城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | SSH login attempts. |
2020-09-09 00:18:04 |
| attackspambots | SSH login attempts. |
2020-09-08 15:49:56 |
| attack | Lines containing failures of 139.155.21.34 Sep 7 02:16:25 v2hgb sshd[5602]: Invalid user ubnt from 139.155.21.34 port 38778 Sep 7 02:16:25 v2hgb sshd[5602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Sep 7 02:16:27 v2hgb sshd[5602]: Failed password for invalid user ubnt from 139.155.21.34 port 38778 ssh2 Sep 7 02:16:27 v2hgb sshd[5602]: Received disconnect from 139.155.21.34 port 38778:11: Bye Bye [preauth] Sep 7 02:16:27 v2hgb sshd[5602]: Disconnected from invalid user ubnt 139.155.21.34 port 38778 [preauth] Sep 7 02:37:10 v2hgb sshd[7634]: Connection closed by 139.155.21.34 port 39446 [preauth] Sep 7 02:41:12 v2hgb sshd[8175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=r.r Sep 7 02:41:14 v2hgb sshd[8175]: Failed password for r.r from 139.155.21.34 port 58590 ssh2 Sep 7 02:41:15 v2hgb sshd[8175]: Received disconnect from 139.155.21.34 por........ ------------------------------ |
2020-09-08 08:24:38 |
| attack | Invalid user git from 139.155.21.34 port 43078 |
2020-09-02 20:36:28 |
| attackbotsspam | Jul 24 10:30:38 server sshd[8988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 24 10:30:39 server sshd[8988]: Failed password for invalid user admin from 139.155.21.34 port 53580 ssh2 Jul 24 10:38:03 server sshd[10333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 |
2020-09-02 12:30:53 |
| attackbots | Input Traffic from this IP, but critial abuseconfidencescore |
2020-09-02 05:39:51 |
| attackbotsspam | Fail2Ban Ban Triggered (2) |
2020-08-28 03:54:16 |
| attackspam | fail2ban -- 139.155.21.34 ... |
2020-08-21 17:07:27 |
| attackspambots | Aug 18 15:36:13 vps639187 sshd\[15240\]: Invalid user le from 139.155.21.34 port 48616 Aug 18 15:36:13 vps639187 sshd\[15240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Aug 18 15:36:15 vps639187 sshd\[15240\]: Failed password for invalid user le from 139.155.21.34 port 48616 ssh2 ... |
2020-08-18 22:01:22 |
| attackspam | Aug 11 15:07:58 cosmoit sshd[21906]: Failed password for root from 139.155.21.34 port 46194 ssh2 |
2020-08-11 21:46:31 |
| attack | Aug 8 07:07:49 journals sshd\[123764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:07:51 journals sshd\[123764\]: Failed password for root from 139.155.21.34 port 58630 ssh2 Aug 8 07:12:28 journals sshd\[124225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Aug 8 07:12:29 journals sshd\[124225\]: Failed password for root from 139.155.21.34 port 53102 ssh2 Aug 8 07:17:08 journals sshd\[124585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root ... |
2020-08-08 15:41:50 |
| attack | Jul 11 18:52:00 sachi sshd\[15065\]: Invalid user ilie from 139.155.21.34 Jul 11 18:52:00 sachi sshd\[15065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 11 18:52:02 sachi sshd\[15065\]: Failed password for invalid user ilie from 139.155.21.34 port 59428 ssh2 Jul 11 18:54:53 sachi sshd\[15318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=root Jul 11 18:54:54 sachi sshd\[15318\]: Failed password for root from 139.155.21.34 port 34656 ssh2 |
2020-07-12 12:57:45 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.155.21.186 | attack | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T16:44:02Z and 2020-08-09T16:54:14Z |
2020-08-10 03:46:07 |
| 139.155.21.186 | attack | Aug 9 06:35:30 marvibiene sshd[6560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:35:32 marvibiene sshd[6560]: Failed password for root from 139.155.21.186 port 38006 ssh2 Aug 9 06:50:11 marvibiene sshd[6820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root Aug 9 06:50:12 marvibiene sshd[6820]: Failed password for root from 139.155.21.186 port 46438 ssh2 |
2020-08-09 15:03:59 |
