139.155.83.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 139.155.83.98 to port 2220 [J]	2020-01-27 00:16:49
attackspambots	Jan 25 05:02:21 eddieflores sshd\[7860\]: Invalid user abcde12345 from 139.155.83.98 Jan 25 05:02:21 eddieflores sshd\[7860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Jan 25 05:02:23 eddieflores sshd\[7860\]: Failed password for invalid user abcde12345 from 139.155.83.98 port 32770 ssh2 Jan 25 05:05:19 eddieflores sshd\[8184\]: Invalid user 123456 from 139.155.83.98 Jan 25 05:05:19 eddieflores sshd\[8184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98	2020-01-25 23:13:01
attackspam	Invalid user mithun from 139.155.83.98 port 36192	2020-01-19 02:30:31
attack	Jan 17 18:41:35 ws12vmsma01 sshd[38624]: Invalid user ftpuser2 from 139.155.83.98 Jan 17 18:41:37 ws12vmsma01 sshd[38624]: Failed password for invalid user ftpuser2 from 139.155.83.98 port 42298 ssh2 Jan 17 18:45:23 ws12vmsma01 sshd[39136]: Invalid user git from 139.155.83.98 ...	2020-01-18 05:10:37
attackbots	Unauthorized connection attempt detected from IP address 139.155.83.98 to port 2220 [J]	2020-01-17 03:42:56
attackspam	2019-12-28T00:29:44.504992abusebot-5.cloudsearch.cf sshd[25596]: Invalid user bind from 139.155.83.98 port 42950 2019-12-28T00:29:44.513292abusebot-5.cloudsearch.cf sshd[25596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 2019-12-28T00:29:44.504992abusebot-5.cloudsearch.cf sshd[25596]: Invalid user bind from 139.155.83.98 port 42950 2019-12-28T00:29:46.207350abusebot-5.cloudsearch.cf sshd[25596]: Failed password for invalid user bind from 139.155.83.98 port 42950 ssh2 2019-12-28T00:33:54.073809abusebot-5.cloudsearch.cf sshd[25600]: Invalid user mysql from 139.155.83.98 port 43408 2019-12-28T00:33:54.080609abusebot-5.cloudsearch.cf sshd[25600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 2019-12-28T00:33:54.073809abusebot-5.cloudsearch.cf sshd[25600]: Invalid user mysql from 139.155.83.98 port 43408 2019-12-28T00:33:56.095778abusebot-5.cloudsearch.cf sshd[25600]: Failed pa ...	2019-12-28 08:57:13
attackbots	Invalid user ftpuser from 139.155.83.98 port 59302	2019-12-11 07:19:43
attackbotsspam	Nov 29 09:24:20 nextcloud sshd\[18784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 user=root Nov 29 09:24:22 nextcloud sshd\[18784\]: Failed password for root from 139.155.83.98 port 50496 ssh2 Nov 29 09:28:26 nextcloud sshd\[25370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 user=root ...	2019-11-29 20:18:43
attackspam	Nov 21 16:12:23 vps666546 sshd\[9998\]: Invalid user manimozhi from 139.155.83.98 port 49694 Nov 21 16:12:23 vps666546 sshd\[9998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Nov 21 16:12:25 vps666546 sshd\[9998\]: Failed password for invalid user manimozhi from 139.155.83.98 port 49694 ssh2 Nov 21 16:17:53 vps666546 sshd\[10233\]: Invalid user alex from 139.155.83.98 port 54606 Nov 21 16:17:53 vps666546 sshd\[10233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 ...	2019-11-21 23:18:20
attackspam	Nov 3 14:38:11 MK-Soft-VM5 sshd[3610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Nov 3 14:38:13 MK-Soft-VM5 sshd[3610]: Failed password for invalid user zhaobin from 139.155.83.98 port 58078 ssh2 ...	2019-11-03 22:26:32
attackbots	Oct 23 00:48:15 lcl-usvr-02 sshd[30096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 user=root Oct 23 00:48:17 lcl-usvr-02 sshd[30096]: Failed password for root from 139.155.83.98 port 53728 ssh2 Oct 23 00:53:22 lcl-usvr-02 sshd[31260]: Invalid user mina from 139.155.83.98 port 59338 Oct 23 00:53:22 lcl-usvr-02 sshd[31260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Oct 23 00:53:22 lcl-usvr-02 sshd[31260]: Invalid user mina from 139.155.83.98 port 59338 Oct 23 00:53:24 lcl-usvr-02 sshd[31260]: Failed password for invalid user mina from 139.155.83.98 port 59338 ssh2 ...	2019-10-23 02:46:24
attack	Oct 10 07:10:22 www sshd\[110014\]: Invalid user Motdepasse@12345 from 139.155.83.98 Oct 10 07:10:22 www sshd\[110014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Oct 10 07:10:25 www sshd\[110014\]: Failed password for invalid user Motdepasse@12345 from 139.155.83.98 port 49708 ssh2 ...	2019-10-10 13:49:21
attackspam	2019-08-30T01:50:21.777099abusebot-6.cloudsearch.cf sshd\[12170\]: Invalid user mysql from 139.155.83.98 port 32870 2019-08-30T01:50:21.781881abusebot-6.cloudsearch.cf sshd\[12170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98	2019-08-30 10:07:17
attackspambots	Aug 28 21:36:21 game-panel sshd[16173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Aug 28 21:36:24 game-panel sshd[16173]: Failed password for invalid user testuser from 139.155.83.98 port 47840 ssh2 Aug 28 21:40:25 game-panel sshd[16409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98	2019-08-29 07:48:35
attack	SSH Bruteforce	2019-08-28 19:49:36
attackspam	Aug 25 01:53:38 eventyay sshd[19481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 Aug 25 01:53:40 eventyay sshd[19481]: Failed password for invalid user qr from 139.155.83.98 port 55552 ssh2 Aug 25 01:56:46 eventyay sshd[19539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.83.98 ...	2019-08-25 09:10:12

