139.155.39.62 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:30 scw-6657dc sshd[23415]: Failed password for root from 139.155.39.62 port 38330 ssh2 ...	2020-08-09 13:30:51
attack	Jul 29 07:25:05 host sshd[16207]: Invalid user zcx from 139.155.39.62 port 50696 ...	2020-07-29 14:40:02
attack	2020-07-25T06:58:02.214638vps751288.ovh.net sshd\[16395\]: Invalid user aly from 139.155.39.62 port 44860 2020-07-25T06:58:02.223236vps751288.ovh.net sshd\[16395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-25T06:58:04.416714vps751288.ovh.net sshd\[16395\]: Failed password for invalid user aly from 139.155.39.62 port 44860 ssh2 2020-07-25T07:02:24.237434vps751288.ovh.net sshd\[16425\]: Invalid user harish from 139.155.39.62 port 40462 2020-07-25T07:02:24.246172vps751288.ovh.net sshd\[16425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62	2020-07-25 13:42:50
attackbotsspam	2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:44.190897abusebot-6.cloudsearch.cf sshd[24444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:44:44.184934abusebot-6.cloudsearch.cf sshd[24444]: Invalid user chenoa from 139.155.39.62 port 34158 2020-07-10T03:44:46.388046abusebot-6.cloudsearch.cf sshd[24444]: Failed password for invalid user chenoa from 139.155.39.62 port 34158 ssh2 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:37.925814abusebot-6.cloudsearch.cf sshd[24523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 2020-07-10T03:54:37.919476abusebot-6.cloudsearch.cf sshd[24523]: Invalid user ismail from 139.155.39.62 port 35428 2020-07-10T03:54:40.198129abusebot-6.cloudsearch.cf sshd[24523]: F ...	2020-07-10 14:43:30
attackspam	SSH Invalid Login	2020-06-17 08:47:23
attack	Jun 6 12:56:40 firewall sshd[23304]: Failed password for root from 139.155.39.62 port 38508 ssh2 Jun 6 12:59:00 firewall sshd[23355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Jun 6 12:59:02 firewall sshd[23355]: Failed password for root from 139.155.39.62 port 33314 ssh2 ...	2020-06-07 03:30:58
attackbotsspam	May 28 18:56:14 dhoomketu sshd[272183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 May 28 18:56:14 dhoomketu sshd[272183]: Invalid user manager from 139.155.39.62 port 52988 May 28 18:56:16 dhoomketu sshd[272183]: Failed password for invalid user manager from 139.155.39.62 port 52988 ssh2 May 28 18:59:33 dhoomketu sshd[272214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root May 28 18:59:35 dhoomketu sshd[272214]: Failed password for root from 139.155.39.62 port 60668 ssh2 ...	2020-05-28 22:57:28
attackspam	$f2bV_matches	2020-05-10 16:33:45

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.39.22	attack	Brute%20Force%20SSH	2020-10-02 04:23:21
139.155.39.22	attackbotsspam	SSH login attempts.	2020-10-01 20:37:49
139.155.39.22	attackbots	2020-10-01 02:45:36,042 fail2ban.actions: WARNING [ssh] Ban 139.155.39.22	2020-10-01 12:49:09
139.155.39.22	attackspam	Aug 26 00:56:17 melroy-server sshd[9468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Aug 26 00:56:19 melroy-server sshd[9468]: Failed password for invalid user bhaskar from 139.155.39.22 port 49026 ssh2 ...	2020-08-26 07:49:16
139.155.39.22	attack	Aug 8 20:21:05 localhost sshd[104329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:21:07 localhost sshd[104329]: Failed password for root from 139.155.39.22 port 52804 ssh2 Aug 8 20:25:12 localhost sshd[104832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:25:14 localhost sshd[104832]: Failed password for root from 139.155.39.22 port 57400 ssh2 Aug 8 20:29:14 localhost sshd[105254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Aug 8 20:29:16 localhost sshd[105254]: Failed password for root from 139.155.39.22 port 33764 ssh2 ...	2020-08-09 04:40:33
139.155.39.22	attackspambots	Jul 28 06:04:54 ny01 sshd[3049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 Jul 28 06:04:56 ny01 sshd[3049]: Failed password for invalid user seongmin from 139.155.39.22 port 58734 ssh2 Jul 28 06:09:11 ny01 sshd[3489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22	2020-07-28 18:18:17
139.155.39.111	attackbots	2020-07-17T20:28:36.590124shield sshd\[8022\]: Invalid user cloud from 139.155.39.111 port 44468 2020-07-17T20:28:36.600382shield sshd\[8022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-17T20:28:38.776266shield sshd\[8022\]: Failed password for invalid user cloud from 139.155.39.111 port 44468 ssh2 2020-07-17T20:34:10.044398shield sshd\[8563\]: Invalid user ftpweb from 139.155.39.111 port 57772 2020-07-17T20:34:10.060377shield sshd\[8563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-18 04:42:47
