必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbots
Oct  9 00:11:50 slaro sshd\[11211\]: Invalid user cron from 139.199.228.133
Oct  9 00:11:50 slaro sshd\[11211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133
Oct  9 00:11:53 slaro sshd\[11211\]: Failed password for invalid user cron from 139.199.228.133 port 12623 ssh2
...
2020-10-09 06:46:27
attackspam
Oct 08 08:08:17 askasleikir sshd[43451]: Failed password for root from 139.199.228.133 port 28627 ssh2
Oct 08 08:13:33 askasleikir sshd[43485]: Failed password for root from 139.199.228.133 port 50069 ssh2
2020-10-08 23:09:21
attackspambots
Oct  8 08:45:15 buvik sshd[20213]: Failed password for root from 139.199.228.133 port 20378 ssh2
Oct  8 08:47:29 buvik sshd[20456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133  user=root
Oct  8 08:47:31 buvik sshd[20456]: Failed password for root from 139.199.228.133 port 33133 ssh2
...
2020-10-08 15:04:38
attackbotsspam
[f2b] sshd bruteforce, retries: 1
2020-09-13 02:26:52
attack
...
2020-09-12 18:29:36
attackspam
SSH bruteforce
2020-09-09 03:36:03
attack
Sep  8 09:22:58 prox sshd[16697]: Failed password for root from 139.199.228.133 port 9016 ssh2
2020-09-08 19:14:22
attackspambots
Aug 31 13:32:34 django-0 sshd[27253]: Invalid user steam from 139.199.228.133
...
2020-08-31 22:59:51
attackbots
Invalid user gilbert from 139.199.228.133 port 39354
2020-08-31 18:42:13
attackspam
Invalid user gilbert from 139.199.228.133 port 39354
2020-08-31 07:10:35
attackbots
Aug 19 11:53:15 vpn01 sshd[23299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133
Aug 19 11:53:17 vpn01 sshd[23299]: Failed password for invalid user admin from 139.199.228.133 port 26786 ssh2
...
2020-08-19 18:32:43
attackbots
SSH BruteForce Attack
2020-08-13 13:23:37
attackspambots
Aug 11 03:50:59 *** sshd[19498]: User root from 139.199.228.133 not allowed because not listed in AllowUsers
2020-08-11 17:17:16
attackbotsspam
Connection to SSH Honeypot - Detected by HoneypotDB
2020-08-07 16:54:14
attackspam
2020-07-30T05:51:59.494801centos sshd[11517]: Invalid user tym from 139.199.228.133 port 32224
2020-07-30T05:52:01.063348centos sshd[11517]: Failed password for invalid user tym from 139.199.228.133 port 32224 ssh2
2020-07-30T05:55:49.411446centos sshd[11728]: Invalid user yanze from 139.199.228.133 port 51714
...
2020-07-30 12:33:21
attack
$f2bV_matches
2020-07-15 09:41:41
attackspam
SSH Invalid Login
2020-07-08 05:59:23
attackbots
Jul  6 15:22:04 inter-technics sshd[9935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133  user=root
Jul  6 15:22:06 inter-technics sshd[9935]: Failed password for root from 139.199.228.133 port 57841 ssh2
Jul  6 15:25:11 inter-technics sshd[10178]: Invalid user test1 from 139.199.228.133 port 20509
Jul  6 15:25:11 inter-technics sshd[10178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133
Jul  6 15:25:11 inter-technics sshd[10178]: Invalid user test1 from 139.199.228.133 port 20509
Jul  6 15:25:13 inter-technics sshd[10178]: Failed password for invalid user test1 from 139.199.228.133 port 20509 ssh2
...
2020-07-06 22:09:58
attackbotsspam
Jul  6 06:56:59 server sshd[21032]: Failed password for root from 139.199.228.133 port 23221 ssh2
Jul  6 07:00:19 server sshd[23884]: Failed password for root from 139.199.228.133 port 43436 ssh2
Jul  6 07:03:35 server sshd[26353]: Failed password for root from 139.199.228.133 port 63656 ssh2
2020-07-06 13:54:59
attackbotsspam
Jun 25 15:08:28 meumeu sshd[1413645]: Invalid user demo from 139.199.228.133 port 46544
Jun 25 15:08:28 meumeu sshd[1413645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 
Jun 25 15:08:28 meumeu sshd[1413645]: Invalid user demo from 139.199.228.133 port 46544
Jun 25 15:08:30 meumeu sshd[1413645]: Failed password for invalid user demo from 139.199.228.133 port 46544 ssh2
Jun 25 15:12:06 meumeu sshd[1413883]: Invalid user oscar from 139.199.228.133 port 12598
Jun 25 15:12:06 meumeu sshd[1413883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 
Jun 25 15:12:06 meumeu sshd[1413883]: Invalid user oscar from 139.199.228.133 port 12598
Jun 25 15:12:08 meumeu sshd[1413883]: Failed password for invalid user oscar from 139.199.228.133 port 12598 ssh2
Jun 25 15:15:49 meumeu sshd[1414026]: Invalid user hml from 139.199.228.133 port 35150
...
