139.199.113.2 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	$f2bV_matches	2020-01-12 00:20:35
attackspambots	Nov 27 14:50:02 legacy sshd[22145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Nov 27 14:50:04 legacy sshd[22145]: Failed password for invalid user mazenc from 139.199.113.2 port 49862 ssh2 Nov 27 14:58:51 legacy sshd[22467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 ...	2019-11-27 22:04:13
attackspambots	Nov 20 14:20:12 Tower sshd[39321]: Connection from 139.199.113.2 port 41876 on 192.168.10.220 port 22 Nov 20 14:20:14 Tower sshd[39321]: Invalid user guest from 139.199.113.2 port 41876 Nov 20 14:20:14 Tower sshd[39321]: error: Could not get shadow information for NOUSER Nov 20 14:20:14 Tower sshd[39321]: Failed password for invalid user guest from 139.199.113.2 port 41876 ssh2 Nov 20 14:20:14 Tower sshd[39321]: Received disconnect from 139.199.113.2 port 41876:11: Bye Bye [preauth] Nov 20 14:20:14 Tower sshd[39321]: Disconnected from invalid user guest 139.199.113.2 port 41876 [preauth]	2019-11-21 05:21:58
attackbotsspam	$f2bV_matches	2019-11-14 04:32:41
attack	2019-11-11T07:00:30.865399abusebot-3.cloudsearch.cf sshd\[22861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 user=root	2019-11-11 16:50:08
attackbots	Nov 7 23:43:17 MK-Soft-VM7 sshd[29706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Nov 7 23:43:19 MK-Soft-VM7 sshd[29706]: Failed password for invalid user biology from 139.199.113.2 port 55403 ssh2 ...	2019-11-08 07:35:35
attack	Nov 4 15:29:27 meumeu sshd[32164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Nov 4 15:29:29 meumeu sshd[32164]: Failed password for invalid user www from 139.199.113.2 port 56788 ssh2 Nov 4 15:35:51 meumeu sshd[690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 ...	2019-11-04 23:06:30
attackspam	Nov 3 21:04:34 sachi sshd\[17453\]: Invalid user onetwo from 139.199.113.2 Nov 3 21:04:34 sachi sshd\[17453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Nov 3 21:04:36 sachi sshd\[17453\]: Failed password for invalid user onetwo from 139.199.113.2 port 62797 ssh2 Nov 3 21:09:18 sachi sshd\[17940\]: Invalid user kendall from 139.199.113.2 Nov 3 21:09:19 sachi sshd\[17940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2	2019-11-04 15:20:27
attackbots	Invalid user Riina from 139.199.113.2 port 54491	2019-10-29 06:03:16
attack	Oct 27 05:49:09 www sshd\[89536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 user=root Oct 27 05:49:11 www sshd\[89536\]: Failed password for root from 139.199.113.2 port 37414 ssh2 Oct 27 05:54:40 www sshd\[89608\]: Invalid user backuper from 139.199.113.2 ...	2019-10-27 14:29:57
attackbots	Oct 23 08:18:35 TORMINT sshd\[2155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 user=root Oct 23 08:18:37 TORMINT sshd\[2155\]: Failed password for root from 139.199.113.2 port 33803 ssh2 Oct 23 08:23:58 TORMINT sshd\[2430\]: Invalid user mailserver from 139.199.113.2 Oct 23 08:23:58 TORMINT sshd\[2430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 ...	2019-10-23 20:34:28
attack	2019-10-21T22:49:43.364815lon01.zurich-datacenter.net sshd\[27381\]: Invalid user usuario1 from 139.199.113.2 port 23162 2019-10-21T22:49:43.369403lon01.zurich-datacenter.net sshd\[27381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 2019-10-21T22:49:45.377711lon01.zurich-datacenter.net sshd\[27381\]: Failed password for invalid user usuario1 from 139.199.113.2 port 23162 ssh2 2019-10-21T22:55:08.253089lon01.zurich-datacenter.net sshd\[27517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 user=root 2019-10-21T22:55:10.211575lon01.zurich-datacenter.net sshd\[27517\]: Failed password for root from 139.199.113.2 port 10645 ssh2 ...	2019-10-22 06:26:44
attackbotsspam	Oct 11 11:40:27 mail sshd[25154]: Failed password for root from 139.199.113.2 port 23811 ssh2 Oct 11 11:44:35 mail sshd[26514]: Failed password for root from 139.199.113.2 port 56851 ssh2	2019-10-11 19:09:11
