139.155.55.30 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Feb 17 23:30:50 vpn01 sshd[11711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Feb 17 23:30:52 vpn01 sshd[11711]: Failed password for invalid user nam from 139.155.55.30 port 49686 ssh2 ...	2020-02-18 08:33:08
attackbots	Feb 12 00:45:23 silence02 sshd[1948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Feb 12 00:45:25 silence02 sshd[1948]: Failed password for invalid user hbjung from 139.155.55.30 port 55684 ssh2 Feb 12 00:47:45 silence02 sshd[2204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30	2020-02-12 10:23:32
attack	Feb 5 02:54:45 vps46666688 sshd[5031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Feb 5 02:54:47 vps46666688 sshd[5031]: Failed password for invalid user shonta from 139.155.55.30 port 51042 ssh2 ...	2020-02-05 14:06:44
attackbotsspam	Unauthorized connection attempt detected from IP address 139.155.55.30 to port 2220 [J]	2020-01-13 04:25:47
attack	Jan 2 01:24:37 server sshd\[8478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 user=root Jan 2 01:24:39 server sshd\[8478\]: Failed password for root from 139.155.55.30 port 48428 ssh2 Jan 2 01:55:13 server sshd\[15428\]: Invalid user mckain from 139.155.55.30 Jan 2 01:55:13 server sshd\[15428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Jan 2 01:55:15 server sshd\[15428\]: Failed password for invalid user mckain from 139.155.55.30 port 36350 ssh2 ...	2020-01-02 08:46:11
attackbotsspam	Dec 31 23:46:08 sso sshd[1344]: Failed password for root from 139.155.55.30 port 44576 ssh2 ...	2020-01-01 07:25:35
attack	Dec 8 13:48:33 tdfoods sshd\[2333\]: Invalid user hiong from 139.155.55.30 Dec 8 13:48:33 tdfoods sshd\[2333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Dec 8 13:48:35 tdfoods sshd\[2333\]: Failed password for invalid user hiong from 139.155.55.30 port 37146 ssh2 Dec 8 13:55:04 tdfoods sshd\[3001\]: Invalid user alcaraz from 139.155.55.30 Dec 8 13:55:04 tdfoods sshd\[3001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30	2019-12-09 07:56:51
attack	Dec 6 17:33:52 mail sshd[15672]: Failed password for root from 139.155.55.30 port 60532 ssh2 Dec 6 17:41:52 mail sshd[17309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Dec 6 17:41:54 mail sshd[17309]: Failed password for invalid user from 139.155.55.30 port 59932 ssh2	2019-12-07 00:57:29
attack	F2B jail: sshd. Time: 2019-12-01 07:20:55, Reported by: VKReport	2019-12-01 21:55:26
attack	2019-11-30T08:06:03.025331abusebot-3.cloudsearch.cf sshd\[13466\]: Invalid user klewe from 139.155.55.30 port 43598	2019-11-30 16:27:22
attack	Nov 17 22:19:53 gw1 sshd[28613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 Nov 17 22:19:54 gw1 sshd[28613]: Failed password for invalid user jaik from 139.155.55.30 port 43940 ssh2 ...	2019-11-18 01:32:58
attackbotsspam	Nov 12 09:10:41 XXXXXX sshd[43052]: Invalid user aun from 139.155.55.30 port 43310	2019-11-12 19:23:18
attackspambots	Nov 4 17:20:07 xm3 sshd[10910]: Failed password for invalid user mapr from 139.155.55.30 port 56270 ssh2 Nov 4 17:20:08 xm3 sshd[10910]: Received disconnect from 139.155.55.30: 11: Bye Bye [preauth] Nov 4 17:42:36 xm3 sshd[26469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 user=r.r Nov 4 17:42:38 xm3 sshd[26469]: Failed password for r.r from 139.155.55.30 port 47288 ssh2 Nov 4 17:42:38 xm3 sshd[26469]: Received disconnect from 139.155.55.30: 11: Bye Bye [preauth] Nov 4 17:49:13 xm3 sshd[6875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30 user=r.r Nov 4 17:49:15 xm3 sshd[6875]: Failed password for r.r from 139.155.55.30 port 49100 ssh2 Nov 4 17:49:15 xm3 sshd[6875]: Received disconnect from 139.155.55.30: 11: Bye Bye [preauth] Nov 4 17:54:18 xm3 sshd[18647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1........ -------------------------------	2019-11-05 18:11:11
attackbotsspam	2019-11-01T12:30:19.593021abusebot-8.cloudsearch.cf sshd\[2604\]: Invalid user smbuser from 139.155.55.30 port 32992	2019-11-01 20:55:35
attackspam	Oct 25 20:32:49 cp sshd[4760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30	2019-10-26 03:18:22

