139.155.21.34 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-09-09 00:18:04
attackspambots	SSH login attempts.	2020-09-08 15:49:56
attack	Lines containing failures of 139.155.21.34 Sep 7 02:16:25 v2hgb sshd[5602]: Invalid user ubnt from 139.155.21.34 port 38778 Sep 7 02:16:25 v2hgb sshd[5602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Sep 7 02:16:27 v2hgb sshd[5602]: Failed password for invalid user ubnt from 139.155.21.34 port 38778 ssh2 Sep 7 02:16:27 v2hgb sshd[5602]: Received disconnect from 139.155.21.34 port 38778:11: Bye Bye [preauth] Sep 7 02:16:27 v2hgb sshd[5602]: Disconnected from invalid user ubnt 139.155.21.34 port 38778 [preauth] Sep 7 02:37:10 v2hgb sshd[7634]: Connection closed by 139.155.21.34 port 39446 [preauth] Sep 7 02:41:12 v2hgb sshd[8175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=r.r Sep 7 02:41:14 v2hgb sshd[8175]: Failed password for r.r from 139.155.21.34 port 58590 ssh2 Sep 7 02:41:15 v2hgb sshd[8175]: Received disconnect from 139.155.21.34 por........ ------------------------------	2020-09-08 08:24:38
attack	Invalid user git from 139.155.21.34 port 43078	2020-09-02 20:36:28
attackbotsspam	Jul 24 10:30:38 server sshd[8988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 24 10:30:39 server sshd[8988]: Failed password for invalid user admin from 139.155.21.34 port 53580 ssh2 Jul 24 10:38:03 server sshd[10333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34	2020-09-02 12:30:53
attackbots	Input Traffic from this IP, but critial abuseconfidencescore	2020-09-02 05:39:51
attackbotsspam	Fail2Ban Ban Triggered (2)	2020-08-28 03:54:16
attackspam	fail2ban -- 139.155.21.34 ...	2020-08-21 17:07:27
attackspambots	Aug 18 15:36:13 vps639187 sshd\[15240\]: Invalid user le from 139.155.21.34 port 48616 Aug 18 15:36:13 vps639187 sshd\[15240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Aug 18 15:36:15 vps639187 sshd\[15240\]: Failed password for invalid user le from 139.155.21.34 port 48616 ssh2 ...	2020-08-18 22:01:22
attackspam	Aug 11 15:07:58 cosmoit sshd[21906]: Failed password for root from 139.155.21.34 port 46194 ssh2	2020-08-11 21:46:31
attack	Aug 8 07:07:49 journals sshd\[123764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:07:51 journals sshd\[123764\]: Failed password for root from 139.155.21.34 port 58630 ssh2 Aug 8 07:12:28 journals sshd\[124225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:12:29 journals sshd\[124225\]: Failed password for root from 139.155.21.34 port 53102 ssh2 Aug 8 07:17:08 journals sshd\[124585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root ...	2020-08-08 15:41:50
attack	Jul 11 18:52:00 sachi sshd\[15065\]: Invalid user ilie from 139.155.21.34 Jul 11 18:52:00 sachi sshd\[15065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 11 18:52:02 sachi sshd\[15065\]: Failed password for invalid user ilie from 139.155.21.34 port 59428 ssh2 Jul 11 18:54:53 sachi sshd\[15318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Jul 11 18:54:54 sachi sshd\[15318\]: Failed password for root from 139.155.21.34 port 34656 ssh2	2020-07-12 12:57:45

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.21.186	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T16:44:02Z and 2020-08-09T16:54:14Z	2020-08-10 03:46:07
139.155.21.186	attack	Aug 9 06:35:30 marvibiene sshd[6560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:35:32 marvibiene sshd[6560]: Failed password for root from 139.155.21.186 port 38006 ssh2 Aug 9 06:50:11 marvibiene sshd[6820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:50:12 marvibiene sshd[6820]: Failed password for root from 139.155.21.186 port 46438 ssh2	2020-08-09 15:03:59
