117.139.202.64

基本信息:

城市(city): Chengdu

省份(region): Sichuan

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): Guangdong Mobile Communication Co.Ltd.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Nov 20 00:22:07 vps691689 sshd[18827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Nov 20 00:22:09 vps691689 sshd[18827]: Failed password for invalid user gt from 117.139.202.64 port 54266 ssh2 ...	2019-11-20 08:18:09
attack	Oct 5 19:44:42 webhost01 sshd[20741]: Failed password for root from 117.139.202.64 port 52448 ssh2 ...	2019-10-06 00:11:00
attackbots	Sep 30 08:52:54 localhost sshd\[26900\]: Invalid user bruce from 117.139.202.64 port 44135 Sep 30 08:52:54 localhost sshd\[26900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Sep 30 08:52:56 localhost sshd\[26900\]: Failed password for invalid user bruce from 117.139.202.64 port 44135 ssh2	2019-09-30 14:55:11
attackbotsspam	Sep 6 18:14:06 web1 sshd\[28691\]: Invalid user hadoop from 117.139.202.64 Sep 6 18:14:06 web1 sshd\[28691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Sep 6 18:14:08 web1 sshd\[28691\]: Failed password for invalid user hadoop from 117.139.202.64 port 42789 ssh2 Sep 6 18:19:36 web1 sshd\[29142\]: Invalid user solr from 117.139.202.64 Sep 6 18:19:36 web1 sshd\[29142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64	2019-09-07 12:19:40
attack	Sep 1 10:20:49 mail sshd\[14506\]: Invalid user 000999888 from 117.139.202.64 port 56029 Sep 1 10:20:49 mail sshd\[14506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 ...	2019-09-01 22:05:01
attack	2019-08-17T10:01:40.460915abusebot-3.cloudsearch.cf sshd\[17317\]: Invalid user kathrine from 117.139.202.64 port 51475	2019-08-18 00:08:48
attack	Aug 8 10:27:33 kmh-mb-001 sshd[14881]: Invalid user patrick from 117.139.202.64 port 54876 Aug 8 10:27:33 kmh-mb-001 sshd[14881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Failed password for invalid user patrick from 117.139.202.64 port 54876 ssh2 Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Received disconnect from 117.139.202.64 port 54876:11: Bye Bye [preauth] Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Disconnected from 117.139.202.64 port 54876 [preauth] Aug 8 10:42:12 kmh-mb-001 sshd[15433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 user=backup Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Failed password for backup from 117.139.202.64 port 63347 ssh2 Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Received disconnect from 117.139.202.64 port 63347:11: Bye Bye [preauth] Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Disconnected ........ -------------------------------	2019-08-09 21:39:33
attack	Aug 8 10:27:33 kmh-mb-001 sshd[14881]: Invalid user patrick from 117.139.202.64 port 54876 Aug 8 10:27:33 kmh-mb-001 sshd[14881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Failed password for invalid user patrick from 117.139.202.64 port 54876 ssh2 Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Received disconnect from 117.139.202.64 port 54876:11: Bye Bye [preauth] Aug 8 10:27:35 kmh-mb-001 sshd[14881]: Disconnected from 117.139.202.64 port 54876 [preauth] Aug 8 10:42:12 kmh-mb-001 sshd[15433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 user=backup Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Failed password for backup from 117.139.202.64 port 63347 ssh2 Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Received disconnect from 117.139.202.64 port 63347:11: Bye Bye [preauth] Aug 8 10:42:14 kmh-mb-001 sshd[15433]: Disconnected ........ -------------------------------	2019-08-09 04:23:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.139.202.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33082
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.139.202.64.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 04:23:12 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 64.202.139.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 64.202.139.117.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
148.240.92.126	attackbotsspam	TCP (SYN) 148.240.92.126:49348 -> port 445, len 40	2020-08-13 01:34:15
170.245.244.70	attackspam	TCP (SYN) 170.245.244.70:55724 -> port 1433, len 44	2020-08-13 01:55:15
77.79.133.173	attackbots	TCP (SYN) 77.79.133.173:59323 -> port 445, len 52	2020-08-13 02:04:39
77.79.151.156	attackbots	TCP (SYN) 77.79.151.156:43382 -> port 7547, len 40	2020-08-13 02:03:52
91.200.39.254	attack	TCP (SYN) 91.200.39.254:10963 -> port 7547, len 44	2020-08-13 01:44:15
103.115.126.141	attack	TCP (SYN) 103.115.126.141:16520 -> port 80, len 44	2020-08-13 01:40:16
122.226.102.236	attackspam	TCP (SYN) 122.226.102.236:64022 -> port 3389, len 52	2020-08-13 01:35:19
77.79.191.148	attackspam	TCP (SYN) 77.79.191.148:56520 -> port 445, len 52	2020-08-13 02:02:20
196.200.156.196	attackbotsspam	TCP (SYN) 196.200.156.196:62909 -> port 1433, len 52	2020-08-13 01:52:16
106.187.246.68	attackbots	TCP (SYN) 106.187.246.68:51983 -> port 1433, len 44	2020-08-13 01:39:21
113.141.70.115	attackspambots	TCP (SYN) 113.141.70.115:41374 -> port 445, len 40	2020-08-13 01:59:19
52.141.17.229	attackbots	Unauthorized connection attempt detected from IP address 52.141.17.229 to port 23 [T]	2020-08-13 02:07:05
203.192.219.201	attackbots	Aug 12 02:50:54 php1 sshd\[30465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.192.219.201 user=root Aug 12 02:50:56 php1 sshd\[30465\]: Failed password for root from 203.192.219.201 port 48454 ssh2 Aug 12 02:53:56 php1 sshd\[30693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.192.219.201 user=root Aug 12 02:53:58 php1 sshd\[30693\]: Failed password for root from 203.192.219.201 port 60872 ssh2 Aug 12 02:56:50 php1 sshd\[30892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.192.219.201 user=root	2020-08-13 01:51:40
194.180.224.130	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-13 01:52:31
77.79.143.112	attackspambots	TCP (SYN) 77.79.143.112:1592 -> port 445, len 52	2020-08-13 02:04:22

最近上报的IP列表

216.13.18.205	52.228.232.80	47.254.148.123	207.111.223.103
1.208.29.90	116.46.111.242	46.28.126.112	139.53.139.12
110.132.213.223	1.57.183.112	187.13.59.185	63.98.11.162
35.162.11.225	147.208.5.74	92.79.78.168	193.66.96.1
55.101.97.241	123.254.215.202	170.57.40.88	8.243.31.65