139.155.11.173

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 13 17:16:19 prox sshd[24092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.11.173 Sep 13 17:16:21 prox sshd[24092]: Failed password for invalid user bot from 139.155.11.173 port 45050 ssh2	2020-09-13 23:22:49
attackspam	Invalid user sonar from 139.155.11.173 port 43026	2020-08-26 07:15:36
attack	Aug 14 09:21:12 eventyay sshd[26754]: Failed password for root from 139.155.11.173 port 35286 ssh2 Aug 14 09:27:00 eventyay sshd[26831]: Failed password for root from 139.155.11.173 port 33954 ssh2 ...	2020-08-14 15:40:45
attackspambots	SSH auth scanning - multiple failed logins	2020-08-13 16:00:11
attackbotsspam	Invalid user lau from 139.155.11.173 port 41468	2020-06-28 05:44:06
attack	May 25 14:03:32 * sshd[2524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.11.173 May 25 14:03:34 * sshd[2524]: Failed password for invalid user bavmk from 139.155.11.173 port 50150 ssh2	2020-05-25 20:56:30
attackbotsspam	May 16 01:46:31 meumeu sshd[85847]: Invalid user adina from 139.155.11.173 port 55140 May 16 01:46:31 meumeu sshd[85847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.11.173 May 16 01:46:31 meumeu sshd[85847]: Invalid user adina from 139.155.11.173 port 55140 May 16 01:46:33 meumeu sshd[85847]: Failed password for invalid user adina from 139.155.11.173 port 55140 ssh2 May 16 01:50:00 meumeu sshd[86395]: Invalid user angel from 139.155.11.173 port 40876 May 16 01:50:00 meumeu sshd[86395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.11.173 May 16 01:50:00 meumeu sshd[86395]: Invalid user angel from 139.155.11.173 port 40876 May 16 01:50:03 meumeu sshd[86395]: Failed password for invalid user angel from 139.155.11.173 port 40876 ssh2 May 16 01:53:39 meumeu sshd[86902]: Invalid user postgres from 139.155.11.173 port 54844 ...	2020-05-17 00:42:47

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.118.190	attackspam	Unauthorized connection attempt detected from IP address 139.155.118.190 to port 594 [T]	2020-05-20 09:48:18
139.155.118.190	attack	Unauthorized connection attempt detected from IP address 139.155.118.190 to port 711 [T]	2020-05-06 07:36:05
139.155.118.190	attackspambots	k+ssh-bruteforce	2020-04-08 16:40:45
139.155.118.190	attackspam	Mar 17 11:34:10 mockhub sshd[7944]: Failed password for root from 139.155.118.190 port 52958 ssh2 ...	2020-03-18 06:25:20
139.155.118.190	attackbots	Feb 8 00:03:19 sd-53420 sshd\[7392\]: Invalid user vin from 139.155.118.190 Feb 8 00:03:19 sd-53420 sshd\[7392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.190 Feb 8 00:03:21 sd-53420 sshd\[7392\]: Failed password for invalid user vin from 139.155.118.190 port 46666 ssh2 Feb 8 00:06:55 sd-53420 sshd\[7672\]: Invalid user cnx from 139.155.118.190 Feb 8 00:06:55 sd-53420 sshd\[7672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.190 ...	2020-02-08 07:40:57
139.155.118.190	attackspambots	2019-09-14T08:56:47.804887suse-nuc sshd[26505]: Invalid user extrim from 139.155.118.190 port 60977 ...	2020-02-07 10:18:24
139.155.118.190	attack	Feb 6 19:16:53 areeb-Workstation sshd[16378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.190 Feb 6 19:16:56 areeb-Workstation sshd[16378]: Failed password for invalid user xuy from 139.155.118.190 port 33485 ssh2 ...	2020-02-06 22:07:00
139.155.118.190	attack	Unauthorized connection attempt detected from IP address 139.155.118.190 to port 2220 [J]	2020-01-21 15:24:22
139.155.118.138	attackspam	20 attempts against mh-ssh on cloud.magehost.pro	2020-01-13 08:48:09
139.155.118.190	attackbots	2020-01-10T23:34:36.0174131495-001 sshd[6202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.190 2020-01-10T23:34:36.0103721495-001 sshd[6202]: Invalid user gkd from 139.155.118.190 port 42072 2020-01-10T23:34:37.3459571495-001 sshd[6202]: Failed password for invalid user gkd from 139.155.118.190 port 42072 ssh2 2020-01-11T00:36:40.7825741495-001 sshd[8447]: Invalid user PAs$wOrd1 from 139.155.118.190 port 56311 2020-01-11T00:36:40.7859361495-001 sshd[8447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.190 2020-01-11T00:36:40.7825741495-001 sshd[8447]: Invalid user PAs$wOrd1 from 139.155.118.190 port 56311 2020-01-11T00:36:42.6905341495-001 sshd[8447]: Failed password for invalid user PAs$wOrd1 from 139.155.118.190 port 56311 ssh2 2020-01-11T00:40:33.9212971495-001 sshd[8596]: Invalid user abcd1234 from 139.155.118.190 port 37792 2020-01-11T00:40:33.9243691495-001 sshd[8596]: pa ...	2020-01-11 20:42:11
139.155.118.138	attackspambots	Automatic report - Banned IP Access	2020-01-07 19:51:16
139.155.118.190	attack	$f2bV_matches	2020-01-04 15:33:03
139.155.118.138	attackbots	Jan 3 18:20:41 firewall sshd[31739]: Invalid user testing from 139.155.118.138 Jan 3 18:20:43 firewall sshd[31739]: Failed password for invalid user testing from 139.155.118.138 port 48532 ssh2 Jan 3 18:23:58 firewall sshd[31847]: Invalid user 2309 from 139.155.118.138 ...	2020-01-04 06:06:44
139.155.118.138	attack	Jan 2 00:32:45 srv-ubuntu-dev3 sshd[107859]: Invalid user kurosawa from 139.155.118.138 Jan 2 00:32:45 srv-ubuntu-dev3 sshd[107859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.138 Jan 2 00:32:45 srv-ubuntu-dev3 sshd[107859]: Invalid user kurosawa from 139.155.118.138 Jan 2 00:32:47 srv-ubuntu-dev3 sshd[107859]: Failed password for invalid user kurosawa from 139.155.118.138 port 53030 ssh2 Jan 2 00:34:56 srv-ubuntu-dev3 sshd[108061]: Invalid user velocix from 139.155.118.138 Jan 2 00:34:56 srv-ubuntu-dev3 sshd[108061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.118.138 Jan 2 00:34:56 srv-ubuntu-dev3 sshd[108061]: Invalid user velocix from 139.155.118.138 Jan 2 00:34:58 srv-ubuntu-dev3 sshd[108061]: Failed password for invalid user velocix from 139.155.118.138 port 42814 ssh2 Jan 2 00:37:07 srv-ubuntu-dev3 sshd[108348]: pam_unix(sshd:auth): authentication failure; lognam ...	2020-01-02 09:01:39
139.155.118.190	attackbotsspam	Invalid user vari from 139.155.118.190 port 60725	2020-01-02 06:26:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.11.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.11.173.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051600 1800 900 604800 86400

