139.59.20.246 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Automatic report - Banned IP Access	2020-05-23 03:49:26
attackbotsspam	AbusiveCrawling	2020-05-20 04:13:29

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.20.176	attackbotsspam	Automatic report - Banned IP Access	2020-10-06 05:49:46
139.59.20.176	attackspam	Automatic report - Banned IP Access	2020-10-05 21:54:43
139.59.20.176	attackbots	Automatic report - Banned IP Access	2020-10-05 13:48:31
139.59.208.39	attackbotsspam	Port scan denied	2020-09-13 20:07:50
139.59.208.39	attack	TCP (SYN) 139.59.208.39:49233 -> port 80, len 40	2020-09-13 12:00:38
139.59.208.39	attackbotsspam	TCP (SYN) 139.59.208.39:49233 -> port 80, len 40	2020-09-13 03:49:55
139.59.20.249	attackbots	Jun 8 12:14:21 scivo sshd[10972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:14:23 scivo sshd[10972]: Failed password for r.r from 139.59.20.249 port 36510 ssh2 Jun 8 12:14:23 scivo sshd[10972]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:17:11 scivo sshd[11153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:17:13 scivo sshd[11153]: Failed password for r.r from 139.59.20.249 port 47062 ssh2 Jun 8 12:17:13 scivo sshd[11153]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:19:57 scivo sshd[11265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:19:59 scivo sshd[11265]: Failed password for r.r from 139.59.20.249 port 57210 ssh2 Jun 8 12:19:59 scivo sshd[11265]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:22:38 scivo........ -------------------------------	2020-06-08 17:23:26
139.59.20.197	attackbotsspam	Jun 3 15:02:21 journals sshd\[63600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root Jun 3 15:02:23 journals sshd\[63600\]: Failed password for root from 139.59.20.197 port 58006 ssh2 Jun 3 15:05:01 journals sshd\[63951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root Jun 3 15:05:04 journals sshd\[63951\]: Failed password for root from 139.59.20.197 port 40132 ssh2 Jun 3 15:10:22 journals sshd\[2215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root ...	2020-06-04 00:41:16
139.59.209.97	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-04-05 07:19:09
139.59.20.94	attackspambots	Jan 27 03:53:49 eddieflores sshd\[18195\]: Invalid user 6 from 139.59.20.94 Jan 27 03:53:49 eddieflores sshd\[18195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.94 Jan 27 03:53:51 eddieflores sshd\[18195\]: Failed password for invalid user 6 from 139.59.20.94 port 34026 ssh2 Jan 27 03:57:34 eddieflores sshd\[18653\]: Invalid user afe from 139.59.20.94 Jan 27 03:57:34 eddieflores sshd\[18653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.94	2020-01-27 22:06:15
139.59.20.248	attackspam	Dec 29 13:12:44 MK-Soft-Root1 sshd[27214]: Failed password for root from 139.59.20.248 port 46414 ssh2 ...	2019-12-29 21:56:08
139.59.20.248	attackspam	Dec 28 08:50:00 minden010 sshd[20500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Dec 28 08:50:02 minden010 sshd[20500]: Failed password for invalid user Milja from 139.59.20.248 port 60054 ssh2 Dec 28 08:53:34 minden010 sshd[21702]: Failed password for root from 139.59.20.248 port 34900 ssh2 ...	2019-12-28 21:30:49
139.59.20.248	attack	Dec 13 05:49:47 icinga sshd[26818]: Failed password for mysql from 139.59.20.248 port 50904 ssh2 Dec 13 05:56:09 icinga sshd[27470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 ...	2019-12-13 13:14:31
139.59.20.248	attackbotsspam	Nov 20 05:33:41 hanapaa sshd\[30428\]: Invalid user server from 139.59.20.248 Nov 20 05:33:41 hanapaa sshd\[30428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Nov 20 05:33:43 hanapaa sshd\[30428\]: Failed password for invalid user server from 139.59.20.248 port 35344 ssh2 Nov 20 05:41:27 hanapaa sshd\[31140\]: Invalid user tool from 139.59.20.248 Nov 20 05:41:27 hanapaa sshd\[31140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248	2019-11-21 01:45:32
139.59.20.248	attackbotsspam	Nov 19 05:10:45 game-panel sshd[8532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Nov 19 05:10:47 game-panel sshd[8532]: Failed password for invalid user cluett from 139.59.20.248 port 54658 ssh2 Nov 19 05:14:57 game-panel sshd[8673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248	2019-11-19 13:23:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.20.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65350
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.20.246.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 04:13:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 246.20.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.20.59.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
124.239.216.233	attackbotsspam	$f2bV_matches	2020-02-15 03:07:42
179.25.131.160	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:12:01
184.105.139.70	attackspam	TCP port 8080: Scan and connection	2020-02-15 03:03:22
179.24.152.17	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:19:21
111.231.81.129	attackbots	Automatic report - Banned IP Access	2020-02-15 03:04:23
85.104.165.94	attack	20/2/14@08:46:55: FAIL: IoT-Telnet address from=85.104.165.94 ...	2020-02-15 03:20:38
184.105.139.72	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 02:58:47
51.15.107.220	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-02-15 02:55:35
34.66.28.207	attack	Feb 14 13:46:53 marvibiene sshd[2674]: Invalid user byu from 34.66.28.207 port 42204 Feb 14 13:46:53 marvibiene sshd[2674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.66.28.207 Feb 14 13:46:53 marvibiene sshd[2674]: Invalid user byu from 34.66.28.207 port 42204 Feb 14 13:46:55 marvibiene sshd[2674]: Failed password for invalid user byu from 34.66.28.207 port 42204 ssh2 ...	2020-02-15 03:05:01
184.105.139.95	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-02-15 02:40:56
162.243.134.244	attackbotsspam	trying to access non-authorized port	2020-02-15 02:54:39
184.105.139.119	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:13:48
202.166.217.108	attackbotsspam	1581688021 - 02/14/2020 14:47:01 Host: 202.166.217.108/202.166.217.108 Port: 445 TCP Blocked	2020-02-15 03:14:06
179.168.48.44	attackbots	SSH/22 MH Probe, BF, Hack -	2020-02-15 03:03:41
112.202.6.99	attack	1581688041 - 02/14/2020 14:47:21 Host: 112.202.6.99/112.202.6.99 Port: 445 TCP Blocked	2020-02-15 03:02:47

最近上报的IP列表

170.78.140.218	62.177.241.136	146.145.114.62	181.225.11.250
122.160.30.17	144.91.99.244	107.172.132.73	45.152.33.169
222.252.114.84	87.251.174.200	87.251.174.191	193.154.250.62
13.82.40.209	87.251.174.190	31.23.10.140	123.185.78.31
186.3.131.61	93.99.104.101	28.227.141.210	87.251.174.193