139.155.86.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Oct 9 19:57:07 scw-gallant-ride sshd[16847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130	2020-10-10 04:04:14
attackspambots	(sshd) Failed SSH login from 139.155.86.130 (CN/China/-): 5 in the last 3600 secs	2020-10-09 19:59:56
attack	2020-09-25T23:07:00.044931luisaranguren sshd[3775124]: Invalid user xu from 139.155.86.130 port 49462 2020-09-25T23:07:01.855829luisaranguren sshd[3775124]: Failed password for invalid user xu from 139.155.86.130 port 49462 ssh2 ...	2020-09-26 01:32:31
attack	Sep 24 21:37:36 ajax sshd[21858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Sep 24 21:37:38 ajax sshd[21858]: Failed password for invalid user amit from 139.155.86.130 port 46428 ssh2	2020-09-25 17:10:22
attackbotsspam	Aug 28 18:12:49 ajax sshd[5501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Aug 28 18:12:51 ajax sshd[5501]: Failed password for invalid user elena from 139.155.86.130 port 42830 ssh2	2020-08-29 01:44:26
attack	2020-08-12T16:35:20.3407391495-001 sshd[31653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:35:22.5725361495-001 sshd[31653]: Failed password for root from 139.155.86.130 port 49400 ssh2 2020-08-12T16:38:50.8652291495-001 sshd[31843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:38:52.5949011495-001 sshd[31843]: Failed password for root from 139.155.86.130 port 38008 ssh2 2020-08-12T16:42:22.6831091495-001 sshd[32123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root 2020-08-12T16:42:24.8494041495-001 sshd[32123]: Failed password for root from 139.155.86.130 port 54848 ssh2 ...	2020-08-13 05:41:56
attack	Aug 8 22:19:50 ncomp sshd[17513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 8 22:19:52 ncomp sshd[17513]: Failed password for root from 139.155.86.130 port 39338 ssh2 Aug 8 22:26:31 ncomp sshd[17603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 8 22:26:34 ncomp sshd[17603]: Failed password for root from 139.155.86.130 port 48310 ssh2	2020-08-09 06:26:48
attackspam	Aug 6 07:45:22 buvik sshd[8951]: Failed password for root from 139.155.86.130 port 58958 ssh2 Aug 6 07:49:57 buvik sshd[9464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 6 07:49:58 buvik sshd[9464]: Failed password for root from 139.155.86.130 port 55240 ssh2 ...	2020-08-06 13:54:45
attackbots	$f2bV_matches	2020-07-24 07:05:23
attackspam	Jul 19 08:09:50 journals sshd\[91344\]: Invalid user zjh from 139.155.86.130 Jul 19 08:09:50 journals sshd\[91344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Jul 19 08:09:52 journals sshd\[91344\]: Failed password for invalid user zjh from 139.155.86.130 port 50010 ssh2 Jul 19 08:13:52 journals sshd\[91843\]: Invalid user johan from 139.155.86.130 Jul 19 08:13:52 journals sshd\[91843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 ...	2020-07-19 13:20:19
attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-11 16:35:07
attackbotsspam	Jun 12 01:13:11 rotator sshd\[14492\]: Failed password for root from 139.155.86.130 port 45118 ssh2Jun 12 01:15:30 rotator sshd\[15246\]: Invalid user kiuchi from 139.155.86.130Jun 12 01:15:33 rotator sshd\[15246\]: Failed password for invalid user kiuchi from 139.155.86.130 port 53540 ssh2Jun 12 01:17:51 rotator sshd\[15263\]: Failed password for root from 139.155.86.130 port 33730 ssh2Jun 12 01:20:08 rotator sshd\[15390\]: Failed password for root from 139.155.86.130 port 42140 ssh2Jun 12 01:22:20 rotator sshd\[16044\]: Invalid user lichengzhang from 139.155.86.130Jun 12 01:22:21 rotator sshd\[16044\]: Failed password for invalid user lichengzhang from 139.155.86.130 port 50558 ssh2 ...	2020-06-12 09:02:19
attackspam	Bruteforce detected by fail2ban	2020-06-07 20:04:12
attackspambots	Jun 6 14:18:58 xeon sshd[43246]: Failed password for root from 139.155.86.130 port 37898 ssh2	2020-06-07 01:11:44
attackspam	Fail2Ban Ban Triggered	2020-05-15 23:38:09
attackbotsspam	May 13 18:59:36 kapalua sshd\[28229\]: Invalid user nova from 139.155.86.130 May 13 18:59:36 kapalua sshd\[28229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 May 13 18:59:38 kapalua sshd\[28229\]: Failed password for invalid user nova from 139.155.86.130 port 50050 ssh2 May 13 19:07:34 kapalua sshd\[28966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root May 13 19:07:35 kapalua sshd\[28966\]: Failed password for root from 139.155.86.130 port 56672 ssh2	2020-05-14 13:26:44

