139.59.38.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Mar 8 09:05:46 serwer sshd\[24255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root Mar 8 09:05:48 serwer sshd\[24255\]: Failed password for root from 139.59.38.169 port 34788 ssh2 Mar 8 09:07:39 serwer sshd\[24386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root ...	2020-03-08 16:55:29
attackbotsspam	20 attempts against mh-ssh on echoip	2020-02-25 22:17:40
attackbotsspam	Feb 4 22:03:45 srv-ubuntu-dev3 sshd[65031]: Invalid user pokemon from 139.59.38.169 Feb 4 22:03:45 srv-ubuntu-dev3 sshd[65031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Feb 4 22:03:45 srv-ubuntu-dev3 sshd[65031]: Invalid user pokemon from 139.59.38.169 Feb 4 22:03:47 srv-ubuntu-dev3 sshd[65031]: Failed password for invalid user pokemon from 139.59.38.169 port 44496 ssh2 Feb 4 22:06:53 srv-ubuntu-dev3 sshd[65314]: Invalid user char from 139.59.38.169 Feb 4 22:06:53 srv-ubuntu-dev3 sshd[65314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Feb 4 22:06:53 srv-ubuntu-dev3 sshd[65314]: Invalid user char from 139.59.38.169 Feb 4 22:06:55 srv-ubuntu-dev3 sshd[65314]: Failed password for invalid user char from 139.59.38.169 port 46396 ssh2 Feb 4 22:10:08 srv-ubuntu-dev3 sshd[65768]: Invalid user sadroudine from 139.59.38.169 ...	2020-02-05 07:42:20
attack	Feb 4 14:49:15 ks10 sshd[2414428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Feb 4 14:49:17 ks10 sshd[2414428]: Failed password for invalid user xademo from 139.59.38.169 port 43542 ssh2 ...	2020-02-05 02:41:57
attackbotsspam	Unauthorized connection attempt detected from IP address 139.59.38.169 to port 2220 [J]	2020-02-02 01:29:47
attack	$f2bV_matches	2020-01-12 00:00:20
attackbots	Unauthorized connection attempt detected from IP address 139.59.38.169 to port 2220 [J]	2020-01-05 20:33:24
attackspam	Dec 24 10:41:21 xeon sshd[13579]: Failed password for root from 139.59.38.169 port 56688 ssh2	2019-12-24 17:52:39
attack	2019-12-16T16:25:08.387927abusebot-6.cloudsearch.cf sshd\[312\]: Invalid user raph from 139.59.38.169 port 57264 2019-12-16T16:25:08.394890abusebot-6.cloudsearch.cf sshd\[312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 2019-12-16T16:25:10.761019abusebot-6.cloudsearch.cf sshd\[312\]: Failed password for invalid user raph from 139.59.38.169 port 57264 ssh2 2019-12-16T16:31:16.289994abusebot-6.cloudsearch.cf sshd\[356\]: Invalid user dor from 139.59.38.169 port 37244	2019-12-17 03:49:23
attackbotsspam	$f2bV_matches	2019-12-13 19:59:12
