必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspambots
Feb 23 03:22:13 motanud sshd\[30052\]: Invalid user andrew from 139.199.34.112 port 33302
Feb 23 03:22:13 motanud sshd\[30052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.112
Feb 23 03:22:15 motanud sshd\[30052\]: Failed password for invalid user andrew from 139.199.34.112 port 33302 ssh2
2019-08-04 14:42:56
attackspambots
SSH-BruteForce
2019-07-31 14:25:08
attack
Invalid user vsftpd from 139.199.34.112 port 55342
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.112
Failed password for invalid user vsftpd from 139.199.34.112 port 55342 ssh2
Invalid user anna from 139.199.34.112 port 36992
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.112
2019-06-30 12:46:36
相同子网IP讨论:
IP 类型 评论内容 时间
139.199.34.54 attackbots
May  2 09:56:18 santamaria sshd\[22903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54  user=root
May  2 09:56:20 santamaria sshd\[22903\]: Failed password for root from 139.199.34.54 port 26637 ssh2
May  2 10:01:24 santamaria sshd\[22997\]: Invalid user vel from 139.199.34.54
May  2 10:01:24 santamaria sshd\[22997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
...
2020-05-02 16:24:21
139.199.34.54 attackspam
Apr 30 16:04:41 webhost01 sshd[21041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
Apr 30 16:04:43 webhost01 sshd[21041]: Failed password for invalid user ratna from 139.199.34.54 port 30154 ssh2
...
2020-04-30 17:33:19
139.199.34.54 attackbotsspam
Apr 27 06:03:20 h2646465 sshd[789]: Invalid user gene from 139.199.34.54
Apr 27 06:03:20 h2646465 sshd[789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
Apr 27 06:03:20 h2646465 sshd[789]: Invalid user gene from 139.199.34.54
Apr 27 06:03:22 h2646465 sshd[789]: Failed password for invalid user gene from 139.199.34.54 port 64556 ssh2
Apr 27 06:14:52 h2646465 sshd[2284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54  user=root
Apr 27 06:14:54 h2646465 sshd[2284]: Failed password for root from 139.199.34.54 port 45286 ssh2
Apr 27 06:17:48 h2646465 sshd[2869]: Invalid user ubuntu from 139.199.34.54
Apr 27 06:17:48 h2646465 sshd[2869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
Apr 27 06:17:48 h2646465 sshd[2869]: Invalid user ubuntu from 139.199.34.54
Apr 27 06:17:51 h2646465 sshd[2869]: Failed password for invalid user ubuntu from 139.199.34.
2020-04-27 12:48:11
139.199.34.54 attack
Apr 18 13:25:30 lanister sshd[31799]: Failed password for invalid user ubuntu from 139.199.34.54 port 11170 ssh2
Apr 18 13:42:23 lanister sshd[32150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54  user=postgres
Apr 18 13:42:25 lanister sshd[32150]: Failed password for postgres from 139.199.34.54 port 16947 ssh2
Apr 18 13:49:02 lanister sshd[32260]: Invalid user xv from 139.199.34.54
2020-04-19 02:03:48
139.199.34.54 attack
Apr 16 14:09:38 eventyay sshd[3617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
Apr 16 14:09:41 eventyay sshd[3617]: Failed password for invalid user demo from 139.199.34.54 port 39839 ssh2
Apr 16 14:12:40 eventyay sshd[3726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.54
...
2020-04-16 23:54:12
139.199.34.54 attackspam
leo_www
2020-04-07 13:30:08
139.199.34.54 attackbots
Automatic report - SSH Brute-Force Attack
2020-03-12 03:37:11
139.199.34.54 attackbotsspam
Invalid user cpaneleximfilter from 139.199.34.54 port 11931
2020-03-11 17:17:46
139.199.34.54 attackspambots
SSH bruteforce (Triggered fail2ban)
2020-03-08 20:26:30
139.199.34.54 attack
suspicious action Wed, 26 Feb 2020 15:32:50 -0300
2020-02-27 03:30:23
139.199.34.54 attackspambots
Invalid user ivan from 139.199.34.54 port 38183
2020-02-18 16:33:02
139.199.34.191 attack
[SatNov1615:51:48.0385302019][:error][pid2258:tid140571762964224][client139.199.34.191:24201][client139.199.34.191]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\|\?=\?f\(\?:open\|write\)\?\\\\\\\\\(\|\\\\\\\\b\(\?:passthru\|serialize\|php_uname\|phpinfo\|shell_exec\|preg_\\\\\\\\w \|mysql_query\|exec\|eval\|base64_decode\|decode_base64\|rot13\|base64_url_decode\|gz\(\?:inflate\|decode\|uncompress\)\|strrev\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"81.17.25.237"][uri"/App.php"][unique_id"XdANBES@OZ7eHP60T7GfSAAAANE"][SatNov1615:52:11.3014982019][:error][pid2171:tid140571855283968][client139.199.34.191:28165][client139.199.34.191]ModSecurity:Accessdeniedwithcode403\(phase2\).Patt
2019-11-16 23:31:16
139.199.34.191 attackspam
ECShop Remote Code Execution Vulnerability, PTR: PTR record not found
2019-09-08 19:53:02
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.34.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31303
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.34.112.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040903 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 10 10:28:04 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:
Host 112.34.199.139.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 112.34.199.139.in-addr.arpa: NXDOMAIN

