139.59.16.203 - IPInfo

基本信息:

城市(city): Bengaluru

省份(region): Karnataka

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Automatic report - Web App Attack	2019-07-13 11:22:48

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.161.78	attack	detected by Fail2Ban	2020-10-08 07:18:59
139.59.161.78	attackbots	detected by Fail2Ban	2020-10-07 23:45:32
139.59.161.78	attack	Oct 7 13:21:11 itv-usvr-02 sshd[21079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 user=root Oct 7 13:24:32 itv-usvr-02 sshd[21168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 user=root Oct 7 13:28:06 itv-usvr-02 sshd[21312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 user=root	2020-10-07 15:50:28
139.59.169.37	attackbotsspam	2020-10-05 10:48:51.019369-0500 localhost sshd[6050]: Failed password for root from 139.59.169.37 port 36660 ssh2	2020-10-06 07:27:52
139.59.169.37	attackspambots	2020-10-05 10:18:16.215894-0500 localhost sshd[3803]: Failed password for root from 139.59.169.37 port 51328 ssh2	2020-10-05 23:44:24
139.59.169.37	attackspambots	Oct 5 09:12:10 nopemail auth.info sshd[22652]: Disconnected from authenticating user root 139.59.169.37 port 58408 [preauth] ...	2020-10-05 15:43:17
139.59.161.78	attackbotsspam	$f2bV_matches	2020-10-05 05:57:30
139.59.161.78	attack	Oct 4 13:07:24 scw-6657dc sshd[6276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 user=root Oct 4 13:07:24 scw-6657dc sshd[6276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 user=root Oct 4 13:07:26 scw-6657dc sshd[6276]: Failed password for root from 139.59.161.78 port 52375 ssh2 ...	2020-10-04 21:55:53
139.59.161.78	attackspam	Invalid user cute from 139.59.161.78 port 49620	2020-10-04 13:42:22
139.59.161.78	attack	Oct 3 20:19:22 plex-server sshd[3105136]: Failed password for invalid user cat from 139.59.161.78 port 58268 ssh2 Oct 3 20:22:55 plex-server sshd[3106801]: Invalid user test from 139.59.161.78 port 13600 Oct 3 20:22:55 plex-server sshd[3106801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 Oct 3 20:22:55 plex-server sshd[3106801]: Invalid user test from 139.59.161.78 port 13600 Oct 3 20:22:57 plex-server sshd[3106801]: Failed password for invalid user test from 139.59.161.78 port 13600 ssh2 ...	2020-10-04 04:33:30
139.59.161.78	attackbots	Invalid user cute from 139.59.161.78 port 49620	2020-10-03 20:39:55
139.59.161.78	attack	Oct 3 05:09:44 ip106 sshd[16591]: Failed password for root from 139.59.161.78 port 57577 ssh2 Oct 3 05:13:04 ip106 sshd[16692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 ...	2020-10-03 12:05:52
139.59.161.78	attack	Oct 2 22:59:28 DAAP sshd[3444]: Invalid user x from 139.59.161.78 port 12865 Oct 2 22:59:28 DAAP sshd[3444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 Oct 2 22:59:28 DAAP sshd[3444]: Invalid user x from 139.59.161.78 port 12865 Oct 2 22:59:30 DAAP sshd[3444]: Failed password for invalid user x from 139.59.161.78 port 12865 ssh2 Oct 2 23:04:06 DAAP sshd[3524]: Invalid user deployer from 139.59.161.78 port 36970 ...	2020-10-03 06:47:52
139.59.169.103	attackspam	SSH Brute-Force reported by Fail2Ban	2020-09-21 01:33:59
139.59.169.103	attackspam	Sep 20 09:43:45 abendstille sshd\[24764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.103 user=root Sep 20 09:43:46 abendstille sshd\[24764\]: Failed password for root from 139.59.169.103 port 55790 ssh2 Sep 20 09:47:38 abendstille sshd\[28445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.103 user=root Sep 20 09:47:41 abendstille sshd\[28445\]: Failed password for root from 139.59.169.103 port 37266 ssh2 Sep 20 09:51:28 abendstille sshd\[32082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.103 user=root ...	2020-09-20 17:32:25

