城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): V6Yun (Beijing) Network Co. Ltd
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Apr 29 17:01:02 vpn01 sshd[31494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Apr 29 17:01:04 vpn01 sshd[31494]: Failed password for invalid user crs from 139.199.20.202 port 59596 ssh2 ... |
2020-04-30 01:29:53 |
| attackspambots | Apr 24 17:24:46 firewall sshd[851]: Invalid user postfix from 139.199.20.202 Apr 24 17:24:49 firewall sshd[851]: Failed password for invalid user postfix from 139.199.20.202 port 32880 ssh2 Apr 24 17:30:22 firewall sshd[983]: Invalid user smsd from 139.199.20.202 ... |
2020-04-25 05:17:08 |
| attackbots | Apr 21 15:40:18 ws24vmsma01 sshd[145708]: Failed password for root from 139.199.20.202 port 53252 ssh2 ... |
2020-04-22 03:37:14 |
| attack | Brute-force attempt banned |
2020-04-20 21:27:30 |
| attack | Apr 20 09:34:42 icinga sshd[11303]: Failed password for root from 139.199.20.202 port 46262 ssh2 Apr 20 09:44:09 icinga sshd[26041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Apr 20 09:44:11 icinga sshd[26041]: Failed password for invalid user qk from 139.199.20.202 port 47618 ssh2 ... |
2020-04-20 17:58:40 |
| attackbotsspam | Apr 19 22:27:55 ns381471 sshd[17975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Apr 19 22:27:56 ns381471 sshd[17975]: Failed password for invalid user gitolite from 139.199.20.202 port 53194 ssh2 |
2020-04-20 04:55:18 |
| attack | Invalid user cssserver from 139.199.20.202 port 53108 |
2020-04-11 16:20:08 |
| attackspambots | Invalid user tlt from 139.199.20.202 port 40968 |
2020-04-03 18:14:22 |
| attackspam | Invalid user jl from 139.199.20.202 port 60256 |
2020-04-03 04:04:06 |
| attack | Mar 22 05:40:10 areeb-Workstation sshd[20038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Mar 22 05:40:12 areeb-Workstation sshd[20038]: Failed password for invalid user party from 139.199.20.202 port 49444 ssh2 ... |
2020-03-22 08:53:49 |
| attack | Invalid user chang from 139.199.20.202 port 56392 |
2020-03-21 07:29:56 |
| attackspam | Invalid user leo from 139.199.20.202 port 40344 |
2020-03-13 20:31:29 |
| attackspam | Invalid user leo from 139.199.20.202 port 40344 |
2020-03-12 03:17:16 |
| attackbotsspam | Mar 1 00:29:34 localhost sshd\[24977\]: Invalid user musicbot from 139.199.20.202 Mar 1 00:29:34 localhost sshd\[24977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Mar 1 00:29:36 localhost sshd\[24977\]: Failed password for invalid user musicbot from 139.199.20.202 port 37958 ssh2 Mar 1 00:35:37 localhost sshd\[25337\]: Invalid user harry from 139.199.20.202 Mar 1 00:35:37 localhost sshd\[25337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 ... |
2020-03-01 09:27:15 |
| attackbots | Unauthorized connection attempt detected from IP address 139.199.20.202 to port 2220 [J] |
2020-01-25 08:49:04 |
| attackspam | Invalid user catherine from 139.199.20.202 port 46940 |
2020-01-22 00:33:50 |
| attackbotsspam | Nov 19 22:23:31 cp sshd[14439]: Failed password for root from 139.199.20.202 port 44036 ssh2 Nov 19 22:23:31 cp sshd[14439]: Failed password for root from 139.199.20.202 port 44036 ssh2 Nov 19 22:27:34 cp sshd[16681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 |
2019-11-20 08:03:43 |
| attack | frenzy |
2019-11-03 05:02:28 |
| attack | Oct 28 12:43:36 anodpoucpklekan sshd[59882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 user=root Oct 28 12:43:38 anodpoucpklekan sshd[59882]: Failed password for root from 139.199.20.202 port 34964 ssh2 ... |
2019-10-29 02:18:43 |
| attackspam | Oct 20 15:10:05 MK-Soft-VM5 sshd[16848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 Oct 20 15:10:06 MK-Soft-VM5 sshd[16848]: Failed password for invalid user gordon from 139.199.20.202 port 46502 ssh2 ... |
2019-10-20 21:30:11 |
