城市(city): unknown
省份(region): unknown
国家(country): Singapore
运营商(isp): Digital Ocean Inc.
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspambots | Invalid user tez from 139.59.244.225 port 53446 |
2020-04-05 06:10:14 |
| attack | Mar 27 22:18:26 vpn01 sshd[19971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Mar 27 22:18:28 vpn01 sshd[19971]: Failed password for invalid user fjv from 139.59.244.225 port 46180 ssh2 ... |
2020-03-28 06:01:15 |
| attack | <6 unauthorized SSH connections |
2020-03-25 16:34:28 |
| attackspambots | 2020-03-24T18:56:51.065293shield sshd\[9138\]: Invalid user leslee from 139.59.244.225 port 38324 2020-03-24T18:56:51.072500shield sshd\[9138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 2020-03-24T18:56:52.424881shield sshd\[9138\]: Failed password for invalid user leslee from 139.59.244.225 port 38324 ssh2 2020-03-24T19:00:27.361535shield sshd\[10044\]: Invalid user himanshu from 139.59.244.225 port 45742 2020-03-24T19:00:27.368723shield sshd\[10044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 |
2020-03-25 03:16:57 |
| attackspam | Mar 24 16:12:12 ns392434 sshd[31567]: Invalid user support from 139.59.244.225 port 41934 Mar 24 16:12:12 ns392434 sshd[31567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Mar 24 16:12:12 ns392434 sshd[31567]: Invalid user support from 139.59.244.225 port 41934 Mar 24 16:12:13 ns392434 sshd[31567]: Failed password for invalid user support from 139.59.244.225 port 41934 ssh2 Mar 24 16:13:33 ns392434 sshd[31614]: Invalid user charles from 139.59.244.225 port 60186 Mar 24 16:13:33 ns392434 sshd[31614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Mar 24 16:13:33 ns392434 sshd[31614]: Invalid user charles from 139.59.244.225 port 60186 Mar 24 16:13:35 ns392434 sshd[31614]: Failed password for invalid user charles from 139.59.244.225 port 60186 ssh2 Mar 24 16:14:09 ns392434 sshd[31625]: Invalid user agatha from 139.59.244.225 port 40730 |
2020-03-25 00:28:56 |
| attack | Invalid user kompozit from 139.59.244.225 port 35610 |
2020-03-20 15:06:48 |
| attackspam | Invalid user user from 139.59.244.225 port 33094 |
2020-03-12 08:46:47 |
| attackbotsspam | $f2bV_matches |
2020-03-10 03:28:57 |
| attackbotsspam | Mar 4 18:59:03 NPSTNNYC01T sshd[1219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Mar 4 18:59:05 NPSTNNYC01T sshd[1219]: Failed password for invalid user anonymous from 139.59.244.225 port 38718 ssh2 Mar 4 19:07:31 NPSTNNYC01T sshd[2798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 ... |
2020-03-05 08:17:17 |
| attack | 2020-02-22T03:22:21.859311xentho-1 sshd[141787]: Invalid user nmrih from 139.59.244.225 port 48766 2020-02-22T03:22:23.868149xentho-1 sshd[141787]: Failed password for invalid user nmrih from 139.59.244.225 port 48766 ssh2 2020-02-22T03:24:45.831637xentho-1 sshd[141816]: Invalid user at from 139.59.244.225 port 40430 2020-02-22T03:24:45.841975xentho-1 sshd[141816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 2020-02-22T03:24:45.831637xentho-1 sshd[141816]: Invalid user at from 139.59.244.225 port 40430 2020-02-22T03:24:47.946581xentho-1 sshd[141816]: Failed password for invalid user at from 139.59.244.225 port 40430 ssh2 2020-02-22T03:27:11.994679xentho-1 sshd[141851]: Invalid user hexiujing from 139.59.244.225 port 60326 2020-02-22T03:27:12.001669xentho-1 sshd[141851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 2020-02-22T03:27:11.994679xentho-1 sshd[141851]: Invalid ... |
2020-02-22 17:03:59 |
| attackbots | $f2bV_matches |
2020-02-14 03:37:21 |
| attackbotsspam | Unauthorized connection attempt detected from IP address 139.59.244.225 to port 2220 [J] |
2020-01-31 09:50:12 |
| attack | frenzy |
2020-01-10 21:19:29 |
