139.155.13.59 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	sshd: Failed password for invalid user .... from 139.155.13.59 port 60208 ssh2 (8 attempts)	2020-10-13 17:34:17

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.13.21	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-06 07:33:29
139.155.13.21	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-05 23:49:56
139.155.13.21	attackspambots	Oct 5 09:18:04 ip106 sshd[15735]: Failed password for root from 139.155.13.21 port 43686 ssh2 ...	2020-10-05 15:50:01
139.155.13.81	attack	Invalid user administrator from 139.155.13.81 port 43454	2020-09-27 07:18:28
139.155.13.81	attack	Sep 26 17:09:11 ns382633 sshd\[29250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root Sep 26 17:09:13 ns382633 sshd\[29250\]: Failed password for root from 139.155.13.81 port 53970 ssh2 Sep 26 17:14:30 ns382633 sshd\[30199\]: Invalid user cisco from 139.155.13.81 port 51202 Sep 26 17:14:30 ns382633 sshd\[30199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 Sep 26 17:14:32 ns382633 sshd\[30199\]: Failed password for invalid user cisco from 139.155.13.81 port 51202 ssh2	2020-09-26 23:47:41
139.155.13.81	attackspam	Invalid user user from 139.155.13.81 port 33844	2020-09-03 01:54:05
139.155.13.81	attack	$f2bV_matches	2020-09-02 17:22:41
139.155.13.81	attackspam	Sep 1 21:43:05 gw1 sshd[23425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 Sep 1 21:43:07 gw1 sshd[23425]: Failed password for invalid user ares from 139.155.13.81 port 57732 ssh2 ...	2020-09-02 03:20:00
139.155.13.93	attackspambots	Sep 1 00:02:53 OPSO sshd\[26243\]: Invalid user tomcat from 139.155.13.93 port 54272 Sep 1 00:02:53 OPSO sshd\[26243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 Sep 1 00:02:55 OPSO sshd\[26243\]: Failed password for invalid user tomcat from 139.155.13.93 port 54272 ssh2 Sep 1 00:07:53 OPSO sshd\[27204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Sep 1 00:07:55 OPSO sshd\[27204\]: Failed password for root from 139.155.13.93 port 51722 ssh2	2020-09-01 07:24:26
139.155.13.115	attackspam	Aug 24 13:10:29 dignus sshd[22012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.115 Aug 24 13:10:31 dignus sshd[22012]: Failed password for invalid user admin from 139.155.13.115 port 43126 ssh2 Aug 24 13:16:11 dignus sshd[22827]: Invalid user dh from 139.155.13.115 port 49642 Aug 24 13:16:11 dignus sshd[22827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.115 Aug 24 13:16:14 dignus sshd[22827]: Failed password for invalid user dh from 139.155.13.115 port 49642 ssh2 ...	2020-08-25 04:32:01
139.155.13.93	attack	Aug 20 13:28:46 pixelmemory sshd[32913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Aug 20 13:28:47 pixelmemory sshd[32913]: Failed password for root from 139.155.13.93 port 34184 ssh2 Aug 20 13:29:30 pixelmemory sshd[32930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Aug 20 13:29:32 pixelmemory sshd[32930]: Failed password for root from 139.155.13.93 port 41704 ssh2 Aug 20 13:30:22 pixelmemory sshd[32946]: Invalid user ftp from 139.155.13.93 port 49224 ...	2020-08-21 05:27:02
139.155.13.81	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-21 04:12:09
139.155.13.81	attackspambots	Aug 13 22:39:22 vps647732 sshd[9930]: Failed password for root from 139.155.13.81 port 48352 ssh2 ...	2020-08-14 06:34:20
139.155.13.81	attack	Aug 11 04:57:44 liveconfig01 sshd[9710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=r.r Aug 11 04:57:46 liveconfig01 sshd[9710]: Failed password for r.r from 139.155.13.81 port 53748 ssh2 Aug 11 04:57:46 liveconfig01 sshd[9710]: Received disconnect from 139.155.13.81 port 53748:11: Bye Bye [preauth] Aug 11 04:57:46 liveconfig01 sshd[9710]: Disconnected from 139.155.13.81 port 53748 [preauth] Aug 11 05:12:49 liveconfig01 sshd[10416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=r.r Aug 11 05:12:51 liveconfig01 sshd[10416]: Failed password for r.r from 139.155.13.81 port 58560 ssh2 Aug 11 05:12:51 liveconfig01 sshd[10416]: Received disconnect from 139.155.13.81 port 58560:11: Bye Bye [preauth] Aug 11 05:12:51 liveconfig01 sshd[10416]: Disconnected from 139.155.13.81 port 58560 [preauth] Aug 11 05:17:35 liveconfig01 sshd[10660]: pam_unix(sshd:auth........ -------------------------------	2020-08-12 00:38:10
139.155.13.81	attackspam	2020-08-07T03:55:29.268020abusebot-5.cloudsearch.cf sshd[5054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T03:55:31.038114abusebot-5.cloudsearch.cf sshd[5054]: Failed password for root from 139.155.13.81 port 44596 ssh2 2020-08-07T03:58:24.225594abusebot-5.cloudsearch.cf sshd[5071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T03:58:26.020743abusebot-5.cloudsearch.cf sshd[5071]: Failed password for root from 139.155.13.81 port 45620 ssh2 2020-08-07T04:01:08.813770abusebot-5.cloudsearch.cf sshd[5096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T04:01:10.789511abusebot-5.cloudsearch.cf sshd[5096]: Failed password for root from 139.155.13.81 port 46634 ssh2 2020-08-07T04:03:54.788950abusebot-5.cloudsearch.cf sshd[5109]: pam_unix(sshd:auth): authenticati ...	2020-08-07 15:52:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.13.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.13.59.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101300 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 13 17:34:05 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 59.13.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 59.13.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
