139.155.86.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Oct 9 19:57:07 scw-gallant-ride sshd[16847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130	2020-10-10 04:04:14
attackspambots	(sshd) Failed SSH login from 139.155.86.130 (CN/China/-): 5 in the last 3600 secs	2020-10-09 19:59:56
attack	2020-09-25T23:07:00.044931luisaranguren sshd[3775124]: Invalid user xu from 139.155.86.130 port 49462 2020-09-25T23:07:01.855829luisaranguren sshd[3775124]: Failed password for invalid user xu from 139.155.86.130 port 49462 ssh2 ...	2020-09-26 01:32:31
attack	Sep 24 21:37:36 ajax sshd[21858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Sep 24 21:37:38 ajax sshd[21858]: Failed password for invalid user amit from 139.155.86.130 port 46428 ssh2	2020-09-25 17:10:22
attackbotsspam	Aug 28 18:12:49 ajax sshd[5501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Aug 28 18:12:51 ajax sshd[5501]: Failed password for invalid user elena from 139.155.86.130 port 42830 ssh2	2020-08-29 01:44:26
attack	2020-08-12T16:35:20.3407391495-001 sshd[31653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:35:22.5725361495-001 sshd[31653]: Failed password for root from 139.155.86.130 port 49400 ssh2 2020-08-12T16:38:50.8652291495-001 sshd[31843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:38:52.5949011495-001 sshd[31843]: Failed password for root from 139.155.86.130 port 38008 ssh2 2020-08-12T16:42:22.6831091495-001 sshd[32123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:42:24.8494041495-001 sshd[32123]: Failed password for root from 139.155.86.130 port 54848 ssh2 ...	2020-08-13 05:41:56
attack	Aug 8 22:19:50 ncomp sshd[17513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 8 22:19:52 ncomp sshd[17513]: Failed password for root from 139.155.86.130 port 39338 ssh2 Aug 8 22:26:31 ncomp sshd[17603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 8 22:26:34 ncomp sshd[17603]: Failed password for root from 139.155.86.130 port 48310 ssh2	2020-08-09 06:26:48
attackspam	Aug 6 07:45:22 buvik sshd[8951]: Failed password for root from 139.155.86.130 port 58958 ssh2 Aug 6 07:49:57 buvik sshd[9464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 6 07:49:58 buvik sshd[9464]: Failed password for root from 139.155.86.130 port 55240 ssh2 ...	2020-08-06 13:54:45
attackbots	$f2bV_matches	2020-07-24 07:05:23
attackspam	Jul 19 08:09:50 journals sshd\[91344\]: Invalid user zjh from 139.155.86.130 Jul 19 08:09:50 journals sshd\[91344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Jul 19 08:09:52 journals sshd\[91344\]: Failed password for invalid user zjh from 139.155.86.130 port 50010 ssh2 Jul 19 08:13:52 journals sshd\[91843\]: Invalid user johan from 139.155.86.130 Jul 19 08:13:52 journals sshd\[91843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 ...	2020-07-19 13:20:19
attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-11 16:35:07
attackbotsspam	Jun 12 01:13:11 rotator sshd\[14492\]: Failed password for root from 139.155.86.130 port 45118 ssh2Jun 12 01:15:30 rotator sshd\[15246\]: Invalid user kiuchi from 139.155.86.130Jun 12 01:15:33 rotator sshd\[15246\]: Failed password for invalid user kiuchi from 139.155.86.130 port 53540 ssh2Jun 12 01:17:51 rotator sshd\[15263\]: Failed password for root from 139.155.86.130 port 33730 ssh2Jun 12 01:20:08 rotator sshd\[15390\]: Failed password for root from 139.155.86.130 port 42140 ssh2Jun 12 01:22:20 rotator sshd\[16044\]: Invalid user lichengzhang from 139.155.86.130Jun 12 01:22:21 rotator sshd\[16044\]: Failed password for invalid user lichengzhang from 139.155.86.130 port 50558 ssh2 ...	2020-06-12 09:02:19
attackspam	Bruteforce detected by fail2ban	2020-06-07 20:04:12
attackspambots	Jun 6 14:18:58 xeon sshd[43246]: Failed password for root from 139.155.86.130 port 37898 ssh2	2020-06-07 01:11:44
