139.199.6.107 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-03-24T18:26:51.158092abusebot-4.cloudsearch.cf sshd[22574]: Invalid user node from 139.199.6.107 port 39692 2020-03-24T18:26:51.165540abusebot-4.cloudsearch.cf sshd[22574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 2020-03-24T18:26:51.158092abusebot-4.cloudsearch.cf sshd[22574]: Invalid user node from 139.199.6.107 port 39692 2020-03-24T18:26:52.743376abusebot-4.cloudsearch.cf sshd[22574]: Failed password for invalid user node from 139.199.6.107 port 39692 ssh2 2020-03-24T18:31:48.950254abusebot-4.cloudsearch.cf sshd[22831]: Invalid user lizhipeng from 139.199.6.107 port 41383 2020-03-24T18:31:48.958327abusebot-4.cloudsearch.cf sshd[22831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 2020-03-24T18:31:48.950254abusebot-4.cloudsearch.cf sshd[22831]: Invalid user lizhipeng from 139.199.6.107 port 41383 2020-03-24T18:31:50.641584abusebot-4.cloudsearch.cf sshd[22831]: F ...	2020-03-25 02:59:24
attackspambots	5x Failed Password	2020-02-02 22:06:37
attack	Unauthorized connection attempt detected from IP address 139.199.6.107 to port 2220 [J]	2020-01-19 03:16:36
attackspam	Unauthorized connection attempt detected from IP address 139.199.6.107 to port 2220 [J]	2020-01-18 04:31:42
attack	Invalid user nathalia from 139.199.6.107 port 51215	2020-01-03 20:36:33
attackbots	Dec 3 18:49:08 vps647732 sshd[13031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Dec 3 18:49:10 vps647732 sshd[13031]: Failed password for invalid user jsclient from 139.199.6.107 port 59785 ssh2 ...	2019-12-04 02:06:32
attackbots	Dec 2 22:36:38 hanapaa sshd\[19702\]: Invalid user info from 139.199.6.107 Dec 2 22:36:38 hanapaa sshd\[19702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Dec 2 22:36:40 hanapaa sshd\[19702\]: Failed password for invalid user info from 139.199.6.107 port 40930 ssh2 Dec 2 22:43:48 hanapaa sshd\[20456\]: Invalid user uqfex from 139.199.6.107 Dec 2 22:43:48 hanapaa sshd\[20456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107	2019-12-03 16:53:09
attack	Invalid user scaduto from 139.199.6.107 port 52887	2019-11-27 22:10:42
attackspambots	SSH Brute Force, server-1 sshd[31666]: Failed password for invalid user ln from 139.199.6.107 port 34903 ssh2	2019-11-07 08:25:46
attack	Nov 5 15:30:35 server sshd\[9110\]: Failed password for invalid user arash from 139.199.6.107 port 56353 ssh2 Nov 6 10:03:19 server sshd\[1502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 user=root Nov 6 10:03:21 server sshd\[1502\]: Failed password for root from 139.199.6.107 port 47939 ssh2 Nov 6 10:32:34 server sshd\[9669\]: Invalid user cloudadmin from 139.199.6.107 Nov 6 10:32:34 server sshd\[9669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 ...	2019-11-06 20:23:04
attack	2019-10-31T04:26:44.300685abusebot-3.cloudsearch.cf sshd\[3423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 user=root	2019-10-31 13:54:03
attack	Oct 3 10:49:02 auw2 sshd\[29588\]: Invalid user ilie from 139.199.6.107 Oct 3 10:49:02 auw2 sshd\[29588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Oct 3 10:49:04 auw2 sshd\[29588\]: Failed password for invalid user ilie from 139.199.6.107 port 50101 ssh2 Oct 3 10:53:59 auw2 sshd\[30021\]: Invalid user gozone from 139.199.6.107 Oct 3 10:53:59 auw2 sshd\[30021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107	2019-10-04 05:01:21
attackbotsspam	Oct 1 06:55:14 MK-Soft-VM3 sshd[27321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Oct 1 06:55:16 MK-Soft-VM3 sshd[27321]: Failed password for invalid user sftptest from 139.199.6.107 port 54651 ssh2 ...	2019-10-01 13:02:52
attackbots	Sep 27 17:18:46 MK-Soft-VM7 sshd[13709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Sep 27 17:18:48 MK-Soft-VM7 sshd[13709]: Failed password for invalid user password from 139.199.6.107 port 50220 ssh2 ...	2019-09-28 00:16:13
attackspambots	Sep 27 00:47:30 vps691689 sshd[23936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Sep 27 00:47:32 vps691689 sshd[23936]: Failed password for invalid user ay from 139.199.6.107 port 39011 ssh2 Sep 27 00:52:36 vps691689 sshd[24015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 ...	2019-09-27 07:06:21
