139.199.95.55 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): V6Yun (Beijing) Network Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Aug 21 15:55:57 itv-usvr-01 sshd[23748]: Invalid user raul from 139.199.95.55 Aug 21 15:55:57 itv-usvr-01 sshd[23748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.95.55 Aug 21 15:55:57 itv-usvr-01 sshd[23748]: Invalid user raul from 139.199.95.55 Aug 21 15:55:59 itv-usvr-01 sshd[23748]: Failed password for invalid user raul from 139.199.95.55 port 54098 ssh2	2019-08-23 02:35:44
attackspam	Aug 3 01:47:16 dedicated sshd[20801]: Invalid user sg from 139.199.95.55 port 43256	2019-08-03 09:12:33
attack	Aug 1 05:26:28 mail sshd\[26748\]: Invalid user guo from 139.199.95.55 port 47104 Aug 1 05:26:28 mail sshd\[26748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.95.55 ...	2019-08-01 12:28:33
attackspambots	Jul 12 20:01:26 MK-Soft-VM3 sshd\[10295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.95.55 user=root Jul 12 20:01:28 MK-Soft-VM3 sshd\[10295\]: Failed password for root from 139.199.95.55 port 60500 ssh2 Jul 12 20:06:52 MK-Soft-VM3 sshd\[10536\]: Invalid user ysop from 139.199.95.55 port 58102 ...	2019-07-13 06:38:16

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.95.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41929
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.95.55.			IN	A

;; AUTHORITY SECTION:
.			2089	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032800 1800 900 604800 86400

;; Query time: 170 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 29 02:23:34 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

