139.199.201.141

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH invalid-user multiple login try	2020-10-13 00:07:39
attackbotsspam	Oct 12 08:22:23 mout sshd[16815]: Invalid user ru from 139.199.201.141 port 61071	2020-10-12 15:30:33
attackbotsspam	May 19 11:24:48 lnxweb61 sshd[31891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141 May 19 11:24:49 lnxweb61 sshd[31891]: Failed password for invalid user esd from 139.199.201.141 port 54701 ssh2 May 19 11:30:24 lnxweb61 sshd[5696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141	2020-05-20 05:14:59

类型

评论内容

时间

attack

SSH invalid-user multiple login try

2020-10-13 00:07:39

attackbotsspam

Oct 12 08:22:23 mout sshd[16815]: Invalid user ru from 139.199.201.141 port 61071

2020-10-12 15:30:33

attackbotsspam

May 19 11:24:48 lnxweb61 sshd[31891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141
May 19 11:24:49 lnxweb61 sshd[31891]: Failed password for invalid user esd from 139.199.201.141 port 54701 ssh2
May 19 11:30:24 lnxweb61 sshd[5696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.201.141

2020-05-20 05:14:59

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.201.243	attackbots	1597351475 - 08/13/2020 22:44:35 Host: 139.199.201.243/139.199.201.243 Port: 445 TCP Blocked	2020-08-14 06:53:30
139.199.201.51	attackspambots	Jun 27 06:33:17 ip-172-31-62-245 sshd\[24171\]: Invalid user supervisor from 139.199.201.51\ Jun 27 06:33:19 ip-172-31-62-245 sshd\[24171\]: Failed password for invalid user supervisor from 139.199.201.51 port 41630 ssh2\ Jun 27 06:34:48 ip-172-31-62-245 sshd\[24176\]: Invalid user charity from 139.199.201.51\ Jun 27 06:34:50 ip-172-31-62-245 sshd\[24176\]: Failed password for invalid user charity from 139.199.201.51 port 54602 ssh2\ Jun 27 06:37:41 ip-172-31-62-245 sshd\[24188\]: Invalid user training from 139.199.201.51\	2019-06-27 14:52:35

类型

评论内容

时间

139.199.201.243

attackbots

1597351475 - 08/13/2020 22:44:35 Host: 139.199.201.243/139.199.201.243 Port: 445 TCP Blocked

2020-08-14 06:53:30

139.199.201.51

attackspambots

Jun 27 06:33:17 ip-172-31-62-245 sshd\[24171\]: Invalid user supervisor from 139.199.201.51\
Jun 27 06:33:19 ip-172-31-62-245 sshd\[24171\]: Failed password for invalid user supervisor from 139.199.201.51 port 41630 ssh2\
Jun 27 06:34:48 ip-172-31-62-245 sshd\[24176\]: Invalid user charity from 139.199.201.51\
Jun 27 06:34:50 ip-172-31-62-245 sshd\[24176\]: Failed password for invalid user charity from 139.199.201.51 port 54602 ssh2\
Jun 27 06:37:41 ip-172-31-62-245 sshd\[24188\]: Invalid user training from 139.199.201.51\

2019-06-27 14:52:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.201.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34724
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.201.141.		IN	A

;; AUTHORITY SECTION:
.			208	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 05:14:51 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 141.201.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.201.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
36.155.113.73	attackbotsspam	Oct 17 21:40:54 auw2 sshd\[13167\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.73 user=root Oct 17 21:40:57 auw2 sshd\[13167\]: Failed password for root from 36.155.113.73 port 52297 ssh2 Oct 17 21:45:35 auw2 sshd\[13610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.73 user=root Oct 17 21:45:37 auw2 sshd\[13610\]: Failed password for root from 36.155.113.73 port 42135 ssh2 Oct 17 21:50:11 auw2 sshd\[14015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.73 user=root	2019-10-18 15:59:47
110.164.72.34	attackbotsspam	[Aegis] @ 2019-10-18 08:45:42 0100 -> Multiple authentication failures.	2019-10-18 16:27:10
177.220.195.26	attack	Unauthorised access (Oct 18) SRC=177.220.195.26 LEN=52 TTL=114 ID=21691 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-18 16:14:46
213.148.198.36	attack	Automatic report - Banned IP Access	2019-10-18 16:27:27
82.79.102.50	attackspambots	Oct 18 09:10:47 cvbnet sshd[2435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.79.102.50 Oct 18 09:10:49 cvbnet sshd[2435]: Failed password for invalid user system from 82.79.102.50 port 55370 ssh2 ...	2019-10-18 16:02:45
103.92.85.202	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/103.92.85.202/ BD - 1H : (19) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BD NAME ASN : ASN135038 IP : 103.92.85.202 CIDR : 103.92.85.0/24 PREFIX COUNT : 2 UNIQUE IP COUNT : 512 WYKRYTE ATAKI Z ASN135038 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-18 08:41:38 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 16:32:09
35.241.139.204	attackspam	Invalid user butterer from 35.241.139.204 port 59264	2019-10-18 16:09:41
213.135.230.147	attack	Invalid user applmgr from 213.135.230.147 port 33233	2019-10-18 16:05:07
202.46.1.25	attackbotsspam	Oct 18 10:20:13 tux-35-217 sshd\[27232\]: Invalid user xi from 202.46.1.25 port 53490 Oct 18 10:20:13 tux-35-217 sshd\[27232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.46.1.25 Oct 18 10:20:15 tux-35-217 sshd\[27232\]: Failed password for invalid user xi from 202.46.1.25 port 53490 ssh2 Oct 18 10:24:38 tux-35-217 sshd\[27244\]: Invalid user matt from 202.46.1.25 port 35986 Oct 18 10:24:38 tux-35-217 sshd\[27244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.46.1.25 ...	2019-10-18 16:29:13
162.247.74.216	attack	Oct 18 09:34:23 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2Oct 18 09:34:26 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2Oct 18 09:34:29 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2Oct 18 09:34:32 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2Oct 18 09:34:35 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2Oct 18 09:34:38 rotator sshd\[1972\]: Failed password for root from 162.247.74.216 port 57112 ssh2 ...	2019-10-18 16:34:29
94.191.50.114	attack	2019-10-18T08:05:22.584912abusebot.cloudsearch.cf sshd\[12999\]: Invalid user AS from 94.191.50.114 port 44362	2019-10-18 16:23:30
206.189.239.103	attack	Oct 18 04:56:38 firewall sshd[26018]: Failed password for invalid user dev from 206.189.239.103 port 41894 ssh2 Oct 18 05:00:12 firewall sshd[26087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 user=root Oct 18 05:00:14 firewall sshd[26087]: Failed password for root from 206.189.239.103 port 52220 ssh2 ...	2019-10-18 16:03:39
163.172.127.64	attackbots	firewall-block, port(s): 5060/udp	2019-10-18 16:10:55
124.225.62.59	attack	firewall-block, port(s): 1433/tcp	2019-10-18 16:12:48
89.211.249.227	attack	Automatic report - Banned IP Access	2019-10-18 16:39:16

最近上报的IP列表

52.192.120.0	83.110.154.123	167.4.104.49	59.126.182.115
49.158.186.203	14.241.91.45	14.189.41.243	220.133.75.141
67.83.87.61	24.133.11.174	188.252.13.178	220.135.85.53
195.54.161.51	39.99.210.203	183.88.17.66	171.225.134.148
112.225.121.198	201.228.234.245	182.32.160.84	115.132.14.250