139.199.228.133

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Oct 9 00:11:50 slaro sshd\[11211\]: Invalid user cron from 139.199.228.133 Oct 9 00:11:50 slaro sshd\[11211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 Oct 9 00:11:53 slaro sshd\[11211\]: Failed password for invalid user cron from 139.199.228.133 port 12623 ssh2 ...	2020-10-09 06:46:27
attackspam	Oct 08 08:08:17 askasleikir sshd[43451]: Failed password for root from 139.199.228.133 port 28627 ssh2 Oct 08 08:13:33 askasleikir sshd[43485]: Failed password for root from 139.199.228.133 port 50069 ssh2	2020-10-08 23:09:21
attackspambots	Oct 8 08:45:15 buvik sshd[20213]: Failed password for root from 139.199.228.133 port 20378 ssh2 Oct 8 08:47:29 buvik sshd[20456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 user=root Oct 8 08:47:31 buvik sshd[20456]: Failed password for root from 139.199.228.133 port 33133 ssh2 ...	2020-10-08 15:04:38
attackbotsspam	[f2b] sshd bruteforce, retries: 1	2020-09-13 02:26:52
attack	...	2020-09-12 18:29:36
attackspam	SSH bruteforce	2020-09-09 03:36:03
attack	Sep 8 09:22:58 prox sshd[16697]: Failed password for root from 139.199.228.133 port 9016 ssh2	2020-09-08 19:14:22
attackspambots	Aug 31 13:32:34 django-0 sshd[27253]: Invalid user steam from 139.199.228.133 ...	2020-08-31 22:59:51
attackbots	Invalid user gilbert from 139.199.228.133 port 39354	2020-08-31 18:42:13
attackspam	Invalid user gilbert from 139.199.228.133 port 39354	2020-08-31 07:10:35
attackbots	Aug 19 11:53:15 vpn01 sshd[23299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 Aug 19 11:53:17 vpn01 sshd[23299]: Failed password for invalid user admin from 139.199.228.133 port 26786 ssh2 ...	2020-08-19 18:32:43
attackbots	SSH BruteForce Attack	2020-08-13 13:23:37
attackspambots	Aug 11 03:50:59 *** sshd[19498]: User root from 139.199.228.133 not allowed because not listed in AllowUsers	2020-08-11 17:17:16
attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-07 16:54:14
attackspam	2020-07-30T05:51:59.494801centos sshd[11517]: Invalid user tym from 139.199.228.133 port 32224 2020-07-30T05:52:01.063348centos sshd[11517]: Failed password for invalid user tym from 139.199.228.133 port 32224 ssh2 2020-07-30T05:55:49.411446centos sshd[11728]: Invalid user yanze from 139.199.228.133 port 51714 ...	2020-07-30 12:33:21
attack	$f2bV_matches	2020-07-15 09:41:41
attackspam	SSH Invalid Login	2020-07-08 05:59:23
attackbots	Jul 6 15:22:04 inter-technics sshd[9935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 user=root Jul 6 15:22:06 inter-technics sshd[9935]: Failed password for root from 139.199.228.133 port 57841 ssh2 Jul 6 15:25:11 inter-technics sshd[10178]: Invalid user test1 from 139.199.228.133 port 20509 Jul 6 15:25:11 inter-technics sshd[10178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 Jul 6 15:25:11 inter-technics sshd[10178]: Invalid user test1 from 139.199.228.133 port 20509 Jul 6 15:25:13 inter-technics sshd[10178]: Failed password for invalid user test1 from 139.199.228.133 port 20509 ssh2 ...	2020-07-06 22:09:58
attackbotsspam	Jul 6 06:56:59 server sshd[21032]: Failed password for root from 139.199.228.133 port 23221 ssh2 Jul 6 07:00:19 server sshd[23884]: Failed password for root from 139.199.228.133 port 43436 ssh2 Jul 6 07:03:35 server sshd[26353]: Failed password for root from 139.199.228.133 port 63656 ssh2	2020-07-06 13:54:59
attackbotsspam	Jun 25 15:08:28 meumeu sshd[1413645]: Invalid user demo from 139.199.228.133 port 46544 Jun 25 15:08:28 meumeu sshd[1413645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 Jun 25 15:08:28 meumeu sshd[1413645]: Invalid user demo from 139.199.228.133 port 46544 Jun 25 15:08:30 meumeu sshd[1413645]: Failed password for invalid user demo from 139.199.228.133 port 46544 ssh2 Jun 25 15:12:06 meumeu sshd[1413883]: Invalid user oscar from 139.199.228.133 port 12598 Jun 25 15:12:06 meumeu sshd[1413883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 Jun 25 15:12:06 meumeu sshd[1413883]: Invalid user oscar from 139.199.228.133 port 12598 Jun 25 15:12:08 meumeu sshd[1413883]: Failed password for invalid user oscar from 139.199.228.133 port 12598 ssh2 Jun 25 15:15:49 meumeu sshd[1414026]: Invalid user hml from 139.199.228.133 port 35150 ...	2020-06-25 21:49:50
attack	Jun 2 05:52:14 sshd\[31368\]: User root from 139.199.228.133 not allowed because not listed in AllowUsersJun 2 05:52:16 sshd\[31368\]: Failed password for invalid user root from 139.199.228.133 port 18808 ssh2 ...	2020-06-02 14:56:44
attackspam	Invalid user gnj from 139.199.228.133 port 37899	2020-05-21 15:06:27
attackbots	Invalid user admin from 139.199.228.133 port 18873	2020-05-16 15:39:26
attack	k+ssh-bruteforce	2020-05-08 23:56:47
attack	May 2 10:29:55 vmd17057 sshd[29214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 May 2 10:29:57 vmd17057 sshd[29214]: Failed password for invalid user internet from 139.199.228.133 port 13033 ssh2 ...	2020-05-02 17:30:43
attackspam	$f2bV_matches	2020-04-18 06:43:18
attackspambots	SSH Brute Force	2020-04-11 07:11:44
attackspam	k+ssh-bruteforce	2020-04-08 17:10:36
attackbotsspam	Mar 28 23:06:22 [host] sshd[4459]: Invalid user me Mar 28 23:06:22 [host] sshd[4459]: pam_unix(sshd:a Mar 28 23:06:24 [host] sshd[4459]: Failed password	2020-03-29 08:22:49
attackspambots	Mar 10 08:41:10 marvibiene sshd[1568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 user=root Mar 10 08:41:11 marvibiene sshd[1568]: Failed password for root from 139.199.228.133 port 16731 ssh2 Mar 10 09:25:15 marvibiene sshd[2074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 user=root Mar 10 09:25:17 marvibiene sshd[2074]: Failed password for root from 139.199.228.133 port 62367 ssh2 ...	2020-03-10 20:00:11

