139.155.74.38 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 23 01:43:55 server sshd\[32265\]: Invalid user dere from 139.155.74.38 Dec 23 01:43:55 server sshd\[32265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 23 01:43:57 server sshd\[32265\]: Failed password for invalid user dere from 139.155.74.38 port 46200 ssh2 Dec 23 01:51:17 server sshd\[2004\]: Invalid user backup from 139.155.74.38 Dec 23 01:51:17 server sshd\[2004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 ...	2019-12-23 08:29:31
attack	Dec 14 12:16:56 loxhost sshd\[14445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 user=root Dec 14 12:16:58 loxhost sshd\[14445\]: Failed password for root from 139.155.74.38 port 55816 ssh2 Dec 14 12:23:10 loxhost sshd\[14578\]: Invalid user nfs from 139.155.74.38 port 48102 Dec 14 12:23:10 loxhost sshd\[14578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 14 12:23:12 loxhost sshd\[14578\]: Failed password for invalid user nfs from 139.155.74.38 port 48102 ssh2 ...	2019-12-14 19:37:14
attack	29 failed attempt(s) in the last 24h	2019-12-03 06:43:58
attackspambots	Dec 1 10:00:15 ny01 sshd[29930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 1 10:00:18 ny01 sshd[29930]: Failed password for invalid user rpc from 139.155.74.38 port 42344 ssh2 Dec 1 10:05:05 ny01 sshd[30461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-12-01 23:19:43
attack	Nov 27 12:55:37 wbs sshd\[11889\]: Invalid user kristosik from 139.155.74.38 Nov 27 12:55:37 wbs sshd\[11889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Nov 27 12:55:39 wbs sshd\[11889\]: Failed password for invalid user kristosik from 139.155.74.38 port 55596 ssh2 Nov 27 12:59:45 wbs sshd\[12262\]: Invalid user apples from 139.155.74.38 Nov 27 12:59:45 wbs sshd\[12262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-11-28 07:15:02
attackspambots	Nov 27 18:13:39 heissa sshd\[12379\]: Invalid user byholt from 139.155.74.38 port 58348 Nov 27 18:13:39 heissa sshd\[12379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Nov 27 18:13:42 heissa sshd\[12379\]: Failed password for invalid user byholt from 139.155.74.38 port 58348 ssh2 Nov 27 18:20:07 heissa sshd\[13338\]: Invalid user nfs from 139.155.74.38 port 51464 Nov 27 18:20:07 heissa sshd\[13338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-11-28 03:50:20
attackspambots	$f2bV_matches	2019-11-25 16:14:50
attackbots	SSH brutforce	2019-11-21 02:55:11
attack	Nov 20 08:33:39 vmanager6029 sshd\[21930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 user=news Nov 20 08:33:41 vmanager6029 sshd\[21930\]: Failed password for news from 139.155.74.38 port 35570 ssh2 Nov 20 08:38:55 vmanager6029 sshd\[22011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 user=root	2019-11-20 16:18:30
attack	Nov 2 23:09:22 server sshd\[7674\]: Invalid user oracle from 139.155.74.38 Nov 2 23:09:22 server sshd\[7674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Nov 2 23:09:23 server sshd\[7674\]: Failed password for invalid user oracle from 139.155.74.38 port 45924 ssh2 Nov 2 23:17:54 server sshd\[9669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 user=root Nov 2 23:17:56 server sshd\[9669\]: Failed password for root from 139.155.74.38 port 40336 ssh2 ...	2019-11-03 06:20:59

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.74.147	attackspambots	Found on Github Combined on 3 lists / proto=6 . srcport=50234 . dstport=23557 . (1759)	2020-10-13 22:54:55
139.155.74.147	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 14:15:20
139.155.74.147	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 06:57:21
139.155.74.147	attackspambots	$f2bV_matches	2020-08-22 14:16:37
