139.155.1.62 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Tried sshing with brute force.	2020-10-06 06:47:19
attackbots	Oct 5 09:36:25 ws26vmsma01 sshd[85964]: Failed password for root from 139.155.1.62 port 51434 ssh2 ...	2020-10-05 22:56:42
attackbots	fail2ban detected bruce force on ssh iptables	2020-10-05 14:55:39
attackspambots	Aug 22 03:53:44 firewall sshd[18471]: Invalid user konan from 139.155.1.62 Aug 22 03:53:45 firewall sshd[18471]: Failed password for invalid user konan from 139.155.1.62 port 53474 ssh2 Aug 22 03:56:12 firewall sshd[18609]: Invalid user dll from 139.155.1.62 ...	2020-08-22 19:15:26
attackspambots	SSH brute-force attempt	2020-08-13 07:41:48
attackbotsspam	Jul 10 14:02:47 onepixel sshd[2125058]: Invalid user dywang from 139.155.1.62 port 53354 Jul 10 14:02:47 onepixel sshd[2125058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.62 Jul 10 14:02:47 onepixel sshd[2125058]: Invalid user dywang from 139.155.1.62 port 53354 Jul 10 14:02:49 onepixel sshd[2125058]: Failed password for invalid user dywang from 139.155.1.62 port 53354 ssh2 Jul 10 14:04:57 onepixel sshd[2126214]: Invalid user marisol from 139.155.1.62 port 49498	2020-07-10 22:58:18
attackspam	Jun 29 21:44:23 mail sshd[3308]: Failed password for invalid user amir from 139.155.1.62 port 57416 ssh2 ...	2020-06-30 07:58:10
attackspam	Invalid user allan from 139.155.1.62 port 55934	2020-06-21 00:44:47
attackbotsspam	2020-06-13T19:16:32.546980billing sshd[18904]: Invalid user admin from 139.155.1.62 port 36950 2020-06-13T19:16:34.612139billing sshd[18904]: Failed password for invalid user admin from 139.155.1.62 port 36950 ssh2 2020-06-13T19:26:23.302332billing sshd[6789]: Invalid user zhoumin from 139.155.1.62 port 37928 ...	2020-06-13 22:57:53
attackbots	Jun 11 20:57:53 mockhub sshd[29111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.62 Jun 11 20:57:55 mockhub sshd[29111]: Failed password for invalid user admin from 139.155.1.62 port 38102 ssh2 ...	2020-06-12 13:15:30
attackspambots	(sshd) Failed SSH login from 139.155.1.62 (CN/China/-): 5 in the last 3600 secs	2020-06-07 16:55:24
attack	May 25 07:18:38 sshd\[5007\]: User root from 139.155.1.62 not allowed because not listed in AllowUsersMay 25 07:18:40 sshd\[5007\]: Failed password for invalid user root from 139.155.1.62 port 44300 ssh2 ...	2020-05-25 17:03:53
attack	May 15 23:43:00 firewall sshd[31419]: Invalid user simon from 139.155.1.62 May 15 23:43:02 firewall sshd[31419]: Failed password for invalid user simon from 139.155.1.62 port 48898 ssh2 May 15 23:47:52 firewall sshd[31527]: Invalid user user11 from 139.155.1.62 ...	2020-05-16 14:55:23

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.13.59	attack	sshd: Failed password for invalid user .... from 139.155.13.59 port 60208 ssh2 (8 attempts)	2020-10-13 17:34:17
139.155.13.21	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-06 07:33:29
139.155.13.21	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-05 23:49:56
139.155.13.21	attackspambots	Oct 5 09:18:04 ip106 sshd[15735]: Failed password for root from 139.155.13.21 port 43686 ssh2 ...	2020-10-05 15:50:01
139.155.1.137	attackspam	Sep 27 22:58:36 roki-contabo sshd\[2611\]: Invalid user test from 139.155.1.137 Sep 27 22:58:37 roki-contabo sshd\[2611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.137 Sep 27 22:58:39 roki-contabo sshd\[2611\]: Failed password for invalid user test from 139.155.1.137 port 52740 ssh2 Sep 27 23:10:15 roki-contabo sshd\[2765\]: Invalid user tom from 139.155.1.137 Sep 27 23:10:15 roki-contabo sshd\[2765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.137 ...	2020-10-05 06:07:50
139.155.1.137	attack	Brute-force attempt banned	2020-10-04 22:06:28
139.155.1.137	attackbotsspam	5x Failed Password	2020-10-04 13:53:08
139.155.17.13	attackspambots	2020-09-28 UTC: (32x) - albert,ali,caixa,dev,ips,manager,mysql,nproc(2x),oracle,root(12x),steve,sun,sysadmin,teamspeak,test,testuser,user2,usuario1,yang,zope	2020-09-29 19:34:05