139.155.21.186	attackbotsspam	Jul 29 11:04:16 journals sshd\[12620\]: Invalid user yzhu from 139.155.21.186 Jul 29 11:04:16 journals sshd\[12620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 29 11:04:18 journals sshd\[12620\]: Failed password for invalid user yzhu from 139.155.21.186 port 41158 ssh2 Jul 29 11:07:56 journals sshd\[13104\]: Invalid user tomcat from 139.155.21.186 Jul 29 11:07:56 journals sshd\[13104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 ...	2020-07-29 16:17:53
139.155.21.186	attack	Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:50 onepixel sshd[3644051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:52 onepixel sshd[3644051]: Failed password for invalid user wangwq from 139.155.21.186 port 54182 ssh2 Jul 28 12:08:21 onepixel sshd[3646075]: Invalid user pengteng from 139.155.21.186 port 34680	2020-07-28 20:13:58
139.155.21.186	attack	Jul 12 06:16:00 PorscheCustomer sshd[15893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 12 06:16:02 PorscheCustomer sshd[15893]: Failed password for invalid user grj from 139.155.21.186 port 60786 ssh2 Jul 12 06:16:48 PorscheCustomer sshd[15942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 ...	2020-07-12 13:41:20
139.155.21.186	attackbots	Jun 28 15:14:03 Invalid user multicraft from 139.155.21.186 port 43430	2020-06-28 23:01:14
139.155.21.186	attack	$f2bV_matches	2020-06-26 22:47:59
139.155.21.186	attack	SSH Brute-Force attacks	2020-06-08 15:33:29
139.155.21.186	attackbotsspam	Jun 5 13:58:33 cloud sshd[18333]: Failed password for root from 139.155.21.186 port 40924 ssh2	2020-06-05 21:15:05
139.155.21.186	attackspambots	May 25 14:03:37 ns3164893 sshd[9358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root May 25 14:03:39 ns3164893 sshd[9358]: Failed password for root from 139.155.21.186 port 55062 ssh2 ...	2020-05-25 20:51:09
139.155.21.186	attack	2020-05-23T04:35:10.697143server.espacesoutien.com sshd[13504]: Invalid user lkj from 139.155.21.186 port 34074 2020-05-23T04:35:10.713013server.espacesoutien.com sshd[13504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 2020-05-23T04:35:10.697143server.espacesoutien.com sshd[13504]: Invalid user lkj from 139.155.21.186 port 34074 2020-05-23T04:35:12.665872server.espacesoutien.com sshd[13504]: Failed password for invalid user lkj from 139.155.21.186 port 34074 ssh2 ...	2020-05-23 13:01:03
139.155.21.186	attackbots	May 10 22:27:19 ns382633 sshd\[24505\]: Invalid user postgres from 139.155.21.186 port 42884 May 10 22:27:19 ns382633 sshd\[24505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 May 10 22:27:20 ns382633 sshd\[24505\]: Failed password for invalid user postgres from 139.155.21.186 port 42884 ssh2 May 10 22:36:37 ns382633 sshd\[26288\]: Invalid user smbuser from 139.155.21.186 port 40350 May 10 22:36:37 ns382633 sshd\[26288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186	2020-05-11 05:02:38
139.155.21.186	attack	5x Failed Password	2020-05-07 01:11:34
139.155.21.186	attackspambots	Invalid user zw from 139.155.21.186 port 44238	2020-04-25 15:58:55
139.155.21.186	attackbots	SSH invalid-user multiple login try	2020-04-12 17:14:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.21.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4271
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.21.34.			IN	A

;; AUTHORITY SECTION:
.			156	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061801 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 06:47:52 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 34.21.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.21.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.177.80.57	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 18:42:19,261 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.177.80.57)	2019-09-12 05:48:37
218.24.167.204	attackspambots	Sep 11 23:05:03 rpi sshd[6325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.24.167.204 Sep 11 23:05:05 rpi sshd[6325]: Failed password for invalid user test123 from 218.24.167.204 port 60866 ssh2	2019-09-12 05:36:34