139.155.74.147	attack	Aug 5 16:08:38 ns381471 sshd[15732]: Failed password for root from 139.155.74.147 port 56782 ssh2	2020-08-05 22:12:55
139.155.74.13	attackspambots	MLV GET /wp-login.php	2020-08-05 07:43:38
139.155.74.240	attackbotsspam	Invalid user aurore from 139.155.74.240 port 44788	2020-07-31 06:05:44
139.155.74.240	attack	Invalid user idempiere from 139.155.74.240 port 34572	2020-07-30 17:34:31
139.155.74.240	attack	Jul 22 22:03:17 ns381471 sshd[8744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jul 22 22:03:19 ns381471 sshd[8744]: Failed password for invalid user admin from 139.155.74.240 port 60236 ssh2	2020-07-23 04:14:00
139.155.74.147	attackspambots	Jul 11 23:56:16 ns382633 sshd\[1615\]: Invalid user dauner from 139.155.74.147 port 48023 Jul 11 23:56:16 ns382633 sshd\[1615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 Jul 11 23:56:18 ns382633 sshd\[1615\]: Failed password for invalid user dauner from 139.155.74.147 port 48023 ssh2 Jul 12 00:00:58 ns382633 sshd\[2531\]: Invalid user lulli from 139.155.74.147 port 37535 Jul 12 00:00:58 ns382633 sshd\[2531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147	2020-07-12 07:24:34
139.155.74.240	attackspambots	2020-07-06 UTC: (147x) - VM,acct,acme,admin(4x),administrator,asterisk,azar,b,cacheusr,cam,carrie,comfort,cse,db2inst3,deploy,deployer,dge,dis,drcom,edu,emilio,erica,ethos,evv,frida,gisele,git,gitlab-runner,hadoop,hans,indu,james,jenkins,john1,joomla,kafka(2x),kg,las,lcr,mai,mc,mcserver,me,mf,monitor,mysql(2x),nexus,oem,opscode,oracle(2x),owncloud,pankaj,prashant,prem,premier,r,rachid,remote,roger,root(41x),ryan,sam,scott,sdv,shield,smbuser,stage,stone,student,superman,svaadmin,sysadmin,tahir,tapas,tb,tecnico,test(2x),test3,tomas,tomcat,toor,uat,ubuntu,user(2x),userftp,usher,wangwei,wayne,wbiadmin,webmaster,wfp,work,xt,yjlee,zc,zhangyang,zhangyong,zsh,zzz	2020-07-07 18:15:03
139.155.74.240	attack	Jul 4 23:22:34 ift sshd\[61094\]: Invalid user test from 139.155.74.240Jul 4 23:22:37 ift sshd\[61094\]: Failed password for invalid user test from 139.155.74.240 port 58348 ssh2Jul 4 23:25:31 ift sshd\[61755\]: Invalid user cr from 139.155.74.240Jul 4 23:25:32 ift sshd\[61755\]: Failed password for invalid user cr from 139.155.74.240 port 60934 ssh2Jul 4 23:28:19 ift sshd\[62211\]: Invalid user usuario from 139.155.74.240 ...	2020-07-05 05:14:33
139.155.74.240	attackbots	Jun 17 12:31:02 webhost01 sshd[4010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jun 17 12:31:05 webhost01 sshd[4010]: Failed password for invalid user earth from 139.155.74.240 port 54016 ssh2 ...	2020-06-17 13:59:50
139.155.74.147	attackspambots	Invalid user admin from 139.155.74.147 port 56158	2020-06-13 16:44:14
139.155.74.147	attackbotsspam	Jun 11 01:32:45 dhoomketu sshd[634888]: Failed password for invalid user mass from 139.155.74.147 port 58408 ssh2 Jun 11 01:34:46 dhoomketu sshd[634960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:34:47 dhoomketu sshd[634960]: Failed password for root from 139.155.74.147 port 42767 ssh2 Jun 11 01:36:48 dhoomketu sshd[634989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:36:50 dhoomketu sshd[634989]: Failed password for root from 139.155.74.147 port 55354 ssh2 ...	2020-06-11 06:57:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.74.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14339
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.74.38.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110201 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 06:20:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 38.74.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 38.74.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.148.3.212	attack	Mar 11 16:59:41 lanister sshd[5973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 user=root Mar 11 16:59:43 lanister sshd[5973]: Failed password for root from 5.148.3.212 port 41164 ssh2 Mar 11 17:09:47 lanister sshd[6168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 user=root Mar 11 17:09:49 lanister sshd[6168]: Failed password for root from 5.148.3.212 port 50643 ssh2	2020-03-12 07:14:58