2020-06-25 21:49:50
attack
Jun  2 05:52:14  sshd\[31368\]: User root from 139.199.228.133 not allowed because not listed in AllowUsersJun  2 05:52:16  sshd\[31368\]: Failed password for invalid user root from 139.199.228.133 port 18808 ssh2
...
2020-06-02 14:56:44
attackspam
Invalid user gnj from 139.199.228.133 port 37899
2020-05-21 15:06:27
attackbots
Invalid user admin from 139.199.228.133 port 18873
2020-05-16 15:39:26
attack
k+ssh-bruteforce
2020-05-08 23:56:47
attack
May  2 10:29:55 vmd17057 sshd[29214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133 
May  2 10:29:57 vmd17057 sshd[29214]: Failed password for invalid user internet from 139.199.228.133 port 13033 ssh2
...
2020-05-02 17:30:43
attackspam
$f2bV_matches
2020-04-18 06:43:18
attackspambots
SSH Brute Force
2020-04-11 07:11:44
attackspam
k+ssh-bruteforce
2020-04-08 17:10:36
attackbotsspam
Mar 28 23:06:22 [host] sshd[4459]: Invalid user me
Mar 28 23:06:22 [host] sshd[4459]: pam_unix(sshd:a
Mar 28 23:06:24 [host] sshd[4459]: Failed password
2020-03-29 08:22:49
attackspambots
Mar 10 08:41:10 marvibiene sshd[1568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133  user=root
Mar 10 08:41:11 marvibiene sshd[1568]: Failed password for root from 139.199.228.133 port 16731 ssh2
Mar 10 09:25:15 marvibiene sshd[2074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.133  user=root
Mar 10 09:25:17 marvibiene sshd[2074]: Failed password for root from 139.199.228.133 port 62367 ssh2
...
2020-03-10 20:00:11
相同子网IP讨论:
IP 类型 评论内容 时间
139.199.228.154 attackbots
Exploited Host.
2020-07-26 02:24:36
139.199.228.154 attack
Brute-force attempt banned
2020-06-29 13:36:03
139.199.228.154 attack
$f2bV_matches
2020-06-13 16:16:57
139.199.228.154 attack
frenzy
2020-06-07 17:27:33
139.199.228.154 attackspam
Invalid user uko from 139.199.228.154 port 60180
2020-05-24 02:18:52
139.199.228.154 attackbots
May 13 08:50:03 ns382633 sshd\[474\]: Invalid user porn from 139.199.228.154 port 54096
May 13 08:50:03 ns382633 sshd\[474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154
May 13 08:50:05 ns382633 sshd\[474\]: Failed password for invalid user porn from 139.199.228.154 port 54096 ssh2
May 13 08:54:24 ns382633 sshd\[1355\]: Invalid user deploy from 139.199.228.154 port 34934
May 13 08:54:24 ns382633 sshd\[1355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154
2020-05-13 16:14:06
139.199.228.154 attackspam
k+ssh-bruteforce
2020-05-10 14:26:02
139.199.228.154 attack
May  4 15:57:12 plex sshd[11844]: Invalid user wh from 139.199.228.154 port 46960
2020-05-05 03:36:46
139.199.228.154 attack
invalid user
2020-05-03 18:49:36
139.199.228.154 attack
Invalid user dylan from 139.199.228.154 port 36700
2020-05-01 18:02:48
139.199.228.154 attackspam
Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: Invalid user bmuuser from 139.199.228.154
Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154
Apr 14 22:41:10 srv-ubuntu-dev3 sshd[35369]: Invalid user bmuuser from 139.199.228.154
Apr 14 22:41:12 srv-ubuntu-dev3 sshd[35369]: Failed password for invalid user bmuuser from 139.199.228.154 port 47230 ssh2
Apr 14 22:43:44 srv-ubuntu-dev3 sshd[35742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154  user=root
Apr 14 22:43:46 srv-ubuntu-dev3 sshd[35742]: Failed password for root from 139.199.228.154 port 45694 ssh2
Apr 14 22:46:04 srv-ubuntu-dev3 sshd[36141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154  user=root
Apr 14 22:46:07 srv-ubuntu-dev3 sshd[36141]: Failed password for root from 139.199.228.154 port 44150 ssh2
Apr 14 22:48:34 srv-
...
2020-04-15 06:54:20
139.199.228.154 attackspam
SSH Invalid Login
2020-04-12 07:19:03
139.199.228.154 attackspambots
Mar 29 03:32:44 firewall sshd[2447]: Invalid user yev from 139.199.228.154
Mar 29 03:32:46 firewall sshd[2447]: Failed password for invalid user yev from 139.199.228.154 port 33242 ssh2
Mar 29 03:39:38 firewall sshd[2785]: Invalid user rica from 139.199.228.154
...
