139.59.13.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-08-21T12:49:57.394970randservbullet-proofcloud-66.localdomain sshd[16265]: Invalid user ruser from 139.59.13.55 port 34145 2020-08-21T12:49:57.398735randservbullet-proofcloud-66.localdomain sshd[16265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 2020-08-21T12:49:57.394970randservbullet-proofcloud-66.localdomain sshd[16265]: Invalid user ruser from 139.59.13.55 port 34145 2020-08-21T12:50:00.225948randservbullet-proofcloud-66.localdomain sshd[16265]: Failed password for invalid user ruser from 139.59.13.55 port 34145 ssh2 ...	2020-08-21 22:08:05
attackspambots	Aug 21 11:28:59 buvik sshd[10515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Aug 21 11:29:02 buvik sshd[10515]: Failed password for invalid user ds from 139.59.13.55 port 40480 ssh2 Aug 21 11:33:46 buvik sshd[11217]: Invalid user monit from 139.59.13.55 ...	2020-08-21 17:38:00
attack	Aug 17 22:52:27 vps647732 sshd[6556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Aug 17 22:52:29 vps647732 sshd[6556]: Failed password for invalid user melina from 139.59.13.55 port 48372 ssh2 ...	2020-08-18 04:52:59
attackbots	$f2bV_matches	2020-08-17 15:09:51
attackbotsspam	2020-08-01T04:46:17.020196billing sshd[15061]: Failed password for root from 139.59.13.55 port 44240 ssh2 2020-08-01T04:48:22.182271billing sshd[18639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root 2020-08-01T04:48:25.072498billing sshd[18639]: Failed password for root from 139.59.13.55 port 60424 ssh2 ...	2020-08-01 07:41:27
attackspambots	Jul 29 17:16:42 inter-technics sshd[8368]: Invalid user pbsadmin from 139.59.13.55 port 40173 Jul 29 17:16:42 inter-technics sshd[8368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 29 17:16:42 inter-technics sshd[8368]: Invalid user pbsadmin from 139.59.13.55 port 40173 Jul 29 17:16:44 inter-technics sshd[8368]: Failed password for invalid user pbsadmin from 139.59.13.55 port 40173 ssh2 Jul 29 17:21:19 inter-technics sshd[8824]: Invalid user shenweifeng from 139.59.13.55 port 45901 ...	2020-07-29 23:25:43
attackspam	Jul 16 18:49:07 itv-usvr-02 sshd[12776]: Invalid user hester from 139.59.13.55 port 58198 Jul 16 18:49:07 itv-usvr-02 sshd[12776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 16 18:49:07 itv-usvr-02 sshd[12776]: Invalid user hester from 139.59.13.55 port 58198 Jul 16 18:49:08 itv-usvr-02 sshd[12776]: Failed password for invalid user hester from 139.59.13.55 port 58198 ssh2 Jul 16 18:53:43 itv-usvr-02 sshd[12949]: Invalid user katrin from 139.59.13.55 port 37380	2020-07-16 21:30:37
attackbotsspam	Jul 14 03:55:14 jumpserver sshd[53387]: Invalid user alex from 139.59.13.55 port 39869 Jul 14 03:55:15 jumpserver sshd[53387]: Failed password for invalid user alex from 139.59.13.55 port 39869 ssh2 Jul 14 03:58:20 jumpserver sshd[53395]: Invalid user deluge from 139.59.13.55 port 35951 ...	2020-07-14 12:18:59
attackbotsspam	Jul 7 20:10:03 localhost sshd[15788]: Invalid user helena from 139.59.13.55 port 47677 Jul 7 20:10:03 localhost sshd[15788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 7 20:10:03 localhost sshd[15788]: Invalid user helena from 139.59.13.55 port 47677 Jul 7 20:10:05 localhost sshd[15788]: Failed password for invalid user helena from 139.59.13.55 port 47677 ssh2 Jul 7 20:13:36 localhost sshd[16211]: Invalid user dujoey from 139.59.13.55 port 46794 ...	2020-07-08 05:49:30
attack	fail2ban -- 139.59.13.55 ...	2020-06-04 06:43:59
attack	Jun 2 06:26:50 vps639187 sshd\[30318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root Jun 2 06:26:52 vps639187 sshd\[30318\]: Failed password for root from 139.59.13.55 port 53473 ssh2 Jun 2 06:33:01 vps639187 sshd\[30381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root ...	2020-06-02 12:35:35
attackbotsspam	May 25 08:57:33 ns382633 sshd\[25503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root May 25 08:57:35 ns382633 sshd\[25503\]: Failed password for root from 139.59.13.55 port 46160 ssh2 May 25 09:14:04 ns382633 sshd\[28532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root May 25 09:14:05 ns382633 sshd\[28532\]: Failed password for root from 139.59.13.55 port 32824 ssh2 May 25 09:18:16 ns382633 sshd\[29398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root	2020-05-25 17:02:16
