139.155.94.190

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Invalid user barratt from 139.155.94.190 port 55224	2019-12-23 07:32:19

相同子网IP讨论:

IP	类型	评论内容	时间
139.155.94.250	attack	(sshd) Failed SSH login from 139.155.94.250 (CN/China/Guangdong/Shenzhen/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 08:00:01 atlas sshd[736]: Invalid user marcy from 139.155.94.250 port 57002 Oct 12 08:00:03 atlas sshd[736]: Failed password for invalid user marcy from 139.155.94.250 port 57002 ssh2 Oct 12 08:13:54 atlas sshd[4419]: Invalid user klara from 139.155.94.250 port 38144 Oct 12 08:13:55 atlas sshd[4419]: Failed password for invalid user klara from 139.155.94.250 port 38144 ssh2 Oct 12 08:17:54 atlas sshd[6169]: Invalid user web1 from 139.155.94.250 port 52232	2020-10-12 21:57:38
139.155.94.250	attackbots	Oct 12 03:08:40 scw-tender-jepsen sshd[20739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 Oct 12 03:08:42 scw-tender-jepsen sshd[20739]: Failed password for invalid user eremei from 139.155.94.250 port 47732 ssh2	2020-10-12 13:25:50
139.155.94.250	attack	Lines containing failures of 139.155.94.250 Oct 5 06:05:04 newdogma sshd[5943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:05:06 newdogma sshd[5943]: Failed password for r.r from 139.155.94.250 port 49576 ssh2 Oct 5 06:05:07 newdogma sshd[5943]: Received disconnect from 139.155.94.250 port 49576:11: Bye Bye [preauth] Oct 5 06:05:07 newdogma sshd[5943]: Disconnected from authenticating user r.r 139.155.94.250 port 49576 [preauth] Oct 5 06:15:10 newdogma sshd[6663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:15:12 newdogma sshd[6663]: Failed password for r.r from 139.155.94.250 port 46184 ssh2 Oct 5 06:15:14 newdogma sshd[6663]: Received disconnect from 139.155.94.250 port 46184:11: Bye Bye [preauth] Oct 5 06:15:14 newdogma sshd[6663]: Disconnected from authenticating user r.r 139.155.94.250 port 46184 [preaut........ ------------------------------	2020-10-07 05:28:27
139.155.94.250	attackspambots	Lines containing failures of 139.155.94.250 Oct 5 06:05:04 newdogma sshd[5943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:05:06 newdogma sshd[5943]: Failed password for r.r from 139.155.94.250 port 49576 ssh2 Oct 5 06:05:07 newdogma sshd[5943]: Received disconnect from 139.155.94.250 port 49576:11: Bye Bye [preauth] Oct 5 06:05:07 newdogma sshd[5943]: Disconnected from authenticating user r.r 139.155.94.250 port 49576 [preauth] Oct 5 06:15:10 newdogma sshd[6663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:15:12 newdogma sshd[6663]: Failed password for r.r from 139.155.94.250 port 46184 ssh2 Oct 5 06:15:14 newdogma sshd[6663]: Received disconnect from 139.155.94.250 port 46184:11: Bye Bye [preauth] Oct 5 06:15:14 newdogma sshd[6663]: Disconnected from authenticating user r.r 139.155.94.250 port 46184 [preaut........ ------------------------------	2020-10-06 21:37:55
139.155.94.250	attackbots	Lines containing failures of 139.155.94.250 Oct 5 06:05:04 newdogma sshd[5943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:05:06 newdogma sshd[5943]: Failed password for r.r from 139.155.94.250 port 49576 ssh2 Oct 5 06:05:07 newdogma sshd[5943]: Received disconnect from 139.155.94.250 port 49576:11: Bye Bye [preauth] Oct 5 06:05:07 newdogma sshd[5943]: Disconnected from authenticating user r.r 139.155.94.250 port 49576 [preauth] Oct 5 06:15:10 newdogma sshd[6663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.94.250 user=r.r Oct 5 06:15:12 newdogma sshd[6663]: Failed password for r.r from 139.155.94.250 port 46184 ssh2 Oct 5 06:15:14 newdogma sshd[6663]: Received disconnect from 139.155.94.250 port 46184:11: Bye Bye [preauth] Oct 5 06:15:14 newdogma sshd[6663]: Disconnected from authenticating user r.r 139.155.94.250 port 46184 [preaut........ ------------------------------	2020-10-06 13:20:03
139.155.94.65	attackspam	Aug 2 23:17:37 master sshd[10222]: Failed password for root from 139.155.94.65 port 52152 ssh2 Aug 2 23:24:55 master sshd[10312]: Failed password for root from 139.155.94.65 port 40208 ssh2 Aug 2 23:31:30 master sshd[10788]: Failed password for root from 139.155.94.65 port 50292 ssh2 Aug 2 23:37:56 master sshd[10870]: Failed password for root from 139.155.94.65 port 60380 ssh2 Aug 2 23:44:22 master sshd[11020]: Failed password for root from 139.155.94.65 port 42230 ssh2	2020-08-03 06:38:45
139.155.94.150	attack	Unauthorized connection attempt detected from IP address 139.155.94.150 to port 80 [J]	2020-01-17 08:25:56
139.155.94.150	attackspam	Unauthorized connection attempt detected from IP address 139.155.94.150 to port 80	2020-01-01 19:23:10
139.155.94.150	attack	WEB_SERVER 403 Forbidden	2019-11-06 02:27:07
