必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
139.59.141.196 attack
139.59.141.196 - - [11/Oct/2020:16:45:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [11/Oct/2020:16:45:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2478 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [11/Oct/2020:16:45:32 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-12 00:48:43
139.59.141.196 attack
139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-11 16:44:14
139.59.141.196 attackspambots
139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-11 10:04:07
139.59.141.196 attackspam
139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [28/Sep/2020:21:42:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-29 05:30:47
139.59.141.196 attackspambots
139.59.141.196 - - [28/Sep/2020:13:25:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2862 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [28/Sep/2020:13:25:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2831 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [28/Sep/2020:13:25:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2866 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-28 21:51:17
139.59.141.196 attack
WordPress wp-login brute force :: 139.59.141.196 0.116 - [28/Sep/2020:05:49:23  0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"
2020-09-28 13:58:01
139.59.141.196 attackbots
139.59.141.196 - - [13/Sep/2020:19:05:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"
139.59.141.196 - - [13/Sep/2020:19:05:11 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"
139.59.141.196 - - [13/Sep/2020:19:05:13 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"
139.59.141.196 - - [13/Sep/2020:19:05:15 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"
139.59.141.196 - - [13/Sep/2020:19:05:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"
2020-09-14 03:29:50
139.59.141.196 attack
Automatic report generated by Wazuh
2020-09-13 19:29:40
139.59.141.196 attackbots
139.59.141.196 - - [27/Aug/2020:05:38:48 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [27/Aug/2020:05:38:50 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [27/Aug/2020:05:38:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-27 20:52:21
139.59.141.196 attackspambots
139.59.141.196 - - [23/Aug/2020:05:55:43 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [23/Aug/2020:05:55:44 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [23/Aug/2020:05:55:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-23 12:11:51
139.59.141.196 attackbots
CMS (WordPress or Joomla) login attempt.
2020-08-20 13:14:37
139.59.141.196 attackbots
139.59.141.196 - - [01/Aug/2020:12:37:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1818 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001
...
2020-08-01 19:47:41
139.59.141.196 attack
CMS (WordPress or Joomla) login attempt.
2020-07-14 12:59:01
139.59.141.196 attackbots
139.59.141.196 - - \[06/Jul/2020:16:56:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - \[06/Jul/2020:16:56:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.59.141.196 - - \[06/Jul/2020:16:56:10 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-07-06 23:03:42
139.59.141.196 attack
xmlrpc attack
2020-06-24 12:28:21
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.141.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14082
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.141.115.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:34:50 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 115.141.59.139.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 115.141.59.139.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
113.20.123.243 attackbotsspam
1586437367 - 04/09/2020 15:02:47 Host: 113.20.123.243/113.20.123.243 Port: 445 TCP Blocked
2020-04-09 22:50:14
102.164.44.243 attackspam
Tried sshing with brute force.
2020-04-09 23:23:07
112.26.44.112 attackspam
Apr  9 09:34:01 ny01 sshd[23323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.26.44.112
Apr  9 09:34:03 ny01 sshd[23323]: Failed password for invalid user admin from 112.26.44.112 port 33313 ssh2
Apr  9 09:38:35 ny01 sshd[23904]: Failed password for root from 112.26.44.112 port 56810 ssh2