attackspam	Fail2Ban Ban Triggered	2020-05-15 23:38:09
attackbotsspam	May 13 18:59:36 kapalua sshd\[28229\]: Invalid user nova from 139.155.86.130 May 13 18:59:36 kapalua sshd\[28229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 May 13 18:59:38 kapalua sshd\[28229\]: Failed password for invalid user nova from 139.155.86.130 port 50050 ssh2 May 13 19:07:34 kapalua sshd\[28966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root May 13 19:07:35 kapalua sshd\[28966\]: Failed password for root from 139.155.86.130 port 56672 ssh2	2020-05-14 13:26:44

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.86.123	attackspam	SSH BruteForce Attack	2020-10-09 07:53:03
139.155.86.123	attackbotsspam	SSH BruteForce Attack	2020-10-09 00:26:32
139.155.86.123	attackbotsspam	Oct 8 09:45:21 [host] sshd[9357]: pam_unix(sshd:a Oct 8 09:45:23 [host] sshd[9357]: Failed password Oct 8 09:49:15 [host] sshd[9532]: pam_unix(sshd:a	2020-10-08 16:23:05
139.155.86.214	attackbotsspam	Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:53 gitlab sshd[2681859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:55 gitlab sshd[2681859]: Failed password for invalid user informix from 139.155.86.214 port 47324 ssh2 Oct 2 22:08:08 gitlab sshd[2682355]: Invalid user bruno from 139.155.86.214 port 44644 ...	2020-10-03 06:33:57
139.155.86.214	attackbots	Oct 2 17:42:39 serwer sshd\[6646\]: Invalid user guest from 139.155.86.214 port 38574 Oct 2 17:42:39 serwer sshd\[6646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 17:42:40 serwer sshd\[6646\]: Failed password for invalid user guest from 139.155.86.214 port 38574 ssh2 ...	2020-10-03 02:03:01
139.155.86.214	attack	SSH Brute-Forcing (server1)	2020-10-02 22:30:55
139.155.86.214	attack	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 19:02:33
139.155.86.214	attackspam	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 15:37:54
139.155.86.214	attack	SSH login attempts.	2020-10-01 05:28:24
139.155.86.214	attackspambots	Sep 30 11:09:31 sshgateway sshd\[5340\]: Invalid user test2 from 139.155.86.214 Sep 30 11:09:31 sshgateway sshd\[5340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 11:09:33 sshgateway sshd\[5340\]: Failed password for invalid user test2 from 139.155.86.214 port 40352 ssh2	2020-09-30 21:46:02
139.155.86.214	attackspam	Sep 30 06:51:16 s2 sshd[31871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 06:51:18 s2 sshd[31871]: Failed password for invalid user lisa from 139.155.86.214 port 57282 ssh2 Sep 30 06:55:31 s2 sshd[32069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214	2020-09-30 14:18:17
139.155.86.214	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-16 20:56:45
139.155.86.214	attackbots	ssh brute force	2020-09-16 13:27:25
139.155.86.214	attackbots	$f2bV_matches	2020-09-16 05:12:38
139.155.86.214	attackspam	(sshd) Failed SSH login from 139.155.86.214 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 10:47:30 optimus sshd[12781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Sep 5 10:47:31 optimus sshd[12781]: Failed password for root from 139.155.86.214 port 42044 ssh2 Sep 5 10:55:41 optimus sshd[14515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Sep 5 10:55:43 optimus sshd[14515]: Failed password for root from 139.155.86.214 port 49674 ssh2 Sep 5 10:59:44 optimus sshd[15292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root	2020-09-06 04:14:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.86.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6471