| 139.155.21.186 | attackbotsspam | Jul 29 11:04:16 journals sshd\[12620\]: Invalid user yzhu from 139.155.21.186 Jul 29 11:04:16 journals sshd\[12620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 29 11:04:18 journals sshd\[12620\]: Failed password for invalid user yzhu from 139.155.21.186 port 41158 ssh2 Jul 29 11:07:56 journals sshd\[13104\]: Invalid user tomcat from 139.155.21.186 Jul 29 11:07:56 journals sshd\[13104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 ... |
2020-07-29 16:17:53 |
| 139.155.21.186 | attack | Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:50 onepixel sshd[3644051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 28 12:04:50 onepixel sshd[3644051]: Invalid user wangwq from 139.155.21.186 port 54182 Jul 28 12:04:52 onepixel sshd[3644051]: Failed password for invalid user wangwq from 139.155.21.186 port 54182 ssh2 Jul 28 12:08:21 onepixel sshd[3646075]: Invalid user pengteng from 139.155.21.186 port 34680 |
2020-07-28 20:13:58 |
| 139.155.21.186 | attack | Jul 12 06:16:00 PorscheCustomer sshd[15893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 Jul 12 06:16:02 PorscheCustomer sshd[15893]: Failed password for invalid user grj from 139.155.21.186 port 60786 ssh2 Jul 12 06:16:48 PorscheCustomer sshd[15942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 ... |
2020-07-12 13:41:20 |
| 139.155.21.186 | attackbots | Jun 28 15:14:03 Invalid user multicraft from 139.155.21.186 port 43430 |
2020-06-28 23:01:14 |
| 139.155.21.186 | attack | $f2bV_matches |
2020-06-26 22:47:59 |
| 139.155.21.186 | attack | SSH Brute-Force attacks |
2020-06-08 15:33:29 |
| 139.155.21.186 | attackbotsspam | Jun 5 13:58:33 cloud sshd[18333]: Failed password for root from 139.155.21.186 port 40924 ssh2 |
2020-06-05 21:15:05 |
| 139.155.21.186 | attackspambots | May 25 14:03:37 ns3164893 sshd[9358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 user=root May 25 14:03:39 ns3164893 sshd[9358]: Failed password for root from 139.155.21.186 port 55062 ssh2 ... |
2020-05-25 20:51:09 |
| 139.155.21.186 | attack | 2020-05-23T04:35:10.697143server.espacesoutien.com sshd[13504]: Invalid user lkj from 139.155.21.186 port 34074 2020-05-23T04:35:10.713013server.espacesoutien.com sshd[13504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 2020-05-23T04:35:10.697143server.espacesoutien.com sshd[13504]: Invalid user lkj from 139.155.21.186 port 34074 2020-05-23T04:35:12.665872server.espacesoutien.com sshd[13504]: Failed password for invalid user lkj from 139.155.21.186 port 34074 ssh2 ... |
2020-05-23 13:01:03 |
| 139.155.21.186 | attackbots | May 10 22:27:19 ns382633 sshd\[24505\]: Invalid user postgres from 139.155.21.186 port 42884 May 10 22:27:19 ns382633 sshd\[24505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 May 10 22:27:20 ns382633 sshd\[24505\]: Failed password for invalid user postgres from 139.155.21.186 port 42884 ssh2 May 10 22:36:37 ns382633 sshd\[26288\]: Invalid user smbuser from 139.155.21.186 port 40350 May 10 22:36:37 ns382633 sshd\[26288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.186 |
2020-05-11 05:02:38 |
| 139.155.21.186 | attack | 5x Failed Password |
2020-05-07 01:11:34 |
| 139.155.21.186 | attackspambots | Invalid user zw from 139.155.21.186 port 44238 |
2020-04-25 15:58:55 |
| 139.155.21.186 | attackbots | SSH invalid-user multiple login try |
2020-04-12 17:14:06 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.21.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4271
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.21.34. IN A
;; AUTHORITY SECTION:
. 156 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020061801 1800 900 604800 86400
;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 06:47:52 CST 2020
;; MSG SIZE rcvd: 117
Host 34.21.155.139.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 34.21.155.139.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 49.149.100.231 | attack | Unauthorized connection attempt detected from IP address 49.149.100.231 to port 445 |
2019-12-17 01:20:33 |
| 36.71.232.153 | attackspam | Unauthorized connection attempt detected from IP address 36.71.232.153 to port 445 |
2019-12-17 01:27:32 |
