必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspam
Automatic report - Banned IP Access
2019-08-04 21:21:48
attackspambots
WordPress login Brute force / Web App Attack on client site.
2019-08-04 05:43:24
attack
WordPress brute force
2019-07-14 07:52:01
相同子网IP讨论:
IP 类型 评论内容 时间
139.99.121.6 attackspambots
139.99.121.6 - - [06/Oct/2020:00:21:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [06/Oct/2020:00:21:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2257 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [06/Oct/2020:00:21:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2253 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-06 07:56:46
139.99.121.6 attackspambots
REQUESTED PAGE: /wp-login.php
2020-10-06 00:18:16
139.99.121.6 attackspambots
139.99.121.6 - - [05/Oct/2020:05:08:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [05/Oct/2020:05:08:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [05/Oct/2020:05:08:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-05 16:17:49
139.99.121.6 attack
(mod_security) mod_security (id:20000005) triggered by 139.99.121.6 (SG/Singapore/ns558710.ip-139-99-121.net): 5 in the last 300 secs
2020-07-15 22:24:29
139.99.121.6 attack
Attempting to access Wordpress login on a honeypot or private system.
2020-07-12 13:55:47
139.99.121.6 attack
C1,DEF GET /wp-login.php
2020-07-06 12:27:35
139.99.121.6 attackbotsspam
139.99.121.6 - - [30/Jun/2020:14:22:02 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [30/Jun/2020:14:22:04 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - [30/Jun/2020:14:22:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-06-30 23:47:38
139.99.121.227 attackbotsspam
20 attempts against mh-misbehave-ban on hill
2020-06-12 15:36:50
139.99.121.6 attackbotsspam
139.99.121.6 - - \[07/May/2020:14:49:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - \[07/May/2020:14:49:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - \[07/May/2020:14:49:41 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-05-07 23:58:04
139.99.121.6 attack
Automatic report - Banned IP Access
2020-05-03 17:19:20
139.99.121.6 attackbotsspam
WordPress login Brute force / Web App Attack on client site.
2019-11-14 20:00:43
139.99.121.6 attackspambots
139.99.121.6 - - \[29/Oct/2019:08:55:24 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - \[29/Oct/2019:08:55:25 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
...
2019-10-29 17:36:26
139.99.121.6 attackbotsspam
139.99.121.6 - - \[24/Oct/2019:20:14:14 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
139.99.121.6 - - \[24/Oct/2019:20:14:15 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
...
2019-10-25 06:38:12
139.99.121.6 attackbotsspam
Automatic report - XMLRPC Attack
2019-10-22 22:11:27
139.99.121.6 attackbots
ENG,WP GET /wp-login.php
2019-10-16 18:23:41
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.121.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42243
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.121.10.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 14 07:51:56 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
10.121.99.139.in-addr.arpa domain name pointer ns559422.ip-139-99-121.net.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.121.99.139.in-addr.arpa	name = ns559422.ip-139-99-121.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
137.74.42.215 attack
scan z
2020-01-02 08:55:44
200.87.233.68 attack
Jan  2 01:53:43 v22018076622670303 sshd\[20066\]: Invalid user clamav1 from 200.87.233.68 port 41915
Jan  2 01:53:43 v22018076622670303 sshd\[20066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.87.233.68
Jan  2 01:53:45 v22018076622670303 sshd\[20066\]: Failed password for invalid user clamav1 from 200.87.233.68 port 41915 ssh2
...
2020-01-02 08:55:11
51.77.157.78 attack
Jan  1 18:33:27 TORMINT sshd\[23441\]: Invalid user boden from 51.77.157.78
Jan  1 18:33:27 TORMINT sshd\[23441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.78
Jan  1 18:33:29 TORMINT sshd\[23441\]: Failed password for invalid user boden from 51.77.157.78 port 55388 ssh2
...