attackbots	2019-12-11T09:07:56.347114scmdmz1 sshd\[11356\]: Invalid user tedeschi from 139.59.38.169 port 57464 2019-12-11T09:07:56.349916scmdmz1 sshd\[11356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 2019-12-11T09:07:58.225479scmdmz1 sshd\[11356\]: Failed password for invalid user tedeschi from 139.59.38.169 port 57464 ssh2 ...	2019-12-11 19:38:16
attackbotsspam	Nov 30 07:41:25 ns3042688 sshd\[5041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root Nov 30 07:41:28 ns3042688 sshd\[5041\]: Failed password for root from 139.59.38.169 port 47394 ssh2 Nov 30 07:46:47 ns3042688 sshd\[7552\]: Invalid user borgeson from 139.59.38.169 Nov 30 07:46:47 ns3042688 sshd\[7552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Nov 30 07:46:50 ns3042688 sshd\[7552\]: Failed password for invalid user borgeson from 139.59.38.169 port 54926 ssh2 ...	2019-11-30 15:37:34
attackspambots	Nov 25 03:08:02 ldap01vmsma01 sshd[32548]: Failed password for root from 139.59.38.169 port 45310 ssh2 Nov 25 03:30:11 ldap01vmsma01 sshd[32605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 ...	2019-11-25 15:55:20
attack	Nov 24 01:46:55 firewall sshd[4957]: Failed password for invalid user sulong from 139.59.38.169 port 50078 ssh2 Nov 24 01:54:06 firewall sshd[5117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root Nov 24 01:54:08 firewall sshd[5117]: Failed password for root from 139.59.38.169 port 57556 ssh2 ...	2019-11-24 13:57:07
attackbotsspam	Nov 22 18:59:02 cavern sshd[748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169	2019-11-23 03:28:13
attackspam	Nov 11 08:24:45 ldap01vmsma01 sshd[16128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Nov 11 08:24:47 ldap01vmsma01 sshd[16128]: Failed password for invalid user blouin from 139.59.38.169 port 36826 ssh2 ...	2019-11-11 16:39:34
attackbots	Nov 7 08:15:45 srv01 sshd[8316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root Nov 7 08:15:47 srv01 sshd[8316]: Failed password for root from 139.59.38.169 port 59758 ssh2 Nov 7 08:20:02 srv01 sshd[8507]: Invalid user bodo from 139.59.38.169 Nov 7 08:20:02 srv01 sshd[8507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Nov 7 08:20:02 srv01 sshd[8507]: Invalid user bodo from 139.59.38.169 Nov 7 08:20:04 srv01 sshd[8507]: Failed password for invalid user bodo from 139.59.38.169 port 42070 ssh2 ...	2019-11-07 16:19:50
attackspam	Oct 30 23:07:25 server sshd\[16161\]: Invalid user rl from 139.59.38.169 Oct 30 23:07:25 server sshd\[16161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Oct 30 23:07:27 server sshd\[16161\]: Failed password for invalid user rl from 139.59.38.169 port 34656 ssh2 Oct 30 23:26:44 server sshd\[20852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 user=root Oct 30 23:26:46 server sshd\[20852\]: Failed password for root from 139.59.38.169 port 39064 ssh2 ...	2019-10-31 06:30:55