| attack | 2019-10-14T11:49:14.431850abusebot.cloudsearch.cf sshd\[16302\]: Invalid user Story123 from 139.199.20.202 port 39404 2019-10-14T11:49:14.439728abusebot.cloudsearch.cf sshd\[16302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 |
2019-10-14 23:45:49 |
| attack | Oct 13 18:04:14 Tower sshd[31081]: Connection from 139.199.20.202 port 37440 on 192.168.10.220 port 22 Oct 13 18:04:16 Tower sshd[31081]: Failed password for root from 139.199.20.202 port 37440 ssh2 Oct 13 18:04:16 Tower sshd[31081]: Received disconnect from 139.199.20.202 port 37440:11: Bye Bye [preauth] Oct 13 18:04:16 Tower sshd[31081]: Disconnected from authenticating user root 139.199.20.202 port 37440 [preauth] |
2019-10-14 08:05:52 |
| attackspam | Oct 13 01:28:03 [host] sshd[25838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 user=root Oct 13 01:28:04 [host] sshd[25838]: Failed password for root from 139.199.20.202 port 60468 ssh2 Oct 13 01:32:24 [host] sshd[26009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.20.202 user=root |
2019-10-13 08:13:02 |
| attackbotsspam | $f2bV_matches |
2019-10-10 18:00:05 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.199.201.141 | attack | SSH invalid-user multiple login try |
2020-10-13 00:07:39 |
| 139.199.201.141 | attackbotsspam | Oct 12 08:22:23 mout sshd[16815]: Invalid user ru from 139.199.201.141 port 61071 |
2020-10-12 15:30:33 |
| 139.199.201.243 | attackbots | 1597351475 - 08/13/2020 22:44:35 Host: 139.199.201.243/139.199.201.243 Port: 445 TCP Blocked |
2020-08-14 06:53:30 |
| 139.199.209.89 | attackspambots | Jul 9 10:32:44 sip sshd[25980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 Jul 9 10:32:46 sip sshd[25980]: Failed password for invalid user admin from 139.199.209.89 port 57462 ssh2 Jul 9 10:40:30 sip sshd[28939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 |
2020-07-11 06:27:21 |
| 139.199.204.61 | attackbotsspam | Invalid user lj from 139.199.204.61 port 59399 |
2020-07-08 00:38:41 |
| 139.199.204.61 | attack | $f2bV_matches |
2020-07-01 15:31:27 |
| 139.199.209.89 | attack | Jun 25 06:27:01 eventyay sshd[22642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 Jun 25 06:27:04 eventyay sshd[22642]: Failed password for invalid user elena from 139.199.209.89 port 55984 ssh2 Jun 25 06:33:57 eventyay sshd[22760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 ... |
2020-06-25 12:41:22 |
| 139.199.209.89 | attackspambots | Jun 22 16:33:43 lanister sshd[7517]: Invalid user uploader from 139.199.209.89 Jun 22 16:33:45 lanister sshd[7517]: Failed password for invalid user uploader from 139.199.209.89 port 57648 ssh2 Jun 22 16:36:31 lanister sshd[7564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 user=root Jun 22 16:36:33 lanister sshd[7564]: Failed password for root from 139.199.209.89 port 54252 ssh2 |
2020-06-23 05:31:02 |
| 139.199.204.61 | attack | Jun 12 06:07:43 mail sshd\[7196\]: Invalid user admin from 139.199.204.61 Jun 12 06:07:43 mail sshd\[7196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 Jun 12 06:07:45 mail sshd\[7196\]: Failed password for invalid user admin from 139.199.204.61 port 51298 ssh2 ... |
2020-06-12 12:32:46 |
| 139.199.204.61 | attackbots | 3x Failed Password |
2020-06-04 07:44:50 |
| 139.199.209.89 | attack | May 25 17:49:21 sso sshd[23340]: Failed password for root from 139.199.209.89 port 36574 ssh2 May 25 17:52:21 sso sshd[23672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 ... |
2020-05-26 04:00:00 |