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.55.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.55.30.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102501 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 03:18:19 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 30.55.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 30.55.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.118.143.47	attackbotsspam	Automatically reported by fail2ban report script (mx1)	2020-10-13 17:55:39
62.28.112.205	attackbots	Oct 13 10:56:03 server sshd[29773]: Failed password for invalid user kw from 62.28.112.205 port 52124 ssh2 Oct 13 11:03:02 server sshd[1372]: Failed password for invalid user jim from 62.28.112.205 port 57038 ssh2 Oct 13 11:08:22 server sshd[4319]: Failed password for invalid user jon from 62.28.112.205 port 59833 ssh2	2020-10-13 17:35:33
158.69.197.113	attack	(sshd) Failed SSH login from 158.69.197.113 (CA/Canada/113.ip-158-69-197.net): 5 in the last 3600 secs	2020-10-13 17:47:06
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
117.26.193.87	attackbotsspam	Forbidden directory scan :: 2020/10/13 02:23:56 [error] 47022#47022: *350903 access forbidden by rule, client: 117.26.193.87, server: [censored_1], request: "GET /knowledge-base/... HTTP/1.1", host: "www.[censored_1]"	2020-10-13 17:48:49
139.199.32.22	attackbotsspam	fail2ban: brute force SSH detected	2020-10-13 17:24:33
160.153.234.236	attackbotsspam	Oct 13 06:52:34 onepixel sshd[2648460]: Failed password for root from 160.153.234.236 port 55158 ssh2 Oct 13 06:56:03 onepixel sshd[2649114]: Invalid user bob from 160.153.234.236 port 60198 Oct 13 06:56:03 onepixel sshd[2649114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.153.234.236 Oct 13 06:56:03 onepixel sshd[2649114]: Invalid user bob from 160.153.234.236 port 60198 Oct 13 06:56:05 onepixel sshd[2649114]: Failed password for invalid user bob from 160.153.234.236 port 60198 ssh2	2020-10-13 18:02:49
139.155.13.59	attack	sshd: Failed password for invalid user .... from 139.155.13.59 port 60208 ssh2 (8 attempts)	2020-10-13 17:34:17
128.199.66.150	attack	Lines containing failures of 128.199.66.150 Oct 12 05:30:34 v2hgb sshd[11505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.66.150 user=r.r Oct 12 05:30:36 v2hgb sshd[11505]: Failed password for r.r from 128.199.66.150 port 54736 ssh2 Oct 12 05:30:37 v2hgb sshd[11505]: Received disconnect from 128.199.66.150 port 54736:11: Bye Bye [preauth] Oct 12 05:30:37 v2hgb sshd[11505]: Disconnected from authenticating user r.r 128.199.66.150 port 54736 [preauth] Oct 12 05:43:20 v2hgb sshd[12728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.66.150 user=r.r Oct 12 05:43:22 v2hgb sshd[12728]: Failed password for r.r from 128.199.66.150 port 56550 ssh2 Oct 12 05:43:23 v2hgb sshd[12728]: Received disconnect from 128.199.66.150 port 56550:11: Bye Bye [preauth] Oct 12 05:43:23 v2hgb sshd[12728]: Disconnected from authenticating user r.r 128.199.66.150 port 56550 [preauth] Oct 12 05:46:........ ------------------------------	2020-10-13 18:03:44
121.237.169.154	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-13T08:01:50Z and 2020-10-13T08:10:30Z	2020-10-13 17:27:03
5.196.75.140	attack	Oct 13 09:34:06 dignus sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.140 Oct 13 09:34:07 dignus sshd[20495]: Failed password for invalid user selva from 5.196.75.140 port 38858 ssh2 Oct 13 09:39:57 dignus sshd[20628]: Invalid user anatoly from 5.196.75.140 port 43902 Oct 13 09:39:57 dignus sshd[20628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.140 Oct 13 09:39:59 dignus sshd[20628]: Failed password for invalid user anatoly from 5.196.75.140 port 43902 ssh2 ...	2020-10-13 17:25:57
103.28.32.18	attack	Oct 13 11:45:45 nopemail auth.info sshd[749]: Invalid user francois from 103.28.32.18 port 34850 ...	2020-10-13 17:49:06
67.205.143.140	attack	WordPress wp-login brute force :: 67.205.143.140 0.068 - [13/Oct/2020:06:28:27 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2577 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-10-13 17:58:16
78.128.113.119	attackspam	Oct 13 10:27:04 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure Oct 13 10:27:04 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure Oct 13 10:27:05 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure Oct 13 10:27:05 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure Oct 13 10:27:18 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure Oct 13 10:27:18 ns308116 postfix/smtpd[21167]: warning: unknown[78.128.113.119]: SASL PLAIN authentication failed: authentication failure ...	2020-10-13 17:32:31
177.25.236.226	attackbots	Hit honeypot r.	2020-10-13 17:41:25

最近上报的IP列表

120.227.236.44	180.173.154.94	183.82.116.30	52.94.98.7
61.62.95.2	210.147.174.58	81.218.98.84	165.228.119.86
188.7.166.233	80.162.171.31	183.209.248.128	45.26.247.173
183.239.167.182	216.122.160.113	1.146.106.199	14.34.125.85
64.168.108.168	205.123.37.201	159.0.229.150	179.162.94.58