attackspam	Sep 26 06:27:31 [host] sshd[17880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 user=root Sep 26 06:27:33 [host] sshd[17880]: Failed password for root from 139.199.6.107 port 49600 ssh2 Sep 26 06:30:17 [host] sshd[17895]: Invalid user ew from 139.199.6.107	2019-09-26 12:58:09
attack	Sep 24 07:35:59 xtremcommunity sshd\[429489\]: Invalid user user2 from 139.199.6.107 port 33228 Sep 24 07:35:59 xtremcommunity sshd\[429489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Sep 24 07:36:01 xtremcommunity sshd\[429489\]: Failed password for invalid user user2 from 139.199.6.107 port 33228 ssh2 Sep 24 07:41:30 xtremcommunity sshd\[429674\]: Invalid user ftp from 139.199.6.107 port 51970 Sep 24 07:41:30 xtremcommunity sshd\[429674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 ...	2019-09-24 20:02:59
attack	Sep 4 08:43:12 kapalua sshd\[23869\]: Invalid user smceachern from 139.199.6.107 Sep 4 08:43:12 kapalua sshd\[23869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 Sep 4 08:43:15 kapalua sshd\[23869\]: Failed password for invalid user smceachern from 139.199.6.107 port 56171 ssh2 Sep 4 08:48:23 kapalua sshd\[24348\]: Invalid user surya from 139.199.6.107 Sep 4 08:48:23 kapalua sshd\[24348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107	2019-09-05 02:48:46
attackbots	Aug 19 03:06:52 dedicated sshd[18400]: Invalid user priya from 139.199.6.107 port 55465	2019-08-19 15:10:49
attackspambots	Automated report - ssh fail2ban: Jul 5 11:40:23 authentication failure Jul 5 11:40:25 wrong password, user=user, port=50002, ssh2 Jul 5 12:10:52 authentication failure	2019-07-05 19:10:12
attackspam	2019-07-02T17:18:21.912764cavecanem sshd[21351]: Invalid user gitgit123 from 139.199.6.107 port 46447 2019-07-02T17:18:21.915430cavecanem sshd[21351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 2019-07-02T17:18:21.912764cavecanem sshd[21351]: Invalid user gitgit123 from 139.199.6.107 port 46447 2019-07-02T17:18:23.916689cavecanem sshd[21351]: Failed password for invalid user gitgit123 from 139.199.6.107 port 46447 ssh2 2019-07-02T17:21:00.754484cavecanem sshd[21986]: Invalid user password123 from 139.199.6.107 port 56558 2019-07-02T17:21:00.757472cavecanem sshd[21986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.6.107 2019-07-02T17:21:00.754484cavecanem sshd[21986]: Invalid user password123 from 139.199.6.107 port 56558 2019-07-02T17:21:02.918913cavecanem sshd[21986]: Failed password for invalid user password123 from 139.199.6.107 port 56558 ssh2 2019-07-02T17:23:34.967752cave ...	2019-07-02 23:31:32
attackspambots	Triggered by Fail2Ban	2019-07-01 15:29:02

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.62.142	attack	Oct 6 23:29:19 server sshd[8577]: Failed password for root from 139.199.62.142 port 34656 ssh2 Oct 6 23:31:54 server sshd[10037]: Failed password for root from 139.199.62.142 port 35938 ssh2 Oct 6 23:34:27 server sshd[11498]: Failed password for root from 139.199.62.142 port 37216 ssh2	2020-10-07 06:50:21
139.199.62.142	attackbotsspam	SSH login attempts.	2020-10-06 23:09:11
139.199.62.142	attackspam	Oct 5 07:17:09 ovpn sshd[31807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.62.142 user=r.r Oct 5 07:17:11 ovpn sshd[31807]: Failed password for r.r from 139.199.62.142 port 47194 ssh2 Oct 5 07:17:12 ovpn sshd[31807]: Received disconnect from 139.199.62.142 port 47194:11: Bye Bye [preauth] Oct 5 07:17:12 ovpn sshd[31807]: Disconnected from 139.199.62.142 port 47194 [preauth] Oct 5 07:29:47 ovpn sshd[2406]: Connection closed by 139.199.62.142 port 48164 [preauth] Oct 5 07:33:51 ovpn sshd[3496]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 139.199.62.142 port 34662 Oct 5 07:37:58 ovpn sshd[4519]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 139.199.62.142 port 49380 Oct 5 07:42:07 ovpn sshd[5550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.62.142 user=r.r Oct 5 07:42:10 ovpn sshd[5550]: Failed password for r.r from 139.1........ ------------------------------	2020-10-06 14:57:05
139.199.69.199	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 01:52:20
139.199.69.199	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-15 14:58:25
