139.59.13.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-08-21T12:49:57.394970randservbullet-proofcloud-66.localdomain sshd[16265]: Invalid user ruser from 139.59.13.55 port 34145 2020-08-21T12:49:57.398735randservbullet-proofcloud-66.localdomain sshd[16265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 2020-08-21T12:49:57.394970randservbullet-proofcloud-66.localdomain sshd[16265]: Invalid user ruser from 139.59.13.55 port 34145 2020-08-21T12:50:00.225948randservbullet-proofcloud-66.localdomain sshd[16265]: Failed password for invalid user ruser from 139.59.13.55 port 34145 ssh2 ...	2020-08-21 22:08:05
attackspambots	Aug 21 11:28:59 buvik sshd[10515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Aug 21 11:29:02 buvik sshd[10515]: Failed password for invalid user ds from 139.59.13.55 port 40480 ssh2 Aug 21 11:33:46 buvik sshd[11217]: Invalid user monit from 139.59.13.55 ...	2020-08-21 17:38:00
attack	Aug 17 22:52:27 vps647732 sshd[6556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Aug 17 22:52:29 vps647732 sshd[6556]: Failed password for invalid user melina from 139.59.13.55 port 48372 ssh2 ...	2020-08-18 04:52:59
attackbots	$f2bV_matches	2020-08-17 15:09:51
attackbotsspam	2020-08-01T04:46:17.020196billing sshd[15061]: Failed password for root from 139.59.13.55 port 44240 ssh2 2020-08-01T04:48:22.182271billing sshd[18639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root 2020-08-01T04:48:25.072498billing sshd[18639]: Failed password for root from 139.59.13.55 port 60424 ssh2 ...	2020-08-01 07:41:27
attackspambots	Jul 29 17:16:42 inter-technics sshd[8368]: Invalid user pbsadmin from 139.59.13.55 port 40173 Jul 29 17:16:42 inter-technics sshd[8368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 29 17:16:42 inter-technics sshd[8368]: Invalid user pbsadmin from 139.59.13.55 port 40173 Jul 29 17:16:44 inter-technics sshd[8368]: Failed password for invalid user pbsadmin from 139.59.13.55 port 40173 ssh2 Jul 29 17:21:19 inter-technics sshd[8824]: Invalid user shenweifeng from 139.59.13.55 port 45901 ...	2020-07-29 23:25:43
attackspam	Jul 16 18:49:07 itv-usvr-02 sshd[12776]: Invalid user hester from 139.59.13.55 port 58198 Jul 16 18:49:07 itv-usvr-02 sshd[12776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 16 18:49:07 itv-usvr-02 sshd[12776]: Invalid user hester from 139.59.13.55 port 58198 Jul 16 18:49:08 itv-usvr-02 sshd[12776]: Failed password for invalid user hester from 139.59.13.55 port 58198 ssh2 Jul 16 18:53:43 itv-usvr-02 sshd[12949]: Invalid user katrin from 139.59.13.55 port 37380	2020-07-16 21:30:37
attackbotsspam	Jul 14 03:55:14 jumpserver sshd[53387]: Invalid user alex from 139.59.13.55 port 39869 Jul 14 03:55:15 jumpserver sshd[53387]: Failed password for invalid user alex from 139.59.13.55 port 39869 ssh2 Jul 14 03:58:20 jumpserver sshd[53395]: Invalid user deluge from 139.59.13.55 port 35951 ...	2020-07-14 12:18:59
attackbotsspam	Jul 7 20:10:03 localhost sshd[15788]: Invalid user helena from 139.59.13.55 port 47677 Jul 7 20:10:03 localhost sshd[15788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Jul 7 20:10:03 localhost sshd[15788]: Invalid user helena from 139.59.13.55 port 47677 Jul 7 20:10:05 localhost sshd[15788]: Failed password for invalid user helena from 139.59.13.55 port 47677 ssh2 Jul 7 20:13:36 localhost sshd[16211]: Invalid user dujoey from 139.59.13.55 port 46794 ...	2020-07-08 05:49:30
attack	fail2ban -- 139.59.13.55 ...	2020-06-04 06:43:59
attack	Jun 2 06:26:50 vps639187 sshd\[30318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root Jun 2 06:26:52 vps639187 sshd\[30318\]: Failed password for root from 139.59.13.55 port 53473 ssh2 Jun 2 06:33:01 vps639187 sshd\[30381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root ...	2020-06-02 12:35:35
attackbotsspam	May 25 08:57:33 ns382633 sshd\[25503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root May 25 08:57:35 ns382633 sshd\[25503\]: Failed password for root from 139.59.13.55 port 46160 ssh2 May 25 09:14:04 ns382633 sshd\[28532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root May 25 09:14:05 ns382633 sshd\[28532\]: Failed password for root from 139.59.13.55 port 32824 ssh2 May 25 09:18:16 ns382633 sshd\[29398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root	2020-05-25 17:02:16
attack	Invalid user no from 139.59.13.55 port 53790	2020-05-15 16:33:56
attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-07 14:00:34
