139.155.39.111

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2020-07-17T20:28:36.590124shield sshd\[8022\]: Invalid user cloud from 139.155.39.111 port 44468 2020-07-17T20:28:36.600382shield sshd\[8022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-17T20:28:38.776266shield sshd\[8022\]: Failed password for invalid user cloud from 139.155.39.111 port 44468 ssh2 2020-07-17T20:34:10.044398shield sshd\[8563\]: Invalid user ftpweb from 139.155.39.111 port 57772 2020-07-17T20:34:10.060377shield sshd\[8563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-18 04:42:47
attackbotsspam	2020-07-11T02:05:28.877988vps751288.ovh.net sshd\[24311\]: Invalid user wang from 139.155.39.111 port 36632 2020-07-11T02:05:28.889866vps751288.ovh.net sshd\[24311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-11T02:05:30.546082vps751288.ovh.net sshd\[24311\]: Failed password for invalid user wang from 139.155.39.111 port 36632 ssh2 2020-07-11T02:08:08.783383vps751288.ovh.net sshd\[24313\]: Invalid user heming from 139.155.39.111 port 48030 2020-07-11T02:08:08.790299vps751288.ovh.net sshd\[24313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-11 08:23:16
attack	Invalid user 13 from 139.155.39.111 port 35786	2020-06-21 14:17:59
attackspambots	SSH login attempts.	2020-06-18 22:26:40
attack	2020-06-12T03:53:55.191475server.espacesoutien.com sshd[14717]: Invalid user naser from 139.155.39.111 port 33974 2020-06-12T03:53:56.354258server.espacesoutien.com sshd[14717]: Failed password for invalid user naser from 139.155.39.111 port 33974 ssh2 2020-06-12T03:56:42.160787server.espacesoutien.com sshd[15136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 user=root 2020-06-12T03:56:44.568638server.espacesoutien.com sshd[15136]: Failed password for root from 139.155.39.111 port 45192 ssh2 ...	2020-06-12 14:09:16
attack	Unauthorized SSH login attempts	2020-06-04 15:19:21
attackspam	May 25 18:03:07 root sshd[14815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 user=root May 25 18:03:10 root sshd[14815]: Failed password for root from 139.155.39.111 port 58882 ssh2 ...	2020-05-26 02:40:54
attack	May 24 15:09:00 pkdns2 sshd\[64872\]: Invalid user pwm from 139.155.39.111May 24 15:09:02 pkdns2 sshd\[64872\]: Failed password for invalid user pwm from 139.155.39.111 port 60098 ssh2May 24 15:12:17 pkdns2 sshd\[65066\]: Invalid user aty from 139.155.39.111May 24 15:12:18 pkdns2 sshd\[65066\]: Failed password for invalid user aty from 139.155.39.111 port 45914 ssh2May 24 15:15:44 pkdns2 sshd\[65230\]: Invalid user oxs from 139.155.39.111May 24 15:15:46 pkdns2 sshd\[65230\]: Failed password for invalid user oxs from 139.155.39.111 port 59972 ssh2 ...	2020-05-24 20:58:19

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.39.22	attack	Brute%20Force%20SSH	2020-10-02 04:23:21
139.155.39.22	attackbotsspam	SSH login attempts.	2020-10-01 20:37:49
139.155.39.22	attackbots	2020-10-01 02:45:36,042 fail2ban.actions: WARNING [ssh] Ban 139.155.39.22	2020-10-01 12:49:09
139.155.39.22	attackspam	Aug 26 00:56:17 melroy-server sshd[9468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Aug 26 00:56:19 melroy-server sshd[9468]: Failed password for invalid user bhaskar from 139.155.39.22 port 49026 ssh2 ...	2020-08-26 07:49:16
139.155.39.62	attackbotsspam	Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:30 scw-6657dc sshd[23415]: Failed password for root from 139.155.39.62 port 38330 ssh2 ...	2020-08-09 13:30:51
139.155.39.22	attack	Aug 8 20:21:05 localhost sshd[104329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:21:07 localhost sshd[104329]: Failed password for root from 139.155.39.22 port 52804 ssh2 Aug 8 20:25:12 localhost sshd[104832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:25:14 localhost sshd[104832]: Failed password for root from 139.155.39.22 port 57400 ssh2 Aug 8 20:29:14 localhost sshd[105254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:29:16 localhost sshd[105254]: Failed password for root from 139.155.39.22 port 33764 ssh2 ...	2020-08-09 04:40:33
