139.59.72.60 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.72.161	attackbots	Unauthorized connection attempt detected from IP address 139.59.72.161 to port 2220 [J]	2020-02-03 20:09:15
139.59.72.161	attack	Jan 12 21:08:06 mx01 sshd[22255]: reveeclipse mapping checking getaddrinfo for cloud.imedihub.com [139.59.72.161] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 12 21:08:06 mx01 sshd[22255]: Invalid user uftp from 139.59.72.161 Jan 12 21:08:06 mx01 sshd[22255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.72.161 Jan 12 21:08:09 mx01 sshd[22255]: Failed password for invalid user uftp from 139.59.72.161 port 44900 ssh2 Jan 12 21:08:09 mx01 sshd[22255]: Received disconnect from 139.59.72.161: 11: Bye Bye [preauth] Jan 12 21:15:25 mx01 sshd[23493]: reveeclipse mapping checking getaddrinfo for cloud.imedihub.com [139.59.72.161] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 12 21:15:25 mx01 sshd[23493]: Invalid user deploy from 139.59.72.161 Jan 12 21:15:25 mx01 sshd[23493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.72.161 Jan 12 21:15:27 mx01 sshd[23493]: Failed password for invalid u........ -------------------------------	2020-01-13 08:14:38
139.59.72.135	attack	POST /index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form GET /XxX.php?XxX POST /index.php?option=com_fabrik&format=raw&task=plugin.pluginAjax&plugin=fileupload&method=ajax_upload GET /raiz0.html GET /miNuS.php POST /modules/mod_simplefileuploadv1.3/elements/udd.php	2019-10-29 19:38:25

类型

评论内容

时间

139.59.72.161

attackbots

Unauthorized connection attempt detected from IP address 139.59.72.161 to port 2220 [J]

2020-02-03 20:09:15

139.59.72.161

attack

Jan 12 21:08:06 mx01 sshd[22255]: reveeclipse mapping checking getaddrinfo for cloud.imedihub.com [139.59.72.161] failed - POSSIBLE BREAK-IN ATTEMPT!
Jan 12 21:08:06 mx01 sshd[22255]: Invalid user uftp from 139.59.72.161
Jan 12 21:08:06 mx01 sshd[22255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.72.161 
Jan 12 21:08:09 mx01 sshd[22255]: Failed password for invalid user uftp from 139.59.72.161 port 44900 ssh2
Jan 12 21:08:09 mx01 sshd[22255]: Received disconnect from 139.59.72.161: 11: Bye Bye [preauth]
Jan 12 21:15:25 mx01 sshd[23493]: reveeclipse mapping checking getaddrinfo for cloud.imedihub.com [139.59.72.161] failed - POSSIBLE BREAK-IN ATTEMPT!
Jan 12 21:15:25 mx01 sshd[23493]: Invalid user deploy from 139.59.72.161
Jan 12 21:15:25 mx01 sshd[23493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.72.161 
Jan 12 21:15:27 mx01 sshd[23493]: Failed password for invalid u........
-------------------------------

2020-01-13 08:14:38

139.59.72.135

attack

POST /index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form
GET /XxX.php?XxX
POST /index.php?option=com_fabrik&format=raw&task=plugin.pluginAjax&plugin=fileupload&method=ajax_upload
GET /raiz0.html
GET /miNuS.php
POST /modules/mod_simplefileuploadv1.3/elements/udd.php

2019-10-29 19:38:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.72.60
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18194
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.72.60.			IN	A

;; AUTHORITY SECTION:
.			336	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:39:38 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 60.72.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 60.72.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.160.26.57	attack	Unauthorised access (Oct 25) SRC=14.160.26.57 LEN=52 TTL=115 ID=2294 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-25 12:15:56
46.48.175.222	attackspam	Chat Spam	2019-10-25 12:33:51
92.118.38.38	attack	Oct 25 05:55:36 webserver postfix/smtpd\[18984\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 25 05:56:13 webserver postfix/smtpd\[20578\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 25 05:56:49 webserver postfix/smtpd\[19323\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 25 05:57:25 webserver postfix/smtpd\[20578\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 25 05:58:01 webserver postfix/smtpd\[19323\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-25 12:04:04
92.222.181.159	attack	SSH bruteforce	2019-10-25 12:18:53
200.169.223.98	attackbotsspam	2019-10-24T22:03:59.4258351495-001 sshd\[34905\]: Invalid user Cisco from 200.169.223.98 port 46278 2019-10-24T22:03:59.4330011495-001 sshd\[34905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 2019-10-24T22:04:01.3528591495-001 sshd\[34905\]: Failed password for invalid user Cisco from 200.169.223.98 port 46278 ssh2 2019-10-24T23:43:14.3890811495-001 sshd\[38481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 user=root 2019-10-24T23:43:16.4935871495-001 sshd\[38481\]: Failed password for root from 200.169.223.98 port 60888 ssh2 2019-10-24T23:47:42.7253171495-001 sshd\[38691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 user=root ...	2019-10-25 12:03:15
185.232.67.5	attackbots	Oct 25 06:07:51 dedicated sshd[17378]: Invalid user admin from 185.232.67.5 port 55407	2019-10-25 12:14:03
210.18.155.163	attack	SMB Server BruteForce Attack	2019-10-25 12:17:47
112.216.93.141	attackspam	Oct 25 00:52:32 firewall sshd[24456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.93.141 user=root Oct 25 00:52:34 firewall sshd[24456]: Failed password for root from 112.216.93.141 port 60680 ssh2 Oct 25 00:56:44 firewall sshd[24563]: Invalid user sqsysop from 112.216.93.141 ...	2019-10-25 12:36:16
43.241.252.168	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-25 12:17:29
47.94.194.150	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-25 12:01:16
31.185.5.197	attack	Chat Spam	2019-10-25 12:06:51
60.175.249.119	attackspam	Automatic report - FTP Brute Force	2019-10-25 12:17:06
115.74.224.128	attackbotsspam	Connection by 115.74.224.128 on port: 139 got caught by honeypot at 10/24/2019 8:57:05 PM	2019-10-25 12:25:16
222.186.173.183	attackbots	Oct 25 06:23:37 rotator sshd\[7515\]: Failed password for root from 222.186.173.183 port 65026 ssh2Oct 25 06:23:42 rotator sshd\[7515\]: Failed password for root from 222.186.173.183 port 65026 ssh2Oct 25 06:23:46 rotator sshd\[7515\]: Failed password for root from 222.186.173.183 port 65026 ssh2Oct 25 06:23:51 rotator sshd\[7515\]: Failed password for root from 222.186.173.183 port 65026 ssh2Oct 25 06:23:55 rotator sshd\[7515\]: Failed password for root from 222.186.173.183 port 65026 ssh2Oct 25 06:24:06 rotator sshd\[7519\]: Failed password for root from 222.186.173.183 port 22892 ssh2 ...	2019-10-25 12:27:42
58.20.139.31	attackspam	Fail2Ban Ban Triggered	2019-10-25 12:01:43

最近上报的IP列表

139.59.73.89	118.254.203.104	139.59.74.24	139.59.74.246
139.59.74.36	139.59.74.93	139.59.75.159	139.59.75.127
139.59.75.163	139.59.75.249	139.59.75.195	139.59.75.46
139.59.75.84	118.254.203.111	139.59.76.20	139.59.75.96
139.59.76.253	139.59.76.184	139.59.76.187	139.59.76.60