139.59.40.196 - IPInfo

基本信息:

城市(city): Bengaluru

省份(region): Karnataka

国家(country): India

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.40.233	attackspambots	139.59.40.233 - - [12/Oct/2020:13:00:34 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.40.233 - - [12/Oct/2020:13:00:37 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.40.233 - - [12/Oct/2020:13:00:41 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.40.233 - - [12/Oct/2020:13:00:44 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.40.233 - - [12/Oct/2020:13:00:45 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-13 00:00:47
139.59.40.233	attack	139.59.40.233 - - [12/Oct/2020:04:39:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [12/Oct/2020:04:39:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2125 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [12/Oct/2020:04:39:11 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 15:24:37
139.59.40.240	attackbotsspam	Oct 6 00:07:06 rancher-0 sshd[488183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.40.240 user=root Oct 6 00:07:08 rancher-0 sshd[488183]: Failed password for root from 139.59.40.240 port 56898 ssh2 ...	2020-10-06 06:15:31
139.59.40.240	attackbots	$f2bV_matches	2020-10-05 22:20:50
139.59.40.240	attackbots	2020-10-05T05:20:09.281796randservbullet-proofcloud-66.localdomain sshd[29534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.40.240 user=root 2020-10-05T05:20:11.144033randservbullet-proofcloud-66.localdomain sshd[29534]: Failed password for root from 139.59.40.240 port 49718 ssh2 2020-10-05T05:24:42.393105randservbullet-proofcloud-66.localdomain sshd[29566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.40.240 user=root 2020-10-05T05:24:44.064917randservbullet-proofcloud-66.localdomain sshd[29566]: Failed password for root from 139.59.40.240 port 46138 ssh2 ...	2020-10-05 14:14:28
139.59.40.240	attackbots	Oct 4 10:43:02 sshd\[4818\]: Invalid user oscar from 139.59.40.240Oct 4 10:43:04 sshd\[4818\]: Failed password for invalid user oscar from 139.59.40.240 port 47054 ssh2 ...	2020-10-04 18:45:44
139.59.40.233	attackbots	Trolling for resource vulnerabilities	2020-09-17 19:47:27
139.59.40.240	attack	$f2bV_matches	2020-09-10 21:59:43
139.59.40.240	attack	2020-09-09 09:51:27 server sshd[21645]: Failed password for invalid user nagios from 139.59.40.240 port 60838 ssh2	2020-09-10 13:40:52
139.59.40.240	attack	Sep 9 20:57:40 jane sshd[1477]: Failed password for root from 139.59.40.240 port 34798 ssh2 ...	2020-09-10 04:23:05
139.59.40.233	attack	139.59.40.233 - - [05/Sep/2020:11:36:56 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [05/Sep/2020:11:36:58 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [05/Sep/2020:11:37:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-05 22:06:06
139.59.40.233	attackbotsspam	Trolling for resource vulnerabilities	2020-09-05 13:43:12
139.59.40.233	attackbots	/wp-login.php	2020-09-05 06:29:24
139.59.40.233	attackspam	139.59.40.233 - - [31/Aug/2020:23:59:10 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [31/Aug/2020:23:59:13 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [31/Aug/2020:23:59:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-01 06:17:44
139.59.40.233	attack	139.59.40.233 - - [29/Aug/2020:16:39:51 +0200] "GET /wp-login.php HTTP/1.1" 200 8537 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [29/Aug/2020:16:39:54 +0200] "POST /wp-login.php HTTP/1.1" 200 8788 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.40.233 - - [29/Aug/2020:16:39:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-30 01:20:37

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.40.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22666
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.40.196.			IN	A

;; AUTHORITY SECTION:
.			2512	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 07:02:03 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 196.40.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 196.40.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.17.116.199	attackspam	Unauthorized connection attempt detected from IP address 218.17.116.199 to port 9200 [T]	2020-01-17 06:26:31
164.52.36.234	attackbotsspam	Unauthorized connection attempt detected from IP address 164.52.36.234 to port 5901 [J]	2020-01-17 06:31:26
51.89.173.198	attack	Unauthorized connection attempt detected from IP address 51.89.173.198 to port 110 [J]	2020-01-17 06:08:08
24.48.237.134	attackbotsspam	400 BAD REQUEST	2020-01-17 06:03:09
202.102.90.229	attackspam	Unauthorized connection attempt detected from IP address 202.102.90.229 to port 7001 [T]	2020-01-17 06:27:06
121.122.72.40	attackbots	Unauthorized connection attempt detected from IP address 121.122.72.40 to port 23 [T]	2020-01-17 06:35:08
222.186.169.194	attackspam	2020-01-14 07:41:53 -> 2020-01-16 22:13:42 : 117 login attempts (222.186.169.194)	2020-01-17 06:15:52
62.164.176.194	attackbotsspam	[munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:08 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:10 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:10 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:11 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:11 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 62.164.176.194 - - [16/Jan/2020:22:20:12 +0100] "POST /[munged]: HTTP/1.1" 200 9156 "-" "Mozilla/5.0 (X11	2020-01-17 06:00:08
178.18.96.10	attack	Unauthorized connection attempt detected from IP address 178.18.96.10 to port 80 [T]	2020-01-17 06:28:54
122.238.138.77	attack	Unauthorized connection attempt detected from IP address 122.238.138.77 to port 445 [T]	2020-01-17 06:34:32
95.138.142.48	attackbots	Jan 16 16:19:18 Tower sshd[4629]: Connection from 95.138.142.48 port 53336 on 192.168.10.220 port 22 rdomain "" Jan 16 16:19:19 Tower sshd[4629]: Invalid user oracle from 95.138.142.48 port 53336 Jan 16 16:19:19 Tower sshd[4629]: error: Could not get shadow information for NOUSER Jan 16 16:19:19 Tower sshd[4629]: Failed password for invalid user oracle from 95.138.142.48 port 53336 ssh2 Jan 16 16:19:20 Tower sshd[4629]: Connection closed by invalid user oracle 95.138.142.48 port 53336 [preauth]	2020-01-17 06:13:33
123.56.110.239	attackbotsspam	Unauthorized connection attempt detected from IP address 123.56.110.239 to port 1433 [J]	2020-01-17 06:34:15
188.166.216.84	attack	Jan 16 22:04:41 klukluk sshd\[6036\]: Invalid user ftpuser from 188.166.216.84 Jan 16 22:12:12 klukluk sshd\[10609\]: Invalid user ubuntu from 188.166.216.84 Jan 16 22:19:47 klukluk sshd\[15306\]: Invalid user ftpuser from 188.166.216.84 ...	2020-01-17 06:14:33
18.218.235.95	attackspambots	Jan 16 22:56:20 ns41 sshd[27869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.218.235.95 Jan 16 22:56:20 ns41 sshd[27869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.218.235.95	2020-01-17 06:23:24
125.112.83.104	attackbots	Unauthorized connection attempt detected from IP address 125.112.83.104 to port 9090 [T]	2020-01-17 06:33:16

最近上报的IP列表

189.195.162.6	182.93.95.170	198.40.56.50	59.188.251.54
218.64.175.219	103.111.80.226	40.92.72.15	134.209.91.162
35.227.146.29	72.44.28.112	81.133.226.101	41.221.194.1
111.93.140.156	180.97.35.15	46.176.92.9	113.106.169.6
207.154.206.212	61.221.225.143	142.93.97.115	114.80.80.228