139.59.20.246 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Automatic report - Banned IP Access	2020-05-23 03:49:26
attackbotsspam	AbusiveCrawling	2020-05-20 04:13:29

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.20.176	attackbotsspam	Automatic report - Banned IP Access	2020-10-06 05:49:46
139.59.20.176	attackspam	Automatic report - Banned IP Access	2020-10-05 21:54:43
139.59.20.176	attackbots	Automatic report - Banned IP Access	2020-10-05 13:48:31
139.59.208.39	attackbotsspam	Port scan denied	2020-09-13 20:07:50
139.59.208.39	attack	TCP (SYN) 139.59.208.39:49233 -> port 80, len 40	2020-09-13 12:00:38
139.59.208.39	attackbotsspam	TCP (SYN) 139.59.208.39:49233 -> port 80, len 40	2020-09-13 03:49:55
139.59.20.249	attackbots	Jun 8 12:14:21 scivo sshd[10972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:14:23 scivo sshd[10972]: Failed password for r.r from 139.59.20.249 port 36510 ssh2 Jun 8 12:14:23 scivo sshd[10972]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:17:11 scivo sshd[11153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:17:13 scivo sshd[11153]: Failed password for r.r from 139.59.20.249 port 47062 ssh2 Jun 8 12:17:13 scivo sshd[11153]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:19:57 scivo sshd[11265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.249 user=r.r Jun 8 12:19:59 scivo sshd[11265]: Failed password for r.r from 139.59.20.249 port 57210 ssh2 Jun 8 12:19:59 scivo sshd[11265]: Connection closed by 139.59.20.249 [preauth] Jun 8 12:22:38 scivo........ -------------------------------	2020-06-08 17:23:26
139.59.20.197	attackbotsspam	Jun 3 15:02:21 journals sshd\[63600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root Jun 3 15:02:23 journals sshd\[63600\]: Failed password for root from 139.59.20.197 port 58006 ssh2 Jun 3 15:05:01 journals sshd\[63951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root Jun 3 15:05:04 journals sshd\[63951\]: Failed password for root from 139.59.20.197 port 40132 ssh2 Jun 3 15:10:22 journals sshd\[2215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.197 user=root ...	2020-06-04 00:41:16
139.59.209.97	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-04-05 07:19:09
139.59.20.94	attackspambots	Jan 27 03:53:49 eddieflores sshd\[18195\]: Invalid user 6 from 139.59.20.94 Jan 27 03:53:49 eddieflores sshd\[18195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.94 Jan 27 03:53:51 eddieflores sshd\[18195\]: Failed password for invalid user 6 from 139.59.20.94 port 34026 ssh2 Jan 27 03:57:34 eddieflores sshd\[18653\]: Invalid user afe from 139.59.20.94 Jan 27 03:57:34 eddieflores sshd\[18653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.94	2020-01-27 22:06:15
139.59.20.248	attackspam	Dec 29 13:12:44 MK-Soft-Root1 sshd[27214]: Failed password for root from 139.59.20.248 port 46414 ssh2 ...	2019-12-29 21:56:08
139.59.20.248	attackspam	Dec 28 08:50:00 minden010 sshd[20500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Dec 28 08:50:02 minden010 sshd[20500]: Failed password for invalid user Milja from 139.59.20.248 port 60054 ssh2 Dec 28 08:53:34 minden010 sshd[21702]: Failed password for root from 139.59.20.248 port 34900 ssh2 ...	2019-12-28 21:30:49
139.59.20.248	attack	Dec 13 05:49:47 icinga sshd[26818]: Failed password for mysql from 139.59.20.248 port 50904 ssh2 Dec 13 05:56:09 icinga sshd[27470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 ...	2019-12-13 13:14:31
139.59.20.248	attackbotsspam	Nov 20 05:33:41 hanapaa sshd\[30428\]: Invalid user server from 139.59.20.248 Nov 20 05:33:41 hanapaa sshd\[30428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Nov 20 05:33:43 hanapaa sshd\[30428\]: Failed password for invalid user server from 139.59.20.248 port 35344 ssh2 Nov 20 05:41:27 hanapaa sshd\[31140\]: Invalid user tool from 139.59.20.248 Nov 20 05:41:27 hanapaa sshd\[31140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248	2019-11-21 01:45:32