| 139.199.204.61 | attack | 2020-05-21T14:17:58.392776galaxy.wi.uni-potsdam.de sshd[6363]: Invalid user qux from 139.199.204.61 port 52613 2020-05-21T14:17:58.397810galaxy.wi.uni-potsdam.de sshd[6363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 2020-05-21T14:17:58.392776galaxy.wi.uni-potsdam.de sshd[6363]: Invalid user qux from 139.199.204.61 port 52613 2020-05-21T14:18:00.648807galaxy.wi.uni-potsdam.de sshd[6363]: Failed password for invalid user qux from 139.199.204.61 port 52613 ssh2 2020-05-21T14:20:24.503418galaxy.wi.uni-potsdam.de sshd[6655]: Invalid user ayc from 139.199.204.61 port 36425 2020-05-21T14:20:24.508443galaxy.wi.uni-potsdam.de sshd[6655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 2020-05-21T14:20:24.503418galaxy.wi.uni-potsdam.de sshd[6655]: Invalid user ayc from 139.199.204.61 port 36425 2020-05-21T14:20:26.467316galaxy.wi.uni-potsdam.de sshd[6655]: Failed password for inval ... |
2020-05-21 21:30:40 |
| 139.199.201.141 | attackbotsspam | May 19 11:24:48 lnxweb61 sshd[31891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141 May 19 11:24:49 lnxweb61 sshd[31891]: Failed password for invalid user esd from 139.199.201.141 port 54701 ssh2 May 19 11:30:24 lnxweb61 sshd[5696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141 |
2020-05-20 05:14:59 |
| 139.199.204.61 | attackbotsspam | May 7 06:32:21 meumeu sshd[5261]: Failed password for git from 139.199.204.61 port 50579 ssh2 May 7 06:34:48 meumeu sshd[7852]: Failed password for root from 139.199.204.61 port 37583 ssh2 May 7 06:37:10 meumeu sshd[8193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 ... |
2020-05-07 16:55:31 |
| 139.199.204.61 | attackspam | Apr 25 07:20:43 home sshd[12333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 Apr 25 07:20:45 home sshd[12333]: Failed password for invalid user stpi from 139.199.204.61 port 52902 ssh2 Apr 25 07:25:30 home sshd[13011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.204.61 ... |
2020-04-25 17:36:53 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.20.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61072
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.20.202. IN A
;; AUTHORITY SECTION:
. 374 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019101000 1800 900 604800 86400
;; Query time: 927 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 10 18:00:01 CST 2019
;; MSG SIZE rcvd: 118Host 202.20.199.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 202.20.199.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.220.102.8 | attackspambots | $f2bV_matches |
2019-07-18 18:46:43 |
| 115.159.144.17 | attackspambots | Jul 18 01:12:53 vpn sshd[24700]: error: Received disconnect from 115.159.144.17 port 53976:3: com.jcraft.jsch.JSchException: Auth fail [preauth] |
2019-07-18 18:54:56 |
| 37.187.225.184 | attack | 2019-06-30T13:32:42.926182wiz-ks3 sshd[23169]: Invalid user git from 37.187.225.184 port 54560 2019-06-30T13:32:42.928206wiz-ks3 sshd[23169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.ip-37-187-225.eu 2019-06-30T13:32:42.926182wiz-ks3 sshd[23169]: Invalid user git from 37.187.225.184 port 54560 2019-06-30T13:32:44.832496wiz-ks3 sshd[23169]: Failed password for invalid user git from 37.187.225.184 port 54560 ssh2 2019-06-30T13:33:28.490307wiz-ks3 sshd[23171]: Invalid user test from 37.187.225.184 port 59590 2019-06-30T13:33:28.492316wiz-ks3 sshd[23171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.ip-37-187-225.eu 2019-06-30T13:33:28.490307wiz-ks3 sshd[23171]: Invalid user test from 37.187.225.184 port 59590 2019-06-30T13:33:30.376750wiz-ks3 sshd[23171]: Failed password for invalid user test from 37.187.225.184 port 59590 ssh2 2019-06-30T13:34:20.469254wiz-ks3 sshd[23174]: Invalid user user from 37.187.225.184 port |
2019-07-18 18:44:44 |
| 114.5.12.34 | attackbots | proto=tcp . spt=49152 . dpt=25 . (listed on Blocklist de Jul 17) (67) |
2019-07-18 18:39:43 |