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.83.106	attackspam	Sep 27 00:39:24 pkdns2 sshd\[64190\]: Invalid user 0000 from 139.155.83.106Sep 27 00:39:27 pkdns2 sshd\[64190\]: Failed password for invalid user 0000 from 139.155.83.106 port 54932 ssh2Sep 27 00:42:48 pkdns2 sshd\[64350\]: Invalid user asdf from 139.155.83.106Sep 27 00:42:50 pkdns2 sshd\[64350\]: Failed password for invalid user asdf from 139.155.83.106 port 53532 ssh2Sep 27 00:46:05 pkdns2 sshd\[64532\]: Invalid user 123456 from 139.155.83.106Sep 27 00:46:06 pkdns2 sshd\[64532\]: Failed password for invalid user 123456 from 139.155.83.106 port 52106 ssh2 ...	2019-09-27 06:05:08
139.155.83.106	attackbotsspam	Invalid user suporte from 139.155.83.106 port 55824	2019-09-15 21:03:43

类型

评论内容

时间

139.155.83.106

attackspam

Sep 27 00:39:24 pkdns2 sshd\[64190\]: Invalid user 0000 from 139.155.83.106Sep 27 00:39:27 pkdns2 sshd\[64190\]: Failed password for invalid user 0000 from 139.155.83.106 port 54932 ssh2Sep 27 00:42:48 pkdns2 sshd\[64350\]: Invalid user asdf from 139.155.83.106Sep 27 00:42:50 pkdns2 sshd\[64350\]: Failed password for invalid user asdf from 139.155.83.106 port 53532 ssh2Sep 27 00:46:05 pkdns2 sshd\[64532\]: Invalid user 123456 from 139.155.83.106Sep 27 00:46:06 pkdns2 sshd\[64532\]: Failed password for invalid user 123456 from 139.155.83.106 port 52106 ssh2
...

