139.155.38.67 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	prod6 ...	2020-09-19 03:17:46
attackbots	prod6 ...	2020-09-18 19:19:47
attackspambots	Aug 30 23:37:35 sso sshd[1229]: Failed password for root from 139.155.38.67 port 57214 ssh2 ...	2020-08-31 06:32:45
attackspam	Aug 18 18:09:44 hidden sshd[33584]: Invalid user andrii from 139.155.38.67 port 38548 Aug 18 18:09:44 hidden sshd[33584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 Aug 18 18:09:46 hidden sshd[33584]: Failed password for invalid user andrii from 139.155.38.67 port 38548 ssh2	2020-08-19 00:49:18
attackbotsspam	Aug 17 14:03:59 mellenthin sshd[9462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 Aug 17 14:04:01 mellenthin sshd[9462]: Failed password for invalid user matias from 139.155.38.67 port 37892 ssh2	2020-08-17 23:30:31
attackspambots	2020-08-10T07:06:51.956643linuxbox-skyline sshd[47015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 user=root 2020-08-10T07:06:53.620637linuxbox-skyline sshd[47015]: Failed password for root from 139.155.38.67 port 60430 ssh2 ...	2020-08-10 23:05:27
attackbots	Aug 7 06:06:42 gospond sshd[15506]: Failed password for root from 139.155.38.67 port 48558 ssh2 Aug 7 06:06:40 gospond sshd[15506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 user=root Aug 7 06:06:42 gospond sshd[15506]: Failed password for root from 139.155.38.67 port 48558 ssh2 ...	2020-08-07 16:21:39
attack	SSH BruteForce Attack	2020-08-05 06:55:10
attack	Brute-force attempt banned	2020-08-01 19:25:36
attack	Jul 8 18:53:02 gw1 sshd[20381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 Jul 8 18:53:04 gw1 sshd[20381]: Failed password for invalid user jking from 139.155.38.67 port 53112 ssh2 ...	2020-07-09 02:12:15
attack	2020-07-03T16:12:45.849821server.espacesoutien.com sshd[22014]: Failed password for invalid user dz from 139.155.38.67 port 58864 ssh2 2020-07-03T16:17:22.362984server.espacesoutien.com sshd[27209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.67 user=root 2020-07-03T16:17:24.461755server.espacesoutien.com sshd[27209]: Failed password for root from 139.155.38.67 port 39808 ssh2 2020-07-03T16:18:44.361617server.espacesoutien.com sshd[27384]: Invalid user lsw from 139.155.38.67 port 49788 ...	2020-07-04 02:12:32

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.38.57	attack	Oct 4 01:33:09 plg sshd[18847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 Oct 4 01:33:10 plg sshd[18847]: Failed password for invalid user SSH-2.0-OpenSSH_6.7p1 from 139.155.38.57 port 33946 ssh2 Oct 4 01:36:28 plg sshd[18884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 Oct 4 01:36:30 plg sshd[18884]: Failed password for invalid user sami from 139.155.38.57 port 36018 ssh2 Oct 4 01:40:34 plg sshd[18980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 Oct 4 01:40:36 plg sshd[18980]: Failed password for invalid user bitch from 139.155.38.57 port 51500 ssh2 ...	2020-10-04 08:00:50
139.155.38.57	attackspam	Invalid user prakash from 139.155.38.57 port 55730	2020-10-04 00:23:06
139.155.38.57	attack	SSH login attempts.	2020-10-03 16:09:01
139.155.38.57	attackspam	Brute-force attempt banned	2020-09-23 21:57:32
139.155.38.57	attackspambots	Brute-force attempt banned	2020-09-23 14:17:16
139.155.38.57	attackbotsspam	Brute-force attempt banned	2020-09-23 06:06:23
139.155.38.57	attackspam	2020-09-19T10:25:20.0469551495-001 sshd[17616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 user=root 2020-09-19T10:25:21.7835611495-001 sshd[17616]: Failed password for root from 139.155.38.57 port 51490 ssh2 2020-09-19T10:29:57.5620401495-001 sshd[17784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 user=root 2020-09-19T10:30:00.3272061495-001 sshd[17784]: Failed password for root from 139.155.38.57 port 45144 ssh2 2020-09-19T10:39:34.2306601495-001 sshd[18258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.38.57 user=root 2020-09-19T10:39:36.2079131495-001 sshd[18258]: Failed password for root from 139.155.38.57 port 60682 ssh2 ...	2020-09-19 23:33:04
139.155.38.57	attack	Sep 19 02:54:30 Tower sshd[15023]: Connection from 139.155.38.57 port 46774 on 192.168.10.220 port 22 rdomain "" Sep 19 02:54:37 Tower sshd[15023]: Failed password for root from 139.155.38.57 port 46774 ssh2 Sep 19 02:54:37 Tower sshd[15023]: Received disconnect from 139.155.38.57 port 46774:11: Bye Bye [preauth] Sep 19 02:54:37 Tower sshd[15023]: Disconnected from authenticating user root 139.155.38.57 port 46774 [preauth]	2020-09-19 15:22:59
139.155.38.57	attackspam	Brute%20Force%20SSH	2020-09-19 06:57:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.38.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31053
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.38.67.			IN	A