相关IP信息:
最新评论:
IP 类型 评论内容 时间
88.250.25.59 attackspam
Unauthorized connection attempt detected from IP address 88.250.25.59 to port 23
2020-01-05 07:14:56
49.51.13.14 attack
Unauthorized connection attempt detected from IP address 49.51.13.14 to port 8880 [J]
2020-01-05 06:55:31
37.48.121.199 attackspambots
Unauthorized connection attempt detected from IP address 37.48.121.199 to port 6379 [J]
2020-01-05 06:58:28
179.42.185.229 attackspam
Telnet/23 MH Probe, BF, Hack -
2020-01-05 07:07:15
119.196.219.149 attackspam
Unauthorized connection attempt detected from IP address 119.196.219.149 to port 5555
2020-01-05 07:11:01
80.174.192.32 attackbotsspam
Unauthorized connection attempt detected from IP address 80.174.192.32 to port 23
2020-01-05 06:51:11
143.255.243.154 attack
Unauthorized connection attempt detected from IP address 143.255.243.154 to port 8080
2020-01-05 06:43:49
177.206.236.88 attack
Unauthorized connection attempt detected from IP address 177.206.236.88 to port 23
2020-01-05 07:08:05
85.98.31.250 attack
Unauthorized connection attempt detected from IP address 85.98.31.250 to port 8080
2020-01-05 06:49:10
107.200.127.153 attackbotsspam
Unauthorized connection attempt detected from IP address 107.200.127.153 to port 22 [J]
2020-01-05 07:11:14
91.4.152.168 attack
Unauthorized connection attempt detected from IP address 91.4.152.168 to port 23 [J]
2020-01-05 07:14:03
59.16.221.94 attack
Unauthorized connection attempt detected from IP address 59.16.221.94 to port 83 [J]
2020-01-05 06:55:00
187.87.17.89 attackspambots
Unauthorized connection attempt detected from IP address 187.87.17.89 to port 23 [J]
2020-01-05 07:04:42
95.38.24.2 attack
Unauthorized connection attempt detected from IP address 95.38.24.2 to port 23
2020-01-05 06:48:13
104.192.1.59 attack
Unauthorized connection attempt detected from IP address 104.192.1.59 to port 3389
2020-01-05 06:46:27

最近上报的IP列表

40.92.67.102 116.196.113.25 123.162.174.251 121.128.205.185
37.9.169.7 27.147.131.130 8.26.94.190 185.29.25.198
198.211.98.13 212.114.58.34 195.158.22.86 5.196.243.201
117.34.25.155 23.95.81.236 13.92.226.173 2.244.78.12
123.206.56.45 59.173.55.163 182.73.47.154 121.7.127.92