attack	Invalid user no from 139.59.13.55 port 53790	2020-05-15 16:33:56
attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-07 14:00:34
attackbots	2020-04-19T02:54:05.6250451495-001 sshd[22936]: Invalid user qs from 139.59.13.55 port 44801 2020-04-19T02:54:05.6324081495-001 sshd[22936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 2020-04-19T02:54:05.6250451495-001 sshd[22936]: Invalid user qs from 139.59.13.55 port 44801 2020-04-19T02:54:07.1859341495-001 sshd[22936]: Failed password for invalid user qs from 139.59.13.55 port 44801 ssh2 2020-04-19T02:58:05.6473991495-001 sshd[23140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root 2020-04-19T02:58:07.8136891495-001 sshd[23140]: Failed password for root from 139.59.13.55 port 47754 ssh2 ...	2020-04-19 17:56:43
attackbotsspam	SSH auth scanning - multiple failed logins	2020-03-28 23:24:56
attackbots	Mar 20 23:10:04 ArkNodeAT sshd\[21814\]: Invalid user endou from 139.59.13.55 Mar 20 23:10:04 ArkNodeAT sshd\[21814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Mar 20 23:10:06 ArkNodeAT sshd\[21814\]: Failed password for invalid user endou from 139.59.13.55 port 60147 ssh2	2020-03-21 06:21:32
attackbots	Mar 11 15:08:53 * sshd[29713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Mar 11 15:08:55 * sshd[29713]: Failed password for invalid user avatar from 139.59.13.55 port 43068 ssh2	2020-03-12 02:57:50
attack	Mar 2 13:49:26 plusreed sshd[13438]: Invalid user test5 from 139.59.13.55 ...	2020-03-03 03:02:11
attackbots	Unauthorized connection attempt detected from IP address 139.59.13.55 to port 2220 [J]	2020-02-06 01:18:59
attackspam	Feb 2 16:34:49 game-panel sshd[4026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Feb 2 16:34:51 game-panel sshd[4026]: Failed password for invalid user debian from 139.59.13.55 port 42570 ssh2 Feb 2 16:38:21 game-panel sshd[4157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55	2020-02-03 00:44:11

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.135.84	attackbots	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 22:04:05
139.59.135.84	attack	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 13:30:00
139.59.135.84	attackspambots	Oct 12 22:40:32 eventyay sshd[28379]: Failed password for root from 139.59.135.84 port 59232 ssh2 Oct 12 22:44:59 eventyay sshd[28632]: Failed password for root from 139.59.135.84 port 35022 ssh2 ...	2020-10-13 06:14:29
139.59.138.115	attackbotsspam	(sshd) Failed SSH login from 139.59.138.115 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 20:43:50 server sshd[3364]: Invalid user ssh from 139.59.138.115 Oct 11 20:43:51 server sshd[3364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 11 20:43:53 server sshd[3364]: Failed password for invalid user ssh from 139.59.138.115 port 58372 ssh2 Oct 11 20:48:12 server sshd[4014]: Invalid user teste from 139.59.138.115 Oct 11 20:48:12 server sshd[4014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115	2020-10-12 05:11:22
139.59.138.115	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-10-11 21:16:04
139.59.138.115	attack	fail2ban	2020-10-11 06:37:06
139.59.138.115	attackbots	Oct 10 17:20:21 vps-51d81928 sshd[721914]: Failed password for invalid user ftpuser from 139.59.138.115 port 54242 ssh2 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:00 vps-51d81928 sshd[721975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:02 vps-51d81928 sshd[721975]: Failed password for invalid user travis from 139.59.138.115 port 60512 ssh2 ...	2020-10-11 02:09:37
139.59.138.115	attackbots	Oct 10 11:08:39 vserver sshd\[2687\]: Invalid user zope from 139.59.138.115Oct 10 11:08:41 vserver sshd\[2687\]: Failed password for invalid user zope from 139.59.138.115 port 35194 ssh2Oct 10 11:16:52 vserver sshd\[2784\]: Invalid user acap from 139.59.138.115Oct 10 11:16:55 vserver sshd\[2784\]: Failed password for invalid user acap from 139.59.138.115 port 49926 ssh2 ...	2020-10-10 17:54:02
139.59.135.84	attackbotsspam	Failed password for root from 139.59.135.84 port 51112 ssh2	2020-10-05 18:30:22
139.59.135.84	attackspam	$f2bV_matches	2020-10-04 04:12:07
139.59.135.84	attackspambots	Invalid user alan from 139.59.135.84 port 57124	2020-10-03 20:16:11