139.155.39.22	attackbots	Automatic report BANNED IP	2020-07-13 03:44:55
139.155.39.22	attack	(sshd) Failed SSH login from 139.155.39.22 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 11 05:39:23 amsweb01 sshd[19777]: Invalid user kirk from 139.155.39.22 port 36300 Jul 11 05:39:25 amsweb01 sshd[19777]: Failed password for invalid user kirk from 139.155.39.22 port 36300 ssh2 Jul 11 05:55:02 amsweb01 sshd[21996]: Invalid user openvpn from 139.155.39.22 port 47636 Jul 11 05:55:04 amsweb01 sshd[21996]: Failed password for invalid user openvpn from 139.155.39.22 port 47636 ssh2 Jul 11 05:57:32 amsweb01 sshd[22418]: Invalid user git from 139.155.39.22 port 45644	2020-07-11 12:23:44
139.155.39.111	attackbotsspam	2020-07-11T02:05:28.877988vps751288.ovh.net sshd\[24311\]: Invalid user wang from 139.155.39.111 port 36632 2020-07-11T02:05:28.889866vps751288.ovh.net sshd\[24311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 2020-07-11T02:05:30.546082vps751288.ovh.net sshd\[24311\]: Failed password for invalid user wang from 139.155.39.111 port 36632 ssh2 2020-07-11T02:08:08.783383vps751288.ovh.net sshd\[24313\]: Invalid user heming from 139.155.39.111 port 48030 2020-07-11T02:08:08.790299vps751288.ovh.net sshd\[24313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111	2020-07-11 08:23:16
139.155.39.22	attack	Jun 27 00:53:39 firewall sshd[30023]: Failed password for invalid user ngs from 139.155.39.22 port 59384 ssh2 Jun 27 00:56:30 firewall sshd[30187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root Jun 27 00:56:33 firewall sshd[30187]: Failed password for root from 139.155.39.22 port 33126 ssh2 ...	2020-06-27 12:21:37
139.155.39.111	attack	Invalid user 13 from 139.155.39.111 port 35786	2020-06-21 14:17:59
139.155.39.111	attackspambots	SSH login attempts.	2020-06-18 22:26:40
139.155.39.22	attackspam	2020-06-12T08:01:07.597615mail.standpoint.com.ua sshd[7387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:01:09.267871mail.standpoint.com.ua sshd[7387]: Failed password for root from 139.155.39.22 port 40648 ssh2 2020-06-12T08:03:48.081861mail.standpoint.com.ua sshd[7717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.22 user=root 2020-06-12T08:03:50.188601mail.standpoint.com.ua sshd[7717]: Failed password for root from 139.155.39.22 port 45320 ssh2 2020-06-12T08:06:26.299089mail.standpoint.com.ua sshd[8085]: Invalid user dooruser from 139.155.39.22 port 50000 ...	2020-06-12 15:48:23
139.155.39.111	attack	2020-06-12T03:53:55.191475server.espacesoutien.com sshd[14717]: Invalid user naser from 139.155.39.111 port 33974 2020-06-12T03:53:56.354258server.espacesoutien.com sshd[14717]: Failed password for invalid user naser from 139.155.39.111 port 33974 ssh2 2020-06-12T03:56:42.160787server.espacesoutien.com sshd[15136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.111 user=root 2020-06-12T03:56:44.568638server.espacesoutien.com sshd[15136]: Failed password for root from 139.155.39.111 port 45192 ssh2 ...	2020-06-12 14:09:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.39.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.39.62.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051000 1800 900 604800 86400

;; Query time: 164 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 16:33:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 62.39.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 62.39.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.133.103.216	attackbots	Jul 16 02:06:03 * sshd[31192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.103.216 Jul 16 02:06:06 * sshd[31192]: Failed password for invalid user andersen from 89.133.103.216 port 32772 ssh2	2019-07-16 08:13:20
14.17.100.33	attackbotsspam	SMB Server BruteForce Attack	2019-07-16 08:23:32
42.51.204.24	attackbots	Jul 15 12:48:35 Tower sshd[35130]: Connection from 42.51.204.24 port 59941 on 192.168.10.220 port 22 Jul 15 12:48:37 Tower sshd[35130]: Invalid user portal from 42.51.204.24 port 59941 Jul 15 12:48:37 Tower sshd[35130]: error: Could not get shadow information for NOUSER Jul 15 12:48:37 Tower sshd[35130]: Failed password for invalid user portal from 42.51.204.24 port 59941 ssh2 Jul 15 12:48:38 Tower sshd[35130]: Received disconnect from 42.51.204.24 port 59941:11: Bye Bye [preauth] Jul 15 12:48:38 Tower sshd[35130]: Disconnected from invalid user portal 42.51.204.24 port 59941 [preauth]	2019-07-16 08:02:49
