139.155.82.193

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 5 14:08:35 hidden sshd[17390]: Failed password for hidden from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 hidden sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 hidden sshd[19273]: Failed password for hidden from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 hidden sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 hidden sshd[21047]: Failed password for hidden from 139.155.82.193 port 39664 ssh2	2020-10-06 05:07:42
attackspam	Oct 5 14:08:35 hidden sshd[17390]: Failed password for hidden from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 hidden sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 hidden sshd[19273]: Failed password for hidden from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 hidden sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 hidden sshd[21047]: Failed password for hidden from 139.155.82.193 port 39664 ssh2	2020-10-05 21:11:37
attack	SSH/22 MH Probe, BF, Hack -	2020-10-05 13:01:56

类型

评论内容

时间

attack

Oct 5 14:08:35 *hidden* sshd[17390]: Failed password for *hidden* from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 *hidden* sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 *hidden* sshd[19273]: Failed password for *hidden* from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 *hidden* sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 *hidden* sshd[21047]: Failed password for *hidden* from 139.155.82.193 port 39664 ssh2

2020-10-06 05:07:42

attackspam

Oct 5 14:08:35 *hidden* sshd[17390]: Failed password for *hidden* from 139.155.82.193 port 34290 ssh2 Oct 5 14:13:43 *hidden* sshd[19273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:13:45 *hidden* sshd[19273]: Failed password for *hidden* from 139.155.82.193 port 36978 ssh2 Oct 5 14:18:53 *hidden* sshd[21047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.193 user=root Oct 5 14:18:55 *hidden* sshd[21047]: Failed password for *hidden* from 139.155.82.193 port 39664 ssh2

