139.155.74.13 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	MLV GET /wp-login.php	2020-08-05 07:43:38

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.74.147	attackspambots	Found on Github Combined on 3 lists / proto=6 . srcport=50234 . dstport=23557 . (1759)	2020-10-13 22:54:55
139.155.74.147	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 14:15:20
139.155.74.147	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 06:57:21
139.155.74.147	attackspambots	$f2bV_matches	2020-08-22 14:16:37
139.155.74.147	attack	Aug 5 16:08:38 ns381471 sshd[15732]: Failed password for root from 139.155.74.147 port 56782 ssh2	2020-08-05 22:12:55
139.155.74.240	attackbotsspam	Invalid user aurore from 139.155.74.240 port 44788	2020-07-31 06:05:44
139.155.74.240	attack	Invalid user idempiere from 139.155.74.240 port 34572	2020-07-30 17:34:31
139.155.74.240	attack	Jul 22 22:03:17 ns381471 sshd[8744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jul 22 22:03:19 ns381471 sshd[8744]: Failed password for invalid user admin from 139.155.74.240 port 60236 ssh2	2020-07-23 04:14:00
139.155.74.147	attackspambots	Jul 11 23:56:16 ns382633 sshd\[1615\]: Invalid user dauner from 139.155.74.147 port 48023 Jul 11 23:56:16 ns382633 sshd\[1615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 Jul 11 23:56:18 ns382633 sshd\[1615\]: Failed password for invalid user dauner from 139.155.74.147 port 48023 ssh2 Jul 12 00:00:58 ns382633 sshd\[2531\]: Invalid user lulli from 139.155.74.147 port 37535 Jul 12 00:00:58 ns382633 sshd\[2531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147	2020-07-12 07:24:34
139.155.74.240	attackspambots	2020-07-06 UTC: (147x) - VM,acct,acme,admin(4x),administrator,asterisk,azar,b,cacheusr,cam,carrie,comfort,cse,db2inst3,deploy,deployer,dge,dis,drcom,edu,emilio,erica,ethos,evv,frida,gisele,git,gitlab-runner,hadoop,hans,indu,james,jenkins,john1,joomla,kafka(2x),kg,las,lcr,mai,mc,mcserver,me,mf,monitor,mysql(2x),nexus,oem,opscode,oracle(2x),owncloud,pankaj,prashant,prem,premier,r,rachid,remote,roger,root(41x),ryan,sam,scott,sdv,shield,smbuser,stage,stone,student,superman,svaadmin,sysadmin,tahir,tapas,tb,tecnico,test(2x),test3,tomas,tomcat,toor,uat,ubuntu,user(2x),userftp,usher,wangwei,wayne,wbiadmin,webmaster,wfp,work,xt,yjlee,zc,zhangyang,zhangyong,zsh,zzz	2020-07-07 18:15:03
139.155.74.240	attack	Jul 4 23:22:34 ift sshd\[61094\]: Invalid user test from 139.155.74.240Jul 4 23:22:37 ift sshd\[61094\]: Failed password for invalid user test from 139.155.74.240 port 58348 ssh2Jul 4 23:25:31 ift sshd\[61755\]: Invalid user cr from 139.155.74.240Jul 4 23:25:32 ift sshd\[61755\]: Failed password for invalid user cr from 139.155.74.240 port 60934 ssh2Jul 4 23:28:19 ift sshd\[62211\]: Invalid user usuario from 139.155.74.240 ...	2020-07-05 05:14:33
139.155.74.240	attackbots	Jun 17 12:31:02 webhost01 sshd[4010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jun 17 12:31:05 webhost01 sshd[4010]: Failed password for invalid user earth from 139.155.74.240 port 54016 ssh2 ...	2020-06-17 13:59:50
139.155.74.147	attackspambots	Invalid user admin from 139.155.74.147 port 56158	2020-06-13 16:44:14
139.155.74.147	attackbotsspam	Jun 11 01:32:45 dhoomketu sshd[634888]: Failed password for invalid user mass from 139.155.74.147 port 58408 ssh2 Jun 11 01:34:46 dhoomketu sshd[634960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:34:47 dhoomketu sshd[634960]: Failed password for root from 139.155.74.147 port 42767 ssh2 Jun 11 01:36:48 dhoomketu sshd[634989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:36:50 dhoomketu sshd[634989]: Failed password for root from 139.155.74.147 port 55354 ssh2 ...	2020-06-11 06:57:17
139.155.74.147	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-02 22:36:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.74.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.74.13.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070300 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 15:25:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 13.74.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.74.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.142	attack	May 13 00:18:11 minden010 sshd[20096]: Failed password for root from 222.186.180.142 port 60954 ssh2 May 13 00:18:20 minden010 sshd[20147]: Failed password for root from 222.186.180.142 port 38704 ssh2 May 13 00:18:22 minden010 sshd[20147]: Failed password for root from 222.186.180.142 port 38704 ssh2 ...	2020-05-13 06:22:48
