139.199.167.135

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute force SMTP login attempted. ...	2019-08-10 01:43:33

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.167.14	attack	Aug 20 06:07:46 vps647732 sshd[29947]: Failed password for mysql from 139.199.167.14 port 57914 ssh2 Aug 20 06:11:56 vps647732 sshd[30160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.167.14 ...	2019-08-20 12:28:34

类型

评论内容

时间

139.199.167.14

attack

Aug 20 06:07:46 vps647732 sshd[29947]: Failed password for mysql from 139.199.167.14 port 57914 ssh2
Aug 20 06:11:56 vps647732 sshd[30160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.167.14
...

2019-08-20 12:28:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.167.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34213
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.167.135.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 12:17:30 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 135.167.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 135.167.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.179.236	attackspambots	May 31 16:15:05 serwer sshd\[2381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.236 user=root May 31 16:15:07 serwer sshd\[2381\]: Failed password for root from 106.12.179.236 port 34416 ssh2 May 31 16:23:40 serwer sshd\[3577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.236 user=root May 31 16:23:41 serwer sshd\[3577\]: Failed password for root from 106.12.179.236 port 58062 ssh2 May 31 16:27:09 serwer sshd\[4156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.236 user=root May 31 16:27:12 serwer sshd\[4156\]: Failed password for root from 106.12.179.236 port 37712 ssh2 May 31 16:30:30 serwer sshd\[4630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.236 user=root May 31 16:30:32 serwer sshd\[4630\]: Failed password for root from 106.12.179.236 port 455 ...	2020-06-01 21:40:39
213.137.179.203	attackbots	leo_www	2020-06-01 22:01:15
122.225.230.10	attackspam	2020-06-01T13:04:40.401823shield sshd\[7552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.230.10 user=root 2020-06-01T13:04:42.686400shield sshd\[7552\]: Failed password for root from 122.225.230.10 port 38018 ssh2 2020-06-01T13:08:56.994910shield sshd\[8135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.230.10 user=root 2020-06-01T13:08:59.088950shield sshd\[8135\]: Failed password for root from 122.225.230.10 port 39158 ssh2 2020-06-01T13:13:07.830880shield sshd\[8970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.230.10 user=root	2020-06-01 21:23:11
78.199.19.89	attackbotsspam	Jun 1 18:33:25 gw1 sshd[5781]: Failed password for root from 78.199.19.89 port 47644 ssh2 ...	2020-06-01 21:46:31
118.140.183.42	attackspam	Jun 1 10:18:44 our-server-hostname sshd[10143]: reveeclipse mapping checking getaddrinfo for static-bbs-42-183-140-118-on-nets.com [118.140.183.42] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 10:18:44 our-server-hostname sshd[10143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=r.r Jun 1 10:18:46 our-server-hostname sshd[10143]: Failed password for r.r from 118.140.183.42 port 42958 ssh2 Jun 1 10:31:52 our-server-hostname sshd[12929]: reveeclipse mapping checking getaddrinfo for static-bbs-42-183-140-118-on-nets.com [118.140.183.42] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 10:31:53 our-server-hostname sshd[12929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=r.r Jun 1 10:31:54 our-server-hostname sshd[12929]: Failed password for r.r from 118.140.183.42 port 60228 ssh2 Jun 1 10:37:40 our-server-hostname sshd[14245]: reveeclipse mapping che........ -------------------------------	2020-06-01 21:27:02
1.53.219.116	attack	2020-03-13 14:47:13 H=\(\[1.53.219.116\]\) \[1.53.219.116\]:40377 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2020-03-13 14:47:41 H=\(\[1.53.219.116\]\) \[1.53.219.116\]:64560 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2020-03-13 14:47:57 H=\(\[1.53.219.116\]\) \[1.53.219.116\]:32089 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-06-01 21:50:56