| attackspambots | Invalid user elset from 139.59.244.225 port 45754 |
2020-01-01 08:42:51 |
| attackspambots | Dec 26 17:22:54 odroid64 sshd\[28256\]: Invalid user sombrero from 139.59.244.225 Dec 26 17:22:54 odroid64 sshd\[28256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 ... |
2019-12-27 04:21:06 |
| attack | Dec 20 16:49:31 microserver sshd[37727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 user=sync Dec 20 16:49:33 microserver sshd[37727]: Failed password for sync from 139.59.244.225 port 52358 ssh2 Dec 20 16:56:01 microserver sshd[39022]: Invalid user jillian from 139.59.244.225 port 58900 Dec 20 16:56:01 microserver sshd[39022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 20 16:56:03 microserver sshd[39022]: Failed password for invalid user jillian from 139.59.244.225 port 58900 ssh2 Dec 20 17:08:59 microserver sshd[40835]: Invalid user jolicia from 139.59.244.225 port 44196 Dec 20 17:08:59 microserver sshd[40835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 20 17:09:01 microserver sshd[40835]: Failed password for invalid user jolicia from 139.59.244.225 port 44196 ssh2 Dec 20 17:15:35 microserver sshd[42078]: Invalid user lhj |
2019-12-22 18:17:51 |
| attack | SSH Brute Force |
2019-12-14 06:06:56 |
| attackbots | Dec 9 04:34:29 linuxvps sshd\[61410\]: Invalid user longhair from 139.59.244.225 Dec 9 04:34:29 linuxvps sshd\[61410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 9 04:34:30 linuxvps sshd\[61410\]: Failed password for invalid user longhair from 139.59.244.225 port 42332 ssh2 Dec 9 04:41:06 linuxvps sshd\[660\]: Invalid user poulat from 139.59.244.225 Dec 9 04:41:06 linuxvps sshd\[660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 |
2019-12-09 17:54:26 |
| attackbots | Dec 5 05:31:02 dallas01 sshd[14505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 5 05:31:04 dallas01 sshd[14505]: Failed password for invalid user guest from 139.59.244.225 port 60240 ssh2 Dec 5 05:38:07 dallas01 sshd[15820]: Failed password for root from 139.59.244.225 port 48978 ssh2 |
2019-12-05 19:49:11 |
| attackspam | Dec 4 07:23:57 legacy sshd[2799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 4 07:23:59 legacy sshd[2799]: Failed password for invalid user named from 139.59.244.225 port 46846 ssh2 Dec 4 07:30:33 legacy sshd[3164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 ... |
2019-12-04 14:44:09 |
| attackbotsspam | Dec 2 22:28:55 sbg01 sshd[12153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Dec 2 22:28:57 sbg01 sshd[12153]: Failed password for invalid user jupiter from 139.59.244.225 port 54316 ssh2 Dec 2 22:35:03 sbg01 sshd[12278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 |
2019-12-03 06:15:54 |
| attackspam | Lines containing failures of 139.59.244.225 Nov 28 18:30:46 shared12 sshd[19107]: Invalid user doti from 139.59.244.225 port 55798 Nov 28 18:30:46 shared12 sshd[19107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Nov 28 18:30:48 shared12 sshd[19107]: Failed password for invalid user doti from 139.59.244.225 port 55798 ssh2 Nov 28 18:30:48 shared12 sshd[19107]: Received disconnect from 139.59.244.225 port 55798:11: Bye Bye [preauth] Nov 28 18:30:48 shared12 sshd[19107]: Disconnected from invalid user doti 139.59.244.225 port 55798 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.59.244.225 |
2019-11-30 21:05:21 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.244.225
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60422
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.244.225. IN A
;; AUTHORITY SECTION:
. 442 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019113000 1800 900 604800 86400
;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 21:05:11 CST 2019
