139.199.88.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-01-29T19:46:34.2977691495-001 sshd[47672]: Invalid user manikandan from 139.199.88.93 port 47620 2020-01-29T19:46:34.3016141495-001 sshd[47672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 2020-01-29T19:46:34.2977691495-001 sshd[47672]: Invalid user manikandan from 139.199.88.93 port 47620 2020-01-29T19:46:36.4190661495-001 sshd[47672]: Failed password for invalid user manikandan from 139.199.88.93 port 47620 ssh2 2020-01-29T19:59:07.6785351495-001 sshd[48079]: Invalid user acarya from 139.199.88.93 port 50714 2020-01-29T19:59:07.6819121495-001 sshd[48079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 2020-01-29T19:59:07.6785351495-001 sshd[48079]: Invalid user acarya from 139.199.88.93 port 50714 2020-01-29T19:59:09.8394721495-001 sshd[48079]: Failed password for invalid user acarya from 139.199.88.93 port 50714 ssh2 2020-01-29T20:02:30.2369191495-001 sshd[48224]: In ...	2020-01-30 09:45:17
attackbots	Unauthorized connection attempt detected from IP address 139.199.88.93 to port 2220 [J]	2020-01-21 05:38:27
attackbots	Unauthorized connection attempt detected from IP address 139.199.88.93 to port 2220 [J]	2020-01-07 13:46:00
attackbotsspam	Dec 18 10:53:12 linuxvps sshd\[2743\]: Invalid user raspberry from 139.199.88.93 Dec 18 10:53:12 linuxvps sshd\[2743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Dec 18 10:53:14 linuxvps sshd\[2743\]: Failed password for invalid user raspberry from 139.199.88.93 port 35070 ssh2 Dec 18 10:59:09 linuxvps sshd\[6925\]: Invalid user marjorie from 139.199.88.93 Dec 18 10:59:09 linuxvps sshd\[6925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93	2019-12-19 05:25:43
attackspam	ssh intrusion attempt	2019-12-18 18:55:59
attackbotsspam	Oct 28 10:19:40 vtv3 sshd[30856]: Invalid user quixote from 139.199.88.93 port 43132 Oct 28 10:19:40 vtv3 sshd[30856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 28 10:19:43 vtv3 sshd[30856]: Failed password for invalid user quixote from 139.199.88.93 port 43132 ssh2 Oct 28 10:34:21 vtv3 sshd[6033]: Invalid user Seneca from 139.199.88.93 port 43372 Oct 28 10:34:21 vtv3 sshd[6033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 28 10:34:22 vtv3 sshd[6033]: Failed password for invalid user Seneca from 139.199.88.93 port 43372 ssh2 Oct 28 10:39:17 vtv3 sshd[8790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 user=root Oct 28 10:39:20 vtv3 sshd[8790]: Failed password for root from 139.199.88.93 port 52852 ssh2 Oct 28 10:54:04 vtv3 sshd[16330]: Invalid user postgres from 139.199.88.93 port 53050 Oct 28 10:54:04 vtv3 sshd[16330]: pam_unix	2019-12-08 16:09:34
attackspam	fail2ban	2019-12-06 22:07:48
attackbots	2019-12-06T05:47:34.291769abusebot-2.cloudsearch.cf sshd\[2135\]: Invalid user news from 139.199.88.93 port 44320	2019-12-06 14:17:38
attackspambots	Dec 2 09:47:20 lnxded64 sshd[9642]: Failed password for mysql from 139.199.88.93 port 43374 ssh2 Dec 2 09:47:20 lnxded64 sshd[9642]: Failed password for mysql from 139.199.88.93 port 43374 ssh2	2019-12-02 17:06:32
attack	Nov 23 07:57:53 vps691689 sshd[11433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Nov 23 07:57:55 vps691689 sshd[11433]: Failed password for invalid user pcap from 139.199.88.93 port 38298 ssh2 ...	2019-11-23 15:15:43
attackbotsspam	Invalid user kindingstad from 139.199.88.93 port 48608	2019-11-16 21:51:53
attack	SSH Brute Force, server-1 sshd[32715]: Failed password for root from 139.199.88.93 port 59956 ssh2	2019-11-08 07:01:58
attackbotsspam	SSH invalid-user multiple login attempts	2019-10-25 21:52:58