139.155.13.81	attack	Invalid user administrator from 139.155.13.81 port 43454	2020-09-27 07:18:28
139.155.13.81	attack	Sep 26 17:09:11 ns382633 sshd\[29250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root Sep 26 17:09:13 ns382633 sshd\[29250\]: Failed password for root from 139.155.13.81 port 53970 ssh2 Sep 26 17:14:30 ns382633 sshd\[30199\]: Invalid user cisco from 139.155.13.81 port 51202 Sep 26 17:14:30 ns382633 sshd\[30199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 Sep 26 17:14:32 ns382633 sshd\[30199\]: Failed password for invalid user cisco from 139.155.13.81 port 51202 ssh2	2020-09-26 23:47:41
139.155.17.76	attackbotsspam	Sep 16 08:56:25 itv-usvr-01 sshd[28095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.76 user=root Sep 16 08:56:26 itv-usvr-01 sshd[28095]: Failed password for root from 139.155.17.76 port 53894 ssh2 Sep 16 08:58:10 itv-usvr-01 sshd[28179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.76 user=root Sep 16 08:58:12 itv-usvr-01 sshd[28179]: Failed password for root from 139.155.17.76 port 43986 ssh2 Sep 16 08:59:25 itv-usvr-01 sshd[28212]: Invalid user medical from 139.155.17.76	2020-09-16 12:13:07
139.155.17.76	attackspambots	Sep 15 19:15:20 master sshd[23060]: Failed password for root from 139.155.17.76 port 41072 ssh2 Sep 15 19:20:16 master sshd[23099]: Failed password for invalid user tortoisesvn from 139.155.17.76 port 56516 ssh2 Sep 15 19:23:05 master sshd[23112]: Failed password for root from 139.155.17.76 port 55714 ssh2 Sep 15 19:25:36 master sshd[23126]: Failed password for root from 139.155.17.76 port 54902 ssh2 Sep 15 19:28:12 master sshd[23140]: Failed password for root from 139.155.17.76 port 54090 ssh2 Sep 15 19:36:13 master sshd[23212]: Failed password for root from 139.155.17.76 port 51656 ssh2 Sep 15 19:38:48 master sshd[23236]: Failed password for invalid user greta from 139.155.17.76 port 50852 ssh2 Sep 15 19:43:57 master sshd[23269]: Failed password for invalid user macallister from 139.155.17.76 port 49246 ssh2 Sep 15 19:46:30 master sshd[23302]: Failed password for root from 139.155.17.76 port 48440 ssh2 Sep 15 19:49:03 master sshd[23325]: Failed password for root from 139.155.17.76 port 47634 ssh2	2020-09-16 04:02:12
139.155.11.173	attackbotsspam	Sep 13 17:16:19 prox sshd[24092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.11.173 Sep 13 17:16:21 prox sshd[24092]: Failed password for invalid user bot from 139.155.11.173 port 45050 ssh2	2020-09-13 23:22:49
139.155.13.81	attackspam	Invalid user user from 139.155.13.81 port 33844	2020-09-03 01:54:05
139.155.13.81	attack	$f2bV_matches	2020-09-02 17:22:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.1.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56445
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.1.62.			IN	A

;; AUTHORITY SECTION:
.			468	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051600 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 16 14:55:18 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 62.1.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 62.1.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.240.115.146	attack	Dec 19 17:02:17 loxhost sshd\[14713\]: Invalid user dkwidc2010 from 58.240.115.146 port 2337 Dec 19 17:02:17 loxhost sshd\[14713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.240.115.146 Dec 19 17:02:19 loxhost sshd\[14713\]: Failed password for invalid user dkwidc2010 from 58.240.115.146 port 2337 ssh2 Dec 19 17:09:30 loxhost sshd\[15054\]: Invalid user Diamond@123 from 58.240.115.146 port 2338 Dec 19 17:09:30 loxhost sshd\[15054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.240.115.146 ...	2019-12-20 00:33:14
194.182.86.126	attackbots	Brute-force attempt banned	2019-12-20 00:54:32