;; AUTHORITY SECTION:
.			404	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070301 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 04 02:12:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 67.38.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 67.38.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
156.200.107.242	attackspambots	20 attempts against mh-misbehave-ban on tree	2020-06-05 21:25:20
222.186.15.62	attack	2020-06-05T15:00:02.848201mail.broermann.family sshd[8069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root 2020-06-05T15:00:04.493841mail.broermann.family sshd[8069]: Failed password for root from 222.186.15.62 port 26360 ssh2 2020-06-05T15:00:02.848201mail.broermann.family sshd[8069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root 2020-06-05T15:00:04.493841mail.broermann.family sshd[8069]: Failed password for root from 222.186.15.62 port 26360 ssh2 2020-06-05T15:00:06.622525mail.broermann.family sshd[8069]: Failed password for root from 222.186.15.62 port 26360 ssh2 ...	2020-06-05 21:09:03
1.38.221.136	attack	Email rejected due to spam filtering	2020-06-05 21:35:27
157.46.253.10	attackbotsspam	1591358598 - 06/05/2020 14:03:18 Host: 157.46.253.10/157.46.253.10 Port: 445 TCP Blocked	2020-06-05 20:57:31
190.60.200.126	attackbots	Jun 5 18:56:02 itv-usvr-01 sshd[31178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.200.126 user=root Jun 5 18:56:04 itv-usvr-01 sshd[31178]: Failed password for root from 190.60.200.126 port 35187 ssh2 Jun 5 18:59:25 itv-usvr-01 sshd[31336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.200.126 user=root Jun 5 18:59:26 itv-usvr-01 sshd[31336]: Failed password for root from 190.60.200.126 port 33579 ssh2 Jun 5 19:02:46 itv-usvr-01 sshd[31479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.200.126 user=root Jun 5 19:02:48 itv-usvr-01 sshd[31479]: Failed password for root from 190.60.200.126 port 60205 ssh2	2020-06-05 21:20:56
49.228.187.136	attack	xmlrpc attack	2020-06-05 21:19:53
144.172.79.7	attack	SSH_scan	2020-06-05 21:37:41
49.235.216.127	attackbots	Fail2Ban	2020-06-05 20:54:45
218.200.34.122	attackbotsspam	Automatic report BANNED IP	2020-06-05 21:26:34
119.29.121.229	attack	Jun 5 14:56:18 vps687878 sshd\[10251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.121.229 user=root Jun 5 14:56:20 vps687878 sshd\[10251\]: Failed password for root from 119.29.121.229 port 48778 ssh2 Jun 5 15:00:54 vps687878 sshd\[10740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.121.229 user=root Jun 5 15:00:56 vps687878 sshd\[10740\]: Failed password for root from 119.29.121.229 port 38794 ssh2 Jun 5 15:05:21 vps687878 sshd\[11084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.121.229 user=root ...	2020-06-05 21:15:54
114.218.73.208	attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-05 20:52:41
218.17.162.119	attack	Jun 5 14:55:27 abendstille sshd\[19047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.162.119 user=root Jun 5 14:55:29 abendstille sshd\[19047\]: Failed password for root from 218.17.162.119 port 19827 ssh2 Jun 5 14:57:05 abendstille sshd\[20520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.162.119 user=root Jun 5 14:57:06 abendstille sshd\[20520\]: Failed password for root from 218.17.162.119 port 38731 ssh2 Jun 5 14:58:36 abendstille sshd\[21930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.162.119 user=root ...	2020-06-05 21:00:13
177.200.68.107	attackspam	1591358583 - 06/05/2020 14:03:03 Host: 177.200.68.107/177.200.68.107 Port: 445 TCP Blocked	2020-06-05 21:07:22
51.68.121.235	attack	Jun 5 18:08:25 gw1 sshd[19902]: Failed password for root from 51.68.121.235 port 59522 ssh2 ...	2020-06-05 21:35:59
149.202.162.73	attackbotsspam	Jun 5 09:24:57 ny01 sshd[24745]: Failed password for root from 149.202.162.73 port 43504 ssh2 Jun 5 09:28:43 ny01 sshd[25712]: Failed password for root from 149.202.162.73 port 47598 ssh2	2020-06-05 21:37:11

最近上报的IP列表

197.234.48.236	200.13.45.22	87.117.59.165	190.102.143.82
97.164.20.9	14.187.117.215	182.64.48.254	167.71.4.187
0.164.3.47	190.248.150.138	187.189.24.234	159.69.88.101
113.172.127.154	1.222.56.219	95.217.228.34	40.122.118.224
13.127.29.179	14.186.62.245	96.255.208.211	176.187.249.170