106.12.183.209	attackbots	May 31 23:52:23 serwer sshd\[15642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.209 user=root May 31 23:52:25 serwer sshd\[15642\]: Failed password for root from 106.12.183.209 port 44072 ssh2 May 31 23:56:24 serwer sshd\[16068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.209 user=root May 31 23:56:26 serwer sshd\[16068\]: Failed password for root from 106.12.183.209 port 43342 ssh2 Jun 1 00:00:25 serwer sshd\[16667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.209 user=root Jun 1 00:00:27 serwer sshd\[16667\]: Failed password for root from 106.12.183.209 port 42614 ssh2 Jun 1 00:08:27 serwer sshd\[17359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.209 user=root Jun 1 00:08:30 serwer sshd\[17359\]: Failed password for root from 106.12.183.209 ...	2020-06-01 21:30:17
210.245.51.1	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-06-01 21:51:59
222.186.30.112	attack	Jun 1 15:50:53 minden010 sshd[8435]: Failed password for root from 222.186.30.112 port 14116 ssh2 Jun 1 15:50:55 minden010 sshd[8435]: Failed password for root from 222.186.30.112 port 14116 ssh2 Jun 1 15:50:58 minden010 sshd[8435]: Failed password for root from 222.186.30.112 port 14116 ssh2 ...	2020-06-01 21:54:36
200.195.171.74	attack	Jun 1 18:27:59 gw1 sshd[5632]: Failed password for root from 200.195.171.74 port 44466 ssh2 ...	2020-06-01 21:48:25
116.255.213.176	attackspam	Jun 1 09:06:15 vps46666688 sshd[24239]: Failed password for root from 116.255.213.176 port 42328 ssh2 ...	2020-06-01 21:30:56
142.93.121.47	attackspam	Jun 1 14:08:34 debian-2gb-nbg1-2 kernel: \[13272086.420200\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.121.47 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=31400 PROTO=TCP SPT=42973 DPT=11107 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 21:43:04
129.204.91.47	attackspam	Lines containing failures of 129.204.91.47 Jun 1 00:27:44 kopano sshd[9143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.91.47 user=r.r Jun 1 00:27:46 kopano sshd[9143]: Failed password for r.r from 129.204.91.47 port 33046 ssh2 Jun 1 00:27:46 kopano sshd[9143]: Received disconnect from 129.204.91.47 port 33046:11: Bye Bye [preauth] Jun 1 00:27:46 kopano sshd[9143]: Disconnected from authenticating user r.r 129.204.91.47 port 33046 [preauth] Jun 1 00:39:59 kopano sshd[9894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.91.47 user=r.r Jun 1 00:40:00 kopano sshd[9894]: Failed password for r.r from 129.204.91.47 port 33586 ssh2 Jun 1 00:40:00 kopano sshd[9894]: Received disconnect from 129.204.91.47 port 33586:11: Bye Bye [preauth] Jun 1 00:40:00 kopano sshd[9894]: Disconnected from authenticating user r.r 129.204.91.47 port 33586 [preauth] Jun 1 00:45:56 kopano........ ------------------------------	2020-06-01 21:58:42
49.232.95.250	attackspambots	Jun 1 15:55:19 hosting sshd[27072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.95.250 user=root Jun 1 15:55:21 hosting sshd[27072]: Failed password for root from 49.232.95.250 port 36034 ssh2 ...	2020-06-01 21:57:38
218.78.99.70	attack	Jun 1 14:27:35 vps687878 sshd\[18834\]: Failed password for root from 218.78.99.70 port 34342 ssh2 Jun 1 14:29:16 vps687878 sshd\[18922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.99.70 user=root Jun 1 14:29:18 vps687878 sshd\[18922\]: Failed password for root from 218.78.99.70 port 57744 ssh2 Jun 1 14:31:04 vps687878 sshd\[19244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.99.70 user=root Jun 1 14:31:07 vps687878 sshd\[19244\]: Failed password for root from 218.78.99.70 port 52902 ssh2 ...	2020-06-01 21:35:07

最近上报的IP列表

111.122.181.250	177.13.236.41	120.195.143.172	94.23.204.81
37.252.190.224	177.73.100.214	111.231.102.179	209.17.96.250
45.121.227.206	176.67.240.10	62.78.80.4	14.161.2.205
212.200.162.174	36.67.220.201	36.73.62.130	123.31.29.165
91.201.246.6	36.239.140.139	202.200.144.184	116.254.102.126