attackbots	2020-04-19T02:54:05.6250451495-001 sshd[22936]: Invalid user qs from 139.59.13.55 port 44801 2020-04-19T02:54:05.6324081495-001 sshd[22936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 2020-04-19T02:54:05.6250451495-001 sshd[22936]: Invalid user qs from 139.59.13.55 port 44801 2020-04-19T02:54:07.1859341495-001 sshd[22936]: Failed password for invalid user qs from 139.59.13.55 port 44801 ssh2 2020-04-19T02:58:05.6473991495-001 sshd[23140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 user=root 2020-04-19T02:58:07.8136891495-001 sshd[23140]: Failed password for root from 139.59.13.55 port 47754 ssh2 ...	2020-04-19 17:56:43
attackbotsspam	SSH auth scanning - multiple failed logins	2020-03-28 23:24:56
attackbots	Mar 20 23:10:04 ArkNodeAT sshd\[21814\]: Invalid user endou from 139.59.13.55 Mar 20 23:10:04 ArkNodeAT sshd\[21814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Mar 20 23:10:06 ArkNodeAT sshd\[21814\]: Failed password for invalid user endou from 139.59.13.55 port 60147 ssh2	2020-03-21 06:21:32
attackbots	Mar 11 15:08:53 * sshd[29713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Mar 11 15:08:55 * sshd[29713]: Failed password for invalid user avatar from 139.59.13.55 port 43068 ssh2	2020-03-12 02:57:50
attack	Mar 2 13:49:26 plusreed sshd[13438]: Invalid user test5 from 139.59.13.55 ...	2020-03-03 03:02:11
attackbots	Unauthorized connection attempt detected from IP address 139.59.13.55 to port 2220 [J]	2020-02-06 01:18:59
attackspam	Feb 2 16:34:49 game-panel sshd[4026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55 Feb 2 16:34:51 game-panel sshd[4026]: Failed password for invalid user debian from 139.59.13.55 port 42570 ssh2 Feb 2 16:38:21 game-panel sshd[4157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.55	2020-02-03 00:44:11

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.135.84	attackbots	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 22:04:05
139.59.135.84	attack	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 13:30:00
139.59.135.84	attackspambots	Oct 12 22:40:32 eventyay sshd[28379]: Failed password for root from 139.59.135.84 port 59232 ssh2 Oct 12 22:44:59 eventyay sshd[28632]: Failed password for root from 139.59.135.84 port 35022 ssh2 ...	2020-10-13 06:14:29
139.59.138.115	attackbotsspam	(sshd) Failed SSH login from 139.59.138.115 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 20:43:50 server sshd[3364]: Invalid user ssh from 139.59.138.115 Oct 11 20:43:51 server sshd[3364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 11 20:43:53 server sshd[3364]: Failed password for invalid user ssh from 139.59.138.115 port 58372 ssh2 Oct 11 20:48:12 server sshd[4014]: Invalid user teste from 139.59.138.115 Oct 11 20:48:12 server sshd[4014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115	2020-10-12 05:11:22
139.59.138.115	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-10-11 21:16:04
139.59.138.115	attack	fail2ban	2020-10-11 06:37:06
139.59.138.115	attackbots	Oct 10 17:20:21 vps-51d81928 sshd[721914]: Failed password for invalid user ftpuser from 139.59.138.115 port 54242 ssh2 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:00 vps-51d81928 sshd[721975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:02 vps-51d81928 sshd[721975]: Failed password for invalid user travis from 139.59.138.115 port 60512 ssh2 ...	2020-10-11 02:09:37
139.59.138.115	attackbots	Oct 10 11:08:39 vserver sshd\[2687\]: Invalid user zope from 139.59.138.115Oct 10 11:08:41 vserver sshd\[2687\]: Failed password for invalid user zope from 139.59.138.115 port 35194 ssh2Oct 10 11:16:52 vserver sshd\[2784\]: Invalid user acap from 139.59.138.115Oct 10 11:16:55 vserver sshd\[2784\]: Failed password for invalid user acap from 139.59.138.115 port 49926 ssh2 ...	2020-10-10 17:54:02
139.59.135.84	attackbotsspam	Failed password for root from 139.59.135.84 port 51112 ssh2	2020-10-05 18:30:22
139.59.135.84	attackspam	$f2bV_matches	2020-10-04 04:12:07
139.59.135.84	attackspambots	Invalid user alan from 139.59.135.84 port 57124	2020-10-03 20:16:11
139.59.136.99	attackbotsspam	Invalid user ubnt from 139.59.136.99 port 47440	2020-09-23 00:42:15
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:59205 -> port 22, len 44	2020-09-22 16:42:32
139.59.136.99	attackspam	leo_www	2020-09-22 01:23:02
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:33612 -> port 22, len 44	2020-09-21 17:05:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.13.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37301