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.228.154	attackbots	Exploited Host.	2020-07-26 02:24:36
139.199.228.154	attack	Brute-force attempt banned	2020-06-29 13:36:03
139.199.228.154	attack	$f2bV_matches	2020-06-13 16:16:57
139.199.228.154	attack	frenzy	2020-06-07 17:27:33
139.199.228.154	attackspam	Invalid user uko from 139.199.228.154 port 60180	2020-05-24 02:18:52
139.199.228.154	attackbots	May 13 08:50:03 ns382633 sshd\[474\]: Invalid user porn from 139.199.228.154 port 54096 May 13 08:50:03 ns382633 sshd\[474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 May 13 08:50:05 ns382633 sshd\[474\]: Failed password for invalid user porn from 139.199.228.154 port 54096 ssh2 May 13 08:54:24 ns382633 sshd\[1355\]: Invalid user deploy from 139.199.228.154 port 34934 May 13 08:54:24 ns382633 sshd\[1355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154	2020-05-13 16:14:06
139.199.228.154	attackspam	k+ssh-bruteforce	2020-05-10 14:26:02
139.199.228.154	attack	May 4 15:57:12 plex sshd[11844]: Invalid user wh from 139.199.228.154 port 46960	2020-05-05 03:36:46
139.199.228.154	attack	invalid user	2020-05-03 18:49:36
139.199.228.154	attack	Invalid user dylan from 139.199.228.154 port 36700	2020-05-01 18:02:48
139.199.228.154	attackspam	Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: Invalid user bmuuser from 139.199.228.154 Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: Invalid user bmuuser from 139.199.228.154 Apr 14 22:41:12 srv-ubuntu-dev3 sshd[35369]: Failed password for invalid user bmuuser from 139.199.228.154 port 47230 ssh2 Apr 14 22:43:44 srv-ubuntu-dev3 sshd[35742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 user=root Apr 14 22:43:46 srv-ubuntu-dev3 sshd[35742]: Failed password for root from 139.199.228.154 port 45694 ssh2 Apr 14 22:46:04 srv-ubuntu-dev3 sshd[36141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 user=root Apr 14 22:46:07 srv-ubuntu-dev3 sshd[36141]: Failed password for root from 139.199.228.154 port 44150 ssh2 Apr 14 22:48:34 srv- ...	2020-04-15 06:54:20
139.199.228.154	attackspam	SSH Invalid Login	2020-04-12 07:19:03
139.199.228.154	attackspambots	Mar 29 03:32:44 firewall sshd[2447]: Invalid user yev from 139.199.228.154 Mar 29 03:32:46 firewall sshd[2447]: Failed password for invalid user yev from 139.199.228.154 port 33242 ssh2 Mar 29 03:39:38 firewall sshd[2785]: Invalid user rica from 139.199.228.154 ...	2020-03-29 17:02:55
139.199.228.154	attackspambots	20 attempts against mh-ssh on echoip	2020-03-25 02:04:07
139.199.228.154	attackspam	Feb 12 22:32:46 server sshd\[17178\]: Invalid user aqjava from 139.199.228.154 Feb 12 22:32:46 server sshd\[17178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 Feb 12 22:32:48 server sshd\[17178\]: Failed password for invalid user aqjava from 139.199.228.154 port 56226 ssh2 Feb 13 12:01:38 server sshd\[30434\]: Invalid user catego from 139.199.228.154 Feb 13 12:01:38 server sshd\[30434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 ...	2020-02-13 19:11:56