attackspam	SSH invalid-user multiple login try	2019-10-21 18:03:08
attack	Oct 12 18:01:41 microserver sshd[47731]: Invalid user 321 from 139.199.88.93 port 44264 Oct 12 18:01:41 microserver sshd[47731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:01:42 microserver sshd[47731]: Failed password for invalid user 321 from 139.199.88.93 port 44264 ssh2 Oct 12 18:07:46 microserver sshd[48492]: Invalid user Genius@123 from 139.199.88.93 port 54616 Oct 12 18:07:46 microserver sshd[48492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:20:28 microserver sshd[50324]: Invalid user P4rol4@1 from 139.199.88.93 port 47128 Oct 12 18:20:28 microserver sshd[50324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:20:30 microserver sshd[50324]: Failed password for invalid user P4rol4@1 from 139.199.88.93 port 47128 ssh2 Oct 12 18:26:33 microserver sshd[51095]: Invalid user Premier@123 from 139.199.88.93 por	2019-10-13 04:47:27
attackbots	Oct 11 06:45:07 www sshd\[24831\]: Failed password for root from 139.199.88.93 port 57384 ssh2Oct 11 06:49:26 www sshd\[24884\]: Failed password for root from 139.199.88.93 port 35984 ssh2Oct 11 06:53:38 www sshd\[24947\]: Failed password for root from 139.199.88.93 port 42812 ssh2 ...	2019-10-11 15:31:45
attack	$f2bV_matches	2019-10-02 06:04:52
attackspambots	Sep 26 14:34:25 v22019058497090703 sshd[15497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Sep 26 14:34:26 v22019058497090703 sshd[15497]: Failed password for invalid user guym from 139.199.88.93 port 54970 ssh2 Sep 26 14:40:53 v22019058497090703 sshd[16163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 ...	2019-09-26 21:36:59
attackbots	Sep 12 05:45:26 hiderm sshd\[15446\]: Invalid user teste from 139.199.88.93 Sep 12 05:45:26 hiderm sshd\[15446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Sep 12 05:45:29 hiderm sshd\[15446\]: Failed password for invalid user teste from 139.199.88.93 port 37002 ssh2 Sep 12 05:55:13 hiderm sshd\[16302\]: Invalid user teamspeak from 139.199.88.93 Sep 12 05:55:13 hiderm sshd\[16302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93	2019-09-13 07:42:15
attackbotsspam	Sep 10 19:02:52 ny01 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Sep 10 19:02:54 ny01 sshd[14868]: Failed password for invalid user sammy from 139.199.88.93 port 51604 ssh2 Sep 10 19:09:43 ny01 sshd[16420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93	2019-09-11 07:15:10
attack	Sep 4 02:46:05 rpi sshd[19632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Sep 4 02:46:07 rpi sshd[19632]: Failed password for invalid user mweb from 139.199.88.93 port 43180 ssh2	2019-09-04 11:10:16
attackbots	Aug 22 00:10:11 php2 sshd\[13417\]: Invalid user rp from 139.199.88.93 Aug 22 00:10:11 php2 sshd\[13417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Aug 22 00:10:13 php2 sshd\[13417\]: Failed password for invalid user rp from 139.199.88.93 port 55242 ssh2 Aug 22 00:14:58 php2 sshd\[13905\]: Invalid user kyleh from 139.199.88.93 Aug 22 00:14:58 php2 sshd\[13905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93	2019-08-22 20:28:07
attackspam	$f2bV_matches_ltvn	2019-08-12 17:14:10
attackspam	Aug 12 03:48:31 OPSO sshd\[31639\]: Invalid user versuch from 139.199.88.93 port 59766 Aug 12 03:48:31 OPSO sshd\[31639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Aug 12 03:48:34 OPSO sshd\[31639\]: Failed password for invalid user versuch from 139.199.88.93 port 59766 ssh2 Aug 12 03:53:25 OPSO sshd\[32150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 user=root Aug 12 03:53:28 OPSO sshd\[32150\]: Failed password for root from 139.199.88.93 port 51216 ssh2	2019-08-12 10:07:32