198.108.67.48	attackspambots	Icarus honeypot on github	2020-03-12 07:49:36
45.80.65.1	attack	Mar 11 23:55:40 DAAP sshd[7681]: Invalid user vmail from 45.80.65.1 port 37274 Mar 11 23:55:40 DAAP sshd[7681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.1 Mar 11 23:55:40 DAAP sshd[7681]: Invalid user vmail from 45.80.65.1 port 37274 Mar 11 23:55:42 DAAP sshd[7681]: Failed password for invalid user vmail from 45.80.65.1 port 37274 ssh2 Mar 12 00:03:29 DAAP sshd[7761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.1 user=root Mar 12 00:03:31 DAAP sshd[7761]: Failed password for root from 45.80.65.1 port 42286 ssh2 ...	2020-03-12 07:20:06
45.151.254.218	attackspambots	11.03.2020 23:11:08 Connection to port 5060 blocked by firewall	2020-03-12 07:25:13
106.13.82.68	attackspam	Mar 11 20:39:27 firewall sshd[26861]: Failed password for root from 106.13.82.68 port 14560 ssh2 Mar 11 20:43:45 firewall sshd[26974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.68 user=root Mar 11 20:43:47 firewall sshd[26974]: Failed password for root from 106.13.82.68 port 14089 ssh2 ...	2020-03-12 07:46:53
49.88.112.68	attackspam	Mar 12 00:06:37 v22018053744266470 sshd[3287]: Failed password for root from 49.88.112.68 port 55523 ssh2 Mar 12 00:06:39 v22018053744266470 sshd[3287]: Failed password for root from 49.88.112.68 port 55523 ssh2 Mar 12 00:06:41 v22018053744266470 sshd[3287]: Failed password for root from 49.88.112.68 port 55523 ssh2 ...	2020-03-12 07:13:19
149.56.132.202	attack	Invalid user robert from 149.56.132.202 port 60420	2020-03-12 07:50:03
92.63.194.90	attackspambots	2020-03-11T23:40:57.157727dmca.cloudsearch.cf sshd[17321]: Invalid user 1234 from 92.63.194.90 port 54748 2020-03-11T23:40:57.163661dmca.cloudsearch.cf sshd[17321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.90 2020-03-11T23:40:57.157727dmca.cloudsearch.cf sshd[17321]: Invalid user 1234 from 92.63.194.90 port 54748 2020-03-11T23:40:58.836843dmca.cloudsearch.cf sshd[17321]: Failed password for invalid user 1234 from 92.63.194.90 port 54748 ssh2 2020-03-11T23:42:01.007272dmca.cloudsearch.cf sshd[17515]: Invalid user user from 92.63.194.90 port 55990 2020-03-11T23:42:01.013682dmca.cloudsearch.cf sshd[17515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.90 2020-03-11T23:42:01.007272dmca.cloudsearch.cf sshd[17515]: Invalid user user from 92.63.194.90 port 55990 2020-03-11T23:42:02.807260dmca.cloudsearch.cf sshd[17515]: Failed password for invalid user user from 92.63.194.90 port 55990 ...	2020-03-12 07:53:53
111.229.144.25	attack	Brute force attempt	2020-03-12 07:47:41
115.96.198.2	attackspam	Mar 11 20:14:13 host sshd[19549]: Invalid user test from 115.96.198.2 port 63377 ...	2020-03-12 07:34:45
106.13.227.208	attack	suspicious action Wed, 11 Mar 2020 16:14:00 -0300	2020-03-12 07:51:40
182.162.143.16	attackspambots	detected by Fail2Ban	2020-03-12 07:45:34
201.139.88.19	attack	suspicious action Wed, 11 Mar 2020 16:14:25 -0300	2020-03-12 07:26:10
159.203.74.227	attackspam	SSH-BruteForce	2020-03-12 07:38:20
51.77.200.139	attack	SSH Brute-Forcing (server2)	2020-03-12 07:33:47

最近上报的IP列表

106.12.45.108	217.118.91.67	148.70.118.95	138.197.148.223
31.153.194.85	178.79.153.130	111.95.168.101	144.166.238.219
118.247.59.179	86.165.218.94	209.21.205.5	23.138.228.3
35.64.81.195	120.133.36.87	190.213.238.180	221.196.156.117
95.52.39.73	64.231.175.61	221.225.83.148	185.244.192.250