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.13.55.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020200 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 00:44:07 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 55.13.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.13.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.17.96.202	attackbots	209.17.96.202 was recorded 10 times by 8 hosts attempting to connect to the following ports: 2001,68,2483,6443,5905,5222,5909,5289,3333. Incident counter (4h, 24h, all-time): 10, 42, 876	2019-11-25 20:10:08
45.118.144.31	attackbotsspam	Nov 25 10:16:34 ns382633 sshd\[7786\]: Invalid user keegstra from 45.118.144.31 port 50604 Nov 25 10:16:34 ns382633 sshd\[7786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.118.144.31 Nov 25 10:16:35 ns382633 sshd\[7786\]: Failed password for invalid user keegstra from 45.118.144.31 port 50604 ssh2 Nov 25 10:28:20 ns382633 sshd\[9674\]: Invalid user css from 45.118.144.31 port 52196 Nov 25 10:28:20 ns382633 sshd\[9674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.118.144.31	2019-11-25 19:55:29
201.91.231.154	attackspambots	Unauthorised access (Nov 25) SRC=201.91.231.154 LEN=52 TOS=0x10 PREC=0x40 TTL=115 ID=20486 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-25 19:50:01
109.201.137.1	attackspam	109.201.137.1 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 11, 11	2019-11-25 20:16:15
185.176.27.38	attackbots	11/25/2019-12:34:35.887451 185.176.27.38 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-25 20:12:35
68.183.114.226	attackbots	2019-11-25T09:06:10.354173scmdmz1 sshd\[12284\]: Invalid user backup from 68.183.114.226 port 58324 2019-11-25T09:06:10.356837scmdmz1 sshd\[12284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.114.226 2019-11-25T09:06:12.902678scmdmz1 sshd\[12284\]: Failed password for invalid user backup from 68.183.114.226 port 58324 ssh2 ...	2019-11-25 19:39:33
220.136.35.57	attackbots	220.136.35.57 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 20:17:09
50.192.47.101	attackspam	RDP Bruteforce	2019-11-25 20:17:40
180.249.41.233	attackspam	Automatic report - Port Scan Attack	2019-11-25 19:47:59
139.99.107.166	attack	[ssh] SSH attack	2019-11-25 19:44:41
103.89.91.33	attack	Nov 25 06:57:06 tamoto postfix/smtpd[12937]: connect from unknown[103.89.91.33] Nov 25 06:57:10 tamoto postfix/smtpd[12937]: disconnect from unknown[103.89.91.33] Nov 25 06:57:11 tamoto postfix/smtpd[12937]: connect from unknown[103.89.91.33] Nov 25 06:57:12 tamoto postfix/smtpd[13346]: connect from unknown[103.89.91.33] Nov 25 06:57:12 tamoto postfix/smtpd[13347]: connect from unknown[103.89.91.33] Nov 25 06:57:13 tamoto postfix/smtpd[13348]: connect from unknown[103.89.91.33] Nov 25 06:57:13 tamoto postfix/smtpd[13349]: connect from unknown[103.89.91.33] Nov 25 06:57:14 tamoto postfix/smtpd[13351]: connect from unknown[103.89.91.33] Nov 25 06:57:14 tamoto postfix/smtpd[13352]: connect from unknown[103.89.91.33] Nov 25 06:57:14 tamoto postfix/smtpd[13368]: connect from unknown[103.89.91.33] Nov 25 06:57:14 tamoto postfix/smtpd[13369]: connect from unknown[103.89.91.33] Nov 25 06:57:15 tamoto postfix/smtpd[13370]: connect from unknown[103.89.91.33] Nov 25 06:57:17 tamot........ -------------------------------	2019-11-25 20:07:44
173.63.192.201	attack	173.63.192.201 was recorded 15 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 15, 21, 21	2019-11-25 19:36:38
157.230.11.154	attackbotsspam	157.230.11.154 - - \[25/Nov/2019:10:36:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.230.11.154 - - \[25/Nov/2019:10:36:50 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-25 19:51:22
80.79.116.138	attackspambots	80.79.116.138 was recorded 16 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 16, 22, 22	2019-11-25 19:52:00
94.191.70.31	attackbotsspam	Nov 25 12:58:51 localhost sshd\[17924\]: Invalid user named from 94.191.70.31 port 59688 Nov 25 12:58:51 localhost sshd\[17924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.70.31 Nov 25 12:58:53 localhost sshd\[17924\]: Failed password for invalid user named from 94.191.70.31 port 59688 ssh2	2019-11-25 20:18:11

最近上报的IP列表

189.150.92.105	66.164.91.59	32.32.19.5	53.174.146.15
105.145.177.69	214.169.116.87	219.84.125.191	88.29.211.248
59.113.26.31	73.73.142.177	23.136.197.181	204.145.171.61
155.138.247.93	169.222.172.49	209.156.231.195	196.37.186.72
212.231.36.60	91.140.9.208	187.95.154.148	170.24.150.99