120.197.50.154	attackbots	Dec 19 11:10:30 linuxvps sshd\[15859\]: Invalid user combi from 120.197.50.154 Dec 19 11:10:30 linuxvps sshd\[15859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.197.50.154 Dec 19 11:10:32 linuxvps sshd\[15859\]: Failed password for invalid user combi from 120.197.50.154 port 37719 ssh2 Dec 19 11:18:16 linuxvps sshd\[20942\]: Invalid user vcsa from 120.197.50.154 Dec 19 11:18:16 linuxvps sshd\[20942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.197.50.154	2019-12-20 00:22:29
103.93.90.234	attackbots	Unauthorized connection attempt detected from IP address 103.93.90.234 to port 445	2019-12-20 00:29:20
46.105.112.107	attackbots	Dec 19 15:41:13 124388 sshd[24180]: Invalid user admin from 46.105.112.107 port 33592 Dec 19 15:41:13 124388 sshd[24180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.112.107 Dec 19 15:41:13 124388 sshd[24180]: Invalid user admin from 46.105.112.107 port 33592 Dec 19 15:41:15 124388 sshd[24180]: Failed password for invalid user admin from 46.105.112.107 port 33592 ssh2 Dec 19 15:46:09 124388 sshd[24243]: Invalid user floyd from 46.105.112.107 port 39706	2019-12-20 00:27:43
54.39.23.82	attackbotsspam	Dec 19 17:07:10 vpn01 sshd[25028]: Failed password for root from 54.39.23.82 port 35992 ssh2 Dec 19 17:07:23 vpn01 sshd[25028]: error: maximum authentication attempts exceeded for root from 54.39.23.82 port 35992 ssh2 [preauth] ...	2019-12-20 00:25:45
138.197.162.32	attack	$f2bV_matches	2019-12-20 00:59:36
144.217.42.212	attack	$f2bV_matches	2019-12-20 00:39:24
188.166.150.17	attack	Dec 19 23:43:17 webhost01 sshd[18822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.150.17 Dec 19 23:43:19 webhost01 sshd[18822]: Failed password for invalid user georganne from 188.166.150.17 port 51903 ssh2 ...	2019-12-20 00:59:06
185.232.67.5	attackspam	--- report --- Dec 19 12:34:53 sshd: Connection from 185.232.67.5 port 57911 Dec 19 12:35:04 sshd: Invalid user admin from 185.232.67.5 Dec 19 12:35:06 sshd: Failed password for invalid user admin from 185.232.67.5 port 57911 ssh2	2019-12-20 00:31:12
51.255.197.164	attackspam	$f2bV_matches	2019-12-20 00:56:58
68.183.181.7	attackbots	Dec 19 15:31:15 XXX sshd[18366]: Invalid user tomhandy from 68.183.181.7 port 50598	2019-12-20 00:56:05
77.81.229.207	attackbotsspam	Dec 19 17:15:02 minden010 sshd[15732]: Failed password for root from 77.81.229.207 port 33486 ssh2 Dec 19 17:20:11 minden010 sshd[17431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.229.207 Dec 19 17:20:12 minden010 sshd[17431]: Failed password for invalid user znc from 77.81.229.207 port 40884 ssh2 ...	2019-12-20 00:25:10
206.189.91.97	attack	Dec 19 17:20:07 MainVPS sshd[975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.91.97 user=root Dec 19 17:20:09 MainVPS sshd[975]: Failed password for root from 206.189.91.97 port 41022 ssh2 Dec 19 17:29:51 MainVPS sshd[20452]: Invalid user kirkes from 206.189.91.97 port 60724 Dec 19 17:29:51 MainVPS sshd[20452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.91.97 Dec 19 17:29:51 MainVPS sshd[20452]: Invalid user kirkes from 206.189.91.97 port 60724 Dec 19 17:29:52 MainVPS sshd[20452]: Failed password for invalid user kirkes from 206.189.91.97 port 60724 ssh2 ...	2019-12-20 00:40:32
52.184.199.30	attackspambots	--- report --- Dec 19 12:13:57 sshd: Connection from 52.184.199.30 port 56040 Dec 19 12:13:57 sshd: Invalid user drachman from 52.184.199.30 Dec 19 12:13:59 sshd: Failed password for invalid user drachman from 52.184.199.30 port 56040 ssh2 Dec 19 12:14:00 sshd: Received disconnect from 52.184.199.30: 11: Bye Bye [preauth]	2019-12-20 00:24:22

最近上报的IP列表

210.2.132.18	183.60.227.18	180.242.28.181	182.190.218.57
180.183.196.249	191.240.100.11	103.206.191.5	14.177.249.48
62.234.137.26	167.99.172.96	106.53.40.79	106.247.23.237
79.175.62.238	125.6.143.89	32.89.0.228	115.79.136.117
83.97.20.226	183.17.235.191	14.228.148.62	77.68.72.86