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.228.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53448
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.228.133.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 12:55:39 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 133.228.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 133.228.199.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
125.94.150.141	attack	Icarus honeypot on github	2020-09-06 06:59:56
110.249.202.25	attackbots	Forbidden directory scan :: 2020/09/05 16:50:14 [error] 1010#1010: *1533201 access forbidden by rule, client: 110.249.202.25, server: [censored_2], request: "GET /news/8-reasons-to-not-trust-web-depth:5 HTTP/1.1", host: "www.[censored_2]"	2020-09-06 06:32:33
218.92.0.173	attackspam	Sep 6 04:30:10 lunarastro sshd[25186]: Failed password for root from 218.92.0.173 port 39193 ssh2 Sep 6 04:30:14 lunarastro sshd[25186]: Failed password for root from 218.92.0.173 port 39193 ssh2	2020-09-06 07:03:55
106.12.84.63	attackspam	2020-09-05T22:55:30.921013shield sshd\[19682\]: Invalid user tom from 106.12.84.63 port 48966 2020-09-05T22:55:30.931370shield sshd\[19682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.63 2020-09-05T22:55:33.209048shield sshd\[19682\]: Failed password for invalid user tom from 106.12.84.63 port 48966 ssh2 2020-09-05T22:58:10.777600shield sshd\[19930\]: Invalid user dac from 106.12.84.63 port 32067 2020-09-05T22:58:10.787733shield sshd\[19930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.63	2020-09-06 07:01:41
106.8.166.189	attackspam	2020-08-31 06:59:58 login_virtual_exim authenticator failed for (1bB66s) [106.8.166.189]: 535 Incorrect authentication data (set_id=strueber.stellpflug) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.8.166.189	2020-09-06 06:54:31
186.232.45.90	attackspambots	Automatic report - Port Scan Attack	2020-09-06 07:02:23
194.15.36.104	attack	SmallBizIT.US 1 packets to tcp(22)	2020-09-06 06:36:55
164.132.46.14	attack	Sep 6 05:31:18 webhost01 sshd[30627]: Failed password for root from 164.132.46.14 port 55056 ssh2 ...	2020-09-06 07:00:55
38.27.134.206	attackspam	Brute force 53 attempts	2020-09-06 06:58:50
92.63.197.71	attackspam	firewall-block, port(s): 3397/tcp	2020-09-06 07:08:30
88.214.57.94	attackspambots	Port scan on 16 port(s): 4449 5061 5062 5070 5071 5072 5080 5090 5782 6000 6060 7171 8081 8088 8089 9000	2020-09-06 06:35:20
88.244.89.20	attack	firewall-block, port(s): 445/tcp	2020-09-06 06:38:06
64.227.0.131	attackbotsspam	Sep 6 00:27:37 tor-proxy-02 sshd\[28827\]: User root from 64.227.0.131 not allowed because not listed in AllowUsers Sep 6 00:27:48 tor-proxy-02 sshd\[28829\]: Invalid user oracle from 64.227.0.131 port 45424 Sep 6 00:27:58 tor-proxy-02 sshd\[28831\]: User root from 64.227.0.131 not allowed because not listed in AllowUsers ...	2020-09-06 06:40:20
187.87.80.12	attack	1599324603 - 09/05/2020 18:50:03 Host: 187.87.80.12/187.87.80.12 Port: 445 TCP Blocked	2020-09-06 06:39:11
180.76.186.54	attackbots	firewall-block, port(s): 10300/tcp	2020-09-06 06:32:17

最近上报的IP列表

124.79.83.136	77.55.214.138	182.187.139.169	73.124.236.66
36.82.143.0	180.5.150.153	52.28.118.94	37.190.61.115
179.127.155.29	14.161.234.204	115.72.174.54	110.136.245.206
106.13.51.58	186.92.98.127	36.65.35.212	193.112.44.21
118.70.128.17	5.117.225.90	117.1.166.186	210.4.119.59