139.155.94.150	attack	REQUESTED PAGE: /TP/public/index.php	2019-10-30 01:24:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.94.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49856
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.94.190.			IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122201 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 07:32:16 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 190.94.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.94.155.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
110.145.157.222	attackspambots	RDPBruteVIL	2019-10-02 05:29:42
172.96.186.138	attackbots	Automatic report - XMLRPC Attack	2019-10-02 05:18:56
49.88.112.90	attackbotsspam	Automated report - ssh fail2ban: Oct 1 22:58:05 wrong password, user=root, port=59052, ssh2 Oct 1 22:58:09 wrong password, user=root, port=59052, ssh2 Oct 1 22:58:12 wrong password, user=root, port=59052, ssh2	2019-10-02 05:11:51
180.242.158.107	attackspam	WordPress wp-login brute force :: 180.242.158.107 0.192 BYPASS [02/Oct/2019:07:05:40 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-02 05:21:51
59.8.51.204	attackbots	Unauthorised access (Oct 2) SRC=59.8.51.204 LEN=40 TTL=53 ID=28869 TCP DPT=8080 WINDOW=59897 SYN Unauthorised access (Oct 1) SRC=59.8.51.204 LEN=40 TTL=53 ID=16702 TCP DPT=8080 WINDOW=59897 SYN	2019-10-02 05:37:33
222.186.173.142	attackspam	Oct 1 23:24:46 dedicated sshd[8707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Oct 1 23:24:48 dedicated sshd[8707]: Failed password for root from 222.186.173.142 port 63824 ssh2	2019-10-02 05:30:38
46.38.144.17	attack	Oct 1 23:23:32 webserver postfix/smtpd\[30462\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:24:49 webserver postfix/smtpd\[30462\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:26:06 webserver postfix/smtpd\[31776\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:27:23 webserver postfix/smtpd\[30462\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 23:28:39 webserver postfix/smtpd\[30462\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-02 05:32:56
49.235.88.104	attackbots	Oct 1 17:16:14 ny01 sshd[1538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.88.104 Oct 1 17:16:17 ny01 sshd[1538]: Failed password for invalid user test from 49.235.88.104 port 48116 ssh2 Oct 1 17:21:49 ny01 sshd[2492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.88.104	2019-10-02 05:30:06
123.207.2.120	attackspam	Oct 1 11:18:06 web9 sshd\[31221\]: Invalid user ulva from 123.207.2.120 Oct 1 11:18:06 web9 sshd\[31221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.2.120 Oct 1 11:18:09 web9 sshd\[31221\]: Failed password for invalid user ulva from 123.207.2.120 port 36788 ssh2 Oct 1 11:22:25 web9 sshd\[32042\]: Invalid user ida from 123.207.2.120 Oct 1 11:22:25 web9 sshd\[32042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.2.120	2019-10-02 05:38:37
112.85.42.179	attackbots	Oct 1 23:06:16 icinga sshd[48483]: Failed password for root from 112.85.42.179 port 48060 ssh2 Oct 1 23:06:18 icinga sshd[48483]: Failed password for root from 112.85.42.179 port 48060 ssh2 Oct 1 23:06:22 icinga sshd[48483]: Failed password for root from 112.85.42.179 port 48060 ssh2 Oct 1 23:06:25 icinga sshd[48483]: Failed password for root from 112.85.42.179 port 48060 ssh2 ...	2019-10-02 05:27:05
222.186.180.6	attackspambots	Oct 1 23:26:08 herz-der-gamer sshd[10184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Oct 1 23:26:10 herz-der-gamer sshd[10184]: Failed password for root from 222.186.180.6 port 52138 ssh2 ...	2019-10-02 05:26:50
104.236.72.187	attackspam	Oct 1 21:22:59 hcbbdb sshd\[26747\]: Invalid user user5 from 104.236.72.187 Oct 1 21:22:59 hcbbdb sshd\[26747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.72.187 Oct 1 21:23:01 hcbbdb sshd\[26747\]: Failed password for invalid user user5 from 104.236.72.187 port 50269 ssh2 Oct 1 21:26:31 hcbbdb sshd\[27122\]: Invalid user lx from 104.236.72.187 Oct 1 21:26:31 hcbbdb sshd\[27122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.72.187	2019-10-02 05:36:16
209.59.188.116	attackbotsspam	Oct 1 23:05:41 MK-Soft-VM7 sshd[27712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.59.188.116 Oct 1 23:05:43 MK-Soft-VM7 sshd[27712]: Failed password for invalid user testa from 209.59.188.116 port 58800 ssh2 ...	2019-10-02 05:09:48
27.154.101.140	attackspambots	RDP brute force attack detected by fail2ban	2019-10-02 05:14:36
205.185.125.82	attackbotsspam	SSH Bruteforce attack	2019-10-02 05:08:25

最近上报的IP列表

235.4.32.53	79.91.155.202	98.6.253.193	29.0.191.245
203.210.150.146	14.187.37.159	199.162.111.120	100.223.203.181
24.128.180.125	202.59.138.131	216.164.227.35	54.149.47.211
45.227.255.128	94.66.223.194	197.35.208.145	157.97.80.205
237.189.206.192	203.199.234.128	173.82.202.99	186.122.148.9