139.199.117.44

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 23 01:51:10 plex sshd[9463]: Invalid user wp from 139.199.117.44 port 52748	2019-08-23 09:07:11
attackbotsspam	Aug 9 22:39:40 www2 sshd\[6644\]: Invalid user wan from 139.199.117.44Aug 9 22:39:42 www2 sshd\[6644\]: Failed password for invalid user wan from 139.199.117.44 port 55120 ssh2Aug 9 22:43:12 www2 sshd\[7161\]: Invalid user milena from 139.199.117.44 ...	2019-08-10 03:43:40

类型

评论内容

时间

attackbotsspam

Aug 23 01:51:10 plex sshd[9463]: Invalid user wp from 139.199.117.44 port 52748

2019-08-23 09:07:11

attackbotsspam

Aug  9 22:39:40 www2 sshd\[6644\]: Invalid user wan from 139.199.117.44Aug  9 22:39:42 www2 sshd\[6644\]: Failed password for invalid user wan from 139.199.117.44 port 55120 ssh2Aug  9 22:43:12 www2 sshd\[7161\]: Invalid user milena from 139.199.117.44
...

2019-08-10 03:43:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.117.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7759
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.117.44.			IN	A

;; AUTHORITY SECTION:
.			2878	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080902 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 03:43:35 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 44.117.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 44.117.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.75.170.13	attack	Aug 15 05:37:08 kapalua sshd\[26833\]: Invalid user yuki from 51.75.170.13 Aug 15 05:37:08 kapalua sshd\[26833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-75-170.eu Aug 15 05:37:10 kapalua sshd\[26833\]: Failed password for invalid user yuki from 51.75.170.13 port 46692 ssh2 Aug 15 05:41:41 kapalua sshd\[27417\]: Invalid user user from 51.75.170.13 Aug 15 05:41:41 kapalua sshd\[27417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-75-170.eu	2019-08-15 23:52:35
117.223.119.254	attackbotsspam	Automatic report - Port Scan Attack	2019-08-16 00:08:10
81.22.45.29	attackbots	08/15/2019-11:16:26.412069 81.22.45.29 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85	2019-08-15 23:51:53
138.197.162.28	attack	Aug 15 03:25:51 aiointranet sshd\[20450\]: Invalid user ubuntu from 138.197.162.28 Aug 15 03:25:51 aiointranet sshd\[20450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 Aug 15 03:25:53 aiointranet sshd\[20450\]: Failed password for invalid user ubuntu from 138.197.162.28 port 45936 ssh2 Aug 15 03:30:14 aiointranet sshd\[20803\]: Invalid user kasia from 138.197.162.28 Aug 15 03:30:14 aiointranet sshd\[20803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28	2019-08-15 23:51:28
178.62.64.107	attackspambots	Aug 15 06:00:31 aiointranet sshd\[1993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.64.107 user=root Aug 15 06:00:33 aiointranet sshd\[1993\]: Failed password for root from 178.62.64.107 port 44644 ssh2 Aug 15 06:04:56 aiointranet sshd\[2414\]: Invalid user ronald from 178.62.64.107 Aug 15 06:04:56 aiointranet sshd\[2414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.64.107 Aug 15 06:04:57 aiointranet sshd\[2414\]: Failed password for invalid user ronald from 178.62.64.107 port 36864 ssh2	2019-08-16 00:20:23
104.254.244.205	attack	Aug 15 12:06:54 XXX sshd[51558]: Invalid user ts3sleep from 104.254.244.205 port 45410	2019-08-15 23:45:04
151.69.229.18	attackspam	Aug 15 17:54:48 dedicated sshd[18264]: Invalid user fachwirt from 151.69.229.18 port 33909	2019-08-16 00:17:42
162.241.211.155	attackspambots	Automatic report - Banned IP Access	2019-08-15 23:09:18
89.101.97.230	attack	Aug 15 10:23:25 debian sshd\[15033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.101.97.230 user=root Aug 15 10:23:26 debian sshd\[15033\]: Failed password for root from 89.101.97.230 port 46765 ssh2 ...	2019-08-15 23:59:56
185.209.0.143	attackbotsspam	Aug 15 13:45:27 h2177944 kernel: \[4193245.361638\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=15086 PROTO=TCP SPT=43188 DPT=13308 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 13:52:07 h2177944 kernel: \[4193645.305558\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=63459 PROTO=TCP SPT=43188 DPT=13364 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 13:57:34 h2177944 kernel: \[4193972.537583\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=12597 PROTO=TCP SPT=43188 DPT=13369 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 14:05:55 h2177944 kernel: \[4194473.720251\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.143 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=47017 PROTO=TCP SPT=43188 DPT=13326 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 15 14:07:38 h2177944 kernel: \[4194576.491296\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.143 DST=85.214.1	2019-08-16 00:21:56
129.213.153.229	attack	Aug 15 11:23:28 ubuntu-2gb-nbg1-dc3-1 sshd[26241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.153.229 Aug 15 11:23:30 ubuntu-2gb-nbg1-dc3-1 sshd[26241]: Failed password for invalid user admin from 129.213.153.229 port 47253 ssh2 ...	2019-08-15 23:56:18
193.32.163.182	attackspambots	Aug 15 18:13:02 server01 sshd\[2557\]: Invalid user admin from 193.32.163.182 Aug 15 18:13:02 server01 sshd\[2557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182 Aug 15 18:13:04 server01 sshd\[2557\]: Failed password for invalid user admin from 193.32.163.182 port 60325 ssh2 ...	2019-08-15 23:37:49
195.93.223.100	attack	DATE:2019-08-15 11:23:16, IP:195.93.223.100, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-16 00:11:16
80.15.100.175	attackspam	Automatic report - Port Scan Attack	2019-08-15 23:53:35
129.211.117.47	attack	Aug 15 17:59:07 eventyay sshd[30242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.117.47 Aug 15 17:59:10 eventyay sshd[30242]: Failed password for invalid user toni from 129.211.117.47 port 44324 ssh2 Aug 15 18:05:17 eventyay sshd[31799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.117.47 ...	2019-08-16 00:21:19

最近上报的IP列表

74.248.156.120	132.89.62.185	13.255.219.7	137.4.243.143
80.180.63.180	118.141.20.170	163.55.35.237	47.85.82.150
133.91.166.181	201.33.229.141	18.141.0.145	223.39.87.229
94.61.163.216	186.139.87.45	73.210.34.59	52.244.92.18
44.77.11.103	221.196.136.146	154.68.94.152	111.241.61.116