| 107.170.235.19 | attack | Dec 16 16:25:07 localhost sshd[37243]: Failed password for invalid user admin from 107.170.235.19 port 54258 ssh2 Dec 16 16:36:04 localhost sshd[37491]: Failed password for invalid user ident from 107.170.235.19 port 39246 ssh2 Dec 16 16:41:38 localhost sshd[37748]: Failed password for invalid user vx from 107.170.235.19 port 46834 ssh2 |
2019-12-17 00:58:54 |
| 197.210.64.156 | attack | TCP Port Scanning |
2019-12-17 01:05:01 |
| 77.222.106.21 | attackbotsspam | 1576507477 - 12/16/2019 15:44:37 Host: 77.222.106.21/77.222.106.21 Port: 445 TCP Blocked |
2019-12-17 00:54:48 |
| 140.143.193.52 | attackbotsspam | Dec 16 16:23:26 sso sshd[31381]: Failed password for root from 140.143.193.52 port 59106 ssh2 ... |
2019-12-17 01:32:35 |
| 222.186.180.8 | attackspambots | --- report --- Dec 16 13:46:42 sshd: Connection from 222.186.180.8 port 1378 Dec 16 13:46:51 sshd: Failed password for root from 222.186.180.8 port 1378 ssh2 |
2019-12-17 01:07:34 |
| 54.37.232.108 | attackspam | Dec 16 12:47:28 firewall sshd[8624]: Invalid user !Qq123! from 54.37.232.108 Dec 16 12:47:30 firewall sshd[8624]: Failed password for invalid user !Qq123! from 54.37.232.108 port 52944 ssh2 Dec 16 12:53:14 firewall sshd[8753]: Invalid user admin222 from 54.37.232.108 ... |
2019-12-17 00:55:41 |
| 147.135.5.7 | attackspambots | Lines containing failures of 147.135.5.7 Dec 16 11:22:18 zabbix sshd[98017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.5.7 user=r.r Dec 16 11:22:19 zabbix sshd[98017]: Failed password for r.r from 147.135.5.7 port 39500 ssh2 Dec 16 11:22:19 zabbix sshd[98017]: Received disconnect from 147.135.5.7 port 39500:11: Bye Bye [preauth] Dec 16 11:22:19 zabbix sshd[98017]: Disconnected from authenticating user r.r 147.135.5.7 port 39500 [preauth] Dec 16 11:32:01 zabbix sshd[98939]: Invalid user squid from 147.135.5.7 port 44556 Dec 16 11:32:01 zabbix sshd[98939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.5.7 Dec 16 11:32:03 zabbix sshd[98939]: Failed password for invalid user squid from 147.135.5.7 port 44556 ssh2 Dec 16 11:32:03 zabbix sshd[98939]: Received disconnect from 147.135.5.7 port 44556:11: Bye Bye [preauth] Dec 16 11:32:03 zabbix sshd[98939]: Disconnected from i........ ------------------------------ |
2019-12-17 00:56:11 |
| 40.92.41.56 | attackspambots | Dec 16 20:01:24 debian-2gb-vpn-nbg1-1 kernel: [894053.899479] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.41.56 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=104 ID=9530 DF PROTO=TCP SPT=6554 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 |
2019-12-17 01:09:50 |
| 138.197.189.136 | attack | Dec 16 22:13:17 gw1 sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.136 Dec 16 22:13:19 gw1 sshd[28026]: Failed password for invalid user balma from 138.197.189.136 port 56918 ssh2 ... |
2019-12-17 01:15:50 |
| 112.85.42.171 | attack | 2019-12-16T17:12:28.764229abusebot-2.cloudsearch.cf sshd\[2562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.171 user=root 2019-12-16T17:12:31.010076abusebot-2.cloudsearch.cf sshd\[2562\]: Failed password for root from 112.85.42.171 port 23104 ssh2 2019-12-16T17:12:34.488264abusebot-2.cloudsearch.cf sshd\[2562\]: Failed password for root from 112.85.42.171 port 23104 ssh2 2019-12-16T17:12:37.693299abusebot-2.cloudsearch.cf sshd\[2562\]: Failed password for root from 112.85.42.171 port 23104 ssh2 |
2019-12-17 01:31:11 |
| 187.176.190.14 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-17 01:15:19 |
| 187.177.114.55 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-17 00:53:42 |
| 46.101.17.215 | attackbotsspam | Dec 16 11:58:13 linuxvps sshd\[47395\]: Invalid user bottger from 46.101.17.215 Dec 16 11:58:13 linuxvps sshd\[47395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.17.215 Dec 16 11:58:15 linuxvps sshd\[47395\]: Failed password for invalid user bottger from 46.101.17.215 port 49982 ssh2 Dec 16 12:03:28 linuxvps sshd\[50809\]: Invalid user admin888 from 46.101.17.215 Dec 16 12:03:28 linuxvps sshd\[50809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.17.215 |
2019-12-17 01:04:17 |