139.59.164.196

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	139.59.164.196 - - \[04/Dec/2019:09:33:33 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - \[04/Dec/2019:09:33:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - \[04/Dec/2019:09:33:35 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-04 16:40:09
attackbots	xmlrpc attack	2019-12-04 06:48:13
attackspambots	fail2ban honeypot	2019-11-24 18:00:19
attack	Automatic report - Banned IP Access	2019-11-07 08:50:26
attackbots	Automatic report - Banned IP Access	2019-10-21 06:16:41
attackspambots	139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.164.196 - - [17/Sep/2019:08:18:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-17 19:21:31
attackbotsspam	loopsrockreggae.com 139.59.164.196 \[09/Sep/2019:06:31:57 +0200\] "POST /wp-login.php HTTP/1.1" 200 5615 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" loopsrockreggae.com 139.59.164.196 \[09/Sep/2019:06:31:57 +0200\] "POST /wp-login.php HTTP/1.1" 200 5624 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-09 21:15:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.164.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14647
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.164.196.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 21:15:41 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 196.164.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 196.164.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
203.177.71.254	attackspambots	Apr 4 03:16:44 www5 sshd\[21422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.71.254 user=root Apr 4 03:16:46 www5 sshd\[21422\]: Failed password for root from 203.177.71.254 port 44171 ssh2 Apr 4 03:18:34 www5 sshd\[21555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.71.254 user=root ...	2020-04-04 08:34:37
173.29.246.139	attackspam	Apr 3 23:38:57 fed sshd[15167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.29.246.139	2020-04-04 08:51:16
2.36.136.146	attackbotsspam	2020-04-04T02:04:02.222581librenms sshd[4814]: Failed password for invalid user ih from 2.36.136.146 port 46564 ssh2 2020-04-04T02:07:35.037320librenms sshd[5492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-2-36-136-146.cust.vodafonedsl.it user=root 2020-04-04T02:07:37.068631librenms sshd[5492]: Failed password for root from 2.36.136.146 port 56728 ssh2 ...	2020-04-04 08:31:03
138.197.185.188	attackbotsspam	Brute force attempt	2020-04-04 08:39:46
197.248.0.222	attackspambots	Apr 4 01:38:56 santamaria sshd\[7767\]: Invalid user vn from 197.248.0.222 Apr 4 01:38:56 santamaria sshd\[7767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.0.222 Apr 4 01:38:58 santamaria sshd\[7767\]: Failed password for invalid user vn from 197.248.0.222 port 48268 ssh2 ...	2020-04-04 08:28:57
49.156.53.17	attackbotsspam	Apr 4 02:12:50 server sshd[11158]: Failed password for root from 49.156.53.17 port 61805 ssh2 Apr 4 02:17:19 server sshd[12485]: Failed password for root from 49.156.53.17 port 29744 ssh2 Apr 4 02:21:45 server sshd[13791]: Failed password for invalid user wp from 49.156.53.17 port 40848 ssh2	2020-04-04 08:50:52
61.74.234.74	attackbots	DATE:2020-04-03 23:38:49, IP:61.74.234.74, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-04 09:00:54
80.211.40.246	attackspambots	Apr 4 02:42:06 legacy sshd[5937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.40.246 Apr 4 02:42:07 legacy sshd[5937]: Failed password for invalid user vl from 80.211.40.246 port 33074 ssh2 Apr 4 02:43:54 legacy sshd[6012]: Failed password for root from 80.211.40.246 port 54340 ssh2 ...	2020-04-04 08:58:52
122.51.240.151	attack	Invalid user wzn from 122.51.240.151 port 59808	2020-04-04 09:02:22
182.61.105.104	attackbots	Apr 4 02:50:56 ovpn sshd\[24560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104 user=root Apr 4 02:50:58 ovpn sshd\[24560\]: Failed password for root from 182.61.105.104 port 41550 ssh2 Apr 4 03:00:49 ovpn sshd\[27041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104 user=root Apr 4 03:00:51 ovpn sshd\[27041\]: Failed password for root from 182.61.105.104 port 34958 ssh2 Apr 4 03:05:16 ovpn sshd\[28135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104 user=root	2020-04-04 09:09:34
45.248.71.69	attackspam	Apr 3 21:43:08 vlre-nyc-1 sshd\[24360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.69 user=root Apr 3 21:43:11 vlre-nyc-1 sshd\[24360\]: Failed password for root from 45.248.71.69 port 55804 ssh2 Apr 3 21:47:09 vlre-nyc-1 sshd\[24442\]: Invalid user av from 45.248.71.69 Apr 3 21:47:09 vlre-nyc-1 sshd\[24442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.69 Apr 3 21:47:11 vlre-nyc-1 sshd\[24442\]: Failed password for invalid user av from 45.248.71.69 port 38854 ssh2 ...	2020-04-04 08:31:40
193.34.55.142	attackspam	SSH-BruteForce	2020-04-04 08:51:35
51.68.208.19	attackspambots	Port scan on 2 port(s): 139 445	2020-04-04 08:41:24
212.47.241.15	attackspam	Apr 4 02:09:58 mail sshd[14226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.241.15 user=root Apr 4 02:10:01 mail sshd[14226]: Failed password for root from 212.47.241.15 port 36814 ssh2 Apr 4 02:19:29 mail sshd[29505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.241.15 user=root Apr 4 02:19:31 mail sshd[29505]: Failed password for root from 212.47.241.15 port 50330 ssh2 ...	2020-04-04 09:07:23
164.52.34.59	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-04-04 08:46:25

最近上报的IP列表

163.255.24.82	46.69.145.170	165.132.120.231	117.93.68.152
60.191.103.162	182.86.192.38	114.98.135.41	141.41.93.190
176.59.98.249	111.122.143.162	180.244.95.197	98.113.35.10
14.167.156.136	208.7.25.122	128.83.9.54	114.89.150.108
189.68.155.54	85.62.130.219	116.197.131.246	122.117.137.225