139.155.86.143

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 6 07:06:47 inter-technics sshd[14839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 user=root Aug 6 07:06:49 inter-technics sshd[14839]: Failed password for root from 139.155.86.143 port 55932 ssh2 Aug 6 07:11:50 inter-technics sshd[15317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 user=root Aug 6 07:11:52 inter-technics sshd[15317]: Failed password for root from 139.155.86.143 port 56132 ssh2 Aug 6 07:16:47 inter-technics sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 user=root Aug 6 07:16:49 inter-technics sshd[15567]: Failed password for root from 139.155.86.143 port 56336 ssh2 ...	2020-08-06 21:18:04
attackbotsspam	Multiple SSH authentication failures from 139.155.86.143	2020-07-26 02:36:23
attack	Jul 17 19:07:49 hanapaa sshd\[3706\]: Invalid user user1 from 139.155.86.143 Jul 17 19:07:49 hanapaa sshd\[3706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 Jul 17 19:07:51 hanapaa sshd\[3706\]: Failed password for invalid user user1 from 139.155.86.143 port 48872 ssh2 Jul 17 19:13:12 hanapaa sshd\[4334\]: Invalid user test123 from 139.155.86.143 Jul 17 19:13:12 hanapaa sshd\[4334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143	2020-07-18 13:26:21
attack	Jul 16 10:06:34 rush sshd[10785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 Jul 16 10:06:36 rush sshd[10785]: Failed password for invalid user mtb from 139.155.86.143 port 45170 ssh2 Jul 16 10:08:00 rush sshd[10847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 ...	2020-07-16 19:00:43
attack	2020-07-11T06:58:29.576691vps751288.ovh.net sshd\[26496\]: Invalid user Szaniszlo from 139.155.86.143 port 35508 2020-07-11T06:58:29.584099vps751288.ovh.net sshd\[26496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 2020-07-11T06:58:31.137933vps751288.ovh.net sshd\[26496\]: Failed password for invalid user Szaniszlo from 139.155.86.143 port 35508 ssh2 2020-07-11T07:01:42.191620vps751288.ovh.net sshd\[26542\]: Invalid user raffaele from 139.155.86.143 port 44116 2020-07-11T07:01:42.201243vps751288.ovh.net sshd\[26542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143	2020-07-11 13:02:54
attackspam	Invalid user administrator from 139.155.86.143 port 46878 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 Invalid user administrator from 139.155.86.143 port 46878 Failed password for invalid user administrator from 139.155.86.143 port 46878 ssh2 Invalid user renxiaoyan from 139.155.86.143 port 46082	2020-07-10 12:27:34
attackspambots	Jun 7 03:12:29 localhost sshd[3682991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 user=root Jun 7 03:12:31 localhost sshd[3682991]: Failed password for root from 139.155.86.143 port 55394 ssh2 ...	2020-06-07 03:36:05
attack	2020-05-28T23:53:17.360587linuxbox-skyline sshd[132903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 user=root 2020-05-28T23:53:19.717080linuxbox-skyline sshd[132903]: Failed password for root from 139.155.86.143 port 55874 ssh2 ...	2020-05-29 16:18:37
attackbots	May 24 04:59:12 onepixel sshd[1198729]: Invalid user tud from 139.155.86.143 port 42916 May 24 04:59:12 onepixel sshd[1198729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.143 May 24 04:59:12 onepixel sshd[1198729]: Invalid user tud from 139.155.86.143 port 42916 May 24 04:59:14 onepixel sshd[1198729]: Failed password for invalid user tud from 139.155.86.143 port 42916 ssh2 May 24 05:02:55 onepixel sshd[1199289]: Invalid user nel from 139.155.86.143 port 59356	2020-05-24 15:29:07

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.86.130	attackspam	Oct 9 19:57:07 scw-gallant-ride sshd[16847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130	2020-10-10 04:04:14
