139.59.22.106 - IPInfo

基本信息:

城市(city): Bengaluru

省份(region): Karnataka

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 16 18:18:36 firewall sshd[32170]: Failed password for invalid user test from 139.59.22.106 port 44906 ssh2 Jan 16 18:20:53 firewall sshd[32261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.106 user=root Jan 16 18:20:55 firewall sshd[32261]: Failed password for root from 139.59.22.106 port 56406 ssh2 ...	2020-01-17 05:30:21

类型

评论内容

时间

attack

Jan 16 18:18:36 firewall sshd[32170]: Failed password for invalid user test from 139.59.22.106 port 44906 ssh2
Jan 16 18:20:53 firewall sshd[32261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.106  user=root
Jan 16 18:20:55 firewall sshd[32261]: Failed password for root from 139.59.22.106 port 56406 ssh2
...

2020-01-17 05:30:21

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.228.154	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-08 05:13:06
139.59.228.154	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-07 21:36:43
139.59.228.154	attack	20 attempts against mh-ssh on cloud	2020-10-07 13:23:50
139.59.22.2	attackbotsspam	Web App Attack	2020-08-08 07:51:29
139.59.228.226	attackspam	WordPress brute force	2020-06-17 08:41:58
139.59.22.169	attack	Mar 6 19:57:23 hcbbdb sshd\[24189\]: Invalid user tss from 139.59.22.169 Mar 6 19:57:23 hcbbdb sshd\[24189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 Mar 6 19:57:25 hcbbdb sshd\[24189\]: Failed password for invalid user tss from 139.59.22.169 port 42788 ssh2 Mar 6 20:01:48 hcbbdb sshd\[24708\]: Invalid user nicolas from 139.59.22.169 Mar 6 20:01:48 hcbbdb sshd\[24708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169	2020-03-07 04:39:55
139.59.22.169	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-02-25 20:21:21
139.59.22.169	attackbots	Feb 11 08:04:45 mout sshd[30769]: Invalid user rat from 139.59.22.169 port 53612	2020-02-11 17:08:10
139.59.224.32	attackbotsspam	$f2bV_matches	2020-02-04 23:04:45
139.59.22.169	attackspambots	Unauthorized connection attempt detected from IP address 139.59.22.169 to port 2220 [J]	2020-02-04 21:04:17
139.59.22.169	attackspambots	Jan 10 22:09:44 mail sshd[15644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 user=root Jan 10 22:09:45 mail sshd[15644]: Failed password for root from 139.59.22.169 port 46936 ssh2 ...	2020-01-11 07:22:19
139.59.22.169	attack	$f2bV_matches	2020-01-08 05:45:34
139.59.22.169	attackspam	Unauthorized connection attempt detected from IP address 139.59.22.169 to port 2220 [J]	2020-01-06 08:50:57
139.59.22.169	attack	Automatic report - Banned IP Access	2020-01-02 01:46:01
139.59.22.169	attackspambots	Dec 21 13:25:55 gw1 sshd[19962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 Dec 21 13:25:56 gw1 sshd[19962]: Failed password for invalid user class2005 from 139.59.22.169 port 42452 ssh2 ...	2019-12-21 16:43:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.22.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.22.106.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011601 1800 900 604800 86400