139.59.89.195	attackbots	Sep 11 13:48:47 dallas01 sshd[11660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.89.195 Sep 11 13:48:49 dallas01 sshd[11660]: Failed password for invalid user vftp from 139.59.89.195 port 47256 ssh2 Sep 11 13:55:59 dallas01 sshd[12638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.89.195	2019-09-12 05:56:52
187.174.169.110	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 18:40:13,607 INFO [amun_request_handler] PortScan Detected on Port: 445 (187.174.169.110)	2019-09-12 06:00:33
117.21.7.183	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 19:18:30,358 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.21.7.183)	2019-09-12 05:56:32
144.217.85.183	attackspam	Sep 11 11:14:04 friendsofhawaii sshd\[1287\]: Invalid user ts2 from 144.217.85.183 Sep 11 11:14:04 friendsofhawaii sshd\[1287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-144-217-85.net Sep 11 11:14:07 friendsofhawaii sshd\[1287\]: Failed password for invalid user ts2 from 144.217.85.183 port 51605 ssh2 Sep 11 11:21:01 friendsofhawaii sshd\[1966\]: Invalid user oracle from 144.217.85.183 Sep 11 11:21:01 friendsofhawaii sshd\[1966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-144-217-85.net	2019-09-12 05:40:34
14.251.204.91	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 18:47:42,971 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.251.204.91)	2019-09-12 05:39:05
103.255.121.135	attackspambots	Sep 11 11:39:43 hanapaa sshd\[20074\]: Invalid user ansible from 103.255.121.135 Sep 11 11:39:43 hanapaa sshd\[20074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.255.121.135 Sep 11 11:39:46 hanapaa sshd\[20074\]: Failed password for invalid user ansible from 103.255.121.135 port 56587 ssh2 Sep 11 11:48:10 hanapaa sshd\[20733\]: Invalid user admin from 103.255.121.135 Sep 11 11:48:10 hanapaa sshd\[20733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.255.121.135	2019-09-12 05:51:34
121.157.229.23	attack	2019-09-11T21:18:43.858669abusebot.cloudsearch.cf sshd\[11729\]: Invalid user bot1 from 121.157.229.23 port 36728	2019-09-12 05:47:19
80.211.132.145	attackspam	Sep 11 11:45:12 eddieflores sshd\[11685\]: Invalid user git from 80.211.132.145 Sep 11 11:45:12 eddieflores sshd\[11685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.132.145 Sep 11 11:45:14 eddieflores sshd\[11685\]: Failed password for invalid user git from 80.211.132.145 port 44444 ssh2 Sep 11 11:51:30 eddieflores sshd\[12158\]: Invalid user hduser from 80.211.132.145 Sep 11 11:51:30 eddieflores sshd\[12158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.132.145	2019-09-12 06:00:14
168.126.85.225	attack	Sep 11 18:11:13 plusreed sshd[25545]: Invalid user guest from 168.126.85.225 ...	2019-09-12 06:15:35
202.162.211.46	attackspambots	Automatic report - Banned IP Access	2019-09-12 05:46:23
46.98.62.123	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 18:39:10,122 INFO [amun_request_handler] PortScan Detected on Port: 445 (46.98.62.123)	2019-09-12 06:03:42
180.76.158.231	attackspambots	Sep 11 23:01:05 vmanager6029 sshd\[25105\]: Invalid user admin from 180.76.158.231 port 45862 Sep 11 23:01:05 vmanager6029 sshd\[25105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.158.231 Sep 11 23:01:07 vmanager6029 sshd\[25105\]: Failed password for invalid user admin from 180.76.158.231 port 45862 ssh2	2019-09-12 05:58:33
104.40.8.62	attack	F2B jail: sshd. Time: 2019-09-11 22:22:11, Reported by: VKReport	2019-09-12 05:55:39

最近上报的IP列表

168.243.231.82	193.14.214.151	85.105.16.144	187.14.149.154
171.78.202.231	72.128.211.70	45.55.156.19	101.31.93.147
247.190.15.57	110.136.8.10	45.92.73.62	63.174.89.97
147.167.63.45	155.236.220.70	112.66.10.153	202.204.239.208
61.214.117.102	233.74.159.59	138.88.117.95	15.105.119.109