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.86.123	attackspam	SSH BruteForce Attack	2020-10-09 07:53:03
139.155.86.123	attackbotsspam	SSH BruteForce Attack	2020-10-09 00:26:32
139.155.86.123	attackbotsspam	Oct 8 09:45:21 [host] sshd[9357]: pam_unix(sshd:a Oct 8 09:45:23 [host] sshd[9357]: Failed password Oct 8 09:49:15 [host] sshd[9532]: pam_unix(sshd:a	2020-10-08 16:23:05
139.155.86.214	attackbotsspam	Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:53 gitlab sshd[2681859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:55 gitlab sshd[2681859]: Failed password for invalid user informix from 139.155.86.214 port 47324 ssh2 Oct 2 22:08:08 gitlab sshd[2682355]: Invalid user bruno from 139.155.86.214 port 44644 ...	2020-10-03 06:33:57
139.155.86.214	attackbots	Oct 2 17:42:39 serwer sshd\[6646\]: Invalid user guest from 139.155.86.214 port 38574 Oct 2 17:42:39 serwer sshd\[6646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 17:42:40 serwer sshd\[6646\]: Failed password for invalid user guest from 139.155.86.214 port 38574 ssh2 ...	2020-10-03 02:03:01
139.155.86.214	attack	SSH Brute-Forcing (server1)	2020-10-02 22:30:55
139.155.86.214	attack	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 19:02:33
139.155.86.214	attackspam	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 15:37:54
139.155.86.214	attack	SSH login attempts.	2020-10-01 05:28:24
139.155.86.214	attackspambots	Sep 30 11:09:31 sshgateway sshd\[5340\]: Invalid user test2 from 139.155.86.214 Sep 30 11:09:31 sshgateway sshd\[5340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 11:09:33 sshgateway sshd\[5340\]: Failed password for invalid user test2 from 139.155.86.214 port 40352 ssh2	2020-09-30 21:46:02
139.155.86.214	attackspam	Sep 30 06:51:16 s2 sshd[31871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 06:51:18 s2 sshd[31871]: Failed password for invalid user lisa from 139.155.86.214 port 57282 ssh2 Sep 30 06:55:31 s2 sshd[32069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214	2020-09-30 14:18:17
139.155.86.214	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-16 20:56:45
139.155.86.214	attackbots	ssh brute force	2020-09-16 13:27:25
139.155.86.214	attackbots	$f2bV_matches	2020-09-16 05:12:38
139.155.86.214	attackspam	(sshd) Failed SSH login from 139.155.86.214 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 10:47:30 optimus sshd[12781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Sep 5 10:47:31 optimus sshd[12781]: Failed password for root from 139.155.86.214 port 42044 ssh2 Sep 5 10:55:41 optimus sshd[14515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Sep 5 10:55:43 optimus sshd[14515]: Failed password for root from 139.155.86.214 port 49674 ssh2 Sep 5 10:59:44 optimus sshd[15292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root	2020-09-06 04:14:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.86.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6471
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.86.130.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 13:26:37 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.86.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.86.155.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
178.128.216.246	attackbotsspam	178.128.216.246 - - [26/Jul/2020:19:20:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.216.246 - - [26/Jul/2020:19:20:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.216.246 - - [26/Jul/2020:19:20:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1909 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 04:10:07
110.36.234.130	attack	Unauthorized connection attempt from IP address 110.36.234.130 on Port 445(SMB)	2020-07-27 03:55:47
198.23.251.238	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-27 03:59:09
49.149.109.223	attackbots	Unauthorized connection attempt from IP address 49.149.109.223 on Port 445(SMB)	2020-07-27 04:11:53
182.71.77.58	attack	Unauthorized connection attempt from IP address 182.71.77.58 on Port 445(SMB)	2020-07-27 03:38:58
106.52.36.19	attack	[ssh] SSH attack	2020-07-27 04:06:38
106.13.207.225	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-27 03:46:43
51.77.210.17	attackspam	Jul 26 14:18:55 lanister sshd[7967]: Invalid user sorrentino from 51.77.210.17 Jul 26 14:18:55 lanister sshd[7967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.210.17 Jul 26 14:18:55 lanister sshd[7967]: Invalid user sorrentino from 51.77.210.17 Jul 26 14:18:57 lanister sshd[7967]: Failed password for invalid user sorrentino from 51.77.210.17 port 54356 ssh2	2020-07-27 03:39:51
23.30.221.181	attack	$f2bV_matches	2020-07-27 04:01:47
87.251.74.62	attack	Port scan on 14 port(s): 4074 4140 4168 4452 4581 4899 4913 4998 33246 33581 33596 33618 33852 33954	2020-07-27 03:54:01
212.143.227.22	attackbotsspam	Unauthorized connection attempt	2020-07-27 03:42:48
209.97.132.66	attack	Port scan on 1 port(s): 5038	2020-07-27 03:53:07
218.151.100.194	attack	Jul 26 11:07:44 scw-tender-jepsen sshd[13771]: Failed password for mysql from 218.151.100.194 port 33516 ssh2 Jul 26 12:00:33 scw-tender-jepsen sshd[14795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.151.100.194	2020-07-27 04:02:42
113.161.32.34	attackspam	Unauthorized connection attempt from IP address 113.161.32.34 on Port 445(SMB)	2020-07-27 03:59:34
96.77.231.29	attack	Failed password for invalid user lgb from 96.77.231.29 port 63470 ssh2	2020-07-27 03:37:16

最近上报的IP列表

180.211.183.178	178.87.144.168	1.2.202.183	249.147.64.116
180.242.234.53	197.248.162.194	185.238.44.211	118.172.65.66
221.144.146.107	171.228.240.121	80.230.122.42	71.37.3.88
14.236.236.88	185.71.65.144	110.77.227.6	133.1.89.184
41.139.248.205	187.56.228.202	175.144.252.241	104.27.178.23