;; Query time: 849 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 05:30:18 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 106.22.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.22.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
154.66.196.32	attackbots	Sep 15 07:14:01 lnxded64 sshd[6476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.196.32 Sep 15 07:14:01 lnxded64 sshd[6476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.196.32	2019-09-15 16:36:21
218.86.123.242	attackspambots	Sep 15 04:04:17 ny01 sshd[20698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 Sep 15 04:04:19 ny01 sshd[20698]: Failed password for invalid user devuser from 218.86.123.242 port 64218 ssh2 Sep 15 04:09:15 ny01 sshd[21533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242	2019-09-15 16:30:37
178.62.181.74	attackspam	Triggered by Fail2Ban at Vostok web server	2019-09-15 16:49:52
176.236.25.148	attackbots	Telnetd brute force attack detected by fail2ban	2019-09-15 17:10:02
206.189.108.59	attack	Invalid user gast from 206.189.108.59 port 58398	2019-09-15 16:47:46
108.58.30.123	attackbotsspam	Sep 15 10:30:38 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2Sep 15 10:30:40 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2Sep 15 10:30:43 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2Sep 15 10:30:44 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2Sep 15 10:30:47 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2Sep 15 10:30:49 rotator sshd\[7841\]: Failed password for root from 108.58.30.123 port 44735 ssh2 ...	2019-09-15 16:57:37
167.99.4.112	attack	Sep 15 00:07:56 aat-srv002 sshd[6043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.4.112 Sep 15 00:07:59 aat-srv002 sshd[6043]: Failed password for invalid user singha from 167.99.4.112 port 56216 ssh2 Sep 15 00:12:02 aat-srv002 sshd[6489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.4.112 Sep 15 00:12:04 aat-srv002 sshd[6489]: Failed password for invalid user do from 167.99.4.112 port 42616 ssh2 ...	2019-09-15 16:52:20
5.39.82.197	attack	Sep 14 22:00:58 hiderm sshd\[2586\]: Invalid user yagya from 5.39.82.197 Sep 14 22:00:58 hiderm sshd\[2586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3270404.ip-5-39-82.eu Sep 14 22:01:01 hiderm sshd\[2586\]: Failed password for invalid user yagya from 5.39.82.197 port 34356 ssh2 Sep 14 22:10:24 hiderm sshd\[3462\]: Invalid user interalt from 5.39.82.197 Sep 14 22:10:24 hiderm sshd\[3462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3270404.ip-5-39-82.eu	2019-09-15 17:12:19
78.148.242.111	attackspambots	GB - 1H : (44) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN13285 IP : 78.148.242.111 CIDR : 78.148.0.0/14 PREFIX COUNT : 35 UNIQUE IP COUNT : 3565824 WYKRYTE ATAKI Z ASN13285 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 5 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-15 16:56:35
185.46.14.124	attackspambots	Automatic report - Port Scan Attack	2019-09-15 16:20:09
144.76.7.79	attackspambots	20 attempts against mh-misbehave-ban on comet.magehost.pro	2019-09-15 17:10:50
51.68.227.49	attack	Sep 15 06:20:24 localhost sshd\[18992\]: Invalid user boot from 51.68.227.49 port 49518 Sep 15 06:20:24 localhost sshd\[18992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.227.49 Sep 15 06:20:26 localhost sshd\[18992\]: Failed password for invalid user boot from 51.68.227.49 port 49518 ssh2 ...	2019-09-15 16:18:41
218.60.41.227	attackspambots	Sep 15 04:03:57 ny01 sshd[20642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.227 Sep 15 04:03:59 ny01 sshd[20642]: Failed password for invalid user pavel from 218.60.41.227 port 57728 ssh2 Sep 15 04:08:42 ny01 sshd[21444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.227	2019-09-15 16:42:46
103.110.91.170	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-15 00:53:27,468 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.110.91.170)	2019-09-15 16:51:19
149.56.252.117	attack	Sep 15 11:56:59 server sshd\[22094\]: Invalid user blake from 149.56.252.117 port 42542 Sep 15 11:56:59 server sshd\[22094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.252.117 Sep 15 11:57:01 server sshd\[22094\]: Failed password for invalid user blake from 149.56.252.117 port 42542 ssh2 Sep 15 12:00:47 server sshd\[7814\]: User root from 149.56.252.117 not allowed because listed in DenyUsers Sep 15 12:00:47 server sshd\[7814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.252.117 user=root	2019-09-15 17:07:27

最近上报的IP列表

125.62.96.118	119.116.136.43	171.245.89.17	118.39.212.170
89.135.127.193	105.136.100.232	178.208.241.152	17.219.199.195
188.69.171.78	193.221.194.24	183.235.191.78	185.82.220.158
22.98.166.168	126.158.21.21	26.99.22.22	148.217.233.11
106.18.157.177	146.251.7.184	86.64.6.181	98.86.102.64