2020-10-05 21:11:37

attack

SSH/22 MH Probe, BF, Hack -

2020-10-05 13:01:56

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.82.119	attackspam	Oct 13 16:41:09 serwer sshd\[8687\]: Invalid user romero from 139.155.82.119 port 45912 Oct 13 16:41:09 serwer sshd\[8687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 16:41:11 serwer sshd\[8687\]: Failed password for invalid user romero from 139.155.82.119 port 45912 ssh2 ...	2020-10-14 03:27:21
139.155.82.119	attackbotsspam	Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:10 meumeu sshd[488126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:13 meumeu sshd[488126]: Failed password for invalid user philipp from 139.155.82.119 port 60342 ssh2 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:17 meumeu sshd[488460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:19 meumeu sshd[488460]: Failed password for invalid user elke from 139.155.82.119 port 57342 ssh2 Oct 13 12:31:41 meumeu sshd[488848]: Invalid user test4 from 139.155.82.119 port 54744 ...	2020-10-13 18:46:03
139.155.82.119	attackspam	Sep 1 14:25:28 master sshd[31101]: Failed password for invalid user riana from 139.155.82.119 port 53916 ssh2 Sep 1 14:46:22 master sshd[31850]: Failed password for invalid user sysadmin from 139.155.82.119 port 58530 ssh2 Sep 1 14:49:23 master sshd[31868]: Failed password for invalid user zj from 139.155.82.119 port 43608 ssh2 Sep 1 14:52:29 master sshd[31963]: Failed password for invalid user terry from 139.155.82.119 port 60022 ssh2 Sep 1 14:55:26 master sshd[32027]: Failed password for root from 139.155.82.119 port 55884 ssh2 Sep 1 14:58:30 master sshd[32043]: Failed password for invalid user pokus from 139.155.82.119 port 37782 ssh2 Sep 1 15:01:25 master sshd[32515]: Failed password for invalid user teresa from 139.155.82.119 port 37870 ssh2 Sep 1 15:04:28 master sshd[32533]: Failed password for invalid user zt from 139.155.82.119 port 46416 ssh2 Sep 1 15:07:32 master sshd[32599]: Failed password for invalid user ftp-user from 139.155.82.119 port 59826 ssh2	2020-09-01 20:44:36
139.155.82.119	attackbotsspam	Aug 28 11:47:12 ny01 sshd[22401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Aug 28 11:47:14 ny01 sshd[22401]: Failed password for invalid user wz from 139.155.82.119 port 46152 ssh2 Aug 28 11:49:02 ny01 sshd[22692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119	2020-08-29 02:43:59
139.155.82.119	attack	Aug 18 08:46:44 vm0 sshd[4421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Aug 18 08:46:46 vm0 sshd[4421]: Failed password for invalid user zenbot from 139.155.82.119 port 53678 ssh2 ...	2020-08-18 15:05:04
139.155.82.119	attack	Aug 11 06:51:52 ip40 sshd[24478]: Failed password for root from 139.155.82.119 port 60398 ssh2 ...	2020-08-11 13:44:42
139.155.82.119	attackbotsspam	Jul 23 00:55:11 sso sshd[6439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Jul 23 00:55:13 sso sshd[6439]: Failed password for invalid user pm from 139.155.82.119 port 50300 ssh2 ...	2020-07-23 07:44:11
139.155.82.119	attack	Jul 22 01:15:06 vps46666688 sshd[21307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Jul 22 01:15:08 vps46666688 sshd[21307]: Failed password for invalid user rosie from 139.155.82.119 port 57890 ssh2 ...	2020-07-22 12:15:44
139.155.82.146	attackspambots	Jul 3 04:17:55 ns37 sshd[2826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.146 Jul 3 04:17:55 ns37 sshd[2826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.146 Jul 3 04:17:57 ns37 sshd[2826]: Failed password for invalid user operatore from 139.155.82.146 port 36040 ssh2	2020-07-03 20:37:49
139.155.82.146	attack	21 attempts against mh-ssh on cloud	2020-06-28 01:36:28
