139.99.121.10 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report - Banned IP Access	2019-08-04 21:21:48
attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-08-04 05:43:24
attack	WordPress brute force	2019-07-14 07:52:01

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.121.6	attackspambots	139.99.121.6 - - [06/Oct/2020:00:21:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [06/Oct/2020:00:21:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2257 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [06/Oct/2020:00:21:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2253 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-06 07:56:46
139.99.121.6	attackspambots	REQUESTED PAGE: /wp-login.php	2020-10-06 00:18:16
139.99.121.6	attackspambots	139.99.121.6 - - [05/Oct/2020:05:08:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [05/Oct/2020:05:08:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [05/Oct/2020:05:08:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-05 16:17:49
139.99.121.6	attack	(mod_security) mod_security (id:20000005) triggered by 139.99.121.6 (SG/Singapore/ns558710.ip-139-99-121.net): 5 in the last 300 secs	2020-07-15 22:24:29
139.99.121.6	attack	Attempting to access Wordpress login on a honeypot or private system.	2020-07-12 13:55:47
139.99.121.6	attack	C1,DEF GET /wp-login.php	2020-07-06 12:27:35
139.99.121.6	attackbotsspam	139.99.121.6 - - [30/Jun/2020:14:22:02 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [30/Jun/2020:14:22:04 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [30/Jun/2020:14:22:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-30 23:47:38
139.99.121.227	attackbotsspam	20 attempts against mh-misbehave-ban on hill	2020-06-12 15:36:50
139.99.121.6	attackbotsspam	139.99.121.6 - - \[07/May/2020:14:49:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:41 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-07 23:58:04
139.99.121.6	attack	Automatic report - Banned IP Access	2020-05-03 17:19:20
139.99.121.6	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-11-14 20:00:43
139.99.121.6	attackspambots	139.99.121.6 - - \[29/Oct/2019:08:55:24 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[29/Oct/2019:08:55:25 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-29 17:36:26
139.99.121.6	attackbotsspam	139.99.121.6 - - \[24/Oct/2019:20:14:14 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[24/Oct/2019:20:14:15 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-25 06:38:12
139.99.121.6	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-22 22:11:27
139.99.121.6	attackbots	ENG,WP GET /wp-login.php	2019-10-16 18:23:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.121.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42243
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.121.10.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 14 07:51:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

10.121.99.139.in-addr.arpa domain name pointer ns559422.ip-139-99-121.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.121.99.139.in-addr.arpa	name = ns559422.ip-139-99-121.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.130.11.162	attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-30T23:24:47Z	2020-10-01 07:58:53
45.129.33.43	attackbots	scans 13 times in preceeding hours on the ports (in chronological order) 28571 28954 28599 28505 28727 28879 28604 28928 28739 28835 28974 28758 28723 resulting in total of 113 scans from 45.129.33.0/24 block.	2020-10-01 07:52:47
45.129.33.123	attack	scans 11 times in preceeding hours on the ports (in chronological order) 31499 31377 31182 31229 31452 31172 31313 31395 31196 31479 31243 resulting in total of 113 scans from 45.129.33.0/24 block.	2020-10-01 07:51:32
189.213.108.215	attackspam	Automatic report - Port Scan Attack	2020-10-01 08:00:17
115.56.182.221	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-10-01 08:12:50
103.145.13.179	attack	UDP 103.145.13.179:5298 -> port 5060, len 443	2020-10-01 07:40:03
101.206.162.236	attack	2020-09-30T06:09:16.629046vps773228.ovh.net sshd[8817]: Failed password for mail from 101.206.162.236 port 59466 ssh2 2020-09-30T06:12:56.457315vps773228.ovh.net sshd[8853]: Invalid user admin from 101.206.162.236 port 51408 2020-09-30T06:12:56.470323vps773228.ovh.net sshd[8853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.206.162.236 2020-09-30T06:12:56.457315vps773228.ovh.net sshd[8853]: Invalid user admin from 101.206.162.236 port 51408 2020-09-30T06:12:57.929264vps773228.ovh.net sshd[8853]: Failed password for invalid user admin from 101.206.162.236 port 51408 ssh2 ...	2020-10-01 08:04:36
117.71.57.195	attackbotsspam	Sep 30 14:04:19 lnxweb62 sshd[28781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.71.57.195 Sep 30 14:04:19 lnxweb62 sshd[28781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.71.57.195	2020-10-01 07:59:58
92.63.197.53	attackspambots	srv02 Mass scanning activity detected Target: 4619 ..	2020-10-01 07:42:14
159.65.144.102	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-01 07:57:50
122.51.214.44	attackbots	Sep 30 21:28:34 IngegnereFirenze sshd[9503]: Failed password for invalid user george from 122.51.214.44 port 36874 ssh2 ...	2020-10-01 08:16:50
71.6.146.185	attackspambots	TCP (SYN) 71.6.146.185:30909 -> port 21, len 44	2020-10-01 07:46:44
51.38.37.89	attack	SSH Brute-Force reported by Fail2Ban	2020-10-01 07:48:56
128.199.204.164	attack	Sep 30 19:16:52 ovpn sshd\[24137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.204.164 user=root Sep 30 19:16:54 ovpn sshd\[24137\]: Failed password for root from 128.199.204.164 port 52396 ssh2 Sep 30 19:20:51 ovpn sshd\[25119\]: Invalid user debian from 128.199.204.164 Sep 30 19:20:51 ovpn sshd\[25119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.204.164 Sep 30 19:20:53 ovpn sshd\[25119\]: Failed password for invalid user debian from 128.199.204.164 port 35466 ssh2	2020-10-01 08:15:54
79.137.36.108	attack	Sep 30 19:07:16 george sshd[321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.36.108 Sep 30 19:07:18 george sshd[321]: Failed password for invalid user martina from 79.137.36.108 port 36158 ssh2 Sep 30 19:11:44 george sshd[509]: Invalid user julius from 79.137.36.108 port 44488 Sep 30 19:11:44 george sshd[509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.36.108 Sep 30 19:11:46 george sshd[509]: Failed password for invalid user julius from 79.137.36.108 port 44488 ssh2 ...	2020-10-01 07:45:28

最近上报的IP列表

131.153.50.151	197.26.182.107	183.83.191.53	177.128.213.38
1.173.79.35	187.147.56.97	167.91.117.10	190.98.203.190
192.157.226.9	201.243.213.43	197.14.50.12	36.80.132.28
91.185.87.31	89.108.84.80	109.75.37.9	117.69.30.138
105.112.50.72	170.82.22.45	78.190.215.155	60.178.47.102