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.16.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3378
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.16.203.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 08 03:54:48 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 203.16.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 203.16.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.175.212	attack	F2B jail: sshd. Time: 2019-11-15 18:06:20, Reported by: VKReport	2019-11-16 01:27:30
104.206.128.34	attack	Port scan	2019-11-16 02:05:02
222.186.173.154	attack	2019-11-15T18:06:04.222026shield sshd\[15304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2019-11-15T18:06:05.966626shield sshd\[15304\]: Failed password for root from 222.186.173.154 port 6374 ssh2 2019-11-15T18:06:08.705043shield sshd\[15304\]: Failed password for root from 222.186.173.154 port 6374 ssh2 2019-11-15T18:06:11.710270shield sshd\[15304\]: Failed password for root from 222.186.173.154 port 6374 ssh2 2019-11-15T18:06:15.130826shield sshd\[15304\]: Failed password for root from 222.186.173.154 port 6374 ssh2	2019-11-16 02:07:02
178.129.20.143	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/178.129.20.143/ RU - 1H : (163) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN28812 IP : 178.129.20.143 CIDR : 178.129.0.0/18 PREFIX COUNT : 29 UNIQUE IP COUNT : 319232 ATTACKS DETECTED ASN28812 : 1H - 1 3H - 1 6H - 2 12H - 3 24H - 6 DateTime : 2019-11-15 15:41:47 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-16 02:11:03
186.154.237.247	attackbots	Received: from standardbank.co.za ( [186.154.237.247]) by smg.telkomsa.net (Telkom Internet Messaging Gateway) with SMTP id B7.47.02726.3EA8DCD5; Thu, 14 Nov 2019 19:12:06 +0200 (CAT) From: Nedbank GreenBack To: zxzxzxzxzx@telkomsa.net Subject: Nedbank GreenBack Credit Card Reward Statement Date: 14 Nov 2019 12:12:01 -0500 Message-ID: <20191114121201.A6DD7FDCD72F66DF@standardbank.co.za> MIME-Version: 1.0 Content-Type: multipart/mixed;	2019-11-16 02:06:03
92.63.194.75	attackbotsspam	RDP Bruteforce	2019-11-16 01:35:17
80.211.16.26	attack	Invalid user jasencio from 80.211.16.26 port 46300	2019-11-16 01:30:44
85.67.210.90	attack	port scan and connect, tcp 23 (telnet)	2019-11-16 01:36:40
103.121.195.34	attackspam	2019-11-15T16:47:24.3990991240 sshd\[12126\]: Invalid user hec from 103.121.195.34 port 53482 2019-11-15T16:47:24.4019361240 sshd\[12126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.121.195.34 2019-11-15T16:47:26.6200631240 sshd\[12126\]: Failed password for invalid user hec from 103.121.195.34 port 53482 ssh2 ...	2019-11-16 01:44:13
85.128.142.120	attackspam	Automatic report - XMLRPC Attack	2019-11-16 02:11:50
220.92.16.66	attackspambots	Nov 15 14:58:47 XXXXXX sshd[33829]: Invalid user incoming from 220.92.16.66 port 39414	2019-11-16 01:29:43
121.138.213.2	attack	Nov 15 15:37:40 eventyay sshd[10495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.138.213.2 Nov 15 15:37:42 eventyay sshd[10495]: Failed password for invalid user giuhat from 121.138.213.2 port 44151 ssh2 Nov 15 15:42:02 eventyay sshd[10547]: Failed password for root from 121.138.213.2 port 27420 ssh2 ...	2019-11-16 02:04:08
63.80.189.137	attack	Autoban 63.80.189.137 AUTH/CONNECT	2019-11-16 01:45:53
193.70.43.220	attackspambots	2019-11-15T17:31:58.628300abusebot.cloudsearch.cf sshd\[30815\]: Invalid user havyn from 193.70.43.220 port 60808	2019-11-16 01:37:41
104.206.128.38	attack	Port scan	2019-11-16 01:58:52

最近上报的IP列表

117.95.86.245	177.120.244.10	163.245.114.4	119.184.41.139
154.169.152.192	14.186.157.175	220.163.13.11	68.183.186.204
165.187.30.202	57.162.247.26	195.223.104.63	198.154.69.48
162.1.208.209	108.130.142.18	154.255.12.54	138.86.33.132
188.18.182.208	24.160.160.21	49.82.161.165	149.162.156.122