139.155.86.130	attackspambots	(sshd) Failed SSH login from 139.155.86.130 (CN/China/-): 5 in the last 3600 secs	2020-10-09 19:59:56
139.155.86.123	attackspam	SSH BruteForce Attack	2020-10-09 07:53:03
139.155.86.123	attackbotsspam	SSH BruteForce Attack	2020-10-09 00:26:32
139.155.86.123	attackbotsspam	Oct 8 09:45:21 [host] sshd[9357]: pam_unix(sshd:a Oct 8 09:45:23 [host] sshd[9357]: Failed password Oct 8 09:49:15 [host] sshd[9532]: pam_unix(sshd:a	2020-10-08 16:23:05
139.155.86.214	attackbotsspam	Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:53 gitlab sshd[2681859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 22:04:53 gitlab sshd[2681859]: Invalid user informix from 139.155.86.214 port 47324 Oct 2 22:04:55 gitlab sshd[2681859]: Failed password for invalid user informix from 139.155.86.214 port 47324 ssh2 Oct 2 22:08:08 gitlab sshd[2682355]: Invalid user bruno from 139.155.86.214 port 44644 ...	2020-10-03 06:33:57
139.155.86.214	attackbots	Oct 2 17:42:39 serwer sshd\[6646\]: Invalid user guest from 139.155.86.214 port 38574 Oct 2 17:42:39 serwer sshd\[6646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 17:42:40 serwer sshd\[6646\]: Failed password for invalid user guest from 139.155.86.214 port 38574 ssh2 ...	2020-10-03 02:03:01
139.155.86.214	attack	SSH Brute-Forcing (server1)	2020-10-02 22:30:55
139.155.86.214	attack	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 19:02:33
139.155.86.214	attackspam	Oct 2 09:14:51 mx sshd[1104855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Oct 2 09:14:51 mx sshd[1104855]: Invalid user solr from 139.155.86.214 port 41092 Oct 2 09:14:53 mx sshd[1104855]: Failed password for invalid user solr from 139.155.86.214 port 41092 ssh2 Oct 2 09:19:15 mx sshd[1104925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 user=root Oct 2 09:19:17 mx sshd[1104925]: Failed password for root from 139.155.86.214 port 43980 ssh2 ...	2020-10-02 15:37:54
139.155.86.214	attack	SSH login attempts.	2020-10-01 05:28:24
139.155.86.214	attackspambots	Sep 30 11:09:31 sshgateway sshd\[5340\]: Invalid user test2 from 139.155.86.214 Sep 30 11:09:31 sshgateway sshd\[5340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 11:09:33 sshgateway sshd\[5340\]: Failed password for invalid user test2 from 139.155.86.214 port 40352 ssh2	2020-09-30 21:46:02
139.155.86.214	attackspam	Sep 30 06:51:16 s2 sshd[31871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214 Sep 30 06:51:18 s2 sshd[31871]: Failed password for invalid user lisa from 139.155.86.214 port 57282 ssh2 Sep 30 06:55:31 s2 sshd[32069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.214	2020-09-30 14:18:17
139.155.86.130	attack	2020-09-25T23:07:00.044931luisaranguren sshd[3775124]: Invalid user xu from 139.155.86.130 port 49462 2020-09-25T23:07:01.855829luisaranguren sshd[3775124]: Failed password for invalid user xu from 139.155.86.130 port 49462 ssh2 ...	2020-09-26 01:32:31
139.155.86.130	attack	Sep 24 21:37:36 ajax sshd[21858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 Sep 24 21:37:38 ajax sshd[21858]: Failed password for invalid user amit from 139.155.86.130 port 46428 ssh2	2020-09-25 17:10:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.86.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.86.143.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 15:29:01 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 143.86.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.86.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.193.31.206	attackbotsspam	Aug 23 19:07:03 nextcloud sshd\[12696\]: Invalid user mario from 118.193.31.206 Aug 23 19:07:03 nextcloud sshd\[12696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.31.206 Aug 23 19:07:05 nextcloud sshd\[12696\]: Failed password for invalid user mario from 118.193.31.206 port 33880 ssh2	2020-08-24 03:17:22