193.106.108.113	attackbots	445/tcp 445/tcp 445/tcp... [2019-05-26/07-15]12pkt,1pt.(tcp)	2019-07-16 08:17:30
124.13.87.244	attack	16.07.2019 00:03:59 SSH access blocked by firewall	2019-07-16 08:08:39
51.255.174.215	attackspambots	Jul 15 21:54:24 MK-Soft-VM3 sshd\[3538\]: Invalid user kayla from 51.255.174.215 port 50121 Jul 15 21:54:24 MK-Soft-VM3 sshd\[3538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.174.215 Jul 15 21:54:26 MK-Soft-VM3 sshd\[3538\]: Failed password for invalid user kayla from 51.255.174.215 port 50121 ssh2 ...	2019-07-16 07:43:45
79.138.8.183	attackbotsspam	37215/tcp 37215/tcp 37215/tcp... [2019-07-11/15]5pkt,1pt.(tcp)	2019-07-16 08:29:59
41.74.112.15	attackbots	Jul 15 23:49:33 ip-172-31-1-72 sshd\[2371\]: Invalid user han from 41.74.112.15 Jul 15 23:49:33 ip-172-31-1-72 sshd\[2371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.74.112.15 Jul 15 23:49:35 ip-172-31-1-72 sshd\[2371\]: Failed password for invalid user han from 41.74.112.15 port 60083 ssh2 Jul 15 23:56:42 ip-172-31-1-72 sshd\[2505\]: Invalid user zero from 41.74.112.15 Jul 15 23:56:42 ip-172-31-1-72 sshd\[2505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.74.112.15	2019-07-16 08:24:51
46.18.205.211	attackspam	445/tcp 445/tcp 445/tcp... [2019-05-29/07-15]22pkt,1pt.(tcp)	2019-07-16 08:24:24
134.209.237.152	attackbots	Jul 16 01:55:18 vps647732 sshd[25669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.237.152 Jul 16 01:55:20 vps647732 sshd[25669]: Failed password for invalid user postgres from 134.209.237.152 port 36058 ssh2 ...	2019-07-16 08:16:56
68.183.31.42	attackspam	Automatic report - Banned IP Access	2019-07-16 08:15:35
157.230.183.255	attack	Jul 16 01:43:55 OPSO sshd\[1118\]: Invalid user postgres from 157.230.183.255 port 37468 Jul 16 01:43:55 OPSO sshd\[1118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.183.255 Jul 16 01:43:57 OPSO sshd\[1118\]: Failed password for invalid user postgres from 157.230.183.255 port 37468 ssh2 Jul 16 01:48:23 OPSO sshd\[1895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.183.255 user=root Jul 16 01:48:25 OPSO sshd\[1895\]: Failed password for root from 157.230.183.255 port 36002 ssh2	2019-07-16 07:58:45
186.71.70.219	attack	SMB Server BruteForce Attack	2019-07-16 08:19:01
61.191.30.220	attackspambots	Jul 15 12:29:31 smtp-out sshd[13405]: Invalid user marwan from 61.191.30.220 port 54625 Jul 15 12:29:31 smtp-out sshd[13405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.191.30.220 Jul 15 12:29:33 smtp-out sshd[13405]: Failed password for invalid user marwan from 61.191.30.220 port 54625 ssh2 Jul 15 12:29:33 smtp-out sshd[13405]: Received disconnect from 61.191.30.220 port 54625:11: Bye Bye [preauth] Jul 15 12:29:33 smtp-out sshd[13405]: Disconnected from 61.191.30.220 port 54625 [preauth] Jul 15 13:15:31 smtp-out sshd[14884]: Invalid user prios from 61.191.30.220 port 38643 Jul 15 13:15:31 smtp-out sshd[14884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.191.30.220 Jul 15 13:15:33 smtp-out sshd[14884]: Failed password for invalid user prios from 61.191.30.220 port 38643 ssh2 Jul 15 13:15:34 smtp-out sshd[14884]: Received disconnect from 61.191.30.220 port 38643:11: Bye Bye [pr........ -------------------------------	2019-07-16 08:13:46
62.210.151.21	attack	\[2019-07-15 20:15:58\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T20:15:58.949-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01137513054404227",SessionID="0x7f06f81b64e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/50348",ACLName="no_extension_match" \[2019-07-15 20:16:08\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T20:16:08.828-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01137613054404227",SessionID="0x7f06f80b53c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/65446",ACLName="no_extension_match" \[2019-07-15 20:16:18\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-15T20:16:18.728-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01137713054404227",SessionID="0x7f06f80c2bc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/64309",ACLNam	2019-07-16 08:17:57

最近上报的IP列表

62.219.226.245	177.234.152.114	88.247.35.247	39.53.126.249
201.173.38.83	188.158.205.69	12.191.54.236	27.79.233.30
82.209.236.149	171.251.3.124	176.97.49.97	162.243.141.108
61.105.45.36	188.68.59.80	139.155.6.26	102.89.3.89
31.31.126.218	59.41.142.116	2.184.47.147	85.50.0.27