139.155.13.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Sep 1 00:02:53 OPSO sshd\[26243\]: Invalid user tomcat from 139.155.13.93 port 54272 Sep 1 00:02:53 OPSO sshd\[26243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 Sep 1 00:02:55 OPSO sshd\[26243\]: Failed password for invalid user tomcat from 139.155.13.93 port 54272 ssh2 Sep 1 00:07:53 OPSO sshd\[27204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Sep 1 00:07:55 OPSO sshd\[27204\]: Failed password for root from 139.155.13.93 port 51722 ssh2	2020-09-01 07:24:26
attack	Aug 20 13:28:46 pixelmemory sshd[32913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Aug 20 13:28:47 pixelmemory sshd[32913]: Failed password for root from 139.155.13.93 port 34184 ssh2 Aug 20 13:29:30 pixelmemory sshd[32930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Aug 20 13:29:32 pixelmemory sshd[32930]: Failed password for root from 139.155.13.93 port 41704 ssh2 Aug 20 13:30:22 pixelmemory sshd[32946]: Invalid user ftp from 139.155.13.93 port 49224 ...	2020-08-21 05:27:02
attackbotsspam	Aug 5 06:34:06 buvik sshd[19690]: Failed password for root from 139.155.13.93 port 51322 ssh2 Aug 5 06:38:04 buvik sshd[20272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Aug 5 06:38:06 buvik sshd[20272]: Failed password for root from 139.155.13.93 port 34560 ssh2 ...	2020-08-05 12:41:26
attackspambots	2020-08-04T10:20:27.231855shield sshd\[32233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root 2020-08-04T10:20:28.975900shield sshd\[32233\]: Failed password for root from 139.155.13.93 port 51552 ssh2 2020-08-04T10:25:06.045249shield sshd\[32758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root 2020-08-04T10:25:07.618937shield sshd\[32758\]: Failed password for root from 139.155.13.93 port 42960 ssh2 2020-08-04T10:29:30.288555shield sshd\[880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root	2020-08-04 22:10:37
attackspam	Jul 27 07:45:59 meumeu sshd[246489]: Invalid user yong from 139.155.13.93 port 41678 Jul 27 07:45:59 meumeu sshd[246489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 Jul 27 07:45:59 meumeu sshd[246489]: Invalid user yong from 139.155.13.93 port 41678 Jul 27 07:46:01 meumeu sshd[246489]: Failed password for invalid user yong from 139.155.13.93 port 41678 ssh2 Jul 27 07:50:28 meumeu sshd[246616]: Invalid user chenyu from 139.155.13.93 port 58104 Jul 27 07:50:28 meumeu sshd[246616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 Jul 27 07:50:28 meumeu sshd[246616]: Invalid user chenyu from 139.155.13.93 port 58104 Jul 27 07:50:30 meumeu sshd[246616]: Failed password for invalid user chenyu from 139.155.13.93 port 58104 ssh2 Jul 27 07:54:43 meumeu sshd[246807]: Invalid user apeitpanthiya from 139.155.13.93 port 46298 ...	2020-07-27 14:04:22
attackbots	web-1 [ssh_2] SSH Attack	2020-06-19 22:42:37
attackspam	Jun 18 14:38:58 abendstille sshd\[19653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 user=root Jun 18 14:39:00 abendstille sshd\[19653\]: Failed password for root from 139.155.13.93 port 40594 ssh2 Jun 18 14:43:22 abendstille sshd\[24241\]: Invalid user testphp from 139.155.13.93 Jun 18 14:43:22 abendstille sshd\[24241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.93 Jun 18 14:43:24 abendstille sshd\[24241\]: Failed password for invalid user testphp from 139.155.13.93 port 60762 ssh2 ...	2020-06-18 20:59:13
attackbotsspam	2020-06-17T15:54:33.921027-07:00 suse-nuc sshd[17762]: Invalid user admin from 139.155.13.93 port 36422 ...	2020-06-18 07:52:10
attackspam	2020-06-17T14:02:51+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-06-17 23:08:45
attackspambots	$f2bV_matches	2020-06-17 12:35:11

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.13.59	attack	sshd: Failed password for invalid user .... from 139.155.13.59 port 60208 ssh2 (8 attempts)	2020-10-13 17:34:17
139.155.13.21	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-06 07:33:29
139.155.13.21	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-05 23:49:56
139.155.13.21	attackspambots	Oct 5 09:18:04 ip106 sshd[15735]: Failed password for root from 139.155.13.21 port 43686 ssh2 ...	2020-10-05 15:50:01
139.155.13.81	attack	Invalid user administrator from 139.155.13.81 port 43454	2020-09-27 07:18:28