39.41.152.77	attack	Automatic report - XMLRPC Attack	2020-06-26 20:47:54
91.106.193.72	attackbots	2020-06-26T07:29:55.594743sorsha.thespaminator.com sshd[19906]: Invalid user openerp from 91.106.193.72 port 33000 2020-06-26T07:29:57.481530sorsha.thespaminator.com sshd[19906]: Failed password for invalid user openerp from 91.106.193.72 port 33000 ssh2 ...	2020-06-26 20:38:35
218.92.0.191	attack	Jun 26 14:01:19 dcd-gentoo sshd[23243]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Jun 26 14:01:22 dcd-gentoo sshd[23243]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Jun 26 14:01:22 dcd-gentoo sshd[23243]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 59748 ssh2 ...	2020-06-26 20:33:15
139.198.122.19	attackspam	(sshd) Failed SSH login from 139.198.122.19 (CN/China/-): 5 in the last 3600 secs	2020-06-26 20:49:30
89.3.236.207	attack	2020-06-26T15:39:32.848281lavrinenko.info sshd[4881]: Failed password for invalid user tam from 89.3.236.207 port 40900 ssh2 2020-06-26T15:42:38.300159lavrinenko.info sshd[5153]: Invalid user bnc from 89.3.236.207 port 39180 2020-06-26T15:42:38.310882lavrinenko.info sshd[5153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.3.236.207 2020-06-26T15:42:38.300159lavrinenko.info sshd[5153]: Invalid user bnc from 89.3.236.207 port 39180 2020-06-26T15:42:40.486825lavrinenko.info sshd[5153]: Failed password for invalid user bnc from 89.3.236.207 port 39180 ssh2 ...	2020-06-26 20:54:59
45.14.149.38	attackspambots	Jun 26 07:38:17 Tower sshd[22378]: Connection from 45.14.149.38 port 35742 on 192.168.10.220 port 22 rdomain "" Jun 26 07:38:28 Tower sshd[22378]: Invalid user temp1 from 45.14.149.38 port 35742 Jun 26 07:38:28 Tower sshd[22378]: error: Could not get shadow information for NOUSER Jun 26 07:38:28 Tower sshd[22378]: Failed password for invalid user temp1 from 45.14.149.38 port 35742 ssh2 Jun 26 07:38:29 Tower sshd[22378]: Received disconnect from 45.14.149.38 port 35742:11: Bye Bye [preauth] Jun 26 07:38:29 Tower sshd[22378]: Disconnected from invalid user temp1 45.14.149.38 port 35742 [preauth]	2020-06-26 20:36:58
187.151.236.136	attackbotsspam	Jun 26 14:42:52 * sshd[9436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.151.236.136 Jun 26 14:42:54 * sshd[9436]: Failed password for invalid user praful from 187.151.236.136 port 22240 ssh2	2020-06-26 20:45:37
112.220.238.3	attackbotsspam	Jun 26 14:32:44 * sshd[8355]: Failed password for root from 112.220.238.3 port 33426 ssh2	2020-06-26 21:00:57
81.68.76.214	attack	Jun 26 12:51:01 onepixel sshd[3638270]: Failed password for invalid user sale from 81.68.76.214 port 34888 ssh2 Jun 26 12:54:02 onepixel sshd[3639852]: Invalid user soporte from 81.68.76.214 port 46088 Jun 26 12:54:02 onepixel sshd[3639852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.76.214 Jun 26 12:54:02 onepixel sshd[3639852]: Invalid user soporte from 81.68.76.214 port 46088 Jun 26 12:54:04 onepixel sshd[3639852]: Failed password for invalid user soporte from 81.68.76.214 port 46088 ssh2	2020-06-26 21:02:08
123.207.185.54	attackspam	Jun 26 13:20:30 Invalid user testuser from 123.207.185.54 port 52706	2020-06-26 20:34:16
114.86.219.114	attackbotsspam	Jun 26 12:26:12 rush sshd[4606]: Failed password for root from 114.86.219.114 port 35432 ssh2 Jun 26 12:28:46 rush sshd[4635]: Failed password for root from 114.86.219.114 port 40160 ssh2 ...	2020-06-26 20:43:38
115.159.66.109	attack	Jun 26 07:51:56 raspberrypi sshd[31524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.66.109 Jun 26 07:51:58 raspberrypi sshd[31524]: Failed password for invalid user rke from 115.159.66.109 port 40180 ssh2 Jun 26 07:56:11 raspberrypi sshd[31552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.66.109 ...	2020-06-26 20:30:05
141.98.81.42	attackbotsspam	Jun 26 09:44:10 firewall sshd[5880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.42 Jun 26 09:44:10 firewall sshd[5880]: Invalid user guest from 141.98.81.42 Jun 26 09:44:12 firewall sshd[5880]: Failed password for invalid user guest from 141.98.81.42 port 8525 ssh2 ...	2020-06-26 21:00:38
201.159.113.6	attack	Unauthorized connection attempt from IP address 201.159.113.6 on Port 445(SMB)	2020-06-26 20:22:36
178.32.163.249	attackspam	Jun 26 12:14:30 django-0 sshd[8252]: Invalid user cy from 178.32.163.249 ...	2020-06-26 20:33:40

最近上报的IP列表

199.66.91.131	66.96.236.92	117.31.76.119	82.200.105.254
90.84.245.42	36.67.70.186	177.25.236.226	149.56.70.122
103.235.167.47	156.213.227.242	201.102.193.63	177.71.154.242
67.207.92.72	27.194.113.202	183.17.229.11	117.26.193.87
125.117.172.97	125.46.81.106	185.118.143.47	18.194.218.112