139.59.136.99	attackbotsspam	Invalid user ubnt from 139.59.136.99 port 47440	2020-09-23 00:42:15
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:59205 -> port 22, len 44	2020-09-22 16:42:32
139.59.136.99	attackspam	leo_www	2020-09-22 01:23:02
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:33612 -> port 22, len 44	2020-09-21 17:05:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.13.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37301
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.13.55.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020200 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 00:44:07 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 55.13.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.13.59.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
168.227.99.10	attack	2019-11-28T04:30:15.233647luisaranguren sshd[584225]: Connection from 168.227.99.10 port 41148 on 10.10.10.6 port 22 rdomain "" 2019-11-28T04:30:17.549497luisaranguren sshd[584225]: Invalid user test from 168.227.99.10 port 41148 2019-11-28T04:30:17.556715luisaranguren sshd[584225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 2019-11-28T04:30:15.233647luisaranguren sshd[584225]: Connection from 168.227.99.10 port 41148 on 10.10.10.6 port 22 rdomain "" 2019-11-28T04:30:17.549497luisaranguren sshd[584225]: Invalid user test from 168.227.99.10 port 41148 2019-11-28T04:30:19.471190luisaranguren sshd[584225]: Failed password for invalid user test from 168.227.99.10 port 41148 ssh2 ...	2019-11-28 05:28:03
36.46.142.80	attack	Nov 27 13:55:45 vps46666688 sshd[31532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.46.142.80 Nov 27 13:55:47 vps46666688 sshd[31532]: Failed password for invalid user host from 36.46.142.80 port 53125 ssh2 ...	2019-11-28 05:08:18
187.163.186.233	attackbotsspam	Automatic report - Port Scan Attack	2019-11-28 05:19:08
88.84.219.114	attackspam	UTC: 2019-11-26 port: 26/tcp	2019-11-28 05:31:10
37.59.38.216	attackbotsspam	Nov 27 08:14:03 php1 sshd\[29314\]: Invalid user product from 37.59.38.216 Nov 27 08:14:03 php1 sshd\[29314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns331058.ip-37-59-38.eu Nov 27 08:14:05 php1 sshd\[29314\]: Failed password for invalid user product from 37.59.38.216 port 58582 ssh2 Nov 27 08:18:11 php1 sshd\[29777\]: Invalid user ftpuser from 37.59.38.216 Nov 27 08:18:11 php1 sshd\[29777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns331058.ip-37-59-38.eu	2019-11-28 05:07:34
1.55.167.51	attackbotsspam	Unauthorized connection attempt from IP address 1.55.167.51 on Port 445(SMB)	2019-11-28 05:33:05
217.243.255.199	attackspam	" "	2019-11-28 05:33:26
102.133.168.208	attackbotsspam	Bruteforce on SSH Honeypot	2019-11-28 05:30:21
185.143.223.183	attackbots	2019-11-27T21:29:04.621341+01:00 lumpi kernel: [176510.415387] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.183 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=47935 PROTO=TCP SPT=57707 DPT=12553 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-28 05:29:15
172.104.179.128	attackbotsspam	fail2ban honeypot	2019-11-28 05:05:31
112.85.42.227	attackbots	Nov 27 15:58:18 TORMINT sshd\[15903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Nov 27 15:58:20 TORMINT sshd\[15903\]: Failed password for root from 112.85.42.227 port 12196 ssh2 Nov 27 15:58:23 TORMINT sshd\[15903\]: Failed password for root from 112.85.42.227 port 12196 ssh2 ...	2019-11-28 05:04:12
94.42.178.137	attackspambots	SSH Brute Force	2019-11-28 04:55:21
77.34.239.22	attackbotsspam	Nov 27 15:47:36 dev sshd\[5303\]: Invalid user admin from 77.34.239.22 port 43799 Nov 27 15:47:36 dev sshd\[5303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.34.239.22 Nov 27 15:47:38 dev sshd\[5303\]: Failed password for invalid user admin from 77.34.239.22 port 43799 ssh2	2019-11-28 05:04:39
189.91.238.195	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 05:21:41
190.109.66.61	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 05:12:44

最近上报的IP列表

189.150.92.105	66.164.91.59	32.32.19.5	53.174.146.15
105.145.177.69	214.169.116.87	219.84.125.191	88.29.211.248
59.113.26.31	73.73.142.177	23.136.197.181	204.145.171.61
155.138.247.93	169.222.172.49	209.156.231.195	196.37.186.72
212.231.36.60	91.140.9.208	187.95.154.148	170.24.150.99