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.38.252	attackspambots	SSH Bruteforce Attempt on Honeypot	2020-10-10 01:15:26
139.59.38.252	attackbots	Automatic report - Banned IP Access	2020-10-09 17:01:27
139.59.38.142	attack	Port Scan detected from 139.59.38.142 (IN/India/Karnataka/Bengaluru/-). 4 hits in the last 296 seconds	2020-09-11 00:57:35
139.59.38.142	attackspam	sshd jail - ssh hack attempt	2020-09-10 16:15:33
139.59.38.142	attackbots	sshd jail - ssh hack attempt	2020-09-10 06:53:57
139.59.38.142	attack	Invalid user guest from 139.59.38.142 port 32816	2020-09-08 22:10:58
139.59.38.142	attack	2020-09-07T03:17:32.712431abusebot-6.cloudsearch.cf sshd[11620]: Invalid user admin from 139.59.38.142 port 51084 2020-09-07T03:17:32.718540abusebot-6.cloudsearch.cf sshd[11620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.142 2020-09-07T03:17:32.712431abusebot-6.cloudsearch.cf sshd[11620]: Invalid user admin from 139.59.38.142 port 51084 2020-09-07T03:17:34.903033abusebot-6.cloudsearch.cf sshd[11620]: Failed password for invalid user admin from 139.59.38.142 port 51084 ssh2 2020-09-07T03:23:28.197527abusebot-6.cloudsearch.cf sshd[11709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.142 user=root 2020-09-07T03:23:30.252002abusebot-6.cloudsearch.cf sshd[11709]: Failed password for root from 139.59.38.142 port 43094 ssh2 2020-09-07T03:26:51.333878abusebot-6.cloudsearch.cf sshd[11752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38. ...	2020-09-07 19:07:20
139.59.38.142	attack	Aug 31 12:39:58 onepixel sshd[774173]: Failed password for invalid user dines from 139.59.38.142 port 56150 ssh2 Aug 31 12:44:03 onepixel sshd[774803]: Invalid user gangadhar from 139.59.38.142 port 34364 Aug 31 12:44:03 onepixel sshd[774803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.142 Aug 31 12:44:03 onepixel sshd[774803]: Invalid user gangadhar from 139.59.38.142 port 34364 Aug 31 12:44:05 onepixel sshd[774803]: Failed password for invalid user gangadhar from 139.59.38.142 port 34364 ssh2	2020-08-31 20:54:01
139.59.38.252	attack	Jun 5 00:31:07 mellenthin sshd[12606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.252 user=root Jun 5 00:31:09 mellenthin sshd[12606]: Failed password for invalid user root from 139.59.38.252 port 49780 ssh2	2020-06-05 06:36:36
139.59.38.252	attackspambots	SSH Brute Force	2020-04-10 05:26:29
139.59.38.252	attack	$f2bV_matches	2020-04-09 18:44:05
139.59.38.252	attackspam	Apr 8 15:24:57 srv01 sshd[5727]: Invalid user sls from 139.59.38.252 port 42432 Apr 8 15:24:57 srv01 sshd[5727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.252 Apr 8 15:24:57 srv01 sshd[5727]: Invalid user sls from 139.59.38.252 port 42432 Apr 8 15:24:59 srv01 sshd[5727]: Failed password for invalid user sls from 139.59.38.252 port 42432 ssh2 Apr 8 15:29:19 srv01 sshd[5936]: Invalid user user from 139.59.38.252 port 53430 ...	2020-04-08 21:29:31
139.59.38.252	attack	[ssh] SSH attack	2020-04-01 12:08:57
139.59.38.252	attack	Mar 28 01:28:19 serwer sshd\[7499\]: Invalid user fys from 139.59.38.252 port 54968 Mar 28 01:28:19 serwer sshd\[7499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.252 Mar 28 01:28:21 serwer sshd\[7499\]: Failed password for invalid user fys from 139.59.38.252 port 54968 ssh2 ...	2020-03-28 09:20:10
139.59.38.252	attack	2020-03-25T23:46:23.083079vps773228.ovh.net sshd[909]: Failed password for invalid user prashant from 139.59.38.252 port 46228 ssh2 2020-03-25T23:50:04.726619vps773228.ovh.net sshd[2346]: Invalid user ftpuser from 139.59.38.252 port 56344 2020-03-25T23:50:04.744253vps773228.ovh.net sshd[2346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.252 2020-03-25T23:50:04.726619vps773228.ovh.net sshd[2346]: Invalid user ftpuser from 139.59.38.252 port 56344 2020-03-25T23:50:07.308200vps773228.ovh.net sshd[2346]: Failed password for invalid user ftpuser from 139.59.38.252 port 56344 ssh2 ...	2020-03-26 07:04:09