139.155.82.119	attackbotsspam	2020-06-25T03:51:54.147926ionos.janbro.de sshd[31935]: Invalid user mysql from 139.155.82.119 port 36764 2020-06-25T03:51:56.591257ionos.janbro.de sshd[31935]: Failed password for invalid user mysql from 139.155.82.119 port 36764 ssh2 2020-06-25T03:54:06.789213ionos.janbro.de sshd[31945]: Invalid user nelson from 139.155.82.119 port 39430 2020-06-25T03:54:07.006456ionos.janbro.de sshd[31945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 2020-06-25T03:54:06.789213ionos.janbro.de sshd[31945]: Invalid user nelson from 139.155.82.119 port 39430 2020-06-25T03:54:08.796987ionos.janbro.de sshd[31945]: Failed password for invalid user nelson from 139.155.82.119 port 39430 ssh2 2020-06-25T03:56:21.954227ionos.janbro.de sshd[31959]: Invalid user ventura from 139.155.82.119 port 42098 2020-06-25T03:56:22.188777ionos.janbro.de sshd[31959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 ...	2020-06-25 12:48:22
139.155.82.119	attack	SSH Attack	2020-06-14 04:14:20
139.155.82.119	attack	2020-05-06T07:03:20.560778shield sshd\[18695\]: Invalid user admin from 139.155.82.119 port 58206 2020-05-06T07:03:20.563636shield sshd\[18695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 2020-05-06T07:03:22.965704shield sshd\[18695\]: Failed password for invalid user admin from 139.155.82.119 port 58206 ssh2 2020-05-06T07:05:54.345172shield sshd\[19211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 user=root 2020-05-06T07:05:56.556412shield sshd\[19211\]: Failed password for root from 139.155.82.119 port 56766 ssh2	2020-05-06 15:20:39
139.155.82.119	attackbots	(sshd) Failed SSH login from 139.155.82.119 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 4 22:23:49 elude sshd[17160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 user=root May 4 22:23:51 elude sshd[17160]: Failed password for root from 139.155.82.119 port 52264 ssh2 May 4 22:25:31 elude sshd[17436]: Invalid user qifan from 139.155.82.119 port 41610 May 4 22:25:33 elude sshd[17436]: Failed password for invalid user qifan from 139.155.82.119 port 41610 ssh2 May 4 22:26:04 elude sshd[17527]: Invalid user gabby from 139.155.82.119 port 48822	2020-05-05 05:52:12
139.155.82.119	attack	fail2ban	2020-03-28 17:45:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.82.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.82.193.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 05 13:01:53 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 193.82.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.82.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
144.34.248.219	attackbots	Invalid user nijian from 144.34.248.219 port 50698	2020-02-22 20:22:31
109.248.241.15	attackspambots	" "	2020-02-22 20:13:51
103.221.252.46	attackspambots	Feb 22 12:45:01 MK-Soft-VM6 sshd[29297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.252.46 Feb 22 12:45:03 MK-Soft-VM6 sshd[29297]: Failed password for invalid user devman from 103.221.252.46 port 51774 ssh2 ...	2020-02-22 19:57:13
45.141.87.14	attack	RDP Bruteforce	2020-02-22 20:13:35
134.175.82.230	attack	Feb 21 23:46:12 php1 sshd\[14390\]: Invalid user oracle from 134.175.82.230 Feb 21 23:46:12 php1 sshd\[14390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.82.230 Feb 21 23:46:14 php1 sshd\[14390\]: Failed password for invalid user oracle from 134.175.82.230 port 36460 ssh2 Feb 21 23:50:30 php1 sshd\[14787\]: Invalid user bs from 134.175.82.230 Feb 21 23:50:30 php1 sshd\[14787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.82.230	2020-02-22 19:59:29
51.178.27.119	attackspam	Lines containing failures of 51.178.27.119 Feb 20 20:28:43 comanche sshd[13110]: Connection from 51.178.27.119 port 60860 on 168.235.108.111 port 22 Feb 20 20:31:09 comanche sshd[13132]: Connection from 51.178.27.119 port 46786 on 168.235.108.111 port 22 Feb 20 20:31:10 comanche sshd[13132]: Received disconnect from 51.178.27.119 port 46786:11: Normal Shutdown, Thank you for playing [preauth] Feb 20 20:31:10 comanche sshd[13132]: Disconnected from authenticating user r.r 51.178.27.119 port 46786 [preauth] Feb 20 20:31:15 comanche sshd[13134]: Connection from 51.178.27.119 port 52659 on 168.235.108.111 port 22 Feb 20 20:31:16 comanche sshd[13134]: Received disconnect from 51.178.27.119 port 52659:11: Normal Shutdown, Thank you for playing [preauth] Feb 20 20:31:16 comanche sshd[13134]: Disconnected from authenticating user r.r 51.178.27.119 port 52659 [preauth] Feb 20 20:31:22 comanche sshd[13136]: Connection from 51.178.27.119 port 58532 on 168.235.108.111 port 22 Feb 20........ ------------------------------	2020-02-22 19:53:49