2020-04-09 22:34:54
180.89.58.27 attack
Apr  9 13:00:57 game-panel sshd[6512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27
Apr  9 13:00:58 game-panel sshd[6512]: Failed password for invalid user felix from 180.89.58.27 port 36392 ssh2
Apr  9 13:02:11 game-panel sshd[6576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27
2020-04-09 23:33:31
45.125.65.35 attack
Apr  9 17:10:53 srv01 postfix/smtpd\[9174\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  9 17:18:11 srv01 postfix/smtpd\[9174\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  9 17:19:21 srv01 postfix/smtpd\[27595\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  9 17:19:48 srv01 postfix/smtpd\[9174\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  9 17:27:27 srv01 postfix/smtpd\[17654\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-04-09 23:27:58
178.62.118.53 attackspambots
Apr  9 14:46:48 prox sshd[21330]: Failed password for root from 178.62.118.53 port 50859 ssh2
Apr  9 15:02:51 prox sshd[13158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53
2020-04-09 22:46:18
61.216.2.79 attackbots
Apr  9 14:52:14 ns382633 sshd\[26347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.2.79  user=root
Apr  9 14:52:15 ns382633 sshd\[26347\]: Failed password for root from 61.216.2.79 port 46550 ssh2
Apr  9 15:02:50 ns382633 sshd\[28425\]: Invalid user user from 61.216.2.79 port 45534
Apr  9 15:02:50 ns382633 sshd\[28425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.2.79
Apr  9 15:02:53 ns382633 sshd\[28425\]: Failed password for invalid user user from 61.216.2.79 port 45534 ssh2
2020-04-09 22:38:48
103.100.209.172 attackspam
Apr  9 15:14:49 [host] sshd[12300]: Invalid user n
Apr  9 15:14:49 [host] sshd[12300]: pam_unix(sshd:
Apr  9 15:14:50 [host] sshd[12300]: Failed passwor
2020-04-09 23:05:50
185.53.88.39 attackspam
Apr  9 17:03:15 debian-2gb-nbg1-2 kernel: \[8703607.346411\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.53.88.39 DST=195.201.40.59 LEN=439 TOS=0x00 PREC=0x00 TTL=54 ID=38413 DF PROTO=UDP SPT=5093 DPT=5060 LEN=419
2020-04-09 23:13:00
112.21.191.252 attackbots
Apr  9 15:41:42 srv01 sshd[1009]: Invalid user rian from 112.21.191.252 port 52690
Apr  9 15:41:42 srv01 sshd[1009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.252
Apr  9 15:41:42 srv01 sshd[1009]: Invalid user rian from 112.21.191.252 port 52690
Apr  9 15:41:43 srv01 sshd[1009]: Failed password for invalid user rian from 112.21.191.252 port 52690 ssh2
Apr  9 15:46:35 srv01 sshd[1410]: Invalid user ns2server from 112.21.191.252 port 44695
...
2020-04-09 23:08:46
36.26.95.179 attackspam
Apr  9 05:57:14 pixelmemory sshd[29845]: Failed password for daemon from 36.26.95.179 port 37474 ssh2
Apr  9 06:02:51 pixelmemory sshd[30827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.95.179
Apr  9 06:02:53 pixelmemory sshd[30827]: Failed password for invalid user solr from 36.26.95.179 port 23384 ssh2
...
2020-04-09 22:42:34
116.196.82.80 attackspam
04/09/2020-09:16:22.012259 116.196.82.80 Protocol: 6 ET SCAN Potential SSH Scan
2020-04-09 23:04:03
92.63.194.59 attack
Apr  9 11:53:27 firewall sshd[11737]: Invalid user admin from 92.63.194.59
Apr  9 11:53:29 firewall sshd[11737]: Failed password for invalid user admin from 92.63.194.59 port 39753 ssh2
Apr  9 11:54:30 firewall sshd[11829]: Invalid user admin from 92.63.194.59
...
2020-04-09 23:31:17
145.239.83.89 attackbotsspam
Apr  9 15:02:14  sshd\[8696\]: Invalid user test from 145.239.83.89Apr  9 15:02:17  sshd\[8696\]: Failed password for invalid user test from 145.239.83.89 port 58868 ssh2
...
2020-04-09 23:29:06
104.131.55.236 attack
Apr  9 15:19:35 mout sshd[17030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.55.236  user=root
Apr  9 15:19:38 mout sshd[17030]: Failed password for root from 104.131.55.236 port 42138 ssh2
2020-04-09 23:37:10

最近上报的IP列表

139.59.140.252 139.59.140.180 139.59.140.236 139.59.140.234
139.59.140.116 139.59.140.209 139.59.141.126 139.59.14.85
139.59.14.97 139.59.141.186 118.254.157.223 139.59.141.228
139.59.141.235 139.59.142.43 139.59.142.167 139.59.141.31
139.59.141.246 118.254.157.228 139.59.142.77 139.59.142.185