139.155.2.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 13 17:13:10 plg sshd[6381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 Oct 13 17:13:11 plg sshd[6381]: Failed password for invalid user linuxtester from 139.155.2.6 port 48062 ssh2 Oct 13 17:16:11 plg sshd[6413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 Oct 13 17:16:12 plg sshd[6413]: Failed password for invalid user vd from 139.155.2.6 port 48306 ssh2 Oct 13 17:19:06 plg sshd[6440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 Oct 13 17:19:08 plg sshd[6440]: Failed password for invalid user paul from 139.155.2.6 port 48550 ssh2 Oct 13 17:21:47 plg sshd[6480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 user=root ...	2020-10-13 23:43:24
attack	Oct 13 01:32:32 eventyay sshd[3848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 Oct 13 01:32:33 eventyay sshd[3848]: Failed password for invalid user daniel from 139.155.2.6 port 60996 ssh2 Oct 13 01:35:41 eventyay sshd[3928]: Failed password for root from 139.155.2.6 port 52552 ssh2 ...	2020-10-13 07:38:07
attackspam	2020-08-25T13:27:15.781281randservbullet-proofcloud-66.localdomain sshd[4059]: Invalid user xti from 139.155.2.6 port 55116 2020-08-25T13:27:15.785484randservbullet-proofcloud-66.localdomain sshd[4059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 2020-08-25T13:27:15.781281randservbullet-proofcloud-66.localdomain sshd[4059]: Invalid user xti from 139.155.2.6 port 55116 2020-08-25T13:27:17.711932randservbullet-proofcloud-66.localdomain sshd[4059]: Failed password for invalid user xti from 139.155.2.6 port 55116 ssh2 ...	2020-08-26 01:05:57
attackbots	Jul 25 12:10:19 firewall sshd[24499]: Invalid user ts3 from 139.155.2.6 Jul 25 12:10:21 firewall sshd[24499]: Failed password for invalid user ts3 from 139.155.2.6 port 41846 ssh2 Jul 25 12:14:28 firewall sshd[24588]: Invalid user iptv from 139.155.2.6 ...	2020-07-26 02:30:03
attackbots	$f2bV_matches	2020-07-24 14:59:10
attackspam	2020-07-12T00:57:59+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-07-12 08:01:16
attackbots	Jun 22 11:32:43 dhoomketu sshd[951176]: Failed password for invalid user pod from 139.155.2.6 port 38652 ssh2 Jun 22 11:34:19 dhoomketu sshd[951189]: Invalid user deploy from 139.155.2.6 port 52252 Jun 22 11:34:19 dhoomketu sshd[951189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.2.6 Jun 22 11:34:19 dhoomketu sshd[951189]: Invalid user deploy from 139.155.2.6 port 52252 Jun 22 11:34:20 dhoomketu sshd[951189]: Failed password for invalid user deploy from 139.155.2.6 port 52252 ssh2 ...	2020-06-22 18:45:41
attack	May 14 14:34:46 ip-172-31-62-245 sshd\[6376\]: Invalid user stefano from 139.155.2.6\ May 14 14:34:48 ip-172-31-62-245 sshd\[6376\]: Failed password for invalid user stefano from 139.155.2.6 port 58562 ssh2\ May 14 14:39:04 ip-172-31-62-245 sshd\[6441\]: Invalid user internet from 139.155.2.6\ May 14 14:39:07 ip-172-31-62-245 sshd\[6441\]: Failed password for invalid user internet from 139.155.2.6 port 46692 ssh2\ May 14 14:43:04 ip-172-31-62-245 sshd\[6565\]: Invalid user zero from 139.155.2.6\	2020-05-15 03:20:57

Comments on same subnet:

IP	Type	Details	Datetime
139.155.204.28	attack	$f2bV_matches	2020-10-06 19:16:03
139.155.225.13	attack	SSH auth scanning - multiple failed logins	2020-10-06 05:44:10
139.155.225.13	attack	SSH auth scanning - multiple failed logins	2020-10-05 21:48:50
139.155.225.13	attackbotsspam	SSH auth scanning - multiple failed logins	2020-10-05 13:42:05
139.155.226.188	attackbots	2020-10-01T19:09:20.473230mail.broermann.family sshd[21573]: Invalid user git from 139.155.226.188 port 51440 2020-10-01T19:09:20.478600mail.broermann.family sshd[21573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.226.188 2020-10-01T19:09:20.473230mail.broermann.family sshd[21573]: Invalid user git from 139.155.226.188 port 51440 2020-10-01T19:09:22.659008mail.broermann.family sshd[21573]: Failed password for invalid user git from 139.155.226.188 port 51440 ssh2 2020-10-01T19:15:45.461831mail.broermann.family sshd[22073]: Invalid user proxy from 139.155.226.188 port 52706 ...	2020-10-02 05:30:38
139.155.226.188	attackbots	Oct 1 15:37:49 server sshd[22762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.226.188 Oct 1 15:37:51 server sshd[22762]: Failed password for invalid user mmx from 139.155.226.188 port 36540 ssh2 Oct 1 15:51:11 server sshd[23652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.226.188 user=root Oct 1 15:51:13 server sshd[23652]: Failed password for invalid user root from 139.155.226.188 port 41544 ssh2	2020-10-01 21:51:50
139.155.225.13	attackbots	SSH Bruteforce attack	2020-09-26 07:19:44
139.155.225.13	attack	Invalid user projects from 139.155.225.13 port 35996	2020-09-26 00:30:33
139.155.225.13	attack	Sep 25 08:57:15 ns382633 sshd\[2161\]: Invalid user svn from 139.155.225.13 port 44512 Sep 25 08:57:15 ns382633 sshd\[2161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.225.13 Sep 25 08:57:17 ns382633 sshd\[2161\]: Failed password for invalid user svn from 139.155.225.13 port 44512 ssh2 Sep 25 09:02:30 ns382633 sshd\[3133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.225.13 user=root Sep 25 09:02:31 ns382633 sshd\[3133\]: Failed password for root from 139.155.225.13 port 33606 ssh2	2020-09-25 16:06:29
139.155.20.7	attackbotsspam	Sep 22 09:27:36 django-0 sshd[20937]: Invalid user ftpuser from 139.155.20.7 ...	2020-09-22 18:10:23
139.155.21.34	attack	SSH login attempts.	2020-09-09 00:18:04
139.155.21.34	attackspambots	SSH login attempts.	2020-09-08 15:49:56
139.155.21.34	attack	Lines containing failures of 139.155.21.34 Sep 7 02:16:25 v2hgb sshd[5602]: Invalid user ubnt from 139.155.21.34 port 38778 Sep 7 02:16:25 v2hgb sshd[5602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Sep 7 02:16:27 v2hgb sshd[5602]: Failed password for invalid user ubnt from 139.155.21.34 port 38778 ssh2 Sep 7 02:16:27 v2hgb sshd[5602]: Received disconnect from 139.155.21.34 port 38778:11: Bye Bye [preauth] Sep 7 02:16:27 v2hgb sshd[5602]: Disconnected from invalid user ubnt 139.155.21.34 port 38778 [preauth] Sep 7 02:37:10 v2hgb sshd[7634]: Connection closed by 139.155.21.34 port 39446 [preauth] Sep 7 02:41:12 v2hgb sshd[8175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 user=r.r Sep 7 02:41:14 v2hgb sshd[8175]: Failed password for r.r from 139.155.21.34 port 58590 ssh2 Sep 7 02:41:15 v2hgb sshd[8175]: Received disconnect from 139.155.21.34 por........ ------------------------------	2020-09-08 08:24:38
139.155.21.34	attack	Invalid user git from 139.155.21.34 port 43078	2020-09-02 20:36:28
139.155.21.34	attackbotsspam	Jul 24 10:30:38 server sshd[8988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34 Jul 24 10:30:39 server sshd[8988]: Failed password for invalid user admin from 139.155.21.34 port 53580 ssh2 Jul 24 10:38:03 server sshd[10333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.34	2020-09-02 12:30:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.2.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22092
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.2.6.			IN	A

