139.155.82.193

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 5 14:08:35 hidden sshd[17390]: Failed password for hidden from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 hidden sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 hidden sshd[19273]: Failed password for hidden from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 hidden sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 hidden sshd[21047]: Failed password for hidden from 139.155.82.193 port 39664 ssh2	2020-10-06 05:07:42
attackspam	Oct 5 14:08:35 hidden sshd[17390]: Failed password for hidden from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 hidden sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 hidden sshd[19273]: Failed password for hidden from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 hidden sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 hidden sshd[21047]: Failed password for hidden from 139.155.82.193 port 39664 ssh2	2020-10-05 21:11:37
attack	SSH/22 MH Probe, BF, Hack -	2020-10-05 13:01:56

类型

评论内容

时间

attack

Oct 5 14:08:35 *hidden* sshd[17390]: Failed password for *hidden* from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 *hidden* sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 *hidden* sshd[19273]: Failed password for *hidden* from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 *hidden* sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 *hidden* sshd[21047]: Failed password for *hidden* from 139.155.82.193 port 39664 ssh2

2020-10-06 05:07:42

attackspam

Oct 5 14:08:35 *hidden* sshd[17390]: Failed password for *hidden* from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 *hidden* sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 *hidden* sshd[19273]: Failed password for *hidden* from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 *hidden* sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 *hidden* sshd[21047]: Failed password for *hidden* from 139.155.82.193 port 39664 ssh2

