139.59.249.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Dictionary attack on login resource.	2019-07-22 22:18:11

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.249.83	attack	(sshd) Failed SSH login from 139.59.249.83 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 13:57:56 jbs1 sshd[21873]: Invalid user tibor from 139.59.249.83 Oct 13 13:57:56 jbs1 sshd[21873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 Oct 13 13:57:58 jbs1 sshd[21873]: Failed password for invalid user tibor from 139.59.249.83 port 58225 ssh2 Oct 13 14:10:05 jbs1 sshd[26846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 user=root Oct 13 14:10:06 jbs1 sshd[26846]: Failed password for root from 139.59.249.83 port 8758 ssh2	2020-10-14 03:16:32
139.59.249.83	attackspambots	2020-10-12 UTC: (42x) - allan,amanda,anikei,buser,ek,ftpuser2,hadoop(2x),harrison,jean,klement,nagios,netfonts,postgres,prueba(2x),public,root(17x),tkomatsu,ubuntu,web,workstation,xpertin,yosinski,yvonne,zlin	2020-10-13 18:34:11
139.59.249.83	attackspambots	2020-10-12T08:42:23.648388hostname sshd[47670]: Failed password for root from 139.59.249.83 port 22774 ssh2 ...	2020-10-13 02:39:04
139.59.249.83	attack	no	2020-10-12 18:04:34
139.59.249.16	attack	Brute Force	2020-10-10 06:33:59
139.59.249.16	attackspambots	Brute Force	2020-10-09 22:45:33
139.59.249.16	attack	Brute Force	2020-10-09 14:36:45
139.59.249.16	attack	Automatic report - XMLRPC Attack	2020-07-23 02:34:38
139.59.249.255	attack	Invalid user fred from 139.59.249.255 port 34734	2020-06-21 18:20:12
139.59.249.255	attack	Jun 17 07:52:20 mail sshd[21757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 Jun 17 07:52:22 mail sshd[21757]: Failed password for invalid user admin from 139.59.249.255 port 20097 ssh2 ...	2020-06-17 19:58:49
139.59.249.255	attackbots	228. On Jun 15 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 139.59.249.255.	2020-06-16 06:57:54
139.59.249.255	attackbotsspam	Jun 11 10:59:07 webhost01 sshd[5769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 Jun 11 10:59:09 webhost01 sshd[5769]: Failed password for invalid user vl from 139.59.249.255 port 26806 ssh2 ...	2020-06-11 12:05:40
139.59.249.255	attackbots	$f2bV_matches	2020-06-02 15:54:16
139.59.249.255	attackbots	May 28 09:48:18 eventyay sshd[32444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 May 28 09:48:20 eventyay sshd[32444]: Failed password for invalid user stouffer from 139.59.249.255 port 20999 ssh2 May 28 09:52:37 eventyay sshd[32618]: Failed password for root from 139.59.249.255 port 28440 ssh2 ...	2020-05-28 15:54:50
139.59.249.255	attack	May 27 15:16:09 h2829583 sshd[12618]: Failed password for root from 139.59.249.255 port 20029 ssh2	2020-05-27 23:18:39

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.249.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56981
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.249.157.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061401 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 15 03:58:19 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 157.249.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 157.249.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.36.91.156	attackspam	May 26 19:26:15 www sshd\[152638\]: Invalid user openvpn from 212.36.91.156 May 26 19:26:15 www sshd\[152638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.36.91.156 May 26 19:26:17 www sshd\[152638\]: Failed password for invalid user openvpn from 212.36.91.156 port 59464 ssh2 ...	2020-05-27 04:24:52
107.170.204.148	attack	TCP (SYN) 107.170.204.148:40059 -> port 12617, len 44	2020-05-27 04:22:03
51.77.200.101	attack	May 26 16:56:16 vps46666688 sshd[2427]: Failed password for root from 51.77.200.101 port 34602 ssh2 ...	2020-05-27 04:42:11
196.52.43.95	attackbotsspam	TCP (SYN) 196.52.43.95:49190 -> port 52311, len 44	2020-05-27 04:29:03
161.35.109.11	attackspam	May 26 20:48:31 vmd48417 sshd[9958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.109.11	2020-05-27 04:29:33
36.112.136.33	attackbotsspam	SSH Brute Force	2020-05-27 04:14:01
2.98.222.14	attackspam	$f2bV_matches	2020-05-27 04:34:17
176.31.182.79	attack	May 26 19:36:41 ip-172-31-61-156 sshd[14685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.79 user=root May 26 19:36:43 ip-172-31-61-156 sshd[14685]: Failed password for root from 176.31.182.79 port 51222 ssh2 May 26 19:36:41 ip-172-31-61-156 sshd[14685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.79 user=root May 26 19:36:43 ip-172-31-61-156 sshd[14685]: Failed password for root from 176.31.182.79 port 51222 ssh2 May 26 19:39:16 ip-172-31-61-156 sshd[14927]: Invalid user half from 176.31.182.79 ...	2020-05-27 04:33:16
200.116.105.213	attackspambots	Brute-force attempt banned	2020-05-27 04:43:47
112.33.40.113	attackbotsspam	(pop3d) Failed POP3 login from 112.33.40.113 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 26 20:21:29 ir1 dovecot[2885757]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=112.33.40.113, lip=5.63.12.44, session=<+2qBEY+mtpNwIShx>	2020-05-27 04:18:18
182.150.57.34	attackspambots	Failed password for invalid user blake from 182.150.57.34 port 34080 ssh2	2020-05-27 04:39:06
95.160.169.83	attackspam	2020-05-26T18:43:23.573988abusebot-7.cloudsearch.cf sshd[29980]: Invalid user sslwrap from 95.160.169.83 port 50712 2020-05-26T18:43:23.581265abusebot-7.cloudsearch.cf sshd[29980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=095160169083.nowydwormazowiecki.vectranet.pl 2020-05-26T18:43:23.573988abusebot-7.cloudsearch.cf sshd[29980]: Invalid user sslwrap from 95.160.169.83 port 50712 2020-05-26T18:43:25.237508abusebot-7.cloudsearch.cf sshd[29980]: Failed password for invalid user sslwrap from 95.160.169.83 port 50712 ssh2 2020-05-26T18:46:49.284478abusebot-7.cloudsearch.cf sshd[30345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=095160169083.nowydwormazowiecki.vectranet.pl user=root 2020-05-26T18:46:51.552965abusebot-7.cloudsearch.cf sshd[30345]: Failed password for root from 95.160.169.83 port 56656 ssh2 2020-05-26T18:50:12.919499abusebot-7.cloudsearch.cf sshd[30520]: Invalid user clamav from 95.16 ...	2020-05-27 04:47:36
198.108.66.32	attackbots	Unauthorized connection attempt detected from IP address 198.108.66.32 to port 23	2020-05-27 04:44:03
139.59.13.53	attackspambots	SSH fail RA	2020-05-27 04:35:36
203.195.193.251	attackbots	26.05.2020 22:11:25 - Wordpress fail Detected by ELinOX-ALM	2020-05-27 04:38:44

最近上报的IP列表

178.78.105.251	185.81.97.88	185.86.164.99	165.227.64.223
167.99.64.54	185.234.218.69	198.71.236.73	140.82.35.43
103.230.155.154	236.241.118.90	103.212.128.152	81.71.163.26
80.211.238.5	25.188.234.3	64.234.136.224	46.93.148.253
182.164.170.38	210.86.98.144	79.56.166.86	241.255.230.246