attackbots	2019-10-06T04:30:01.890204abusebot-4.cloudsearch.cf sshd\[8518\]: Invalid user P4sswort123 from 139.199.113.2 port 62316 2019-10-06T04:30:01.894062abusebot-4.cloudsearch.cf sshd\[8518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2	2019-10-06 12:49:00
attackspam	2019-10-01T08:16:47.7157301495-001 sshd\[6545\]: Invalid user 12345 from 139.199.113.2 port 33017 2019-10-01T08:16:47.7190181495-001 sshd\[6545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 2019-10-01T08:16:49.7476871495-001 sshd\[6545\]: Failed password for invalid user 12345 from 139.199.113.2 port 33017 ssh2 2019-10-01T08:21:31.6794391495-001 sshd\[6964\]: Invalid user brazil1 from 139.199.113.2 port 10844 2019-10-01T08:21:31.6863161495-001 sshd\[6964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 2019-10-01T08:21:33.7048771495-001 sshd\[6964\]: Failed password for invalid user brazil1 from 139.199.113.2 port 10844 ssh2 ...	2019-10-02 03:26:44
attackspambots	Sep 27 22:48:50 apollo sshd\[10709\]: Invalid user djlhc111com from 139.199.113.2Sep 27 22:48:53 apollo sshd\[10709\]: Failed password for invalid user djlhc111com from 139.199.113.2 port 61989 ssh2Sep 27 23:08:04 apollo sshd\[10791\]: Invalid user beaver from 139.199.113.2 ...	2019-09-28 07:52:00
attack	2019-09-23T07:02:02.131826abusebot-5.cloudsearch.cf sshd\[31660\]: Invalid user dstserver from 139.199.113.2 port 13640	2019-09-23 15:17:55
attack	Sep 5 13:50:57 markkoudstaal sshd[24445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Sep 5 13:50:59 markkoudstaal sshd[24445]: Failed password for invalid user webcam from 139.199.113.2 port 22096 ssh2 Sep 5 13:56:38 markkoudstaal sshd[24939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2	2019-09-05 20:09:42
attackbots	Brute force SMTP login attempted. ...	2019-08-10 01:53:44
attack	Jul 13 19:45:51 vps647732 sshd[8005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Jul 13 19:45:54 vps647732 sshd[8005]: Failed password for invalid user jenkins from 139.199.113.2 port 30174 ssh2 ...	2019-07-14 07:48:06
attackspam	Jul 12 22:05:32 vps647732 sshd[28758]: Failed password for root from 139.199.113.2 port 13067 ssh2 Jul 12 22:10:17 vps647732 sshd[28965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 ...	2019-07-13 04:40:04
attackspam	Jun 27 06:52:16 MK-Soft-VM3 sshd\[5802\]: Invalid user test from 139.199.113.2 port 50971 Jun 27 06:52:16 MK-Soft-VM3 sshd\[5802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.2 Jun 27 06:52:18 MK-Soft-VM3 sshd\[5802\]: Failed password for invalid user test from 139.199.113.2 port 50971 ssh2 ...	2019-06-27 14:55:35

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.113.140	attackspam	Feb 12 08:26:55 xeon sshd[34309]: Failed password for root from 139.199.113.140 port 52310 ssh2	2020-02-12 19:11:15
139.199.113.140	attackspam	Feb 9 00:05:04 dedicated sshd[18470]: Invalid user ehz from 139.199.113.140 port 45070	2020-02-09 07:07:17
139.199.113.140	attackbotsspam	Feb 4 16:54:17 v22018076622670303 sshd\[20656\]: Invalid user weblogic from 139.199.113.140 port 37650 Feb 4 16:54:17 v22018076622670303 sshd\[20656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 Feb 4 16:54:19 v22018076622670303 sshd\[20656\]: Failed password for invalid user weblogic from 139.199.113.140 port 37650 ssh2 ...	2020-02-05 01:02:58
139.199.113.140	attackbotsspam	Invalid user alban from 139.199.113.140 port 48772	2020-01-19 03:16:17
139.199.113.140	attackspam	Unauthorized connection attempt detected from IP address 139.199.113.140 to port 2220 [J]	2020-01-17 04:09:07
139.199.113.140	attackspambots	Jan 14 00:41:51 dedicated sshd[5361]: Invalid user buero from 139.199.113.140 port 41044	2020-01-14 07:59:47
139.199.113.140	attackspambots	Dec 27 02:01:40 server sshd\[9494\]: Invalid user sonoyama from 139.199.113.140 Dec 27 02:01:40 server sshd\[9494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 Dec 27 02:01:41 server sshd\[9494\]: Failed password for invalid user sonoyama from 139.199.113.140 port 44750 ssh2 Dec 27 02:19:32 server sshd\[12790\]: Invalid user admin from 139.199.113.140 Dec 27 02:19:32 server sshd\[12790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 ...	2019-12-27 07:57:34