139.59.20.248	attackbotsspam	Nov 19 05:10:45 game-panel sshd[8532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Nov 19 05:10:47 game-panel sshd[8532]: Failed password for invalid user cluett from 139.59.20.248 port 54658 ssh2 Nov 19 05:14:57 game-panel sshd[8673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248	2019-11-19 13:23:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.20.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65350
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.20.246.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 04:13:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 246.20.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.20.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.245.108.109	attack	2020-09-15T17:14:26.120797shield sshd\[21497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.108.109 user=root 2020-09-15T17:14:28.198875shield sshd\[21497\]: Failed password for root from 157.245.108.109 port 60158 ssh2 2020-09-15T17:19:06.989533shield sshd\[22993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.108.109 user=root 2020-09-15T17:19:09.174021shield sshd\[22993\]: Failed password for root from 157.245.108.109 port 43934 ssh2 2020-09-15T17:23:49.582368shield sshd\[24792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.108.109 user=root	2020-09-16 05:43:21
121.241.244.92	attackspambots	SSH Invalid Login	2020-09-16 05:46:03
112.85.42.89	attackbotsspam	Sep 16 03:35:00 dhoomketu sshd[3124700]: Failed password for root from 112.85.42.89 port 33938 ssh2 Sep 16 03:35:02 dhoomketu sshd[3124700]: Failed password for root from 112.85.42.89 port 33938 ssh2 Sep 16 03:35:06 dhoomketu sshd[3124700]: Failed password for root from 112.85.42.89 port 33938 ssh2 Sep 16 03:36:10 dhoomketu sshd[3124726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.89 user=root Sep 16 03:36:11 dhoomketu sshd[3124726]: Failed password for root from 112.85.42.89 port 11384 ssh2 ...	2020-09-16 06:08:22
190.85.54.158	attack	Sep 15 21:54:02 neko-world sshd[16258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.54.158 Sep 15 21:54:04 neko-world sshd[16258]: Failed password for invalid user deluge from 190.85.54.158 port 57131 ssh2	2020-09-16 05:40:08
79.124.62.55	attackspam	TCP (SYN) 79.124.62.55:49889 -> port 8080, len 40	2020-09-16 06:04:06
45.173.4.82	attackspambots	Unauthorized connection attempt from IP address 45.173.4.82 on Port 445(SMB)	2020-09-16 05:50:12
103.98.63.72	attack	Unauthorized connection attempt from IP address 103.98.63.72 on Port 445(SMB)	2020-09-16 05:52:59
219.239.47.66	attack	Sep 15 20:02:03 router sshd[9118]: Failed password for root from 219.239.47.66 port 55602 ssh2 Sep 15 20:05:36 router sshd[9164]: Failed password for root from 219.239.47.66 port 45784 ssh2 ...	2020-09-16 06:01:19
119.123.56.12	attackbots	Brute force attempt	2020-09-16 05:34:08
116.72.27.215	attackbotsspam	GPON Home Routers Remote Code Execution Vulnerability	2020-09-16 05:36:49
60.208.131.178	attackspambots	DATE:2020-09-15 18:59:03, IP:60.208.131.178, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-16 05:42:32
114.35.59.144	attackspambots	Auto Detect Rule! proto TCP (SYN), 114.35.59.144:3239->gjan.info:23, len 40	2020-09-16 06:01:06
60.243.124.231	attackbots	Auto Detect Rule! proto TCP (SYN), 60.243.124.231:5304->gjan.info:23, len 40	2020-09-16 05:39:08
142.4.213.28	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-16 05:38:24
103.78.141.187	attackbots	TCP (SYN) 103.78.141.187:18459 -> port 23, len 40	2020-09-16 05:53:31

最近上报的IP列表

170.78.140.218	62.177.241.136	146.145.114.62	181.225.11.250
122.160.30.17	144.91.99.244	107.172.132.73	45.152.33.169
222.252.114.84	87.251.174.200	87.251.174.191	193.154.250.62
13.82.40.209	87.251.174.190	31.23.10.140	123.185.78.31
186.3.131.61	93.99.104.101	28.227.141.210	87.251.174.193