139.59.14.97 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.148.56	attack	Oct 13 14:30:51 staging sshd[30119]: Invalid user adm from 139.59.148.56 port 59726 Oct 13 14:30:51 staging sshd[30119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.148.56 Oct 13 14:30:51 staging sshd[30119]: Invalid user adm from 139.59.148.56 port 59726 Oct 13 14:30:53 staging sshd[30119]: Failed password for invalid user adm from 139.59.148.56 port 59726 ssh2 ...	2020-10-14 04:31:27
139.59.141.196	attack	139.59.141.196 - - [11/Oct/2020:16:45:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2478 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:32 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 00:48:43
139.59.141.196	attack	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 16:44:14
139.59.141.196	attackspambots	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 10:04:07
139.59.147.218	attackbots	xmlrpc attack	2020-10-06 05:38:03
139.59.147.218	attackbots	Automatic report - Banned IP Access	2020-10-05 21:42:20
139.59.147.218	attackbotsspam	memoran 139.59.147.218 [05/Oct/2020:09:39:59 "-" "POST /wp-login.php 200 6727 139.59.147.218 [05/Oct/2020:09:40:06 "-" "GET /wp-login.php 200 6618 139.59.147.218 [05/Oct/2020:09:40:12 "-" "POST /wp-login.php 200 6725	2020-10-05 13:36:21
139.59.141.196	attackspam	139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 05:30:47
139.59.141.196	attackspambots	139.59.141.196 - - [28/Sep/2020:13:25:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2862 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2831 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2866 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-28 21:51:17
139.59.141.196	attack	WordPress wp-login brute force :: 139.59.141.196 0.116 - [28/Sep/2020:05:49:23 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-09-28 13:58:01
139.59.141.196	attackbots	139.59.141.196 - - [13/Sep/2020:19:05:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:11 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:13 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:15 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-14 03:29:50
139.59.141.196	attack	Automatic report generated by Wazuh	2020-09-13 19:29:40
139.59.14.210	attackspam	Sep 8 22:57:09 gitea sshd[39431]: Invalid user martinez from 139.59.14.210 port 39882 Sep 8 22:57:24 gitea sshd[48741]: Invalid user knoppix from 139.59.14.210 port 43882	2020-09-09 15:35:15
139.59.14.210	attack	Sep 8 22:57:09 gitea sshd[39431]: Invalid user martinez from 139.59.14.210 port 39882 Sep 8 22:57:24 gitea sshd[48741]: Invalid user knoppix from 139.59.14.210 port 43882	2020-09-09 07:44:41
139.59.146.28	attack	Attempting to access Wordpress login on a honeypot or private system.	2020-08-29 07:04:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.14.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27626
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.14.97.			IN	A

;; AUTHORITY SECTION:
.			123	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:34:50 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