2019-09-27 06:05:08

139.155.83.106

attackbotsspam

Invalid user suporte from 139.155.83.106 port 55824

2019-09-15 21:03:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.83.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7036
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.83.98.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 09:10:00 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 98.83.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 98.83.155.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
139.155.50.40	attack	Mar 17 06:37:35 l03 sshd[32251]: Invalid user xhchen from 139.155.50.40 port 37016 ...	2020-03-17 15:59:53
146.66.89.175	attack	Automatic report - XMLRPC Attack	2020-03-17 15:59:22
210.140.173.155	attackspambots	<6 unauthorized SSH connections	2020-03-17 16:19:47
179.232.13.179	attackspam	SSH bruteforce	2020-03-17 16:24:56
220.134.17.41	attackspambots	Mar 17 00:25:54 debian-2gb-nbg1-2 kernel: \[6660272.305897\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=220.134.17.41 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=11900 PROTO=TCP SPT=15555 DPT=8080 WINDOW=64314 RES=0x00 SYN URGP=0	2020-03-17 16:17:48
132.232.241.187	attackbots	$f2bV_matches	2020-03-17 16:37:54
189.50.42.101	attackspambots	Mar 17 08:55:36 MainVPS sshd[5278]: Invalid user hadoop from 189.50.42.101 port 53860 Mar 17 08:55:36 MainVPS sshd[5278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.50.42.101 Mar 17 08:55:36 MainVPS sshd[5278]: Invalid user hadoop from 189.50.42.101 port 53860 Mar 17 08:55:38 MainVPS sshd[5278]: Failed password for invalid user hadoop from 189.50.42.101 port 53860 ssh2 Mar 17 09:01:25 MainVPS sshd[16286]: Invalid user aws from 189.50.42.101 port 40529 ...	2020-03-17 16:16:06
61.167.99.163	attackbotsspam	Mar 17 07:56:45 pornomens sshd\[4994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.167.99.163 user=root Mar 17 07:56:47 pornomens sshd\[4994\]: Failed password for root from 61.167.99.163 port 53810 ssh2 Mar 17 07:56:54 pornomens sshd\[4996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.167.99.163 user=root ...	2020-03-17 16:18:24
88.78.16.191	attackbots	Mar 17 00:25:14 web1 sshd\[1353\]: Invalid user ubnt from 88.78.16.191 Mar 17 00:25:14 web1 sshd\[1353\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.78.16.191 Mar 17 00:25:16 web1 sshd\[1353\]: Failed password for invalid user ubnt from 88.78.16.191 port 57124 ssh2 Mar 17 00:25:16 web1 sshd\[1355\]: Invalid user openhabian from 88.78.16.191 Mar 17 00:25:16 web1 sshd\[1355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.78.16.191	2020-03-17 16:36:35
58.228.63.134	attack	SSH-bruteforce attempts	2020-03-17 16:16:28
45.143.222.150	attack	SMTP brute force attack.	2020-03-17 16:03:28
95.84.146.201	attackspam	Invalid user admins from 95.84.146.201 port 43078	2020-03-17 15:57:35
118.25.51.181	attackbots	" "	2020-03-17 16:43:38
113.125.25.73	attackspam	detected by Fail2Ban	2020-03-17 16:10:59
151.80.144.255	attack	SSH bruteforce (Triggered fail2ban)	2020-03-17 16:02:31

最近上报的IP列表

6.198.27.143	8.226.172.114	212.48.254.209	80.134.25.157
172.88.57.176	80.70.52.3	125.157.200.164	178.109.169.188
76.255.175.217	126.199.173.108	203.187.164.119	126.92.56.136
49.234.116.13	219.242.85.164	61.174.95.131	18.120.87.85
90.14.193.170	147.84.111.230	195.172.144.187	141.8.159.87