139.59.141.246

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.141.196	attack	139.59.141.196 - - [11/Oct/2020:16:45:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2478 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:32 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 00:48:43
139.59.141.196	attack	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 16:44:14
139.59.141.196	attackspambots	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 10:04:07
139.59.141.196	attackspam	139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 05:30:47
139.59.141.196	attackspambots	139.59.141.196 - - [28/Sep/2020:13:25:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2862 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2831 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2866 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-28 21:51:17
139.59.141.196	attack	WordPress wp-login brute force :: 139.59.141.196 0.116 - [28/Sep/2020:05:49:23 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-09-28 13:58:01
139.59.141.196	attackbots	139.59.141.196 - - [13/Sep/2020:19:05:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:11 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:13 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:15 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-14 03:29:50
139.59.141.196	attack	Automatic report generated by Wazuh	2020-09-13 19:29:40
139.59.141.196	attackbots	139.59.141.196 - - [27/Aug/2020:05:38:48 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [27/Aug/2020:05:38:50 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [27/Aug/2020:05:38:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-27 20:52:21
139.59.141.196	attackspambots	139.59.141.196 - - [23/Aug/2020:05:55:43 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [23/Aug/2020:05:55:44 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [23/Aug/2020:05:55:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-23 12:11:51
139.59.141.196	attackbots	CMS (WordPress or Joomla) login attempt.	2020-08-20 13:14:37
139.59.141.196	attackbots	139.59.141.196 - - [01/Aug/2020:12:37:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [01/Aug/2020:12:37:14 +0200] "POST /wp-login.php HTTP/1.1" 200 1818 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-08-01 19:47:41
139.59.141.196	attack	CMS (WordPress or Joomla) login attempt.	2020-07-14 12:59:01
139.59.141.196	attackbots	139.59.141.196 - - \[06/Jul/2020:16:56:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[06/Jul/2020:16:56:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[06/Jul/2020:16:56:10 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-07-06 23:03:42
139.59.141.196	attack	xmlrpc attack	2020-06-24 12:28:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.141.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44140
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.141.246.			IN	A

;; AUTHORITY SECTION:
.			1	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:34:56 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 246.141.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.141.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.30.209	attackspambots	2020-01-31T09:18:47.093510scmdmz1 sshd[4359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root 2020-01-31T09:18:49.648420scmdmz1 sshd[4359]: Failed password for root from 222.186.30.209 port 64785 ssh2 2020-01-31T09:18:51.709635scmdmz1 sshd[4359]: Failed password for root from 222.186.30.209 port 64785 ssh2 2020-01-31T09:18:47.093510scmdmz1 sshd[4359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root 2020-01-31T09:18:49.648420scmdmz1 sshd[4359]: Failed password for root from 222.186.30.209 port 64785 ssh2 2020-01-31T09:18:51.709635scmdmz1 sshd[4359]: Failed password for root from 222.186.30.209 port 64785 ssh2 2020-01-31T09:18:47.093510scmdmz1 sshd[4359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root 2020-01-31T09:18:49.648420scmdmz1 sshd[4359]: Failed password for root from 222.186.30.209 port 64785 ssh2 2020-01-3	2020-01-31 16:24:32
157.230.247.239	attackbots	Unauthorized connection attempt detected from IP address 157.230.247.239 to port 2220 [J]	2020-01-31 16:18:44
196.52.43.52	attack	Unauthorized connection attempt detected from IP address 196.52.43.52 to port 8082 [J]	2020-01-31 16:37:11
220.165.8.161	attackspambots	01/31/2020-08:02:00.933621 220.165.8.161 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-31 16:36:19
106.52.246.170	attack	Unauthorized connection attempt detected from IP address 106.52.246.170 to port 2220 [J]	2020-01-31 16:07:35
193.251.169.165	attack	Jan 31 07:46:24 vps sshd[29227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.251.169.165 Jan 31 07:46:25 vps sshd[29227]: Failed password for invalid user boblguser from 193.251.169.165 port 57290 ssh2 Jan 31 08:02:13 vps sshd[30314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.251.169.165 Jan 31 08:02:15 vps sshd[30314]: Failed password for invalid user imoveapi from 193.251.169.165 port 58872 ssh2 ...	2020-01-31 16:12:30
117.44.60.32	attack	Jan 31 08:55:41 lnxmail61 postfix/smtpd[19146]: warning: unknown[117.44.60.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 31 08:55:42 lnxmail61 postfix/smtpd[19146]: lost connection after AUTH from unknown[117.44.60.32] Jan 31 08:55:52 lnxmail61 postfix/smtpd[19146]: warning: unknown[117.44.60.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 31 08:55:52 lnxmail61 postfix/smtpd[19146]: lost connection after AUTH from unknown[117.44.60.32] Jan 31 08:56:04 lnxmail61 postfix/smtpd[19861]: warning: unknown[117.44.60.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-01-31 16:31:25
222.255.129.133	attack	Unauthorized connection attempt detected from IP address 222.255.129.133 to port 2220 [J]	2020-01-31 16:20:42
185.209.0.18	attackspam	Jan 31 09:29:12 debian-2gb-nbg1-2 kernel: \[2718612.271457\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.209.0.18 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=56945 PROTO=TCP SPT=42888 DPT=3384 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-31 16:35:21
37.139.9.23	attack	Invalid user zabbix from 37.139.9.23 port 36954	2020-01-31 16:35:45
218.92.0.212	attack	frenzy	2020-01-31 15:52:49
106.12.131.162	attackspambots	Unauthorized connection attempt detected from IP address 106.12.131.162 to port 2220 [J]	2020-01-31 16:16:26
78.29.32.173	attackbots	2020-01-31T07:41:11.187515shield sshd\[28765\]: Invalid user anton from 78.29.32.173 port 40618 2020-01-31T07:41:11.191037shield sshd\[28765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-78-29-32-173.is74.ru 2020-01-31T07:41:13.703196shield sshd\[28765\]: Failed password for invalid user anton from 78.29.32.173 port 40618 ssh2 2020-01-31T07:42:59.370840shield sshd\[29124\]: Invalid user hamsavahini from 78.29.32.173 port 58642 2020-01-31T07:42:59.377714shield sshd\[29124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-78-29-32-173.is74.ru	2020-01-31 15:54:43
202.148.22.204	attack	Unauthorized connection attempt detected from IP address 202.148.22.204 to port 1433 [J]	2020-01-31 16:22:56
178.128.114.248	attack	Unauthorized connection attempt detected from IP address 178.128.114.248 to port 8545 [J]	2020-01-31 15:59:23

最近上报的IP列表

139.59.141.31	118.254.157.228	139.59.142.77	139.59.142.185
139.59.143.0	139.59.143.163	139.59.143.182	139.59.143.35
139.59.143.247	139.59.145.107	118.254.157.23	139.59.145.177
139.59.145.175	139.59.144.213	139.59.145.205	139.59.145.204
139.59.144.214	139.59.145.192	139.59.145.233	139.59.145.223

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表