139.155.39.62	attack	Jul 29 07:25:05 host sshd[16207]: Invalid user zcx from 139.155.39.62 port 50696 ...	2020-07-29 14:40:02
139.155.39.22	attackspambots	Jul 28 06:04:54 ny01 sshd[3049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Jul 28 06:04:56 ny01 sshd[3049]: Failed password for invalid user seongmin from 139.155.39.22 port 58734 ssh2 Jul 28 06:09:11 ny01 sshd[3489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22	2020-07-28 18:18:17
139.155.39.62	attack	2020-07-25T06:58:02.214638vps751288.ovh.net sshd\[16395\]: Invalid user aly from 139.155.39.62 port 44860 2020-07-25T06:58:02.223236vps751288.ovh.net sshd\[16395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-25T06:58:04.416714vps751288.ovh.net sshd\[16395\]: Failed password for invalid user aly from 139.155.39.62 port 44860 ssh2 2020-07-25T07:02:24.237434vps751288.ovh.net sshd\[16425\]: Invalid user harish from 139.155.39.62 port 40462 2020-07-25T07:02:24.246172vps751288.ovh.net sshd\[16425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62	2020-07-25 13:42:50
139.155.39.22	attackbots	Automatic report BANNED IP	2020-07-13 03:44:55
139.155.39.22	attack	(sshd) Failed SSH login from 139.155.39.22 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 11 05:39:23 amsweb01 sshd[19777]: Invalid user kirk from 139.155.39.22 port 36300 Jul 11 05:39:25 amsweb01 sshd[19777]: Failed password for invalid user kirk from 139.155.39.22 port 36300 ssh2 Jul 11 05:55:02 amsweb01 sshd[21996]: Invalid user openvpn from 139.155.39.22 port 47636 Jul 11 05:55:04 amsweb01 sshd[21996]: Failed password for invalid user openvpn from 139.155.39.22 port 47636 ssh2 Jul 11 05:57:32 amsweb01 sshd[22418]: Invalid user git from 139.155.39.22 port 45644	2020-07-11 12:23:44
139.155.39.62	attackbotsspam	2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:44.190897abusebot-6.cloudsearch.cf sshd[24444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:46.388046abusebot-6.cloudsearch.cf sshd[24444]: Failed password for invalid user chenoa from 139.155.39.62 port 34158 ssh2 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:37.925814abusebot-6.cloudsearch.cf sshd[24523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:40.198129abusebot-6.cloudsearch.cf sshd[24523]: F ...	2020-07-10 14:43:30
139.155.39.22	attack	Jun 27 00:53:39 firewall sshd[30023]: Failed password for invalid user ngs from 139.155.39.22 port 59384 ssh2 Jun 27 00:56:30 firewall sshd[30187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Jun 27 00:56:33 firewall sshd[30187]: Failed password for root from 139.155.39.22 port 33126 ssh2 ...	2020-06-27 12:21:37
139.155.39.62	attackspam	SSH Invalid Login	2020-06-17 08:47:23
139.155.39.22	attackspam	2020-06-12T08:01:07.597615mail.standpoint.com.ua sshd[7387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:01:09.267871mail.standpoint.com.ua sshd[7387]: Failed password for root from 139.155.39.22 port 40648 ssh2 2020-06-12T08:03:48.081861mail.standpoint.com.ua sshd[7717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:03:50.188601mail.standpoint.com.ua sshd[7717]: Failed password for root from 139.155.39.22 port 45320 ssh2 2020-06-12T08:06:26.299089mail.standpoint.com.ua sshd[8085]: Invalid user dooruser from 139.155.39.22 port 50000 ...	2020-06-12 15:48:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.39.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20667