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.86.130.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 13:26:37 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.86.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.86.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.56.100.237	attack	Apr 27 13:25:23 IngegnereFirenze sshd[2186]: Failed password for invalid user test from 149.56.100.237 port 50622 ssh2 ...	2020-04-28 03:46:40
49.233.87.45	attackbotsspam	Port scan detected on ports: 65529[TCP], 65529[TCP], 1433[TCP]	2020-04-28 04:00:56
182.156.84.130	attack	(sshd) Failed SSH login from 182.156.84.130 (IN/India/static-130.84.156.182-tataidc.co.in): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 27 19:01:22 andromeda sshd[29062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.84.130 user=root Apr 27 19:01:23 andromeda sshd[29062]: Failed password for root from 182.156.84.130 port 56962 ssh2 Apr 27 19:11:18 andromeda sshd[29537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.84.130 user=root	2020-04-28 04:05:10
37.120.217.55	attackspambots	Chat Spam	2020-04-28 03:47:27
51.178.86.47	attackbots	Apr 27 12:48:27 l03 sshd[23196]: Invalid user lance from 51.178.86.47 port 38040 ...	2020-04-28 04:07:28
49.235.221.172	attackbotsspam	2020-04-27T14:57:23.799807sd-86998 sshd[17239]: Invalid user vishnu from 49.235.221.172 port 38274 2020-04-27T14:57:23.807210sd-86998 sshd[17239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.221.172 2020-04-27T14:57:23.799807sd-86998 sshd[17239]: Invalid user vishnu from 49.235.221.172 port 38274 2020-04-27T14:57:25.900569sd-86998 sshd[17239]: Failed password for invalid user vishnu from 49.235.221.172 port 38274 ssh2 2020-04-27T15:03:10.563842sd-86998 sshd[17918]: Invalid user terrence from 49.235.221.172 port 46190 ...	2020-04-28 03:48:40
191.103.77.90	attackbotsspam	trying to access non-authorized port	2020-04-28 03:52:36
45.143.220.100	attackspam	04/27/2020-07:48:42.055063 45.143.220.100 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner)	2020-04-28 03:59:39
36.111.182.44	attack	Invalid user ming from 36.111.182.44 port 43852	2020-04-28 04:03:51
66.102.6.10	attackbotsspam	[Mon Apr 27 18:48:56.427777 2020] [:error] [pid 5592:tid 140574997767936] [client 66.102.6.10:63881] [client 66.102.6.10] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/2787-kalender-tanam-katam-terpadu-pulau-sulawesi/kalender-tanam-katam-terpadu-provinsi-sulawesi-barat/kalender-tanam-katam-terpadu-kabupaten-mamasa-provinsi-sulawesi-barat/kalender-tanam-katam-terpadu-ke ...	2020-04-28 03:48:25
183.63.157.138	attack	Apr 27 14:26:00 legacy sshd[10546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.63.157.138 Apr 27 14:26:02 legacy sshd[10546]: Failed password for invalid user kwai from 183.63.157.138 port 6184 ssh2 Apr 27 14:30:27 legacy sshd[10716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.63.157.138 ...	2020-04-28 03:51:32
106.13.125.159	attack	Apr 27 17:13:37 ns3164893 sshd[12153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.159 Apr 27 17:13:39 ns3164893 sshd[12153]: Failed password for invalid user ls from 106.13.125.159 port 60408 ssh2 ...	2020-04-28 04:07:44
212.85.128.39	attackspambots	Automatic report - XMLRPC Attack	2020-04-28 04:13:11
157.230.127.240	attackbotsspam	Apr 27 21:39:16 mout sshd[17275]: Invalid user ey from 157.230.127.240 port 48626	2020-04-28 04:06:12
106.12.196.237	attackbotsspam	Apr 27 13:49:03 cloud sshd[8609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.237 Apr 27 13:49:05 cloud sshd[8609]: Failed password for invalid user profile from 106.12.196.237 port 41590 ssh2	2020-04-28 03:41:57

最近上报的IP列表

180.211.183.178	178.87.144.168	1.2.202.183	249.147.64.116
180.242.234.53	197.248.162.194	185.238.44.211	118.172.65.66
221.144.146.107	171.228.240.121	80.230.122.42	71.37.3.88
14.236.236.88	185.71.65.144	110.77.227.6	133.1.89.184
41.139.248.205	187.56.228.202	175.144.252.241	104.27.178.23