139.155.13.81	attack	Sep 26 17:09:11 ns382633 sshd\[29250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root Sep 26 17:09:13 ns382633 sshd\[29250\]: Failed password for root from 139.155.13.81 port 53970 ssh2 Sep 26 17:14:30 ns382633 sshd\[30199\]: Invalid user cisco from 139.155.13.81 port 51202 Sep 26 17:14:30 ns382633 sshd\[30199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 Sep 26 17:14:32 ns382633 sshd\[30199\]: Failed password for invalid user cisco from 139.155.13.81 port 51202 ssh2	2020-09-26 23:47:41
139.155.13.81	attackspam	Invalid user user from 139.155.13.81 port 33844	2020-09-03 01:54:05
139.155.13.81	attack	$f2bV_matches	2020-09-02 17:22:41
139.155.13.81	attackspam	Sep 1 21:43:05 gw1 sshd[23425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 Sep 1 21:43:07 gw1 sshd[23425]: Failed password for invalid user ares from 139.155.13.81 port 57732 ssh2 ...	2020-09-02 03:20:00
139.155.13.115	attackspam	Aug 24 13:10:29 dignus sshd[22012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.115 Aug 24 13:10:31 dignus sshd[22012]: Failed password for invalid user admin from 139.155.13.115 port 43126 ssh2 Aug 24 13:16:11 dignus sshd[22827]: Invalid user dh from 139.155.13.115 port 49642 Aug 24 13:16:11 dignus sshd[22827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.115 Aug 24 13:16:14 dignus sshd[22827]: Failed password for invalid user dh from 139.155.13.115 port 49642 ssh2 ...	2020-08-25 04:32:01
139.155.13.81	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-21 04:12:09
139.155.13.81	attackspambots	Aug 13 22:39:22 vps647732 sshd[9930]: Failed password for root from 139.155.13.81 port 48352 ssh2 ...	2020-08-14 06:34:20
139.155.13.81	attack	Aug 11 04:57:44 liveconfig01 sshd[9710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=r.r Aug 11 04:57:46 liveconfig01 sshd[9710]: Failed password for r.r from 139.155.13.81 port 53748 ssh2 Aug 11 04:57:46 liveconfig01 sshd[9710]: Received disconnect from 139.155.13.81 port 53748:11: Bye Bye [preauth] Aug 11 04:57:46 liveconfig01 sshd[9710]: Disconnected from 139.155.13.81 port 53748 [preauth] Aug 11 05:12:49 liveconfig01 sshd[10416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=r.r Aug 11 05:12:51 liveconfig01 sshd[10416]: Failed password for r.r from 139.155.13.81 port 58560 ssh2 Aug 11 05:12:51 liveconfig01 sshd[10416]: Received disconnect from 139.155.13.81 port 58560:11: Bye Bye [preauth] Aug 11 05:12:51 liveconfig01 sshd[10416]: Disconnected from 139.155.13.81 port 58560 [preauth] Aug 11 05:17:35 liveconfig01 sshd[10660]: pam_unix(sshd:auth........ -------------------------------	2020-08-12 00:38:10
139.155.13.81	attackspam	2020-08-07T03:55:29.268020abusebot-5.cloudsearch.cf sshd[5054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T03:55:31.038114abusebot-5.cloudsearch.cf sshd[5054]: Failed password for root from 139.155.13.81 port 44596 ssh2 2020-08-07T03:58:24.225594abusebot-5.cloudsearch.cf sshd[5071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T03:58:26.020743abusebot-5.cloudsearch.cf sshd[5071]: Failed password for root from 139.155.13.81 port 45620 ssh2 2020-08-07T04:01:08.813770abusebot-5.cloudsearch.cf sshd[5096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-07T04:01:10.789511abusebot-5.cloudsearch.cf sshd[5096]: Failed password for root from 139.155.13.81 port 46634 ssh2 2020-08-07T04:03:54.788950abusebot-5.cloudsearch.cf sshd[5109]: pam_unix(sshd:auth): authenticati ...	2020-08-07 15:52:18
139.155.13.81	attackspam	2020-08-01T10:51:44.799780billing sshd[10821]: Failed password for root from 139.155.13.81 port 57748 ssh2 2020-08-01T10:54:20.594317billing sshd[14967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.13.81 user=root 2020-08-01T10:54:22.267725billing sshd[14967]: Failed password for root from 139.155.13.81 port 55636 ssh2 ...	2020-08-01 14:51:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.13.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2271
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.13.93.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061602 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 12:35:07 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 93.13.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.13.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
181.189.194.214	attack	Automatic report - Port Scan Attack	2019-11-12 19:25:55
1.203.80.78	attackbots	2019-11-12T11:25:42.687685abusebot-2.cloudsearch.cf sshd\[27310\]: Invalid user coffee from 1.203.80.78 port 33180	2019-11-12 19:40:04
42.230.67.84	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-12 19:45:07