213.230.67.32	attackbotsspam	May 13 00:10:24 OPSO sshd\[18683\]: Invalid user deploy from 213.230.67.32 port 40237 May 13 00:10:24 OPSO sshd\[18683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.230.67.32 May 13 00:10:26 OPSO sshd\[18683\]: Failed password for invalid user deploy from 213.230.67.32 port 40237 ssh2 May 13 00:14:16 OPSO sshd\[19691\]: Invalid user dog from 213.230.67.32 port 15018 May 13 00:14:16 OPSO sshd\[19691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.230.67.32	2020-05-13 06:29:21
188.226.167.212	attackspambots	Invalid user uh from 188.226.167.212 port 50736	2020-05-13 06:23:50
60.251.149.158	attackspam	May 12 23:59:02 h2779839 sshd[27579]: Invalid user roundcube from 60.251.149.158 port 39198 May 12 23:59:02 h2779839 sshd[27579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.251.149.158 May 12 23:59:02 h2779839 sshd[27579]: Invalid user roundcube from 60.251.149.158 port 39198 May 12 23:59:04 h2779839 sshd[27579]: Failed password for invalid user roundcube from 60.251.149.158 port 39198 ssh2 May 13 00:02:35 h2779839 sshd[29347]: Invalid user user from 60.251.149.158 port 43730 May 13 00:02:35 h2779839 sshd[29347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.251.149.158 May 13 00:02:35 h2779839 sshd[29347]: Invalid user user from 60.251.149.158 port 43730 May 13 00:02:38 h2779839 sshd[29347]: Failed password for invalid user user from 60.251.149.158 port 43730 ssh2 May 13 00:06:08 h2779839 sshd[29396]: Invalid user ts2 from 60.251.149.158 port 48264 ...	2020-05-13 06:20:15
66.70.130.152	attackbotsspam	May 12 23:12:51 vmd26974 sshd[24060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.130.152 May 12 23:12:53 vmd26974 sshd[24060]: Failed password for invalid user kitti from 66.70.130.152 port 33312 ssh2 ...	2020-05-13 06:56:35
54.37.204.154	attack	May 12 15:22:34 pixelmemory sshd[513794]: Invalid user nexus from 54.37.204.154 port 40552 May 12 15:22:34 pixelmemory sshd[513794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154 May 12 15:22:34 pixelmemory sshd[513794]: Invalid user nexus from 54.37.204.154 port 40552 May 12 15:22:36 pixelmemory sshd[513794]: Failed password for invalid user nexus from 54.37.204.154 port 40552 ssh2 May 12 15:26:57 pixelmemory sshd[514479]: Invalid user js from 54.37.204.154 port 47822 ...	2020-05-13 06:52:31
64.225.35.135	attack	Invalid user frappe from 64.225.35.135 port 37260	2020-05-13 06:42:22
188.64.60.198	attackbots	/blog/	2020-05-13 06:42:51
125.91.159.98	attackspambots	2020-05-12T23:12:54.552888 X postfix/smtpd[280123]: lost connection after AUTH from unknown[125.91.159.98] 2020-05-12T23:12:56.864571 X postfix/smtpd[3388352]: lost connection after AUTH from unknown[125.91.159.98] 2020-05-12T23:12:58.134315 X postfix/smtpd[109691]: lost connection after AUTH from unknown[125.91.159.98]	2020-05-13 06:49:57
185.176.27.34	attack	srv02 Mass scanning activity detected Target: 3185 ..	2020-05-13 06:25:28
212.248.101.11	attackspambots	DATE:2020-05-12 23:13:34, IP:212.248.101.11, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-13 06:21:22
114.67.83.42	attack	20 attempts against mh-ssh on cloud	2020-05-13 06:40:42
59.127.195.93	attack	May 12 23:38:29 * sshd[8178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.195.93 May 12 23:38:31 * sshd[8178]: Failed password for invalid user deploy from 59.127.195.93 port 60310 ssh2	2020-05-13 06:22:13
41.226.11.252	attackbots	May 13 01:18:18 pkdns2 sshd\[38448\]: Invalid user yx from 41.226.11.252May 13 01:18:21 pkdns2 sshd\[38448\]: Failed password for invalid user yx from 41.226.11.252 port 35153 ssh2May 13 01:22:12 pkdns2 sshd\[38652\]: Invalid user test from 41.226.11.252May 13 01:22:14 pkdns2 sshd\[38652\]: Failed password for invalid user test from 41.226.11.252 port 54660 ssh2May 13 01:25:43 pkdns2 sshd\[38821\]: Invalid user vnc from 41.226.11.252May 13 01:25:45 pkdns2 sshd\[38821\]: Failed password for invalid user vnc from 41.226.11.252 port 63222 ssh2 ...	2020-05-13 06:43:38
181.49.118.185	attack	May 12 22:15:10 scw-6657dc sshd[32283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.118.185 May 12 22:15:10 scw-6657dc sshd[32283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.118.185 May 12 22:15:11 scw-6657dc sshd[32283]: Failed password for invalid user factorio from 181.49.118.185 port 51328 ssh2 ...	2020-05-13 06:30:14

最近上报的IP列表

144.21.95.231	131.232.71.173	104.242.117.231	134.45.75.160
150.178.138.138	98.121.29.65	94.49.213.233	158.252.184.147
220.227.162.235	144.56.158.7	127.209.156.32	104.87.187.88
147.145.185.67	116.3.210.177	94.50.162.66	192.229.233.50
41.57.125.178	171.242.70.46	218.29.203.109	212.102.33.88