97.14.59.139.in-addr.arpa domain name pointer vp.creativetechpark.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.14.59.139.in-addr.arpa	name = vp.creativetechpark.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
14.239.227.21	attack	1594007705 - 07/06/2020 05:55:05 Host: 14.239.227.21/14.239.227.21 Port: 445 TCP Blocked	2020-07-06 12:20:37
142.93.226.18	attackbots	Ssh brute force	2020-07-06 08:55:28
51.79.66.198	attack	$f2bV_matches	2020-07-06 12:11:31
139.99.237.183	attackbots	Jul 6 03:29:19 server2 sshd\[15820\]: Invalid user mudehwec from 139.99.237.183 Jul 6 03:29:19 server2 sshd\[15822\]: Invalid user mudehwec from 139.99.237.183 Jul 6 03:29:19 server2 sshd\[15824\]: Invalid user mudehwec from 139.99.237.183 Jul 6 03:30:45 server2 sshd\[16013\]: Invalid user mujr from 139.99.237.183 Jul 6 03:30:46 server2 sshd\[16015\]: Invalid user mujr from 139.99.237.183 Jul 6 03:30:46 server2 sshd\[16017\]: Invalid user mujr from 139.99.237.183	2020-07-06 08:54:02
92.62.131.106	attackspambots	Jul 6 05:55:15 serwer sshd\[26765\]: Invalid user build from 92.62.131.106 port 52390 Jul 6 05:55:15 serwer sshd\[26765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.106 Jul 6 05:55:17 serwer sshd\[26765\]: Failed password for invalid user build from 92.62.131.106 port 52390 ssh2 ...	2020-07-06 12:04:53
67.38.1.129	attackspambots	Jul 6 00:54:08 h2034429 sshd[15882]: Connection closed by 67.38.1.129 port 42872 [preauth] Jul 6 00:58:47 h2034429 sshd[15956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.38.1.129 user=r.r Jul 6 00:58:49 h2034429 sshd[15956]: Failed password for r.r from 67.38.1.129 port 43020 ssh2 Jul 6 00:58:49 h2034429 sshd[15956]: Received disconnect from 67.38.1.129 port 43020:11: Bye Bye [preauth] Jul 6 00:58:49 h2034429 sshd[15956]: Disconnected from 67.38.1.129 port 43020 [preauth] Jul 6 01:02:14 h2034429 sshd[16000]: Invalid user ubnt from 67.38.1.129 Jul 6 01:02:14 h2034429 sshd[16000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.38.1.129 Jul 6 01:02:16 h2034429 sshd[16000]: Failed password for invalid user ubnt from 67.38.1.129 port 43154 ssh2 Jul 6 01:02:16 h2034429 sshd[16000]: Received disconnect from 67.38.1.129 port 43154:11: Bye Bye [preauth] Jul 6 01:02:16 h2034429........ -------------------------------	2020-07-06 12:20:21
203.195.131.162	attackspam	Jun 29 08:54:35 h2040555 sshd[7020]: Invalid user manjaro from 203.195.131.162 Jun 29 08:54:35 h2040555 sshd[7020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.131.162 Jun 29 08:54:37 h2040555 sshd[7020]: Failed password for invalid user manjaro from 203.195.131.162 port 45400 ssh2 Jun 29 08:54:38 h2040555 sshd[7020]: Received disconnect from 203.195.131.162: 11: Bye Bye [preauth] Jun 29 09:04:02 h2040555 sshd[7134]: Invalid user chester from 203.195.131.162 Jun 29 09:04:02 h2040555 sshd[7134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.131.162 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.195.131.162	2020-07-06 08:47:22
54.39.22.191	attack	Jul 6 03:55:22 scw-tender-jepsen sshd[11884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.22.191 Jul 6 03:55:25 scw-tender-jepsen sshd[11884]: Failed password for invalid user zhangsan from 54.39.22.191 port 38280 ssh2	2020-07-06 12:01:03
199.19.226.96	attackbotsspam	Unauthorized connection attempt detected from IP address 199.19.226.96 to port 8088	2020-07-06 12:24:30
95.37.38.40	attackspambots	Jul 6 06:55:16 www2 sshd\[30180\]: Invalid user pi from 95.37.38.40Jul 6 06:55:16 www2 sshd\[30182\]: Invalid user pi from 95.37.38.40Jul 6 06:55:18 www2 sshd\[30182\]: Failed password for invalid user pi from 95.37.38.40 port 48866 ssh2Jul 6 06:55:18 www2 sshd\[30180\]: Failed password for invalid user pi from 95.37.38.40 port 48864 ssh2 ...	2020-07-06 12:09:32
179.222.96.70	attackbotsspam	Jul 6 03:49:49 ip-172-31-61-156 sshd[5654]: Invalid user test from 179.222.96.70 Jul 6 03:49:49 ip-172-31-61-156 sshd[5654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.222.96.70 Jul 6 03:49:49 ip-172-31-61-156 sshd[5654]: Invalid user test from 179.222.96.70 Jul 6 03:49:51 ip-172-31-61-156 sshd[5654]: Failed password for invalid user test from 179.222.96.70 port 39910 ssh2 Jul 6 03:55:24 ip-172-31-61-156 sshd[5823]: Invalid user oracle from 179.222.96.70 ...	2020-07-06 12:02:24
110.168.85.52	attackbotsspam	Automatic report - Port Scan Attack	2020-07-06 08:46:41
222.186.175.150	attackbots	DATE:2020-07-06 02:40:52, IP:222.186.175.150, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc)	2020-07-06 08:44:26
99.193.245.2	attackbotsspam	400 BAD REQUEST	2020-07-06 12:13:22
185.143.72.16	attack	Jul 6 02:48:24 relay postfix/smtpd\[20108\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 02:49:52 relay postfix/smtpd\[20106\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 02:49:53 relay postfix/smtpd\[21828\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 02:51:27 relay postfix/smtpd\[22487\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 02:51:29 relay postfix/smtpd\[22476\]: warning: unknown\[185.143.72.16\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-06 08:54:41

最近上报的IP列表

139.59.14.85	139.59.141.186	118.254.157.223	139.59.141.228
139.59.141.235	139.59.142.43	139.59.142.167	139.59.141.31
139.59.141.246	118.254.157.228	139.59.142.77	139.59.142.185
139.59.143.0	139.59.143.163	139.59.143.182	139.59.143.35
139.59.143.247	139.59.145.107	118.254.157.23	139.59.145.177

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表