139.155.39.111

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2020-07-17T20:28:36.590124shield sshd\[8022\]: Invalid user cloud from 139.155.39.111 port 44468 2020-07-17T20:28:36.600382shield sshd\[8022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-17T20:28:38.776266shield sshd\[8022\]: Failed password for invalid user cloud from 139.155.39.111 port 44468 ssh2 2020-07-17T20:34:10.044398shield sshd\[8563\]: Invalid user ftpweb from 139.155.39.111 port 57772 2020-07-17T20:34:10.060377shield sshd\[8563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-18 04:42:47
attackbotsspam	2020-07-11T02:05:28.877988vps751288.ovh.net sshd\[24311\]: Invalid user wang from 139.155.39.111 port 36632 2020-07-11T02:05:28.889866vps751288.ovh.net sshd\[24311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-11T02:05:30.546082vps751288.ovh.net sshd\[24311\]: Failed password for invalid user wang from 139.155.39.111 port 36632 ssh2 2020-07-11T02:08:08.783383vps751288.ovh.net sshd\[24313\]: Invalid user heming from 139.155.39.111 port 48030 2020-07-11T02:08:08.790299vps751288.ovh.net sshd\[24313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-11 08:23:16
attack	Invalid user 13 from 139.155.39.111 port 35786	2020-06-21 14:17:59
attackspambots	SSH login attempts.	2020-06-18 22:26:40
attack	2020-06-12T03:53:55.191475server.espacesoutien.com sshd[14717]: Invalid user naser from 139.155.39.111 port 33974 2020-06-12T03:53:56.354258server.espacesoutien.com sshd[14717]: Failed password for invalid user naser from 139.155.39.111 port 33974 ssh2 2020-06-12T03:56:42.160787server.espacesoutien.com sshd[15136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 user=root 2020-06-12T03:56:44.568638server.espacesoutien.com sshd[15136]: Failed password for root from 139.155.39.111 port 45192 ssh2 ...	2020-06-12 14:09:16
attack	Unauthorized SSH login attempts	2020-06-04 15:19:21
attackspam	May 25 18:03:07 root sshd[14815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 user=root May 25 18:03:10 root sshd[14815]: Failed password for root from 139.155.39.111 port 58882 ssh2 ...	2020-05-26 02:40:54
attack	May 24 15:09:00 pkdns2 sshd\[64872\]: Invalid user pwm from 139.155.39.111May 24 15:09:02 pkdns2 sshd\[64872\]: Failed password for invalid user pwm from 139.155.39.111 port 60098 ssh2May 24 15:12:17 pkdns2 sshd\[65066\]: Invalid user aty from 139.155.39.111May 24 15:12:18 pkdns2 sshd\[65066\]: Failed password for invalid user aty from 139.155.39.111 port 45914 ssh2May 24 15:15:44 pkdns2 sshd\[65230\]: Invalid user oxs from 139.155.39.111May 24 15:15:46 pkdns2 sshd\[65230\]: Failed password for invalid user oxs from 139.155.39.111 port 59972 ssh2 ...	2020-05-24 20:58:19