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.39.111.			IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 20:58:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 111.39.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.39.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.128.22.249	attack	Aug 18 23:34:45 [host] sshd[24508]: Invalid user c Aug 18 23:34:45 [host] sshd[24508]: pam_unix(sshd: Aug 18 23:34:47 [host] sshd[24508]: Failed passwor	2020-08-19 06:00:11
209.126.124.203	attack	Aug 18 20:37:08 localhost sshd[6445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=condor2170.startdedicated.com user=root Aug 18 20:37:10 localhost sshd[6445]: Failed password for root from 209.126.124.203 port 38123 ssh2 Aug 18 20:46:14 localhost sshd[7352]: Invalid user ntc from 209.126.124.203 port 43400 Aug 18 20:46:14 localhost sshd[7352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=condor2170.startdedicated.com Aug 18 20:46:14 localhost sshd[7352]: Invalid user ntc from 209.126.124.203 port 43400 Aug 18 20:46:16 localhost sshd[7352]: Failed password for invalid user ntc from 209.126.124.203 port 43400 ssh2 ...	2020-08-19 05:51:13
103.146.23.110	attack	Attempted connection to port 445.	2020-08-19 05:52:05
118.89.231.121	attackbotsspam	Lines containing failures of 118.89.231.121 (max 1000) Aug 17 15:19:20 Tosca sshd[1993923]: Invalid user Adminixxxr from 118.89.231.121 port 47838 Aug 17 15:19:20 Tosca sshd[1993923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.121 Aug 17 15:19:22 Tosca sshd[1993923]: Failed password for invalid user Adminixxxr from 118.89.231.121 port 47838 ssh2 Aug 17 15:19:24 Tosca sshd[1993923]: Received disconnect from 118.89.231.121 port 47838:11: Bye Bye [preauth] Aug 17 15:19:24 Tosca sshd[1993923]: Disconnected from invalid user Adminixxxr 118.89.231.121 port 47838 [preauth] Aug 17 15:24:07 Tosca sshd[2005938]: User r.r from 118.89.231.121 not allowed because none of user's groups are listed in AllowGroups Aug 17 15:24:07 Tosca sshd[2005938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.231.121 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.89.231	2020-08-19 06:13:31
180.244.5.45	attack	Automatic report - Port Scan Attack	2020-08-19 06:19:02
189.195.134.142	attackspambots	Unauthorized connection attempt from IP address 189.195.134.142 on Port 445(SMB)	2020-08-19 05:46:07
106.52.243.17	attackbots	Aug 18 21:22:47 onepixel sshd[113996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.243.17 Aug 18 21:22:47 onepixel sshd[113996]: Invalid user web from 106.52.243.17 port 57012 Aug 18 21:22:49 onepixel sshd[113996]: Failed password for invalid user web from 106.52.243.17 port 57012 ssh2 Aug 18 21:26:52 onepixel sshd[116279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.243.17 user=root Aug 18 21:26:54 onepixel sshd[116279]: Failed password for root from 106.52.243.17 port 45146 ssh2	2020-08-19 05:44:09
114.33.174.116	attackbotsspam	Attempted connection to port 81.	2020-08-19 05:47:38
160.202.156.34	attack	Unauthorized connection attempt from IP address 160.202.156.34 on Port 445(SMB)	2020-08-19 05:53:17
203.206.205.179	attack	Aug 18 15:46:05 s158375 sshd[22574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.206.205.179	2020-08-19 06:03:53
190.143.75.82	attackspambots	Unauthorized connection attempt from IP address 190.143.75.82 on Port 445(SMB)	2020-08-19 06:12:15
114.159.61.102	attack	Unauthorized connection attempt from IP address 114.159.61.102 on Port 445(SMB)	2020-08-19 06:19:56
207.154.229.50	attackbots	Invalid user annam from 207.154.229.50 port 38378	2020-08-19 06:19:31
81.82.227.9	attackbots	Port 22 Scan, PTR: None	2020-08-19 06:04:41
77.27.168.117	attackspam	detected by Fail2Ban	2020-08-19 05:48:01

最近上报的IP列表

177.132.11.65	114.27.134.253	171.241.96.86	35.168.129.141
173.236.224.115	112.160.228.18	162.243.145.43	113.160.189.112
201.83.39.53	113.88.166.161	85.153.239.21	61.157.61.51
133.149.198.221	78.247.189.246	182.51.133.225	67.243.247.166
253.255.153.65	185.107.45.150	62.68.238.76	54.153.56.183