01-27 13:24:32
attackbots	Unauthorized connection attempt detected from IP address 114.202.139.173 to port 2220 [J]	2020-01-25 15:24:08
attack	Unauthorized connection attempt detected from IP address 114.202.139.173 to port 2220 [J]	2020-01-06 07:43:38
attackspam	$f2bV_matches	2020-01-04 14:27:20
attack	ssh failed login	2019-12-31 16:45:13
attackspambots	Dec 18 07:14:06 localhost sshd[51345]: Failed password for invalid user server from 114.202.139.173 port 41490 ssh2 Dec 18 07:28:10 localhost sshd[51707]: User smmsp from 114.202.139.173 not allowed because not listed in AllowUsers Dec 18 07:28:11 localhost sshd[51707]: Failed password for invalid user smmsp from 114.202.139.173 port 40516 ssh2	2019-12-18 17:37:52
attackspambots	Dec 14 14:52:39 ns381471 sshd[1337]: Failed password for root from 114.202.139.173 port 56230 ssh2	2019-12-14 22:37:03
attackspam	Dec 4 01:34:43 php1 sshd\[22752\]: Invalid user host from 114.202.139.173 Dec 4 01:34:43 php1 sshd\[22752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 Dec 4 01:34:44 php1 sshd\[22752\]: Failed password for invalid user host from 114.202.139.173 port 44900 ssh2 Dec 4 01:42:10 php1 sshd\[23710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.202.139.173 user=root Dec 4 01:42:12 php1 sshd\[23710\]: Failed password for root from 114.202.139.173 port 57632 ssh2	2019-12-04 20:04:57
attack	Repeated brute force against a port	2019-11-14 21:04:15
attackspambots	Unauthorized SSH login attempts	2019-11-14 05:20:28
attackbotsspam	Tried sshing with brute force.	2019-11-13 15:58:49
attackbotsspam	SSH brutforce	2019-11-05 05:56:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.202.139.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50143
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.202.139.173.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 14:15:30 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 173.139.202.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 173.139.202.114.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
222.186.173.226	attackbotsspam	Sep 12 12:57:44 vps46666688 sshd[2508]: Failed password for root from 222.186.173.226 port 13263 ssh2 Sep 12 12:57:57 vps46666688 sshd[2508]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 13263 ssh2 [preauth] ...	2020-09-13 00:03:37
193.228.91.109	attack	[ssh] SSH attack	2020-09-13 00:13:06
103.89.171.106	attackbots	Personnel protective equipment ,PPE - Buyers list	2020-09-13 00:34:27
80.82.70.214	attackspam	Sep 12 17:00:03 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.70.214, lip=185.118.198.210, session=<0mZADh+vmttQUkbW> Sep 12 17:02:00 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.70.214, lip=185.118.198.210, session= Sep 12 17:02:05 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=80.82.70.214, lip=185.118.198.210, session= Sep 12 17:03:41 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.70.214, lip=185.118.198.210, session= Sep 12 17:04:14 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=,	2020-09-13 00:04:19
85.209.0.74	attackbots	Sep 11 18:59:07 vps333114 sshd[23384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.74 user=root Sep 11 18:59:09 vps333114 sshd[23384]: Failed password for root from 85.209.0.74 port 10228 ssh2 ...	2020-09-13 00:23:50
60.243.114.87	attack	port scan and connect, tcp 23 (telnet)	2020-09-12 23:55:45
103.131.71.56	attackbots	(mod_security) mod_security (id:210730) triggered by 103.131.71.56 (VN/Vietnam/bot-103-131-71-56.coccoc.com): 5 in the last 3600 secs	2020-09-12 23:53:07
152.136.196.155	attack	Sep 12 04:00:29 ws24vmsma01 sshd[7379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.196.155 Sep 12 04:00:30 ws24vmsma01 sshd[7379]: Failed password for invalid user admin from 152.136.196.155 port 54824 ssh2 ...	2020-09-12 23:52:24
175.125.94.166	attack	Sep 12 17:46:39 ip106 sshd[6596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.125.94.166 Sep 12 17:46:41 ip106 sshd[6596]: Failed password for invalid user oratest from 175.125.94.166 port 59374 ssh2 ...	2020-09-13 00:03:49
104.131.13.199	attack	2020-09-12T10:15:17.864330centos sshd[7388]: Failed password for root from 104.131.13.199 port 38708 ssh2 2020-09-12T10:18:37.866639centos sshd[7557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root 2020-09-12T10:18:39.800652centos sshd[7557]: Failed password for root from 104.131.13.199 port 45062 ssh2 ...	2020-09-13 00:06:35
182.61.27.149	attackspam	...	2020-09-13 00:11:29
168.81.92.144	attack	2,31-01/02 [bc01/m33] PostRequest-Spammer scoring: zurich	2020-09-13 00:33:16
103.145.13.211	attack	srv02 SSH BruteForce Attacks 22 ..	2020-09-13 00:24:45
84.185.68.129	attackbotsspam	<6 unauthorized SSH connections	2020-09-13 00:28:07
200.84.52.138	attackbotsspam	20/9/11@13:33:44: FAIL: Alarm-Network address from=200.84.52.138 20/9/11@13:33:44: FAIL: Alarm-Network address from=200.84.52.138 ...	2020-09-13 00:12:21

最近上报的IP列表

93.39.112.252	46.166.171.186	114.231.12.242	199.71.228.57
180.122.242.62	81.169.171.57	123.128.77.42	194.226.222.166
27.124.11.135	35.199.99.19	165.22.20.80	79.187.150.54
49.67.111.147	182.253.14.6	171.38.221.16	165.22.58.37
114.232.193.248	187.94.112.146	61.135.216.66	23.225.166.80