139.59.76.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Digital Ocean Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Banned IP Access	2019-09-25 16:04:31
attack	WordPress login Brute force / Web App Attack on client site.	2019-09-19 23:54:33

相同子网IP讨论:

IP	类型	评论内容	时间
139.59.76.63	attack	hack	2024-02-29 18:10:53
139.59.76.217	attackbotsspam	139.59.76.217 - - [29/Aug/2020:07:32:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.76.217 - - [29/Aug/2020:07:32:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.76.217 - - [29/Aug/2020:07:32:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 14:39:26
139.59.76.217	attackspambots	Aug 15 15:10:47 karger wordpress(www.b)[29758]: Authentication attempt for unknown user domi from 139.59.76.217 Aug 15 15:10:48 karger wordpress(www.b)[29756]: XML-RPC authentication attempt for unknown user [login] from 139.59.76.217 ...	2020-08-15 21:28:39
139.59.76.205	attack	Wordpress_xmlrpc_attack	2020-03-09 07:16:44
139.59.76.99	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/139.59.76.99/ NL - 1H : (36) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : NL NAME ASN : ASN14061 IP : 139.59.76.99 CIDR : 139.59.64.0/20 PREFIX COUNT : 490 UNIQUE IP COUNT : 1963008 ATTACKS DETECTED ASN14061 : 1H - 4 3H - 8 6H - 8 12H - 8 24H - 18 DateTime : 2020-03-06 14:46:25 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2020-03-07 04:46:26
139.59.76.99	attack	139.59.76.99 - - [25/Feb/2020:10:24:30 +0300] "POST /wp-login.php HTTP/1.1" 200 2790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-02-25 18:08:53
139.59.76.85	attack	Automatic report - XMLRPC Attack	2019-12-10 04:18:01
139.59.76.12	attack	2019-11-20T06:56:08Z - RDP login failed multiple times. (139.59.76.12)	2019-11-20 21:02:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.76.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.76.139.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091901 1800 900 604800 86400