50.59.99.51	attack	REQUESTED PAGE: /wp-admin/setup-config.php	2020-08-24 02:45:57
192.99.57.32	attackbotsspam	Aug 23 19:52:18 vps647732 sshd[26048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 Aug 23 19:52:20 vps647732 sshd[26048]: Failed password for invalid user postgres from 192.99.57.32 port 48664 ssh2 ...	2020-08-24 03:16:39
222.186.30.112	attack	2020-08-23T18:38:13.885601shield sshd\[21315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root 2020-08-23T18:38:15.801138shield sshd\[21315\]: Failed password for root from 222.186.30.112 port 50587 ssh2 2020-08-23T18:38:17.718862shield sshd\[21315\]: Failed password for root from 222.186.30.112 port 50587 ssh2 2020-08-23T18:38:20.109134shield sshd\[21315\]: Failed password for root from 222.186.30.112 port 50587 ssh2 2020-08-23T18:38:47.239557shield sshd\[21421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root	2020-08-24 02:39:27
101.255.40.18	attackspambots	Detected by ModSecurity. Request URI: /xmlrpc.php	2020-08-24 03:17:45
64.202.189.187	attack	64.202.189.187 - - [23/Aug/2020:15:43:46 +0200] "GET /wp-login.php HTTP/1.1" 200 9163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.202.189.187 - - [23/Aug/2020:15:43:47 +0200] "POST /wp-login.php HTTP/1.1" 200 9414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.202.189.187 - - [23/Aug/2020:15:43:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-24 02:55:03
101.249.12.238	attack	Automatic report - Banned IP Access	2020-08-24 02:54:51
119.45.142.214	attackbotsspam	k+ssh-bruteforce	2020-08-24 02:39:00
178.128.215.16	attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-24 03:11:58
104.236.228.230	attack	Aug 23 20:13:03 serwer sshd\[27470\]: Invalid user lls from 104.236.228.230 port 55542 Aug 23 20:13:03 serwer sshd\[27470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.228.230 Aug 23 20:13:04 serwer sshd\[27470\]: Failed password for invalid user lls from 104.236.228.230 port 55542 ssh2 ...	2020-08-24 03:04:54
104.200.176.34	attackbots	Sql/code injection probe	2020-08-24 03:12:29
193.27.229.189	attack	Aug 23 20:41:01 [host] kernel: [3874865.761378] [U Aug 23 20:41:01 [host] kernel: [3874865.980424] [U Aug 23 20:41:01 [host] kernel: [3874866.199400] [U Aug 23 20:41:01 [host] kernel: [3874866.433641] [U Aug 23 20:41:01 [host] kernel: [3874866.666329] [U Aug 23 20:41:02 [host] kernel: [3874866.901609] [U	2020-08-24 02:43:19
106.12.46.179	attack	Aug 23 13:53:39 124388 sshd[2584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.46.179 Aug 23 13:53:39 124388 sshd[2584]: Invalid user mercedes from 106.12.46.179 port 37004 Aug 23 13:53:41 124388 sshd[2584]: Failed password for invalid user mercedes from 106.12.46.179 port 37004 ssh2 Aug 23 13:56:47 124388 sshd[2706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.46.179 user=root Aug 23 13:56:48 124388 sshd[2706]: Failed password for root from 106.12.46.179 port 41914 ssh2	2020-08-24 02:46:40
170.233.46.210	attackspam	DATE:2020-08-23 14:18:00, IP:170.233.46.210, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-08-24 03:12:55
194.26.25.40	attackspam	Port scan on 21 port(s): 4045 4192 4234 4343 4442 4449 4632 4891 4937 4947 4961 5108 5456 5484 5603 5609 5719 5827 5845 5855 5977	2020-08-24 02:52:15

最近上报的IP列表

87.251.74.203	36.133.27.252	45.32.104.168	45.67.15.98
138.118.102.244	87.251.74.211	31.14.139.155	190.85.82.116
113.246.116.163	36.69.149.252	106.54.119.121	66.176.203.94
24.6.209.62	125.225.173.88	175.164.146.125	139.186.73.248
173.238.142.2	66.55.144.249	165.227.103.246	114.26.193.161