2020-01-02 08:38:11
142.93.48.216 attackbots
Automatic report - XMLRPC Attack
2020-01-02 08:52:40
193.29.13.22 attackbotsspam
20 attempts against mh-misbehave-ban on sonic.magehost.pro
2020-01-02 08:56:03
129.204.50.75 attack
2020-01-02T00:24:30.644269shield sshd\[8787\]: Invalid user admin from 129.204.50.75 port 47048
2020-01-02T00:24:30.649138shield sshd\[8787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.50.75
2020-01-02T00:24:32.977966shield sshd\[8787\]: Failed password for invalid user admin from 129.204.50.75 port 47048 ssh2
2020-01-02T00:27:21.214449shield sshd\[9729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.50.75  user=root
2020-01-02T00:27:23.352513shield sshd\[9729\]: Failed password for root from 129.204.50.75 port 44510 ssh2
2020-01-02 08:35:46
152.170.38.128 attack
F2B blocked SSH bruteforcing
2020-01-02 08:54:29
100.34.12.102 attack
SSH Brute Force, server-1 sshd[19489]: Failed password for invalid user ubuntudesktop from 100.34.12.102 port 55726 ssh2
2020-01-02 08:37:58
125.162.94.236 attackbotsspam
1577919091 - 01/01/2020 23:51:31 Host: 125.162.94.236/125.162.94.236 Port: 445 TCP Blocked
2020-01-02 08:59:06
37.49.230.88 attack
Automatic report - Port Scan Attack
2020-01-02 08:46:24
106.75.122.168 attack
2020-01-01T23:44:35.191861pl1.awoom.xyz sshd[22824]: Invalid user schlichting from 106.75.122.168 port 34292
2020-01-01T23:44:35.197194pl1.awoom.xyz sshd[22824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.122.168
2020-01-01T23:44:35.191861pl1.awoom.xyz sshd[22824]: Invalid user schlichting from 106.75.122.168 port 34292
2020-01-01T23:44:37.185177pl1.awoom.xyz sshd[22824]: Failed password for invalid user schlichting from 106.75.122.168 port 34292 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=106.75.122.168
2020-01-02 09:00:59
82.209.250.188 attack
B: Magento admin pass test (wrong country)
2020-01-02 09:06:50
200.29.108.214 attackspam
Jan  2 01:39:12 server sshd\[11921\]: Invalid user zbigniew from 200.29.108.214
Jan  2 01:39:12 server sshd\[11921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=selvamotor.emcali.net.co 
Jan  2 01:39:14 server sshd\[11921\]: Failed password for invalid user zbigniew from 200.29.108.214 port 46753 ssh2
Jan  2 01:51:41 server sshd\[14597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=selvamotor.emcali.net.co  user=operator
Jan  2 01:51:43 server sshd\[14597\]: Failed password for operator from 200.29.108.214 port 25633 ssh2
...
2020-01-02 08:52:07
46.101.105.55 attack
Jan  2 01:44:09 localhost sshd\[3942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.105.55  user=root
Jan  2 01:44:11 localhost sshd\[3942\]: Failed password for root from 46.101.105.55 port 56426 ssh2
Jan  2 01:47:13 localhost sshd\[5008\]: Invalid user doroteya from 46.101.105.55 port 59894
2020-01-02 08:51:16
207.107.67.67 attack
Jan  2 01:56:02 srv-ubuntu-dev3 sshd[116673]: Invalid user armend from 207.107.67.67
Jan  2 01:56:02 srv-ubuntu-dev3 sshd[116673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.107.67.67
Jan  2 01:56:02 srv-ubuntu-dev3 sshd[116673]: Invalid user armend from 207.107.67.67
Jan  2 01:56:05 srv-ubuntu-dev3 sshd[116673]: Failed password for invalid user armend from 207.107.67.67 port 47300 ssh2
Jan  2 01:58:43 srv-ubuntu-dev3 sshd[116920]: Invalid user suvendu from 207.107.67.67
Jan  2 01:58:43 srv-ubuntu-dev3 sshd[116920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.107.67.67
Jan  2 01:58:43 srv-ubuntu-dev3 sshd[116920]: Invalid user suvendu from 207.107.67.67
Jan  2 01:58:45 srv-ubuntu-dev3 sshd[116920]: Failed password for invalid user suvendu from 207.107.67.67 port 47814 ssh2
Jan  2 02:01:30 srv-ubuntu-dev3 sshd[117123]: Invalid user edith from 207.107.67.67
...
2020-01-02 09:13:16

最近上报的IP列表

131.153.50.151 197.26.182.107 183.83.191.53 177.128.213.38
1.173.79.35 187.147.56.97 167.91.117.10 190.98.203.190
192.157.226.9 201.243.213.43 197.14.50.12 36.80.132.28
91.185.87.31 89.108.84.80 109.75.37.9 117.69.30.138
105.112.50.72 170.82.22.45 78.190.215.155 60.178.47.102