200.209.174.38	attack	Nov 12 06:18:25 TORMINT sshd\[11405\]: Invalid user gherardo from 200.209.174.38 Nov 12 06:18:25 TORMINT sshd\[11405\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.38 Nov 12 06:18:27 TORMINT sshd\[11405\]: Failed password for invalid user gherardo from 200.209.174.38 port 48585 ssh2 ...	2019-11-12 19:36:21
123.10.244.133	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-12 19:26:19
202.171.137.212	attackspam	Nov 12 07:02:19 srv206 sshd[11916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.171.137.212.static.zoot.jp user=root Nov 12 07:02:22 srv206 sshd[11916]: Failed password for root from 202.171.137.212 port 54100 ssh2 Nov 12 07:25:25 srv206 sshd[12036]: Invalid user admin from 202.171.137.212 ...	2019-11-12 19:14:26
80.243.253.204	attackspambots	Nov 12 06:19:16 durga sshd[399282]: Invalid user gaona from 80.243.253.204 Nov 12 06:19:16 durga sshd[399282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gpecc.80-243-253-204.cable.only.fr Nov 12 06:19:18 durga sshd[399282]: Failed password for invalid user gaona from 80.243.253.204 port 56086 ssh2 Nov 12 06:19:18 durga sshd[399282]: Received disconnect from 80.243.253.204: 11: Bye Bye [preauth] Nov 12 06:28:35 durga sshd[402269]: Invalid user aulehle from 80.243.253.204 Nov 12 06:28:35 durga sshd[402269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gpecc.80-243-253-204.cable.only.fr Nov 12 06:28:37 durga sshd[402269]: Failed password for invalid user aulehle from 80.243.253.204 port 36826 ssh2 Nov 12 06:28:37 durga sshd[402269]: Received disconnect from 80.243.253.204: 11: Bye Bye [preauth] Nov 12 06:32:48 durga sshd[403373]: Invalid user absalom from 80.243.253.204 Nov 12 06:32:........ -------------------------------	2019-11-12 19:38:22
64.13.232.15	attack	schuetzenmusikanten.de 64.13.232.15 \[12/Nov/2019:07:25:01 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4270 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36" SCHUETZENMUSIKANTEN.DE 64.13.232.15 \[12/Nov/2019:07:25:01 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4270 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36"	2019-11-12 19:30:18
106.124.131.194	attackbotsspam	Nov 12 04:25:06 TORMINT sshd\[6143\]: Invalid user vgorder from 106.124.131.194 Nov 12 04:25:06 TORMINT sshd\[6143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.131.194 Nov 12 04:25:08 TORMINT sshd\[6143\]: Failed password for invalid user vgorder from 106.124.131.194 port 52243 ssh2 ...	2019-11-12 19:35:39
202.28.110.166	attackspambots	Nov 12 07:24:37 zooi sshd[30039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.28.110.166 Nov 12 07:24:39 zooi sshd[30039]: Failed password for invalid user arserio from 202.28.110.166 port 41033 ssh2 ...	2019-11-12 19:41:26
117.48.231.173	attackbotsspam	Nov 12 10:26:41 pl3server sshd[15186]: Invalid user webmail from 117.48.231.173 Nov 12 10:26:41 pl3server sshd[15186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.231.173 Nov 12 10:26:44 pl3server sshd[15186]: Failed password for invalid user webmail from 117.48.231.173 port 42086 ssh2 Nov 12 10:26:44 pl3server sshd[15186]: Received disconnect from 117.48.231.173: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.48.231.173	2019-11-12 19:21:14
106.37.72.234	attack	Nov 12 01:18:42 hpm sshd\[31514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.37.72.234 user=root Nov 12 01:18:44 hpm sshd\[31514\]: Failed password for root from 106.37.72.234 port 58566 ssh2 Nov 12 01:23:59 hpm sshd\[32010\]: Invalid user lilljegren from 106.37.72.234 Nov 12 01:23:59 hpm sshd\[32010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.37.72.234 Nov 12 01:24:01 hpm sshd\[32010\]: Failed password for invalid user lilljegren from 106.37.72.234 port 37280 ssh2	2019-11-12 19:25:03
175.213.185.129	attackbots	Fail2Ban - SSH Bruteforce Attempt	2019-11-12 19:13:24
200.43.77.19	attack	[ES hit] Tried to deliver spam.	2019-11-12 19:05:16
18.176.235.19	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/18.176.235.19/ SG - 1H : (16) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SG NAME ASN : ASN16509 IP : 18.176.235.19 CIDR : 18.176.0.0/15 PREFIX COUNT : 3006 UNIQUE IP COUNT : 26434816 ATTACKS DETECTED ASN16509 : 1H - 1 3H - 1 6H - 2 12H - 5 24H - 10 DateTime : 2019-11-12 07:24:43 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-12 19:42:22

最近上报的IP列表

23.129.174.218	217.188.61.177	238.98.137.113	45.82.121.156
114.237.108.252	122.44.198.180	227.33.221.10	116.247.103.75
72.173.48.122	162.10.47.42	72.65.234.247	73.191.61.72
145.132.23.25	26.76.192.191	86.3.111.194	27.103.100.214
55.125.2.159	23.54.113.45	101.124.54.36	62.82.177.240