139.199.113.140	attack	Invalid user asterisk from 139.199.113.140 port 59708	2019-12-24 21:37:54
139.199.113.140	attack	2019-12-18T07:30:19.480353centos sshd\[8732\]: Invalid user gnuhealth from 139.199.113.140 port 48482 2019-12-18T07:30:19.487851centos sshd\[8732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 2019-12-18T07:30:21.139555centos sshd\[8732\]: Failed password for invalid user gnuhealth from 139.199.113.140 port 48482 ssh2	2019-12-18 14:57:22
139.199.113.140	attackspambots	Dec 15 08:53:48 cp sshd[13927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140	2019-12-15 16:44:43
139.199.113.140	attackbotsspam	Dec 4 09:13:31 [host] sshd[25665]: Invalid user cowlishaw from 139.199.113.140 Dec 4 09:13:31 [host] sshd[25665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 Dec 4 09:13:33 [host] sshd[25665]: Failed password for invalid user cowlishaw from 139.199.113.140 port 59044 ssh2	2019-12-04 16:36:35
139.199.113.140	attackspam	Nov 30 00:39:44 kapalua sshd\[22436\]: Invalid user test from 139.199.113.140 Nov 30 00:39:44 kapalua sshd\[22436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140 Nov 30 00:39:46 kapalua sshd\[22436\]: Failed password for invalid user test from 139.199.113.140 port 59022 ssh2 Nov 30 00:47:13 kapalua sshd\[22916\]: Invalid user yoyo from 139.199.113.140 Nov 30 00:47:13 kapalua sshd\[22916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.140	2019-11-30 18:59:25
139.199.113.236	attackbotsspam	Nov 25 04:32:45 sachi sshd\[21528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.236 user=root Nov 25 04:32:47 sachi sshd\[21528\]: Failed password for root from 139.199.113.236 port 39898 ssh2 Nov 25 04:32:53 sachi sshd\[21546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.113.236 user=root Nov 25 04:32:55 sachi sshd\[21546\]: Failed password for root from 139.199.113.236 port 40194 ssh2 Nov 25 04:32:57 sachi sshd\[21552\]: Invalid user pi from 139.199.113.236	2019-11-26 04:15:41
139.199.113.140	attack	SSH Bruteforce attempt	2019-11-24 05:52:59
139.199.113.140	attackbotsspam	SSH Brute Force, server-1 sshd[27285]: Failed password for invalid user admin from 139.199.113.140 port 53166 ssh2	2019-11-23 19:00:46

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.113.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22092
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.113.2.			IN	A

;; AUTHORITY SECTION:
.			1375	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 08:25:12 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 2.113.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 2.113.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.61.175.71	attackbotsspam	Sep 15 01:27:06 MainVPS sshd[16255]: Invalid user test2 from 182.61.175.71 port 53718 Sep 15 01:27:06 MainVPS sshd[16255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.71 Sep 15 01:27:06 MainVPS sshd[16255]: Invalid user test2 from 182.61.175.71 port 53718 Sep 15 01:27:07 MainVPS sshd[16255]: Failed password for invalid user test2 from 182.61.175.71 port 53718 ssh2 Sep 15 01:31:18 MainVPS sshd[16564]: Invalid user LENEL from 182.61.175.71 port 38690 ...	2019-09-15 08:59:55
198.27.90.106	attackbots	Sep 14 21:15:18 TORMINT sshd\[25193\]: Invalid user ubuntu from 198.27.90.106 Sep 14 21:15:18 TORMINT sshd\[25193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106 Sep 14 21:15:20 TORMINT sshd\[25193\]: Failed password for invalid user ubuntu from 198.27.90.106 port 43053 ssh2 ...	2019-09-15 09:18:38
197.248.10.108	attackbotsspam	Sep 14 14:07:17 localhost sshd[31324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.10.108 Sep 14 14:07:18 localhost sshd[31324]: Failed password for invalid user user from 197.248.10.108 port 49898 ssh2 Sep 14 14:13:22 localhost sshd[31458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.10.108 Sep 14 14:13:25 localhost sshd[31458]: Failed password for invalid user bitrix from 197.248.10.108 port 35432 ssh2 ...	2019-09-15 09:13:14
