145.239.139.59

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): OVH SAS

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
145.239.139.203	attackbotsspam	2020-06-20T09:29:22.303216homeassistant sshd[19916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.139.203 user=root 2020-06-20T09:29:23.931656homeassistant sshd[19916]: Failed password for root from 145.239.139.203 port 46026 ssh2 ...	2020-06-20 17:42:03
145.239.139.57	attackbotsspam	IP: 145.239.139.57 Ports affected http protocol over TLS/SSL (443) Abuse Confidence rating 27% ASN Details AS16276 OVH SAS France (FR) CIDR 145.239.0.0/16 Log Date: 28/02/2020 1:31:48 PM UTC	2020-02-29 01:47:37

类型

评论内容

时间

145.239.139.203

attackbotsspam

2020-06-20T09:29:22.303216homeassistant sshd[19916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.139.203  user=root
2020-06-20T09:29:23.931656homeassistant sshd[19916]: Failed password for root from 145.239.139.203 port 46026 ssh2
...

2020-06-20 17:42:03

145.239.139.57

attackbotsspam

IP: 145.239.139.57
Ports affected
    http protocol over TLS/SSL (443) 
Abuse Confidence rating 27%
ASN Details
   AS16276 OVH SAS
   France (FR)
   CIDR 145.239.0.0/16
Log Date: 28/02/2020 1:31:48 PM UTC

2020-02-29 01:47:37

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.139.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32245
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.239.139.59.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri May 10 19:21:16 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

59.139.239.145.in-addr.arpa domain name pointer ddos122.volgarage.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
59.139.239.145.in-addr.arpa	name = ddos122.volgarage.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
5.249.145.73	attack	Aug 28 07:49:54 DAAP sshd[23760]: Invalid user nginx from 5.249.145.73 port 56285 Aug 28 07:49:54 DAAP sshd[23760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.73 Aug 28 07:49:54 DAAP sshd[23760]: Invalid user nginx from 5.249.145.73 port 56285 Aug 28 07:49:56 DAAP sshd[23760]: Failed password for invalid user nginx from 5.249.145.73 port 56285 ssh2 Aug 28 07:53:59 DAAP sshd[23817]: Invalid user philip from 5.249.145.73 port 50564 ...	2019-08-28 15:05:49
40.73.97.99	attack	Aug 28 07:26:01 rb06 sshd[2177]: Failed password for invalid user jenn from 40.73.97.99 port 60320 ssh2 Aug 28 07:26:01 rb06 sshd[2177]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:37:46 rb06 sshd[11710]: Failed password for invalid user webmaster from 40.73.97.99 port 52520 ssh2 Aug 28 07:37:46 rb06 sshd[11710]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:46:41 rb06 sshd[15769]: Failed password for invalid user xxxxxxtopher from 40.73.97.99 port 54678 ssh2 Aug 28 07:46:42 rb06 sshd[15769]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:50:20 rb06 sshd[9548]: Failed password for invalid user global from 40.73.97.99 port 55666 ssh2 Aug 28 07:50:20 rb06 sshd[9548]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:54:02 rb06 sshd[22132]: Failed password for invalid user postgres from 40.73.97.99 port 56660 ssh2 Aug 28 07:54:02 rb06 sshd[22132]: Received disconnect from 40.73.97......... -------------------------------	2019-08-28 15:32:39
128.199.185.42	attack	Aug 28 08:24:25 dev0-dcfr-rnet sshd[10467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.42 Aug 28 08:24:27 dev0-dcfr-rnet sshd[10467]: Failed password for invalid user b2b from 128.199.185.42 port 57396 ssh2 Aug 28 08:29:03 dev0-dcfr-rnet sshd[10485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.42	2019-08-28 15:11:24
201.47.158.130	attackspambots	Aug 27 20:54:09 sachi sshd\[22721\]: Invalid user admin from 201.47.158.130 Aug 27 20:54:09 sachi sshd\[22721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.47.158.130 Aug 27 20:54:11 sachi sshd\[22721\]: Failed password for invalid user admin from 201.47.158.130 port 47766 ssh2 Aug 27 20:59:24 sachi sshd\[23360\]: Invalid user apt-mirror from 201.47.158.130 Aug 27 20:59:24 sachi sshd\[23360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.47.158.130	2019-08-28 15:06:27
118.114.241.104	attackspam	Aug 28 09:33:34 vps691689 sshd[23207]: Failed password for root from 118.114.241.104 port 60071 ssh2 Aug 28 09:37:06 vps691689 sshd[23293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.114.241.104 ...	2019-08-28 15:43:29
106.52.230.77	attackspam	Aug 28 01:49:22 aat-srv002 sshd[2682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.230.77 Aug 28 01:49:24 aat-srv002 sshd[2682]: Failed password for invalid user sn0wcat from 106.52.230.77 port 33058 ssh2 Aug 28 02:05:30 aat-srv002 sshd[3121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.230.77 Aug 28 02:05:32 aat-srv002 sshd[3121]: Failed password for invalid user csserver from 106.52.230.77 port 40206 ssh2 Aug 28 02:07:27 aat-srv002 sshd[3150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.230.77 ...	2019-08-28 15:16:07
27.207.10.34	attackspambots	SSH Bruteforce attack	2019-08-28 15:13:53
163.172.45.69	attack	2019-08-28T07:24:11.865270abusebot.cloudsearch.cf sshd\[11972\]: Invalid user mbrown from 163.172.45.69 port 46352	2019-08-28 15:33:47
37.187.46.74	attack	Aug 27 21:00:55 lcdev sshd\[28624\]: Invalid user odoo10 from 37.187.46.74 Aug 27 21:00:55 lcdev sshd\[28624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.ip-37-187-46.eu Aug 27 21:00:57 lcdev sshd\[28624\]: Failed password for invalid user odoo10 from 37.187.46.74 port 49784 ssh2 Aug 27 21:07:16 lcdev sshd\[29219\]: Invalid user gabe from 37.187.46.74 Aug 27 21:07:16 lcdev sshd\[29219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.ip-37-187-46.eu	2019-08-28 15:16:44
54.36.150.171	attackbots	Automatic report - Banned IP Access	2019-08-28 15:55:15
106.13.2.130	attack	Unauthorized SSH login attempts	2019-08-28 15:07:04
165.22.3.32	attackbots	Invalid user support from 165.22.3.32 port 52091	2019-08-28 15:39:10
109.70.100.29	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-08-28 15:24:42
112.85.42.178	attack	SSH bruteforce	2019-08-28 15:27:20
138.36.107.73	attackbots	Aug 28 09:34:28 plex sshd[14258]: Invalid user tommy from 138.36.107.73 port 46938	2019-08-28 15:40:07

最近上报的IP列表

100.199.9.133	200.13.4.246	62.254.82.208	187.152.13.107
158.120.121.177	79.167.179.179	173.201.38.21	24.192.228.27
156.221.137.71	129.201.223.175	156.212.106.77	96.93.173.56
113.189.170.180	31.49.170.164	216.24.87.161	161.13.152.159
148.251.86.70	157.230.124.52	111.99.59.236	97.118.190.152