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.39.22	attack	Brute%20Force%20SSH	2020-10-02 04:23:21
139.155.39.22	attackbotsspam	SSH login attempts.	2020-10-01 20:37:49
139.155.39.22	attackbots	2020-10-01 02:45:36,042 fail2ban.actions: WARNING [ssh] Ban 139.155.39.22	2020-10-01 12:49:09
139.155.39.22	attackspam	Aug 26 00:56:17 melroy-server sshd[9468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Aug 26 00:56:19 melroy-server sshd[9468]: Failed password for invalid user bhaskar from 139.155.39.22 port 49026 ssh2 ...	2020-08-26 07:49:16
139.155.39.62	attackbotsspam	Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:30 scw-6657dc sshd[23415]: Failed password for root from 139.155.39.62 port 38330 ssh2 ...	2020-08-09 13:30:51
139.155.39.22	attack	Aug 8 20:21:05 localhost sshd[104329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:21:07 localhost sshd[104329]: Failed password for root from 139.155.39.22 port 52804 ssh2 Aug 8 20:25:12 localhost sshd[104832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:25:14 localhost sshd[104832]: Failed password for root from 139.155.39.22 port 57400 ssh2 Aug 8 20:29:14 localhost sshd[105254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:29:16 localhost sshd[105254]: Failed password for root from 139.155.39.22 port 33764 ssh2 ...	2020-08-09 04:40:33
139.155.39.62	attack	Jul 29 07:25:05 host sshd[16207]: Invalid user zcx from 139.155.39.62 port 50696 ...	2020-07-29 14:40:02
139.155.39.22	attackspambots	Jul 28 06:04:54 ny01 sshd[3049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Jul 28 06:04:56 ny01 sshd[3049]: Failed password for invalid user seongmin from 139.155.39.22 port 58734 ssh2 Jul 28 06:09:11 ny01 sshd[3489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22	2020-07-28 18:18:17
139.155.39.62	attack	2020-07-25T06:58:02.214638vps751288.ovh.net sshd\[16395\]: Invalid user aly from 139.155.39.62 port 44860 2020-07-25T06:58:02.223236vps751288.ovh.net sshd\[16395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-25T06:58:04.416714vps751288.ovh.net sshd\[16395\]: Failed password for invalid user aly from 139.155.39.62 port 44860 ssh2 2020-07-25T07:02:24.237434vps751288.ovh.net sshd\[16425\]: Invalid user harish from 139.155.39.62 port 40462 2020-07-25T07:02:24.246172vps751288.ovh.net sshd\[16425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62	2020-07-25 13:42:50
139.155.39.22	attackbots	Automatic report BANNED IP	2020-07-13 03:44:55
139.155.39.22	attack	(sshd) Failed SSH login from 139.155.39.22 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 11 05:39:23 amsweb01 sshd[19777]: Invalid user kirk from 139.155.39.22 port 36300 Jul 11 05:39:25 amsweb01 sshd[19777]: Failed password for invalid user kirk from 139.155.39.22 port 36300 ssh2 Jul 11 05:55:02 amsweb01 sshd[21996]: Invalid user openvpn from 139.155.39.22 port 47636 Jul 11 05:55:04 amsweb01 sshd[21996]: Failed password for invalid user openvpn from 139.155.39.22 port 47636 ssh2 Jul 11 05:57:32 amsweb01 sshd[22418]: Invalid user git from 139.155.39.22 port 45644	2020-07-11 12:23:44
139.155.39.62	attackbotsspam	2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:44.190897abusebot-6.cloudsearch.cf sshd[24444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:46.388046abusebot-6.cloudsearch.cf sshd[24444]: Failed password for invalid user chenoa from 139.155.39.62 port 34158 ssh2 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:37.925814abusebot-6.cloudsearch.cf sshd[24523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:40.198129abusebot-6.cloudsearch.cf sshd[24523]: F ...	2020-07-10 14:43:30
139.155.39.22	attack	Jun 27 00:53:39 firewall sshd[30023]: Failed password for invalid user ngs from 139.155.39.22 port 59384 ssh2 Jun 27 00:56:30 firewall sshd[30187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Jun 27 00:56:33 firewall sshd[30187]: Failed password for root from 139.155.39.22 port 33126 ssh2 ...	2020-06-27 12:21:37
139.155.39.62	attackspam	SSH Invalid Login	2020-06-17 08:47:23
139.155.39.22	attackspam	2020-06-12T08:01:07.597615mail.standpoint.com.ua sshd[7387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:01:09.267871mail.standpoint.com.ua sshd[7387]: Failed password for root from 139.155.39.22 port 40648 ssh2 2020-06-12T08:03:48.081861mail.standpoint.com.ua sshd[7717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:03:50.188601mail.standpoint.com.ua sshd[7717]: Failed password for root from 139.155.39.22 port 45320 ssh2 2020-06-12T08:06:26.299089mail.standpoint.com.ua sshd[8085]: Invalid user dooruser from 139.155.39.22 port 50000 ...	2020-06-12 15:48:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.39.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20667
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.39.111.			IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 20:58:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 111.39.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.39.155.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
188.127.137.156	attackspambots	Bruteforce detected by fail2ban	2020-09-13 12:47:55
49.232.101.33	attackspam	2020-09-12 23:37:20.770071-0500 localhost sshd[19217]: Failed password for root from 49.232.101.33 port 37374 ssh2	2020-09-13 13:03:37
27.7.154.0	attackspambots	firewall-block, port(s): 23/tcp	2020-09-13 12:29:41
103.27.237.5	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 90 - port: 30266 proto: tcp cat: Misc Attackbytes: 60	2020-09-13 12:41:02
183.56.167.10	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-12T17:04:27Z and 2020-09-12T18:07:13Z	2020-09-13 12:24:59
35.175.212.58	attackspam	Sep 13 06:04:11 root sshd[30547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.175.212.58 ...	2020-09-13 12:40:01
51.77.66.35	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-13T03:34:22Z and 2020-09-13T04:05:45Z	2020-09-13 12:43:28
128.199.212.15	attackspambots	Sep 13 03:00:27 XXXXXX sshd[12823]: Invalid user ben from 128.199.212.15 port 59814	2020-09-13 12:37:43
196.52.43.119	attackbots	1234/tcp 111/tcp 7080/tcp... [2020-07-14/09-12]50pkt,38pt.(tcp),5pt.(udp)	2020-09-13 12:50:19
213.32.122.80	attack	TCP (SYN) 213.32.122.80:58579 -> port 443, len 44	2020-09-13 12:26:42
200.108.190.38	attack	Icarus honeypot on github	2020-09-13 12:57:53
46.148.21.32	attackbotsspam	Sep 13 01:01:06 XXX sshd[57257]: Invalid user gateway from 46.148.21.32 port 50158	2020-09-13 12:36:25
104.144.170.32	attack	Registration form abuse	2020-09-13 12:58:57
182.180.128.134	attack	Sep 13 04:28:23 vps-51d81928 sshd[30854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.180.128.134 Sep 13 04:28:23 vps-51d81928 sshd[30854]: Invalid user noc from 182.180.128.134 port 48440 Sep 13 04:28:25 vps-51d81928 sshd[30854]: Failed password for invalid user noc from 182.180.128.134 port 48440 ssh2 Sep 13 04:33:18 vps-51d81928 sshd[30899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.180.128.134 user=root Sep 13 04:33:20 vps-51d81928 sshd[30899]: Failed password for root from 182.180.128.134 port 32894 ssh2 ...	2020-09-13 12:57:07
5.188.62.147	attackspam	xmlrpc	2020-09-13 12:26:21

最近上报的IP列表

177.132.11.65	114.27.134.253	171.241.96.86	35.168.129.141
173.236.224.115	112.160.228.18	162.243.145.43	113.160.189.112
201.83.39.53	113.88.166.161	85.153.239.21	61.157.61.51
133.149.198.221	78.247.189.246	182.51.133.225	67.243.247.166
253.255.153.65	185.107.45.150	62.68.238.76	54.153.56.183