180.248.162.38	attack	Automatic report - Port Scan Attack	2019-09-15 09:18:15
14.173.196.129	attackspam	Sep 14 18:13:52 marvibiene sshd[37876]: Invalid user admin from 14.173.196.129 port 58373 Sep 14 18:13:52 marvibiene sshd[37876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.173.196.129 Sep 14 18:13:52 marvibiene sshd[37876]: Invalid user admin from 14.173.196.129 port 58373 Sep 14 18:13:54 marvibiene sshd[37876]: Failed password for invalid user admin from 14.173.196.129 port 58373 ssh2 ...	2019-09-15 08:52:44
185.176.27.38	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-09-15 08:59:35
95.105.89.221	attackbotsspam	proto=tcp . spt=56020 . dpt=25 . (listed on Blocklist de Sep 14) (763)	2019-09-15 08:54:46
132.232.120.158	attackbots	Sep 15 02:35:11 tuotantolaitos sshd[23174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.120.158 Sep 15 02:35:13 tuotantolaitos sshd[23174]: Failed password for invalid user carol from 132.232.120.158 port 28890 ssh2 ...	2019-09-15 09:23:07
185.140.29.94	attackspam	SSH-BruteForce	2019-09-15 08:55:20
89.252.152.46	attack	Sep 15 03:18:05 our-server-hostname postfix/smtpd[5891]: connect from unknown[89.252.152.46] Sep x@x Sep x@x Sep 15 03:18:15 our-server-hostname postfix/smtpd[5891]: E9CF4A4000D: client=unknown[89.252.152.46] Sep 15 03:18:17 our-server-hostname postfix/smtpd[12735]: 4E1E9A40038: client=unknown[127.0.0.1], orig_client=unknown[89.252.152.46] Sep 15 03:18:17 our-server-hostname amavis[12284]: (12284-20) Passed CLEAN, [89.252.152.46] [89.252.152.46] , mail_id: iWJJu-YAs-Cr, Hhostnames: -, size: 32393, queued_as: 4E1E9A40038, 196 ms Sep x@x Sep x@x Sep 15 03:18:17 our-server-hostname postfix/smtpd[5891]: CFF15A4000D: client=unknown[89.252.152.46] Sep 15 03:18:18 our-server-hostname postfix/smtpd[12735]: BD93EA40038: client=unknown[127.0.0.1], orig_client=unknown[89.252.152.46] Sep 15 03:18:18 our-server-hostname amavis[5243]: (05243-03) Passed CLEAN, [89.252.152.46] [89.252.152.46] , mail_id: Evc6ScWrnfhV, Hhostnames: -, size: 32927, queued_as: BD93EA40038, 163 ms ........ -------------------------------	2019-09-15 09:09:59
36.152.65.197	attackspambots	Automatic report - Port Scan Attack	2019-09-15 09:17:43
206.189.41.34	attackspambots	Sep 15 02:04:16 ns3110291 sshd\[20790\]: Invalid user soap from 206.189.41.34 Sep 15 02:04:16 ns3110291 sshd\[20790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.41.34 Sep 15 02:04:17 ns3110291 sshd\[20790\]: Failed password for invalid user soap from 206.189.41.34 port 35104 ssh2 Sep 15 02:08:48 ns3110291 sshd\[20949\]: Invalid user admin1 from 206.189.41.34 Sep 15 02:08:48 ns3110291 sshd\[20949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.41.34 ...	2019-09-15 09:17:10
41.46.91.132	attackbotsspam	Sep 14 18:13:46 marvibiene sshd[37856]: Invalid user admin from 41.46.91.132 port 35246 Sep 14 18:13:46 marvibiene sshd[37856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.46.91.132 Sep 14 18:13:46 marvibiene sshd[37856]: Invalid user admin from 41.46.91.132 port 35246 Sep 14 18:13:48 marvibiene sshd[37856]: Failed password for invalid user admin from 41.46.91.132 port 35246 ssh2 ...	2019-09-15 08:57:02
117.60.138.40	attackspam	Sep 14 14:13:58 mail sshd\[20861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.60.138.40 user=root ...	2019-09-15 08:47:28
94.191.50.114	attackspam	2019-09-15T00:04:42.893560abusebot-6.cloudsearch.cf sshd\[3681\]: Invalid user ptf from 94.191.50.114 port 52322	2019-09-15 09:16:50

最近上报的IP列表

102.165.32.79	201.25.191.204	13.66.192.66	218.75.132.59
200.150.82.138	52.207.188.89	176.107.130.72	134.175.189.129
143.255.140.25	86.96.197.226	96.44.29.46	187.72.33.125
118.24.247.237	202.146.213.3	114.6.68.30	185.220.101.56
104.198.93.19	113.53.230.34	106.12.104.181	118.25.190.197