139.199.65.226	attack	Unauthorized connection attempt detected from IP address 139.199.65.226 to port 80	2020-01-01 04:57:00
139.199.69.199	attack	firewall-block, port(s): 1433/tcp	2019-12-26 03:42:52
139.199.66.206	attackbotsspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-09 23:18:04
139.199.66.206	attack	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-09 14:51:57
139.199.66.206	attackbotsspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-09 07:16:15
139.199.66.206	attack	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-09 01:29:13
139.199.66.206	attackbotsspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-08 15:17:54
139.199.66.206	attack	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-08 09:21:52
139.199.66.206	attackspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-07 15:42:09
139.199.66.206	attackspambots	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-07 13:26:58

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.6.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46635
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.6.107.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 11:34:40 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 107.6.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 107.6.199.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
104.131.248.46	attackspambots	US United States serverxcz15443.cibercloud.com.br Failures: 15 cpanel	2019-08-25 15:26:55
103.140.83.18	attackbotsspam	Aug 24 18:33:08 php1 sshd\[32615\]: Invalid user tip from 103.140.83.18 Aug 24 18:33:08 php1 sshd\[32615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.83.18 Aug 24 18:33:10 php1 sshd\[32615\]: Failed password for invalid user tip from 103.140.83.18 port 54924 ssh2 Aug 24 18:38:19 php1 sshd\[691\]: Invalid user localhost from 103.140.83.18 Aug 24 18:38:19 php1 sshd\[691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.83.18	2019-08-25 15:38:29
123.31.31.12	attack	fail2ban honeypot	2019-08-25 16:17:36
106.51.0.40	attackspam	Aug 25 06:02:27 XXX sshd[8133]: Invalid user sn from 106.51.0.40 port 58136	2019-08-25 15:47:25
120.132.109.215	attackbots	Invalid user amir from 120.132.109.215 port 55460	2019-08-25 15:24:13
101.231.86.36	attackbots	Aug 25 11:05:00 srv-4 sshd\[17978\]: Invalid user admosfer from 101.231.86.36 Aug 25 11:05:00 srv-4 sshd\[17978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.86.36 Aug 25 11:05:03 srv-4 sshd\[17978\]: Failed password for invalid user admosfer from 101.231.86.36 port 40858 ssh2 ...	2019-08-25 16:09:30
165.22.86.38	attackspam	SSH/22 MH Probe, BF, Hack -	2019-08-25 15:57:33
91.121.103.175	attackspambots	Aug 25 01:53:34 dedicated sshd[5118]: Invalid user carmen from 91.121.103.175 port 46344	2019-08-25 15:39:41
143.255.105.109	attackspam	Invalid user troqueles from 143.255.105.109 port 36266	2019-08-25 15:34:14
121.168.248.218	attackspambots	Invalid user debian from 121.168.248.218 port 42472	2019-08-25 16:03:40
188.165.210.176	attackbots	Aug 25 08:12:24 *** sshd[11692]: Invalid user yc from 188.165.210.176	2019-08-25 16:23:33
118.68.203.39	attackbotsspam	2019-08-25T09:50:06.844865 sshd[14934]: Invalid user ftpuser from 118.68.203.39 port 33752 2019-08-25T09:50:07.717347 sshd[14934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.68.203.39 2019-08-25T09:50:06.844865 sshd[14934]: Invalid user ftpuser from 118.68.203.39 port 33752 2019-08-25T09:50:09.595875 sshd[14934]: Failed password for invalid user ftpuser from 118.68.203.39 port 33752 ssh2 2019-08-25T10:08:19.386357 sshd[15176]: Invalid user test from 118.68.203.39 port 15305 ...	2019-08-25 16:18:11
14.161.2.164	attack	Unauthorized connection attempt from IP address 14.161.2.164 on Port 445(SMB)	2019-08-25 15:43:44
175.140.67.189	attackbots	Automatic report - Port Scan Attack	2019-08-25 16:14:12
51.38.129.20	attackspambots	Invalid user usuario from 51.38.129.20 port 40784	2019-08-25 15:40:51

最近上报的IP列表

185.156.177.22	107.170.202.141	182.254.145.29	109.97.49.130
128.199.209.6	106.13.4.150	128.199.147.106	60.11.113.164
222.128.93.67	118.126.104.151	198.27.69.219	14.145.38.196
183.203.215.34	89.35.39.78	203.186.85.210	107.170.238.245
184.105.139.108	149.129.99.116	74.82.47.62	37.49.225.236