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.38.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.38.169.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103001 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 06:32:25 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

169.38.59.139.in-addr.arpa domain name pointer superman.shareshareglobal.org.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
169.38.59.139.in-addr.arpa	name = superman.shareshareglobal.org.

Authoritative answers can be found from:

IP	类型	评论内容	时间
91.196.222.194	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-03 19:22:13
144.21.108.183	attackbotsspam	Oct 3 13:21:30 mc1 kernel: \[1388105.330625\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=144.21.108.183 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=11707 PROTO=TCP SPT=45739 DPT=419 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 3 13:22:08 mc1 kernel: \[1388143.688820\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=144.21.108.183 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=12630 PROTO=TCP SPT=45739 DPT=649 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 3 13:27:52 mc1 kernel: \[1388487.128096\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=144.21.108.183 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=49335 PROTO=TCP SPT=45739 DPT=749 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-03 19:33:54
14.248.103.96	attackbots	WordPress wp-login brute force :: 14.248.103.96 0.144 BYPASS [03/Oct/2019:13:52:07 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-03 19:06:38
51.254.205.6	attackspam	Oct 3 10:59:14 web8 sshd\[28451\]: Invalid user esther from 51.254.205.6 Oct 3 10:59:14 web8 sshd\[28451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.205.6 Oct 3 10:59:16 web8 sshd\[28451\]: Failed password for invalid user esther from 51.254.205.6 port 33600 ssh2 Oct 3 11:03:38 web8 sshd\[30591\]: Invalid user server from 51.254.205.6 Oct 3 11:03:38 web8 sshd\[30591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.205.6	2019-10-03 19:11:17
106.12.21.124	attackspam	Oct 3 12:09:27 gw1 sshd[21937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.21.124 Oct 3 12:09:29 gw1 sshd[21937]: Failed password for invalid user sonny123 from 106.12.21.124 port 49978 ssh2 ...	2019-10-03 19:34:09
118.25.210.180	attackbotsspam	$f2bV_matches	2019-10-03 19:41:54
60.28.131.10	attack	Dovecot Brute-Force	2019-10-03 19:28:19
132.232.39.15	attackbotsspam	Automatic report - Banned IP Access	2019-10-03 19:35:58
132.232.52.60	attack	2019-09-17 13:54:55,343 fail2ban.actions [800]: NOTICE [sshd] Ban 132.232.52.60 2019-09-17 17:03:06,744 fail2ban.actions [800]: NOTICE [sshd] Ban 132.232.52.60 2019-09-17 20:08:29,641 fail2ban.actions [800]: NOTICE [sshd] Ban 132.232.52.60 ...	2019-10-03 19:31:14
150.95.153.82	attackbotsspam	$f2bV_matches	2019-10-03 19:41:12
118.25.221.166	attackbots	$f2bV_matches	2019-10-03 19:38:59
192.42.116.23	attackbotsspam	2019-10-03T10:14:00.270108abusebot.cloudsearch.cf sshd\[9836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv123.hviv.nl user=root	2019-10-03 19:13:27
5.88.155.130	attackspambots	ssh bruteforce or scan ...	2019-10-03 19:20:42
134.119.205.187	attackspambots	2019-09-01 22:00:23,663 fail2ban.actions [804]: NOTICE [sshd] Ban 134.119.205.187 2019-09-02 01:13:52,415 fail2ban.actions [804]: NOTICE [sshd] Ban 134.119.205.187 2019-09-02 04:26:34,128 fail2ban.actions [804]: NOTICE [sshd] Ban 134.119.205.187 ...	2019-10-03 19:18:02
132.232.81.207	attack	2019-08-29 05:42:28,089 fail2ban.actions [804]: NOTICE [sshd] Ban 132.232.81.207 2019-08-29 08:52:26,957 fail2ban.actions [804]: NOTICE [sshd] Ban 132.232.81.207 2019-08-29 12:04:55,257 fail2ban.actions [804]: NOTICE [sshd] Ban 132.232.81.207 ...	2019-10-03 19:26:17

最近上报的IP列表

39.8.162.14	251.78.122.114	14.166.200.35	30.59.163.123
220.86.192.233	21.74.88.87	108.143.28.196	11.88.12.3
209.97.166.95	193.141.57.51	164.230.101.218	130.149.241.179
183.143.93.62	174.207.217.72	142.88.175.166	142.43.137.254
92.240.253.138	4.36.92.144	58.108.83.67	209.54.119.27