104.130.4.45	attackbotsspam	Feb 22 11:39:46 *** sshd[16584]: Invalid user sftptest from 104.130.4.45	2020-02-22 19:49:55
212.95.137.164	attackspam	Invalid user ftpuser from 212.95.137.164 port 55668	2020-02-22 20:02:16
184.167.32.172	attack	Feb 22 10:31:21 ns382633 sshd\[21123\]: Invalid user mumble from 184.167.32.172 port 42632 Feb 22 10:31:21 ns382633 sshd\[21123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.167.32.172 Feb 22 10:31:22 ns382633 sshd\[21123\]: Failed password for invalid user mumble from 184.167.32.172 port 42632 ssh2 Feb 22 11:18:21 ns382633 sshd\[28630\]: Invalid user hduser from 184.167.32.172 port 34518 Feb 22 11:18:21 ns382633 sshd\[28630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.167.32.172	2020-02-22 20:23:03
138.197.134.111	attackspam	Feb 22 06:58:00 sshd\[16201\]: Invalid user temp1 from 138.197.134.111Feb 22 06:58:02 sshd\[16201\]: Failed password for invalid user temp1 from 138.197.134.111 port 40854 ssh2 ...	2020-02-22 20:15:44
104.203.153.63	attackbots	Feb 22 12:30:56 ovpn sshd[32609]: Invalid user naomi from 104.203.153.63 Feb 22 12:30:56 ovpn sshd[32609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.203.153.63 Feb 22 12:30:57 ovpn sshd[32609]: Failed password for invalid user naomi from 104.203.153.63 port 38352 ssh2 Feb 22 12:30:58 ovpn sshd[32609]: Received disconnect from 104.203.153.63 port 38352:11: Bye Bye [preauth] Feb 22 12:30:58 ovpn sshd[32609]: Disconnected from 104.203.153.63 port 38352 [preauth] Feb 22 12:32:36 ovpn sshd[532]: Invalid user hobbhostname from 104.203.153.63 Feb 22 12:32:36 ovpn sshd[532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.203.153.63 Feb 22 12:32:39 ovpn sshd[532]: Failed password for invalid user hobbhostname from 104.203.153.63 port 51516 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.203.153.63	2020-02-22 19:52:53
54.37.232.137	attack	Invalid user nagios from 54.37.232.137 port 53244	2020-02-22 20:00:23
182.72.178.114	attack	2020-02-22T10:45:17.716894struts4.enskede.local sshd\[24417\]: Invalid user jacky from 182.72.178.114 port 16026 2020-02-22T10:45:17.723979struts4.enskede.local sshd\[24417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.178.114 2020-02-22T10:45:20.400725struts4.enskede.local sshd\[24417\]: Failed password for invalid user jacky from 182.72.178.114 port 16026 ssh2 2020-02-22T10:48:57.697840struts4.enskede.local sshd\[24420\]: Invalid user www-data from 182.72.178.114 port 30858 2020-02-22T10:48:57.709735struts4.enskede.local sshd\[24420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.178.114 ...	2020-02-22 20:09:49
198.46.154.34	attack	Port 7715 scan denied	2020-02-22 20:10:30
168.196.42.122	attackspambots	Feb 21 15:55:26 cumulus sshd[26053]: Invalid user gmodserver from 168.196.42.122 port 45377 Feb 21 15:55:26 cumulus sshd[26053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.196.42.122 Feb 21 15:55:28 cumulus sshd[26053]: Failed password for invalid user gmodserver from 168.196.42.122 port 45377 ssh2 Feb 21 15:55:28 cumulus sshd[26053]: Received disconnect from 168.196.42.122 port 45377:11: Bye Bye [preauth] Feb 21 15:55:28 cumulus sshd[26053]: Disconnected from 168.196.42.122 port 45377 [preauth] Feb 21 16:06:52 cumulus sshd[26360]: Invalid user akazam from 168.196.42.122 port 49222 Feb 21 16:06:52 cumulus sshd[26360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.196.42.122 Feb 21 16:06:53 cumulus sshd[26360]: Failed password for invalid user akazam from 168.196.42.122 port 49222 ssh2 Feb 21 16:06:54 cumulus sshd[26360]: Received disconnect from 168.196.42.122 port 49222:11: B........ -------------------------------	2020-02-22 20:22:14

最近上报的IP列表

103.196.202.38	52.225.231.169	220.186.163.5	115.63.36.20
225.93.80.18	204.199.95.39	14.254.182.145	96.122.147.97
215.201.180.219	46.53.180.47	114.33.129.211	104.237.233.113
223.31.191.50	24.244.135.181	197.39.50.128	43.230.199.66
201.14.34.47	154.0.27.151	121.179.151.188	112.72.128.57