55.95.199.139.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 55.95.199.139.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.38.144.179	attackbots	Sep 26 23:15:43 s1 postfix/submission/smtpd\[19655\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:16:14 s1 postfix/submission/smtpd\[28408\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:16:48 s1 postfix/submission/smtpd\[28408\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:17:21 s1 postfix/submission/smtpd\[19655\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:17:53 s1 postfix/submission/smtpd\[28408\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:18:23 s1 postfix/submission/smtpd\[19655\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:18:59 s1 postfix/submission/smtpd\[28408\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 23:19:32 s1 postfix/submission/smtpd\[21672\]: warning: unknown\[	2019-09-27 07:33:39
200.29.238.135	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/200.29.238.135/ CO - 1H : (55) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CO NAME ASN : ASN27941 IP : 200.29.238.135 CIDR : 200.29.238.0/24 PREFIX COUNT : 25 UNIQUE IP COUNT : 6400 WYKRYTE ATAKI Z ASN27941 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SERVER - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-27 07:43:07
51.38.200.249	attackbots	Sep 26 19:26:08 plusreed sshd[20142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.200.249 user=root Sep 26 19:26:10 plusreed sshd[20142]: Failed password for root from 51.38.200.249 port 51868 ssh2 Sep 26 19:27:17 plusreed sshd[20425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.200.249 user=root Sep 26 19:27:20 plusreed sshd[20425]: Failed password for root from 51.38.200.249 port 60794 ssh2 Sep 26 19:28:29 plusreed sshd[20705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.200.249 user=root Sep 26 19:28:31 plusreed sshd[20705]: Failed password for root from 51.38.200.249 port 41488 ssh2 ...	2019-09-27 07:36:34
221.237.189.26	attackbots	postfix-failedauth jail [ma]	2019-09-27 07:51:49
191.17.139.235	attack	Sep 27 01:40:19 markkoudstaal sshd[31821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.17.139.235 Sep 27 01:40:21 markkoudstaal sshd[31821]: Failed password for invalid user hadoop from 191.17.139.235 port 46614 ssh2 Sep 27 01:45:40 markkoudstaal sshd[32275]: Failed password for root from 191.17.139.235 port 58120 ssh2	2019-09-27 07:54:20
123.207.237.31	attack	Sep 27 02:06:08 server sshd\[28255\]: Invalid user cgred from 123.207.237.31 port 53922 Sep 27 02:06:08 server sshd\[28255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.237.31 Sep 27 02:06:09 server sshd\[28255\]: Failed password for invalid user cgred from 123.207.237.31 port 53922 ssh2 Sep 27 02:11:19 server sshd\[22952\]: Invalid user gnat from 123.207.237.31 port 38404 Sep 27 02:11:19 server sshd\[22952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.237.31	2019-09-27 07:28:57
34.70.135.183	attackspam	[ThuSep2623:20:21.9649622019][:error][pid3029:tid47123152365312][client34.70.135.183:53096][client34.70.135.183]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"ticinomechanics.ch"][uri"/robots.txt"][unique_id"XY0rlaxn-g-fAg881NDy5wAAAMA"][ThuSep2623:20:22.0861642019][:error][pid3029:tid47123152365312][client34.70.135.183:53096][client34.70.135.183]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname\	2019-09-27 07:41:32
110.43.34.48	attack	Sep 26 13:09:47 eddieflores sshd\[6719\]: Invalid user dx from 110.43.34.48 Sep 26 13:09:47 eddieflores sshd\[6719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.43.34.48 Sep 26 13:09:49 eddieflores sshd\[6719\]: Failed password for invalid user dx from 110.43.34.48 port 32362 ssh2 Sep 26 13:15:08 eddieflores sshd\[7177\]: Invalid user kj from 110.43.34.48 Sep 26 13:15:08 eddieflores sshd\[7177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.43.34.48	2019-09-27 07:18:37
5.88.188.77	attackbotsspam	Sep 27 01:38:23 SilenceServices sshd[22691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.88.188.77 Sep 27 01:38:25 SilenceServices sshd[22691]: Failed password for invalid user password from 5.88.188.77 port 41070 ssh2 Sep 27 01:43:08 SilenceServices sshd[25750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.88.188.77	2019-09-27 07:43:58
112.45.122.9	attackspambots	Sep 27 01:07:38 mail postfix/smtpd[11353]: warning: unknown[112.45.122.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 01:07:50 mail postfix/smtpd[11353]: warning: unknown[112.45.122.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 01:08:04 mail postfix/smtpd[11353]: warning: unknown[112.45.122.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-27 07:35:55
157.230.115.27	attack	Sep 27 01:14:46 vps691689 sshd[24377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.115.27 Sep 27 01:14:48 vps691689 sshd[24377]: Failed password for invalid user ax400 from 157.230.115.27 port 47556 ssh2 ...	2019-09-27 07:28:39
180.96.69.215	attackspambots	Sep 26 19:26:37 TORMINT sshd\[12618\]: Invalid user znc-admin123 from 180.96.69.215 Sep 26 19:26:37 TORMINT sshd\[12618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.69.215 Sep 26 19:26:39 TORMINT sshd\[12618\]: Failed password for invalid user znc-admin123 from 180.96.69.215 port 44200 ssh2 ...	2019-09-27 07:28:23
223.241.100.16	attack	Sep 26 23:19:57 xeon cyrus/imap[56888]: badlogin: [223.241.100.16] plain [SASL(-13): authentication failure: Password verification failed]	2019-09-27 07:55:46
220.186.180.176	attackspam	firewall-block, port(s): 23/tcp	2019-09-27 07:22:34
122.53.62.83	attackspambots	2019-09-27T02:14:35.481972tmaserv sshd\[6675\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.53.62.83 2019-09-27T02:14:38.040175tmaserv sshd\[6675\]: Failed password for invalid user test from 122.53.62.83 port 8314 ssh2 2019-09-27T02:29:29.960644tmaserv sshd\[7490\]: Invalid user voravut from 122.53.62.83 port 54300 2019-09-27T02:29:29.964500tmaserv sshd\[7490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.53.62.83 2019-09-27T02:29:32.251553tmaserv sshd\[7490\]: Failed password for invalid user voravut from 122.53.62.83 port 54300 ssh2 2019-09-27T02:34:34.931716tmaserv sshd\[7777\]: Invalid user ia from 122.53.62.83 port 46372 ...	2019-09-27 07:35:31

最近上报的IP列表

51.39.9.236	68.183.4.84	151.80.144.39	177.35.51.24
192.117.232.178	200.107.148.210	134.175.8.243	210.227.113.18
187.22.144.177	195.154.119.242	94.23.255.34	86.143.147.238
167.99.206.212	202.43.177.14	103.133.109.9	37.187.107.54
118.89.153.96	142.11.210.45	222.242.104.188	89.42.252.124