| 52.178.199.25 | attack | Jul 17 09:56:55 gutwein sshd[20601]: Failed password for invalid user tmp from 52.178.199.25 port 32772 ssh2 Jul 17 09:56:55 gutwein sshd[20601]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:01:54 gutwein sshd[21527]: Failed password for invalid user lzhang from 52.178.199.25 port 60240 ssh2 Jul 17 10:01:54 gutwein sshd[21527]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:06:59 gutwein sshd[22471]: Failed password for invalid user stunnel from 52.178.199.25 port 59698 ssh2 Jul 17 10:06:59 gutwein sshd[22471]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:11:49 gutwein sshd[23360]: Failed password for invalid user luciana from 52.178.199.25 port 58914 ssh2 Jul 17 10:11:49 gutwein sshd[23360]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:16:57 gutwein sshd[24301]: Failed password for invalid user teamspeak3 from 52.178.199.25 port 58316 ssh2 Jul 17 10:16:57 gutwein s........ ------------------------------- |
2019-07-18 18:09:57 |
| 178.62.4.64 | attackbots | " " |
2019-07-18 18:08:45 |
| 103.70.145.124 | attack | SPF Fail sender not permitted to send mail for @21cncorp.com / Mail sent to address harvested from public web site |
2019-07-18 18:06:42 |
| 31.172.134.82 | attackbots | TCP Port: 25 _ invalid blocked barracudacentral rbldns-ru _ _ _ _ (61) |
2019-07-18 18:53:24 |
| 164.132.57.16 | attack | Automatic report - Banned IP Access |
2019-07-18 18:58:25 |
| 163.172.106.114 | attackspam | Jul 18 06:19:50 debian sshd\[25294\]: Invalid user engineer from 163.172.106.114 port 42536 Jul 18 06:19:50 debian sshd\[25294\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.106.114 Jul 18 06:19:53 debian sshd\[25294\]: Failed password for invalid user engineer from 163.172.106.114 port 42536 ssh2 ... |
2019-07-18 18:37:13 |
| 31.27.229.125 | attackspambots | 2019-06-22T02:29:21.908690wiz-ks3 sshd[5873]: Invalid user admin from 31.27.229.125 port 52976 2019-06-22T02:29:21.910774wiz-ks3 sshd[5873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-31-27-229-125.cust.vodafonedsl.it 2019-06-22T02:29:21.908690wiz-ks3 sshd[5873]: Invalid user admin from 31.27.229.125 port 52976 2019-06-22T02:29:23.774416wiz-ks3 sshd[5873]: Failed password for invalid user admin from 31.27.229.125 port 52976 ssh2 2019-06-22T02:45:36.281465wiz-ks3 sshd[5909]: Invalid user app from 31.27.229.125 port 57015 2019-06-22T02:45:36.283628wiz-ks3 sshd[5909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-31-27-229-125.cust.vodafonedsl.it 2019-06-22T02:45:36.281465wiz-ks3 sshd[5909]: Invalid user app from 31.27.229.125 port 57015 2019-06-22T02:45:38.332570wiz-ks3 sshd[5909]: Failed password for invalid user app from 31.27.229.125 port 57015 ssh2 2019-06-22T02:56:21.553749wiz-ks3 sshd[5928]: Invalid user test fr |
2019-07-18 18:45:19 |
| 124.173.68.36 | attackspambots | port scan and connect, tcp 80 (http) |
2019-07-18 18:21:54 |
| 45.122.221.238 | attackbotsspam | 2019-07-09T11:59:01.879982wiz-ks3 sshd[28648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.221.238 user=root 2019-07-09T11:59:04.055971wiz-ks3 sshd[28648]: Failed password for root from 45.122.221.238 port 51564 ssh2 2019-07-09T11:59:26.552558wiz-ks3 sshd[28757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.221.238 user=root 2019-07-09T11:59:28.492844wiz-ks3 sshd[28757]: Failed password for root from 45.122.221.238 port 60066 ssh2 2019-07-09T11:59:49.595237wiz-ks3 sshd[28880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.221.238 user=root 2019-07-09T11:59:51.359861wiz-ks3 sshd[28880]: Failed password for root from 45.122.221.238 port 40318 ssh2 2019-07-09T12:00:13.611264wiz-ks3 sshd[28996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.122.221.238 user=root 2019-07-09T12:00:15.335928wiz-ks3 sshd[28996]: Failed pa |
2019-07-18 18:41:23 |
| 180.250.162.9 | attackbots | Jul 18 10:33:31 MK-Soft-VM5 sshd\[2681\]: Invalid user us from 180.250.162.9 port 40560 Jul 18 10:33:31 MK-Soft-VM5 sshd\[2681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.162.9 Jul 18 10:33:34 MK-Soft-VM5 sshd\[2681\]: Failed password for invalid user us from 180.250.162.9 port 40560 ssh2 ... |
2019-07-18 18:36:39 |
| 104.238.116.94 | attackbots | Triggered by Fail2Ban |
2019-07-18 18:50:31 |