139.155.21.129

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 26 05:48:10 [snip] sshd[16972]: Invalid user track from 139.155.21.129 port 53376 Sep 26 05:48:10 [snip] sshd[16972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.129 Sep 26 05:48:12 [snip] sshd[16972]: Failed password for invalid user track from 139.155.21.129 port 53376 ssh2[...]	2019-09-26 16:34:44

类型

评论内容

时间

attack

Sep 26 05:48:10 [snip] sshd[16972]: Invalid user track from 139.155.21.129 port 53376
Sep 26 05:48:10 [snip] sshd[16972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.129
Sep 26 05:48:12 [snip] sshd[16972]: Failed password for invalid user track from 139.155.21.129 port 53376 ssh2[...]

2019-09-26 16:34:44

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.21.34	attack	SSH login attempts.	2020-09-09 00:18:04
139.155.21.34	attackspambots	SSH login attempts.	2020-09-08 15:49:56
139.155.21.34	attack	Lines containing failures of 139.155.21.34 Sep 7 02:16:25 v2hgb sshd[5602]: Invalid user ubnt from 139.155.21.34 port 38778 Sep 7 02:16:25 v2hgb sshd[5602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Sep 7 02:16:27 v2hgb sshd[5602]: Failed password for invalid user ubnt from 139.155.21.34 port 38778 ssh2 Sep 7 02:16:27 v2hgb sshd[5602]: Received disconnect from 139.155.21.34 port 38778:11: Bye Bye [preauth] Sep 7 02:16:27 v2hgb sshd[5602]: Disconnected from invalid user ubnt 139.155.21.34 port 38778 [preauth] Sep 7 02:37:10 v2hgb sshd[7634]: Connection closed by 139.155.21.34 port 39446 [preauth] Sep 7 02:41:12 v2hgb sshd[8175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=r.r Sep 7 02:41:14 v2hgb sshd[8175]: Failed password for r.r from 139.155.21.34 port 58590 ssh2 Sep 7 02:41:15 v2hgb sshd[8175]: Received disconnect from 139.155.21.34 por........ ------------------------------	2020-09-08 08:24:38
139.155.21.34	attack	Invalid user git from 139.155.21.34 port 43078	2020-09-02 20:36:28
139.155.21.34	attackbotsspam	Jul 24 10:30:38 server sshd[8988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 24 10:30:39 server sshd[8988]: Failed password for invalid user admin from 139.155.21.34 port 53580 ssh2 Jul 24 10:38:03 server sshd[10333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34	2020-09-02 12:30:53
139.155.21.34	attackbots	Input Traffic from this IP, but critial abuseconfidencescore	2020-09-02 05:39:51
139.155.21.34	attackbotsspam	Fail2Ban Ban Triggered (2)	2020-08-28 03:54:16
139.155.21.34	attackspam	fail2ban -- 139.155.21.34 ...	2020-08-21 17:07:27
139.155.21.34	attackspambots	Aug 18 15:36:13 vps639187 sshd\[15240\]: Invalid user le from 139.155.21.34 port 48616 Aug 18 15:36:13 vps639187 sshd\[15240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Aug 18 15:36:15 vps639187 sshd\[15240\]: Failed password for invalid user le from 139.155.21.34 port 48616 ssh2 ...	2020-08-18 22:01:22
139.155.21.34	attackspam	Aug 11 15:07:58 cosmoit sshd[21906]: Failed password for root from 139.155.21.34 port 46194 ssh2	2020-08-11 21:46:31
139.155.21.186	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T16:44:02Z and 2020-08-09T16:54:14Z	2020-08-10 03:46:07
139.155.21.186	attack	Aug 9 06:35:30 marvibiene sshd[6560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:35:32 marvibiene sshd[6560]: Failed password for root from 139.155.21.186 port 38006 ssh2 Aug 9 06:50:11 marvibiene sshd[6820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:50:12 marvibiene sshd[6820]: Failed password for root from 139.155.21.186 port 46438 ssh2	2020-08-09 15:03:59
139.155.21.34	attack	Aug 8 07:07:49 journals sshd\[123764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:07:51 journals sshd\[123764\]: Failed password for root from 139.155.21.34 port 58630 ssh2 Aug 8 07:12:28 journals sshd\[124225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:12:29 journals sshd\[124225\]: Failed password for root from 139.155.21.34 port 53102 ssh2 Aug 8 07:17:08 journals sshd\[124585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root ...	2020-08-08 15:41:50
139.155.21.186	attackbotsspam	Jul 29 11:04:16 journals sshd\[12620\]: Invalid user yzhu from 139.155.21.186 Jul 29 11:04:16 journals sshd\[12620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 29 11:04:18 journals sshd\[12620\]: Failed password for invalid user yzhu from 139.155.21.186 port 41158 ssh2 Jul 29 11:07:56 journals sshd\[13104\]: Invalid user tomcat from 139.155.21.186 Jul 29 11:07:56 journals sshd\[13104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 ...	2020-07-29 16:17:53
139.155.21.186	attack	Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:50 onepixel sshd[3644051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:52 onepixel sshd[3644051]: Failed password for invalid user wangwq from 139.155.21.186 port 54182 ssh2 Jul 28 12:08:21 onepixel sshd[3646075]: Invalid user pengteng from 139.155.21.186 port 34680	2020-07-28 20:13:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.21.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28096
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.21.129.			IN	A

