58.236.139.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	frenzy	2020-01-11 03:35:08
attackbotsspam	$f2bV_matches	2020-01-10 18:09:46
attackspambots	Jan 9 08:47:51 php1 sshd\[23244\]: Invalid user user from 58.236.139.20 Jan 9 08:47:51 php1 sshd\[23244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 9 08:47:53 php1 sshd\[23244\]: Failed password for invalid user user from 58.236.139.20 port 61557 ssh2 Jan 9 08:50:13 php1 sshd\[23441\]: Invalid user postgres from 58.236.139.20 Jan 9 08:50:13 php1 sshd\[23441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20	2020-01-10 03:28:25
attackspam	Jan 7 15:49:52 raspberrypi sshd\[865\]: Invalid user user from 58.236.139.20Jan 7 15:49:54 raspberrypi sshd\[865\]: Failed password for invalid user user from 58.236.139.20 port 62272 ssh2Jan 7 15:52:17 raspberrypi sshd\[914\]: Invalid user postgres from 58.236.139.20 ...	2020-01-08 00:01:48
attack	Jan 5 18:06:52 server sshd\[14847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 5 18:06:54 server sshd\[14847\]: Failed password for invalid user postgres from 58.236.139.20 port 62829 ssh2 Jan 6 04:48:04 server sshd\[3120\]: Invalid user user from 58.236.139.20 Jan 6 04:48:04 server sshd\[3120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 6 04:48:06 server sshd\[3120\]: Failed password for invalid user user from 58.236.139.20 port 62028 ssh2 ...	2020-01-06 09:54:44
attack	Jan 3 14:24:14 toyboy sshd[15422]: Invalid user user from 58.236.139.20 Jan 3 14:24:14 toyboy sshd[15422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 3 14:24:16 toyboy sshd[15422]: Failed password for invalid user user from 58.236.139.20 port 62998 ssh2 Jan 3 14:24:16 toyboy sshd[15422]: Received disconnect from 58.236.139.20: 11: Normal Shutdown, Thank you for playing [preauth] Jan 3 14:26:24 toyboy sshd[15520]: Invalid user postgres from 58.236.139.20 Jan 3 14:26:24 toyboy sshd[15520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.236.139.20 Jan 3 14:26:25 toyboy sshd[15520]: Failed password for invalid user postgres from 58.236.139.20 port 63147 ssh2 Jan 3 14:26:25 toyboy sshd[15520]: Received disconnect from 58.236.139.20: 11: Normal Shutdown, Thank you for playing [preauth] Jan 3 14:28:56 toyboy sshd[15602]: Invalid user proba from 58.236.139.20 Jan ........ -------------------------------	2020-01-04 05:28:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.236.139.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.236.139.20.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010301 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 05:28:17 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 20.139.236.58.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.139.236.58.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.185.170.104	attackspambots	445/tcp [2019-08-20]1pkt	2019-08-20 12:54:18
167.249.54.209	attack	Autoban 167.249.54.209 AUTH/CONNECT	2019-08-20 12:45:29
106.12.61.9	attackbots	Automated report - ssh fail2ban: Aug 20 05:39:34 wrong password, user=root, port=56264, ssh2 Aug 20 06:11:00 authentication failure Aug 20 06:11:02 wrong password, user=colleen, port=34446, ssh2	2019-08-20 12:49:15
186.208.211.254	attack	Spam Timestamp : 20-Aug-19 04:55 _ BlockList Provider combined abuse _ (252)	2019-08-20 12:19:54
142.93.26.245	attackbotsspam	Aug 20 00:39:47 vps200512 sshd\[26709\]: Invalid user testbox from 142.93.26.245 Aug 20 00:39:47 vps200512 sshd\[26709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245 Aug 20 00:39:49 vps200512 sshd\[26709\]: Failed password for invalid user testbox from 142.93.26.245 port 38752 ssh2 Aug 20 00:43:59 vps200512 sshd\[26833\]: Invalid user tony from 142.93.26.245 Aug 20 00:43:59 vps200512 sshd\[26833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245	2019-08-20 12:49:53
202.184.123.113	attackspam	445/tcp 445/tcp 445/tcp [2019-08-20]3pkt	2019-08-20 12:32:32
163.172.192.210	attackbotsspam	\[2019-08-20 00:28:13\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-20T00:28:13.812-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1100011972592277524",SessionID="0x7ff4d09702e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/54519",ACLName="no_extension_match" \[2019-08-20 00:32:01\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-20T00:32:01.202-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="2100011972592277524",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/57552",ACLName="no_extension_match" \[2019-08-20 00:36:05\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-20T00:36:05.017-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="3100011972592277524",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/6247	2019-08-20 12:52:47
68.48.240.245	attack	Aug 20 01:21:00 hb sshd\[30399\]: Invalid user cliente from 68.48.240.245 Aug 20 01:21:00 hb sshd\[30399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-68-48-240-245.hsd1.mi.comcast.net Aug 20 01:21:03 hb sshd\[30399\]: Failed password for invalid user cliente from 68.48.240.245 port 58670 ssh2 Aug 20 01:25:19 hb sshd\[30808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-68-48-240-245.hsd1.mi.comcast.net user=backup Aug 20 01:25:21 hb sshd\[30808\]: Failed password for backup from 68.48.240.245 port 47588 ssh2	2019-08-20 12:11:23
157.230.213.241	attackbotsspam	Aug 20 06:07:07 * sshd[18905]: Failed password for root from 157.230.213.241 port 51894 ssh2 Aug 20 06:11:05 * sshd[19452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.213.241	2019-08-20 12:46:02
177.135.33.0	attackbotsspam	60001/tcp [2019-08-20]1pkt	2019-08-20 12:34:23
181.46.136.77	attack	TCP src-port=17126 dst-port=25 dnsbl-sorbs abuseat-org barracuda (251)	2019-08-20 12:23:50
222.141.112.139	attackspam	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-08-20 12:24:56
119.155.78.39	attack	60001/tcp [2019-08-20]1pkt	2019-08-20 12:41:34
222.186.15.197	attackspambots	Aug 20 03:59:47 marvibiene sshd[57779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.197 user=root Aug 20 03:59:49 marvibiene sshd[57779]: Failed password for root from 222.186.15.197 port 53416 ssh2 Aug 20 03:59:51 marvibiene sshd[57779]: Failed password for root from 222.186.15.197 port 53416 ssh2 Aug 20 03:59:47 marvibiene sshd[57779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.197 user=root Aug 20 03:59:49 marvibiene sshd[57779]: Failed password for root from 222.186.15.197 port 53416 ssh2 Aug 20 03:59:51 marvibiene sshd[57779]: Failed password for root from 222.186.15.197 port 53416 ssh2 ...	2019-08-20 12:08:50
106.12.56.17	attackbotsspam	Aug 19 21:48:22 motanud sshd\[2399\]: Invalid user temp from 106.12.56.17 port 41628 Aug 19 21:48:22 motanud sshd\[2399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.17 Aug 19 21:48:24 motanud sshd\[2399\]: Failed password for invalid user temp from 106.12.56.17 port 41628 ssh2	2019-08-20 12:13:23

最近上报的IP列表

116.181.238.139	215.36.197.59	8.168.105.100	51.27.110.210
157.96.192.253	60.32.242.186	183.26.207.96	192.6.49.121
142.234.255.143	154.45.90.97	37.246.143.187	17.87.15.78
130.45.162.164	200.136.0.211	17.132.92.186	23.8.40.98
11.35.40.212	136.4.211.239	125.155.163.211	125.21.163.79