2020-03-29 17:02:55
139.199.228.154 attackspambots
20 attempts against mh-ssh on echoip
2020-03-25 02:04:07
139.199.228.154 attackspam
Feb 12 22:32:46 server sshd\[17178\]: Invalid user aqjava from 139.199.228.154
Feb 12 22:32:46 server sshd\[17178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 
Feb 12 22:32:48 server sshd\[17178\]: Failed password for invalid user aqjava from 139.199.228.154 port 56226 ssh2
Feb 13 12:01:38 server sshd\[30434\]: Invalid user catego from 139.199.228.154
Feb 13 12:01:38 server sshd\[30434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.154 
...
2020-02-13 19:11:56
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.228.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53448
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.228.133.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 12:55:39 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:
Host 133.228.199.139.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 133.228.199.139.in-addr.arpa: NXDOMAIN

相关IP信息:
最新评论:
IP 类型 评论内容 时间
125.94.150.141 attack
Icarus honeypot on github
2020-09-06 06:59:56
110.249.202.25 attackbots
Forbidden directory scan :: 2020/09/05 16:50:14 [error] 1010#1010: *1533201 access forbidden by rule, client: 110.249.202.25, server: [censored_2], request: "GET /news/8-reasons-to-not-trust-web-depth:5 HTTP/1.1", host: "www.[censored_2]"
2020-09-06 06:32:33
218.92.0.173 attackspam
Sep  6 04:30:10 lunarastro sshd[25186]: Failed password for root from 218.92.0.173 port 39193 ssh2
Sep  6 04:30:14 lunarastro sshd[25186]: Failed password for root from 218.92.0.173 port 39193 ssh2
2020-09-06 07:03:55
106.12.84.63 attackspam
2020-09-05T22:55:30.921013shield sshd\[19682\]: Invalid user tom from 106.12.84.63 port 48966
2020-09-05T22:55:30.931370shield sshd\[19682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.63
2020-09-05T22:55:33.209048shield sshd\[19682\]: Failed password for invalid user tom from 106.12.84.63 port 48966 ssh2
2020-09-05T22:58:10.777600shield sshd\[19930\]: Invalid user dac from 106.12.84.63 port 32067
2020-09-05T22:58:10.787733shield sshd\[19930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.63
2020-09-06 07:01:41
106.8.166.189 attackspam
2020-08-31 06:59:58 login_virtual_exim authenticator failed for (1bB66s) [106.8.166.189]: 535 Incorrect authentication data (set_id=strueber.stellpflug)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=106.8.166.189
2020-09-06 06:54:31
186.232.45.90 attackspambots
Automatic report - Port Scan Attack
2020-09-06 07:02:23
194.15.36.104 attack
SmallBizIT.US 1 packets to tcp(22)
2020-09-06 06:36:55
164.132.46.14 attack
Sep  6 05:31:18 webhost01 sshd[30627]: Failed password for root from 164.132.46.14 port 55056 ssh2
...
2020-09-06 07:00:55
38.27.134.206 attackspam
Brute force 53 attempts
2020-09-06 06:58:50
92.63.197.71 attackspam
firewall-block, port(s): 3397/tcp
2020-09-06 07:08:30
88.214.57.94 attackspambots
Port scan on 16 port(s): 4449 5061 5062 5070 5071 5072 5080 5090 5782 6000 6060 7171 8081 8088 8089 9000
2020-09-06 06:35:20
88.244.89.20 attack
firewall-block, port(s): 445/tcp
2020-09-06 06:38:06
64.227.0.131 attackbotsspam
Sep  6 00:27:37 tor-proxy-02 sshd\[28827\]: User root from 64.227.0.131 not allowed because not listed in AllowUsers
Sep  6 00:27:48 tor-proxy-02 sshd\[28829\]: Invalid user oracle from 64.227.0.131 port 45424
Sep  6 00:27:58 tor-proxy-02 sshd\[28831\]: User root from 64.227.0.131 not allowed because not listed in AllowUsers
...
2020-09-06 06:40:20
187.87.80.12 attack
1599324603 - 09/05/2020 18:50:03 Host: 187.87.80.12/187.87.80.12 Port: 445 TCP Blocked
2020-09-06 06:39:11
180.76.186.54 attackbots
firewall-block, port(s): 10300/tcp
2020-09-06 06:32:17

最近上报的IP列表

124.79.83.136 77.55.214.138 182.187.139.169 73.124.236.66
36.82.143.0 180.5.150.153 52.28.118.94 37.190.61.115
179.127.155.29 14.161.234.204 115.72.174.54 110.136.245.206
106.13.51.58 186.92.98.127 36.65.35.212 193.112.44.21
118.70.128.17 5.117.225.90 117.1.166.186 210.4.119.59