;; MSG SIZE rcvd: 118Host 225.244.59.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 225.244.59.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.175 | attack | 2020-05-06T22:33:13.140649finland sshd[54888]: Unable to negotiate with 218.92.0.175 port 48685: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-05-07T09:41:49.212494finland sshd[57560]: Connection from 218.92.0.175 port 2296 on 95.217.116.180 port 22 rdomain "" 2020-05-07T09:41:50.434222finland sshd[57560]: Unable to negotiate with 218.92.0.175 port 2296: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-05-07T14:22:16.770229finland sshd[57934]: Connection from 218.92.0.175 port 47947 on 95.217.116.180 port 22 rdomain "" 2020-05-07T14:22:18.181658finland sshd[57934]: Connection reset by 218.92.0.175 port 47947 [preauth] 2020-05-08T05:17:01.548050finland sshd[59926]: Connection from 218.92.0.175 port 45959 on 95.217.116.180 port 22 rdomain "" 2020-05-08T05:17:01.837128finla ... |
2020-05-09 22:12:16 |
| 218.204.17.44 | attackspam | May 8 22:08:23 pve1 sshd[1692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.204.17.44 May 8 22:08:25 pve1 sshd[1692]: Failed password for invalid user meng from 218.204.17.44 port 57066 ssh2 ... |
2020-05-09 22:31:55 |
| 217.61.20.248 | attack | May 9 04:03:52 mintao sshd\[20569\]: Invalid user user from 217.61.20.248\ May 9 04:04:08 mintao sshd\[20571\]: Invalid user admin from 217.61.20.248\ |
2020-05-09 21:59:31 |
| 179.61.236.174 | attackbots | email spam |
2020-05-09 21:52:38 |
| 120.131.3.144 | attack | May 9 02:55:32 ns382633 sshd\[24543\]: Invalid user html from 120.131.3.144 port 10326 May 9 02:55:32 ns382633 sshd\[24543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.3.144 May 9 02:55:35 ns382633 sshd\[24543\]: Failed password for invalid user html from 120.131.3.144 port 10326 ssh2 May 9 03:03:40 ns382633 sshd\[25701\]: Invalid user note from 120.131.3.144 port 59586 May 9 03:03:40 ns382633 sshd\[25701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.3.144 |
2020-05-09 22:14:21 |
| 64.225.22.43 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 55 - port: 27755 proto: TCP cat: Misc Attack |
2020-05-09 22:32:57 |
| 91.234.62.30 | attackbotsspam | From CCTV User Interface Log ...::ffff:91.234.62.30 - - [08/May/2020:22:54:12 +0000] "POST /HNAP1/ HTTP/1.0" 501 188 ... |
2020-05-09 21:58:43 |
| 212.129.32.164 | attackspam | " " |
2020-05-09 21:48:16 |
| 138.99.135.186 | attackspambots | Unauthorized connection attempt detected from IP address 138.99.135.186 to port 445 |
2020-05-09 22:26:45 |
| 109.225.107.159 | attackbotsspam | Bruteforce detected by fail2ban |
2020-05-09 22:03:52 |
| 206.81.12.209 | attackspam | (sshd) Failed SSH login from 206.81.12.209 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 9 04:46:32 ubnt-55d23 sshd[4416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.12.209 user=root May 9 04:46:35 ubnt-55d23 sshd[4416]: Failed password for root from 206.81.12.209 port 38196 ssh2 |
2020-05-09 22:01:13 |
| 88.218.17.47 | attackbots | This IP is associated with RDP abuse. It was found in a paste by https://twitter.com/RdpSnitch - https://pastebin.com/GUpJ3eiL For more information, or to report interesting/incorrect findings, contact us - bot@tines.io |
2020-05-09 22:11:48 |
| 88.198.241.113 | attack | 44359/tcp [2020-05-08]1pkt |
2020-05-09 22:21:16 |
| 88.218.17.112 | attackspam | GR_serverius-mnt_<177>1588955876 [1:2403455:57130] ET CINS Active Threat Intelligence Poor Reputation IP UDP group 78 [Classification: Misc Attack] [Priority: 2]: |
2020-05-09 22:19:52 |
| 89.248.172.101 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 81 - port: 13373 proto: TCP cat: Misc Attack |
2020-05-09 21:55:00 |