;; AUTHORITY SECTION:
.			521	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092600 1800 900 604800 86400

;; Query time: 558 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 26 16:34:41 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 129.21.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.21.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.10.196	attack	failed root login	2020-08-12 02:40:02
222.186.175.169	attack	Aug 11 21:04:19 vps647732 sshd[26242]: Failed password for root from 222.186.175.169 port 7442 ssh2 Aug 11 21:04:22 vps647732 sshd[26242]: Failed password for root from 222.186.175.169 port 7442 ssh2 ...	2020-08-12 03:05:29
195.167.159.161	attackbots	11.08.2020 21:02:18 - Wordpress fail Detected by ELinOX-ALM	2020-08-12 03:13:19
78.175.21.129	attack	Port probing on unauthorized port 23	2020-08-12 02:45:58
27.3.161.26	attackspambots	1597147588 - 08/11/2020 14:06:28 Host: 27.3.161.26/27.3.161.26 Port: 445 TCP Blocked	2020-08-12 03:01:47
45.95.168.253	attackspambots	SSH Bruteforce Attempt on Honeypot	2020-08-12 03:05:57
198.20.167.50	attackspambots	Registration form abuse	2020-08-12 02:35:10
193.112.1.26	attackspam	Aug 11 20:26:37 serwer sshd\[20647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.1.26 user=root Aug 11 20:26:40 serwer sshd\[20647\]: Failed password for root from 193.112.1.26 port 38872 ssh2 Aug 11 20:32:31 serwer sshd\[21286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.1.26 user=root ...	2020-08-12 02:38:12
49.234.50.247	attackspam	Aug 11 17:03:03 h2829583 sshd[18388]: Failed password for root from 49.234.50.247 port 48592 ssh2	2020-08-12 03:10:48
171.232.243.36	attack	Invalid user admin from 171.232.243.36 port 38124	2020-08-12 02:58:19
141.98.10.198	attack	invalid user	2020-08-12 02:49:41
20.44.106.192	attack	"GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/1.1" 403 "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404	2020-08-12 02:55:37
109.241.98.147	attackbotsspam	Aug 11 12:57:06 django-0 sshd[10353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109241098147.warszawa.vectranet.pl user=root Aug 11 12:57:09 django-0 sshd[10353]: Failed password for root from 109.241.98.147 port 54280 ssh2 ...	2020-08-12 02:44:55
1.255.153.167	attack	Aug 11 20:30:26 myvps sshd[18162]: Failed password for root from 1.255.153.167 port 33434 ssh2 Aug 11 20:42:40 myvps sshd[25792]: Failed password for root from 1.255.153.167 port 46708 ssh2 ...	2020-08-12 02:49:23
102.44.245.161	attackbotsspam	Aug 10 07:58:01 lvps5-35-247-183 sshd[16351]: reveeclipse mapping checking getaddrinfo for host-102.44.245.161.tedata.net [102.44.245.161] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 10 07:58:01 lvps5-35-247-183 sshd[16351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.44.245.161 user=r.r Aug 10 07:58:03 lvps5-35-247-183 sshd[16351]: Failed password for r.r from 102.44.245.161 port 54028 ssh2 Aug 10 07:58:03 lvps5-35-247-183 sshd[16351]: Received disconnect from 102.44.245.161: 11: Bye Bye [preauth] Aug 10 08:02:34 lvps5-35-247-183 sshd[16417]: reveeclipse mapping checking getaddrinfo for host-102.44.245.161.tedata.net [102.44.245.161] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 10 08:02:34 lvps5-35-247-183 sshd[16417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.44.245.161 user=r.r Aug 10 08:02:37 lvps5-35-247-183 sshd[16417]: Failed password for r.r from 102.44.245.161 port 37502 ........ -------------------------------	2020-08-12 03:11:52

最近上报的IP列表

85.105.120.94	100.251.219.121	64.119.200.102	203.253.72.90
81.171.58.182	115.216.203.31	113.224.219.143	121.234.105.113
193.56.28.178	52.41.193.16	106.111.166.26	116.203.40.95
101.206.155.4	148.70.101.245	205.209.167.167	89.238.150.15
52.41.20.47	113.238.116.166	85.140.38.90	118.175.93.94