相同子网IP讨论:

IP	类型	评论内容	时间
139.199.88.239	attackbotsspam	Port scan detected on ports: 65530[TCP], 65530[TCP], 65530[TCP]	2019-10-07 06:28:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.88.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49742
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.88.93.			IN	A

;; AUTHORITY SECTION:
.			119	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 12 10:07:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 93.88.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 93.88.199.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.98.215.178	attackbots	Jan 10 08:27:58 meumeu sshd[21142]: Failed password for root from 14.98.215.178 port 38222 ssh2 Jan 10 08:32:12 meumeu sshd[21750]: Failed password for root from 14.98.215.178 port 54576 ssh2 ...	2020-01-10 19:21:22
201.215.126.147	attackbots	Jan 10 07:12:44 grey postfix/smtpd\[16706\]: NOQUEUE: reject: RCPT from pc-147-126-215-201.cm.vtr.net\[201.215.126.147\]: 554 5.7.1 Service unavailable\; Client host \[201.215.126.147\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?201.215.126.147\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 19:18:14
120.25.167.56	attackspambots	1433/tcp 1433/tcp 1433/tcp... [2019-12-27/2020-01-10]4pkt,1pt.(tcp)	2020-01-10 19:12:18
93.152.159.11	attackspambots	Jan 10 10:46:50 odroid64 sshd\[20160\]: Invalid user zf from 93.152.159.11 Jan 10 10:46:50 odroid64 sshd\[20160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11 ...	2020-01-10 19:31:34
51.38.112.45	attackspambots	B: f2b ssh aggressive 3x	2020-01-10 19:39:57
186.18.210.119	attackbots	2019-07-08 11:39:03 1hkQ6w-00036c-Hc SMTP connection from $cpe-186-18-210-119.telecentro-reversos.com.ar$ \[186.18.210.119\]:12868 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 11:39:10 1hkQ73-00036s-9n SMTP connection from $cpe-186-18-210-119.telecentro-reversos.com.ar$ \[186.18.210.119\]:12939 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 11:39:15 1hkQ78-000374-VU SMTP connection from $cpe-186-18-210-119.telecentro-reversos.com.ar$ \[186.18.210.119\]:12978 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-10 19:30:44
171.224.177.141	attackspambots	Unauthorized connection attempt detected from IP address 171.224.177.141 to port 445	2020-01-10 19:22:15
95.9.61.234	attackbotsspam	37215/tcp 23/tcp 23/tcp [2019-12-22/2020-01-10]3pkt	2020-01-10 19:41:40
79.37.95.229	attackbots	5555/tcp 5555/tcp 5555/tcp [2019-11-16/2020-01-10]3pkt	2020-01-10 19:34:57
219.139.128.59	attackspambots	" "	2020-01-10 19:29:09
185.175.93.14	attackbotsspam	01/10/2020-12:23:43.854919 185.175.93.14 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-10 19:35:49
24.221.19.57	attack	Jan 10 09:54:58 server sshd\[1517\]: Invalid user pi from 24.221.19.57 Jan 10 09:54:59 server sshd\[1523\]: Invalid user pi from 24.221.19.57 Jan 10 09:54:59 server sshd\[1517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-24-221-19-57.atlnga.spcsdns.net Jan 10 09:54:59 server sshd\[1523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-24-221-19-57.atlnga.spcsdns.net Jan 10 09:55:01 server sshd\[1523\]: Failed password for invalid user pi from 24.221.19.57 port 58824 ssh2 ...	2020-01-10 19:20:57
106.13.122.102	attackspambots	Jan 10 05:42:02 legacy sshd[22820]: Failed password for root from 106.13.122.102 port 45924 ssh2 Jan 10 05:45:21 legacy sshd[22961]: Failed password for root from 106.13.122.102 port 43598 ssh2 ...	2020-01-10 19:22:04
137.59.161.22	attack	445/tcp 445/tcp [2019-11-26/2020-01-10]2pkt	2020-01-10 19:31:13
115.159.147.239	attack	Jan 10 11:29:31 lnxweb61 sshd[13760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.147.239 Jan 10 11:29:33 lnxweb61 sshd[13760]: Failed password for invalid user user from 115.159.147.239 port 50474 ssh2 Jan 10 11:32:18 lnxweb61 sshd[17075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.147.239	2020-01-10 19:45:55

最近上报的IP列表

70.12.250.49	5.236.249.94	252.226.48.166	84.254.10.40
13.65.45.109	91.206.15.3	198.71.230.50	42.112.202.27
94.233.48.234	186.64.232.51	151.234.116.168	27.254.86.20
148.70.211.244	113.172.244.35	50.62.176.94	185.97.121.83
182.74.57.61	78.187.230.26	61.227.190.35	46.98.234.37