;; Query time: 189 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 17 00:42:40 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 173.11.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 173.11.155.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
193.169.255.102	attack	08/09/2019-22:47:49.487465 193.169.255.102 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 15	2019-08-10 10:54:35
171.50.174.215	attackbotsspam	Automatic report - Port Scan Attack	2019-08-10 10:43:41
201.48.206.146	attackspam	Aug 10 01:34:53 MainVPS sshd[16703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.206.146 user=root Aug 10 01:34:54 MainVPS sshd[16703]: Failed password for root from 201.48.206.146 port 59399 ssh2 Aug 10 01:43:22 MainVPS sshd[17358]: Invalid user mohsin from 201.48.206.146 port 56252 Aug 10 01:43:22 MainVPS sshd[17358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.206.146 Aug 10 01:43:22 MainVPS sshd[17358]: Invalid user mohsin from 201.48.206.146 port 56252 Aug 10 01:43:25 MainVPS sshd[17358]: Failed password for invalid user mohsin from 201.48.206.146 port 56252 ssh2 ...	2019-08-10 10:47:54
209.85.160.195	attackspam	To	2019-08-10 10:32:43
107.170.201.213	attackbotsspam	Port scan: Attack repeated for 24 hours	2019-08-10 11:09:04
82.165.159.2	attack	Egal ob dein Auto rot, blau oder weiß ist - wir kaufen es auf jeden Fall...	2019-08-10 10:41:59
59.13.139.42	attack	Automatic report - Banned IP Access	2019-08-10 11:14:05
217.182.79.245	attackspambots	Aug 10 04:41:15 SilenceServices sshd[11269]: Failed password for root from 217.182.79.245 port 50878 ssh2 Aug 10 04:47:27 SilenceServices sshd[15834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.79.245 Aug 10 04:47:30 SilenceServices sshd[15834]: Failed password for invalid user mina from 217.182.79.245 port 46986 ssh2	2019-08-10 11:05:08
112.171.127.187	attackbots	Automated report - ssh fail2ban: Aug 10 04:42:22 authentication failure Aug 10 04:42:24 wrong password, user=luna, port=54124, ssh2	2019-08-10 11:12:25
76.17.44.218	attackspambots	:	2019-08-10 11:10:44
128.199.80.59	attackspam	Brute force SMTP login attempted. ...	2019-08-10 10:50:15
165.22.99.23	attackbots	WICHTIG! Ich habe dich beim ʍasturbieren aufgenommen! Ich habe Martin.mp4 erfasst.	2019-08-10 10:38:24
113.109.127.247	attackbotsspam	Port scan on 2 port(s): 1433 65529	2019-08-10 11:12:04
109.70.100.26	attackspam	Automatic report - Banned IP Access	2019-08-10 11:11:07
130.185.250.76	attack	Automatic report - Banned IP Access	2019-08-10 11:12:43

最近上报的IP列表

85.75.197.56	85.110.40.130	37.1.246.245	24.5.225.247
51.89.205.217	179.216.177.121	77.204.16.130	34.84.175.15
188.166.62.6	46.219.207.70	101.127.25.210	80.215.41.184
83.21.90.234	103.217.247.224	82.194.56.194	151.0.144.162
192.169.218.28	77.204.16.134	98.251.165.83	180.67.59.134