;; AUTHORITY SECTION:
.			388	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051401 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 15 03:20:53 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 6.2.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.2.155.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.255.81.91	attackspam	Apr 11 06:01:35 vps sshd[212577]: Failed password for invalid user brady from 101.255.81.91 port 54670 ssh2 Apr 11 06:04:31 vps sshd[227171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.81.91 user=root Apr 11 06:04:33 vps sshd[227171]: Failed password for root from 101.255.81.91 port 41024 ssh2 Apr 11 06:07:18 vps sshd[244974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.81.91 user=root Apr 11 06:07:20 vps sshd[244974]: Failed password for root from 101.255.81.91 port 54572 ssh2 ...	2020-04-11 12:51:27
103.254.198.67	attackbotsspam	Apr 11 03:52:29 124388 sshd[22111]: Failed password for invalid user nfs from 103.254.198.67 port 42659 ssh2 Apr 11 03:56:15 124388 sshd[22127]: Invalid user shannon from 103.254.198.67 port 47647 Apr 11 03:56:15 124388 sshd[22127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.198.67 Apr 11 03:56:15 124388 sshd[22127]: Invalid user shannon from 103.254.198.67 port 47647 Apr 11 03:56:17 124388 sshd[22127]: Failed password for invalid user shannon from 103.254.198.67 port 47647 ssh2	2020-04-11 12:18:07
45.143.220.209	attackbots	[2020-04-11 00:17:18] NOTICE[12114][C-00004084] chan_sip.c: Call from '' (45.143.220.209:51679) to extension '9011441205804657' rejected because extension not found in context 'public'. [2020-04-11 00:17:18] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T00:17:18.739-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441205804657",SessionID="0x7f020c0db748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.209/51679",ACLName="no_extension_match" [2020-04-11 00:17:51] NOTICE[12114][C-00004086] chan_sip.c: Call from '' (45.143.220.209:50446) to extension '8011441205804657' rejected because extension not found in context 'public'. [2020-04-11 00:17:51] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T00:17:51.006-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8011441205804657",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress ...	2020-04-11 12:21:51
103.3.226.166	attack	Apr 11 05:51:14 vpn01 sshd[469]: Failed password for root from 103.3.226.166 port 35518 ssh2 ...	2020-04-11 12:40:53
222.124.16.227	attack	Apr 11 06:22:54 haigwepa sshd[4755]: Failed password for root from 222.124.16.227 port 47596 ssh2 ...	2020-04-11 12:26:25
177.11.156.212	attackbotsspam	Apr 11 06:09:21 ArkNodeAT sshd\[30536\]: Invalid user admin from 177.11.156.212 Apr 11 06:09:21 ArkNodeAT sshd\[30536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.11.156.212 Apr 11 06:09:23 ArkNodeAT sshd\[30536\]: Failed password for invalid user admin from 177.11.156.212 port 48310 ssh2	2020-04-11 12:16:33
66.33.212.120	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-04-11 12:22:45
89.17.55.12	attackbotsspam	Invalid user try from 89.17.55.12 port 42382	2020-04-11 12:35:27
193.150.72.3	attack	Apr 11 03:56:22 sshgateway sshd\[19327\]: Invalid user admin from 193.150.72.3 Apr 11 03:56:22 sshgateway sshd\[19327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.150.72.3 Apr 11 03:56:25 sshgateway sshd\[19327\]: Failed password for invalid user admin from 193.150.72.3 port 38794 ssh2	2020-04-11 12:10:34
209.97.167.137	attackspambots	Apr 11 01:27:17 vps46666688 sshd[1981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.137 Apr 11 01:27:19 vps46666688 sshd[1981]: Failed password for invalid user abcABC!@# from 209.97.167.137 port 53828 ssh2 ...	2020-04-11 12:35:04
174.60.121.175	attack	Apr 11 06:23:20 vps647732 sshd[29067]: Failed password for root from 174.60.121.175 port 43138 ssh2 ...	2020-04-11 12:28:22
49.84.217.93	attack	SSH login attempts	2020-04-11 12:47:18
180.183.28.137	attackbotsspam	20/4/10@23:55:37: FAIL: Alarm-Network address from=180.183.28.137 ...	2020-04-11 12:48:01
49.49.192.165	attack	Apr 11 05:55:35 debian-2gb-nbg1-2 kernel: \[8836340.593888\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=49.49.192.165 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=48 ID=15719 PROTO=TCP SPT=37981 DPT=23 WINDOW=43195 RES=0x00 SYN URGP=0	2020-04-11 12:50:02
113.107.244.124	attackbots	Apr 11 05:56:59 DAAP sshd[12248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.107.244.124 user=root Apr 11 05:57:01 DAAP sshd[12248]: Failed password for root from 113.107.244.124 port 57336 ssh2 Apr 11 06:00:39 DAAP sshd[12314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.107.244.124 user=root Apr 11 06:00:41 DAAP sshd[12314]: Failed password for root from 113.107.244.124 port 50482 ssh2 Apr 11 06:04:22 DAAP sshd[12374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.107.244.124 user=root Apr 11 06:04:25 DAAP sshd[12374]: Failed password for root from 113.107.244.124 port 43620 ssh2 ...	2020-04-11 12:38:46

Recently Reported IPs

49.88.168.29	78.98.144.134	167.99.186.215	45.95.168.176
221.2.144.76	39.37.130.154	114.67.207.225	62.24.196.138
47.240.20.196	49.68.223.77	222.117.7.182	219.217.204.103
135.83.53.130	158.69.0.38	155.66.25.122	130.0.79.108
48.111.115.111	76.66.75.184	161.217.177.150	167.36.164.94