;; Query time: 436 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 19 23:54:21 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 139.76.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.76.59.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.177.46	attack	Dec 2 01:59:32 eddieflores sshd\[21382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=trabajoytalento.com.gt user=mysql Dec 2 01:59:34 eddieflores sshd\[21382\]: Failed password for mysql from 159.89.177.46 port 60424 ssh2 Dec 2 02:05:05 eddieflores sshd\[21867\]: Invalid user overijssel from 159.89.177.46 Dec 2 02:05:05 eddieflores sshd\[21867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=trabajoytalento.com.gt Dec 2 02:05:06 eddieflores sshd\[21867\]: Failed password for invalid user overijssel from 159.89.177.46 port 43290 ssh2	2019-12-02 20:20:32
27.77.254.179	attackspambots	fail2ban	2019-12-02 19:59:30
218.92.0.141	attack	Dec 2 02:06:16 web1 sshd\[22474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 2 02:06:18 web1 sshd\[22474\]: Failed password for root from 218.92.0.141 port 35442 ssh2 Dec 2 02:06:22 web1 sshd\[22474\]: Failed password for root from 218.92.0.141 port 35442 ssh2 Dec 2 02:06:25 web1 sshd\[22474\]: Failed password for root from 218.92.0.141 port 35442 ssh2 Dec 2 02:06:28 web1 sshd\[22474\]: Failed password for root from 218.92.0.141 port 35442 ssh2	2019-12-02 20:07:30
200.44.50.155	attackbotsspam	Dec 2 14:02:10 sauna sshd[188580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 Dec 2 14:02:12 sauna sshd[188580]: Failed password for invalid user default from 200.44.50.155 port 34056 ssh2 ...	2019-12-02 20:28:03
98.156.148.239	attackbots	Dec 2 13:02:02 OPSO sshd\[6781\]: Invalid user bindi from 98.156.148.239 port 35648 Dec 2 13:02:02 OPSO sshd\[6781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.156.148.239 Dec 2 13:02:04 OPSO sshd\[6781\]: Failed password for invalid user bindi from 98.156.148.239 port 35648 ssh2 Dec 2 13:08:37 OPSO sshd\[8308\]: Invalid user rosminah from 98.156.148.239 port 47442 Dec 2 13:08:37 OPSO sshd\[8308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.156.148.239	2019-12-02 20:32:16
140.143.193.52	attackspambots	Dec 2 06:42:37 plusreed sshd[26628]: Invalid user squid from 140.143.193.52 ...	2019-12-02 20:21:45
119.90.61.10	attack	Dec 2 02:18:04 php1 sshd\[27338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.61.10 user=root Dec 2 02:18:06 php1 sshd\[27338\]: Failed password for root from 119.90.61.10 port 39530 ssh2 Dec 2 02:25:29 php1 sshd\[28048\]: Invalid user dough from 119.90.61.10 Dec 2 02:25:29 php1 sshd\[28048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.61.10 Dec 2 02:25:32 php1 sshd\[28048\]: Failed password for invalid user dough from 119.90.61.10 port 47318 ssh2	2019-12-02 20:26:22
147.135.255.107	attack	Dec 2 01:54:23 hanapaa sshd\[23165\]: Invalid user vandagriff from 147.135.255.107 Dec 2 01:54:23 hanapaa sshd\[23165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3085217.ip-147-135-255.eu Dec 2 01:54:25 hanapaa sshd\[23165\]: Failed password for invalid user vandagriff from 147.135.255.107 port 55452 ssh2 Dec 2 02:00:17 hanapaa sshd\[23862\]: Invalid user jillian from 147.135.255.107 Dec 2 02:00:17 hanapaa sshd\[23862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3085217.ip-147-135-255.eu	2019-12-02 20:12:01
119.29.65.240	attackspam	Invalid user propamix from 119.29.65.240 port 33168 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.65.240 Failed password for invalid user propamix from 119.29.65.240 port 33168 ssh2 Invalid user jonatas from 119.29.65.240 port 37970 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.65.240	2019-12-02 19:58:26
182.64.227.74	attackbotsspam	Unauthorised access (Dec 2) SRC=182.64.227.74 LEN=52 TTL=119 ID=18121 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 20:03:27
159.192.223.150	attackbotsspam	445/tcp [2019-12-02]1pkt	2019-12-02 20:18:13
78.192.6.4	attackspambots	Dec 2 11:22:44 v22018086721571380 sshd[30730]: Failed password for invalid user satre from 78.192.6.4 port 32804 ssh2 Dec 2 12:28:09 v22018086721571380 sshd[3505]: Failed password for invalid user slooby from 78.192.6.4 port 33892 ssh2	2019-12-02 20:26:43
209.17.96.26	attackbots	209.17.96.26 was recorded 12 times by 11 hosts attempting to connect to the following ports: 6379,5916,21,8088,8531,8080,5905. Incident counter (4h, 24h, all-time): 12, 48, 1000	2019-12-02 20:07:43
45.55.233.213	attack	Dec 2 01:42:23 tdfoods sshd\[20494\]: Invalid user test from 45.55.233.213 Dec 2 01:42:23 tdfoods sshd\[20494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.233.213 Dec 2 01:42:25 tdfoods sshd\[20494\]: Failed password for invalid user test from 45.55.233.213 port 56138 ssh2 Dec 2 01:47:46 tdfoods sshd\[21000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.233.213 user=root Dec 2 01:47:48 tdfoods sshd\[21000\]: Failed password for root from 45.55.233.213 port 39530 ssh2	2019-12-02 20:17:06
129.211.62.131	attack	Dec 2 13:29:11 ns381471 sshd[23985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.62.131 Dec 2 13:29:14 ns381471 sshd[23985]: Failed password for invalid user rohdin from 129.211.62.131 port 8500 ssh2	2019-12-02 20:31:26

最近上报的IP列表

125.209.85.130	125.136.153.121	115.151.176.80	111.88.254.127
109.194.199.28	54.13.113.115	63.63.30.37	208.61.159.152
152.44.100.80	73.214.222.151	77.126.46.139	52.172.155.253
46.38.144.17	43.226.153.174	104.238.81.186	114.27.171.122
116.98.169.16	112.72.175.168	27.73.51.70	14.169.252.68