2020-10-05 21:11:37

attack

SSH/22 MH Probe, BF, Hack -

2020-10-05 13:01:56

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.82.119	attackspam	Oct 13 16:41:09 serwer sshd\[8687\]: Invalid user romero from 139.155.82.119 port 45912 Oct 13 16:41:09 serwer sshd\[8687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 16:41:11 serwer sshd\[8687\]: Failed password for invalid user romero from 139.155.82.119 port 45912 ssh2 ...	2020-10-14 03:27:21
139.155.82.119	attackbotsspam	Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:10 meumeu sshd[488126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:13 meumeu sshd[488126]: Failed password for invalid user philipp from 139.155.82.119 port 60342 ssh2 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:17 meumeu sshd[488460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:19 meumeu sshd[488460]: Failed password for invalid user elke from 139.155.82.119 port 57342 ssh2 Oct 13 12:31:41 meumeu sshd[488848]: Invalid user test4 from 139.155.82.119 port 54744 ...	2020-10-13 18:46:03
139.155.82.119	attackspam	Sep 1 14:25:28 master sshd[31101]: Failed password for invalid user riana from 139.155.82.119 port 53916 ssh2 Sep 1 14:46:22 master sshd[31850]: Failed password for invalid user sysadmin from 139.155.82.119 port 58530 ssh2 Sep 1 14:49:23 master sshd[31868]: Failed password for invalid user zj from 139.155.82.119 port 43608 ssh2 Sep 1 14:52:29 master sshd[31963]: Failed password for invalid user terry from 139.155.82.119 port 60022 ssh2 Sep 1 14:55:26 master sshd[32027]: Failed password for root from 139.155.82.119 port 55884 ssh2 Sep 1 14:58:30 master sshd[32043]: Failed password for invalid user pokus from 139.155.82.119 port 37782 ssh2 Sep 1 15:01:25 master sshd[32515]: Failed password for invalid user teresa from 139.155.82.119 port 37870 ssh2 Sep 1 15:04:28 master sshd[32533]: Failed password for invalid user zt from 139.155.82.119 port 46416 ssh2 Sep 1 15:07:32 master sshd[32599]: Failed password for invalid user ftp-user from 139.155.82.119 port 59826 ssh2	2020-09-01 20:44:36
139.155.82.119	attackbotsspam	Aug 28 11:47:12 ny01 sshd[22401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Aug 28 11:47:14 ny01 sshd[22401]: Failed password for invalid user wz from 139.155.82.119 port 46152 ssh2 Aug 28 11:49:02 ny01 sshd[22692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119	2020-08-29 02:43:59
139.155.82.119	attack	Aug 18 08:46:44 vm0 sshd[4421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Aug 18 08:46:46 vm0 sshd[4421]: Failed password for invalid user zenbot from 139.155.82.119 port 53678 ssh2 ...	2020-08-18 15:05:04
139.155.82.119	attack	Aug 11 06:51:52 ip40 sshd[24478]: Failed password for root from 139.155.82.119 port 60398 ssh2 ...	2020-08-11 13:44:42
139.155.82.119	attackbotsspam	Jul 23 00:55:11 sso sshd[6439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Jul 23 00:55:13 sso sshd[6439]: Failed password for invalid user pm from 139.155.82.119 port 50300 ssh2 ...	2020-07-23 07:44:11
139.155.82.119	attack	Jul 22 01:15:06 vps46666688 sshd[21307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Jul 22 01:15:08 vps46666688 sshd[21307]: Failed password for invalid user rosie from 139.155.82.119 port 57890 ssh2 ...	2020-07-22 12:15:44
139.155.82.146	attackspambots	Jul 3 04:17:55 ns37 sshd[2826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.146 Jul 3 04:17:55 ns37 sshd[2826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.146 Jul 3 04:17:57 ns37 sshd[2826]: Failed password for invalid user operatore from 139.155.82.146 port 36040 ssh2	2020-07-03 20:37:49
139.155.82.146	attack	21 attempts against mh-ssh on cloud	2020-06-28 01:36:28
139.155.82.119	attackbotsspam	2020-06-25T03:51:54.147926ionos.janbro.de sshd[31935]: Invalid user mysql from 139.155.82.119 port 36764 2020-06-25T03:51:56.591257ionos.janbro.de sshd[31935]: Failed password for invalid user mysql from 139.155.82.119 port 36764 ssh2 2020-06-25T03:54:06.789213ionos.janbro.de sshd[31945]: Invalid user nelson from 139.155.82.119 port 39430 2020-06-25T03:54:07.006456ionos.janbro.de sshd[31945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 2020-06-25T03:54:06.789213ionos.janbro.de sshd[31945]: Invalid user nelson from 139.155.82.119 port 39430 2020-06-25T03:54:08.796987ionos.janbro.de sshd[31945]: Failed password for invalid user nelson from 139.155.82.119 port 39430 ssh2 2020-06-25T03:56:21.954227ionos.janbro.de sshd[31959]: Invalid user ventura from 139.155.82.119 port 42098 2020-06-25T03:56:22.188777ionos.janbro.de sshd[31959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 ...	2020-06-25 12:48:22
139.155.82.119	attack	SSH Attack	2020-06-14 04:14:20
