139.199.200.182

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	frenzy	2020-04-05 18:26:19
attackbotsspam	Mar 26 22:19:37 mail sshd\[28392\]: Invalid user ubuntu from 139.199.200.182 Mar 26 22:19:37 mail sshd\[28392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.200.182 Mar 26 22:19:39 mail sshd\[28392\]: Failed password for invalid user ubuntu from 139.199.200.182 port 57914 ssh2 ...	2020-03-27 06:26:36

类型

评论内容

时间

attackspambots

frenzy

2020-04-05 18:26:19

attackbotsspam

Mar 26 22:19:37 mail sshd\[28392\]: Invalid user ubuntu from 139.199.200.182
Mar 26 22:19:37 mail sshd\[28392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.200.182
Mar 26 22:19:39 mail sshd\[28392\]: Failed password for invalid user ubuntu from 139.199.200.182 port 57914 ssh2
...

2020-03-27 06:26:36

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.200.91	attack	Unauthorized connection attempt detected from IP address 139.199.200.91 to port 1433 [J]	2020-01-29 05:53:50
139.199.200.91	attack	firewall-block, port(s): 1433/tcp	2020-01-14 18:31:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.200.182
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21822
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.200.182.		IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032601 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 27 06:26:33 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 182.200.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 182.200.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.53.72.119	attack	Apr 10 17:32:42 gw1 sshd[4906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.72.119 Apr 10 17:32:44 gw1 sshd[4906]: Failed password for invalid user radware from 106.53.72.119 port 51642 ssh2 ...	2020-04-10 20:49:50
185.246.75.146	attackbots	Apr 10 13:58:45 mail1 sshd\[12282\]: Invalid user test from 185.246.75.146 port 36622 Apr 10 13:58:45 mail1 sshd\[12282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.246.75.146 Apr 10 13:58:47 mail1 sshd\[12282\]: Failed password for invalid user test from 185.246.75.146 port 36622 ssh2 Apr 10 14:13:10 mail1 sshd\[18575\]: Invalid user aki from 185.246.75.146 port 37336 Apr 10 14:13:10 mail1 sshd\[18575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.246.75.146 ...	2020-04-10 20:45:47
202.65.141.250	attack	Apr 10 14:06:06 ns382633 sshd\[16771\]: Invalid user test from 202.65.141.250 port 42444 Apr 10 14:06:06 ns382633 sshd\[16771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.65.141.250 Apr 10 14:06:08 ns382633 sshd\[16771\]: Failed password for invalid user test from 202.65.141.250 port 42444 ssh2 Apr 10 14:11:10 ns382633 sshd\[17718\]: Invalid user mc from 202.65.141.250 port 52067 Apr 10 14:11:10 ns382633 sshd\[17718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.65.141.250	2020-04-10 21:16:11
218.92.0.138	attackspambots	Apr 10 14:24:36 nextcloud sshd\[21566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Apr 10 14:24:38 nextcloud sshd\[21566\]: Failed password for root from 218.92.0.138 port 17896 ssh2 Apr 10 14:25:04 nextcloud sshd\[22441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root	2020-04-10 20:40:22
59.127.1.12	attackbots	2020-04-10T12:08:36.635747shield sshd\[28231\]: Invalid user postgres from 59.127.1.12 port 42366 2020-04-10T12:08:36.639633shield sshd\[28231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-127-1-12.hinet-ip.hinet.net 2020-04-10T12:08:38.588332shield sshd\[28231\]: Failed password for invalid user postgres from 59.127.1.12 port 42366 ssh2 2020-04-10T12:11:48.076747shield sshd\[28772\]: Invalid user charlie from 59.127.1.12 port 34282 2020-04-10T12:11:48.080672shield sshd\[28772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-127-1-12.hinet-ip.hinet.net	2020-04-10 20:36:14
51.77.140.36	attackspam	Brute-force attempt banned	2020-04-10 21:05:50
222.186.173.183	attack	04/10/2020-08:55:16.670118 222.186.173.183 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-10 20:58:39
106.75.55.190	attackbots	TCP src-port=46868 dst-port=25 Listed on barracuda zen-spamhaus spam-sorbs (126)	2020-04-10 20:54:20
64.94.32.198	attackspam	Apr 10 14:39:34 mail1 sshd\[29886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.94.32.198 user=root Apr 10 14:39:36 mail1 sshd\[29886\]: Failed password for root from 64.94.32.198 port 21423 ssh2 Apr 10 14:52:59 mail1 sshd\[3245\]: Invalid user redhat from 64.94.32.198 port 7186 Apr 10 14:52:59 mail1 sshd\[3245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.94.32.198 Apr 10 14:53:01 mail1 sshd\[3245\]: Failed password for invalid user redhat from 64.94.32.198 port 7186 ssh2 ...	2020-04-10 20:53:11
112.85.42.89	attackbots	Apr 10 14:31:25 vmd38886 sshd\[17570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.89 user=root Apr 10 14:31:26 vmd38886 sshd\[17570\]: Failed password for root from 112.85.42.89 port 46445 ssh2 Apr 10 14:31:28 vmd38886 sshd\[17570\]: Failed password for root from 112.85.42.89 port 46445 ssh2	2020-04-10 20:41:14
83.171.96.106	attack	Icarus honeypot on github	2020-04-10 21:07:31
78.128.113.74	attackspambots	Brute Force attack - banned by Fail2Ban	2020-04-10 20:38:32
106.13.23.105	attackspam	Apr 10 14:37:12 eventyay sshd[4077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.105 Apr 10 14:37:13 eventyay sshd[4077]: Failed password for invalid user user2 from 106.13.23.105 port 58692 ssh2 Apr 10 14:40:44 eventyay sshd[4221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.105 ...	2020-04-10 20:55:23
104.168.28.195	attack	Apr 10 14:02:37 DAAP sshd[32216]: Invalid user program from 104.168.28.195 port 35812 Apr 10 14:02:37 DAAP sshd[32216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.28.195 Apr 10 14:02:37 DAAP sshd[32216]: Invalid user program from 104.168.28.195 port 35812 Apr 10 14:02:39 DAAP sshd[32216]: Failed password for invalid user program from 104.168.28.195 port 35812 ssh2 Apr 10 14:11:51 DAAP sshd[32402]: Invalid user andrea from 104.168.28.195 port 36410 ...	2020-04-10 20:32:01
176.118.216.42	attackspambots	20/4/10@08:11:26: FAIL: Alarm-Network address from=176.118.216.42 20/4/10@08:11:26: FAIL: Alarm-Network address from=176.118.216.42 ...	2020-04-10 20:56:08

最近上报的IP列表

202.87.159.182	12.124.161.11	86.102.192.12	151.69.94.89
76.248.180.188	155.68.90.162	73.137.190.165	81.126.236.92
2.65.19.135	189.232.18.164	85.234.163.240	86.227.98.186
112.196.81.67	209.128.54.137	75.32.131.225	178.74.248.166
177.44.8.211	212.252.147.196	78.241.226.27	1.161.123.13