139.155.82.119	attack	2020-05-06T07:03:20.560778shield sshd\[18695\]: Invalid user admin from 139.155.82.119 port 58206 2020-05-06T07:03:20.563636shield sshd\[18695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 2020-05-06T07:03:22.965704shield sshd\[18695\]: Failed password for invalid user admin from 139.155.82.119 port 58206 ssh2 2020-05-06T07:05:54.345172shield sshd\[19211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 user=root 2020-05-06T07:05:56.556412shield sshd\[19211\]: Failed password for root from 139.155.82.119 port 56766 ssh2	2020-05-06 15:20:39
139.155.82.119	attackbots	(sshd) Failed SSH login from 139.155.82.119 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 4 22:23:49 elude sshd[17160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 user=root May 4 22:23:51 elude sshd[17160]: Failed password for root from 139.155.82.119 port 52264 ssh2 May 4 22:25:31 elude sshd[17436]: Invalid user qifan from 139.155.82.119 port 41610 May 4 22:25:33 elude sshd[17436]: Failed password for invalid user qifan from 139.155.82.119 port 41610 ssh2 May 4 22:26:04 elude sshd[17527]: Invalid user gabby from 139.155.82.119 port 48822	2020-05-05 05:52:12
139.155.82.119	attack	fail2ban	2020-03-28 17:45:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.82.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.82.193.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 05 13:01:53 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 193.82.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.82.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.7.240.185	attack	Aug 13 23:40:17 mail sshd\[52423\]: Invalid user guest from 61.7.240.185 Aug 13 23:40:17 mail sshd\[52423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 ...	2020-08-14 13:54:33
193.27.229.190	attack	[MK-VM2] Blocked by UFW	2020-08-14 14:00:08
117.102.87.138	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-14 14:25:39
200.116.3.133	attackbotsspam	SSH invalid-user multiple login try	2020-08-14 14:15:06
62.162.2.18	attack	Email rejected due to spam filtering	2020-08-14 14:03:02
181.48.18.130	attack	sshd jail - ssh hack attempt	2020-08-14 14:05:39
123.56.87.184	attackspam	Port Scan detected! ...	2020-08-14 14:28:02
167.71.117.84	attackbots	2020-08-14T06:21:06.188050vps773228.ovh.net sshd[16201]: Failed password for root from 167.71.117.84 port 55946 ssh2 2020-08-14T06:25:01.449792vps773228.ovh.net sshd[16249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.117.84 user=root 2020-08-14T06:25:03.993410vps773228.ovh.net sshd[16249]: Failed password for root from 167.71.117.84 port 39486 ssh2 2020-08-14T06:29:01.123361vps773228.ovh.net sshd[16259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.117.84 user=root 2020-08-14T06:29:02.944778vps773228.ovh.net sshd[16259]: Failed password for root from 167.71.117.84 port 51256 ssh2 ...	2020-08-14 14:22:19
162.247.74.74	attackbots	$lgm	2020-08-14 14:01:29
139.213.98.106	attack	port 23	2020-08-14 14:31:43
113.160.166.76	attackbotsspam	20/8/13@23:40:05: FAIL: Alarm-Intrusion address from=113.160.166.76 ...	2020-08-14 14:12:28
92.223.73.54	attack	TCP (SYN) 92.223.73.54:49103 -> port 8000, len 44	2020-08-14 14:16:11
139.219.0.102	attackspambots	Aug 14 06:46:06 rancher-0 sshd[1076642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Aug 14 06:46:09 rancher-0 sshd[1076642]: Failed password for root from 139.219.0.102 port 49292 ssh2 ...	2020-08-14 14:08:38
51.83.41.120	attackbotsspam	2020-08-14T00:31:33.7638611495-001 sshd[61385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-83-41.eu user=root 2020-08-14T00:31:35.7875691495-001 sshd[61385]: Failed password for root from 51.83.41.120 port 33644 ssh2 2020-08-14T00:35:10.6982761495-001 sshd[61537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-83-41.eu user=root 2020-08-14T00:35:12.2917661495-001 sshd[61537]: Failed password for root from 51.83.41.120 port 42080 ssh2 2020-08-14T00:38:52.8139231495-001 sshd[61661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-83-41.eu user=root 2020-08-14T00:38:54.7708091495-001 sshd[61661]: Failed password for root from 51.83.41.120 port 50516 ssh2 ...	2020-08-14 14:26:18
78.128.113.116	attack	Aug 14 07:47:57 ncomp postfix/smtpd[28296]: warning: unknown[78.128.113.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 07:48:17 ncomp postfix/smtpd[28311]: warning: unknown[78.128.113.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 07:52:52 ncomp postfix/smtpd[28395]: warning: unknown[78.128.113.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-14 14:01:46

最近上报的IP列表

103.196.202.38	52.225.231.169	220.186.163.5	115.63.36.20
225.93.80.18	204.199.95.39	14.254.182.145	96.122.147.97
215.201.180.219	46.53.180.47	114.33.129.211	104.237.233.113
223.31.191.50	24.244.135.181	197.39.50.128	43.230.199.66
201.14.34.47	154.0.27.151	121.179.151.188	112.72.128.57