139.99.121.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	139.99.121.6 - - [06/Oct/2020:00:21:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [06/Oct/2020:00:21:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2257 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [06/Oct/2020:00:21:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2253 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-06 07:56:46
attackspambots	REQUESTED PAGE: /wp-login.php	2020-10-06 00:18:16
attackspambots	139.99.121.6 - - [05/Oct/2020:05:08:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [05/Oct/2020:05:08:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [05/Oct/2020:05:08:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-05 16:17:49
attack	(mod_security) mod_security (id:20000005) triggered by 139.99.121.6 (SG/Singapore/ns558710.ip-139-99-121.net): 5 in the last 300 secs	2020-07-15 22:24:29
attack	Attempting to access Wordpress login on a honeypot or private system.	2020-07-12 13:55:47
attack	C1,DEF GET /wp-login.php	2020-07-06 12:27:35
attackbotsspam	139.99.121.6 - - [30/Jun/2020:14:22:02 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [30/Jun/2020:14:22:04 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - [30/Jun/2020:14:22:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-30 23:47:38
attackbotsspam	139.99.121.6 - - \[07/May/2020:14:49:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[07/May/2020:14:49:41 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-07 23:58:04
attack	Automatic report - Banned IP Access	2020-05-03 17:19:20
attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-11-14 20:00:43
attackspambots	139.99.121.6 - - \[29/Oct/2019:08:55:24 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[29/Oct/2019:08:55:25 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-29 17:36:26
attackbotsspam	139.99.121.6 - - \[24/Oct/2019:20:14:14 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.99.121.6 - - \[24/Oct/2019:20:14:15 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-25 06:38:12
attackbotsspam	Automatic report - XMLRPC Attack	2019-10-22 22:11:27
attackbots	ENG,WP GET /wp-login.php	2019-10-16 18:23:41
attack	Automatic report - XMLRPC Attack	2019-10-11 07:47:59

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.121.227	attackbotsspam	20 attempts against mh-misbehave-ban on hill	2020-06-12 15:36:50
139.99.121.10	attackspam	Automatic report - Banned IP Access	2019-08-04 21:21:48
139.99.121.10	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-08-04 05:43:24
139.99.121.10	attack	WordPress brute force	2019-07-14 07:52:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.121.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53098
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.121.6.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101001 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 11 07:47:56 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

6.121.99.139.in-addr.arpa domain name pointer ns558710.ip-139-99-121.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.121.99.139.in-addr.arpa	name = ns558710.ip-139-99-121.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
138.197.118.32	attackbots	SSH Brute Force	2020-04-16 17:11:35
222.186.175.216	attackspam	Apr 16 12:20:37 ift sshd\[28268\]: Failed password for root from 222.186.175.216 port 56696 ssh2Apr 16 12:20:39 ift sshd\[28268\]: Failed password for root from 222.186.175.216 port 56696 ssh2Apr 16 12:20:42 ift sshd\[28268\]: Failed password for root from 222.186.175.216 port 56696 ssh2Apr 16 12:20:46 ift sshd\[28268\]: Failed password for root from 222.186.175.216 port 56696 ssh2Apr 16 12:20:49 ift sshd\[28268\]: Failed password for root from 222.186.175.216 port 56696 ssh2 ...	2020-04-16 17:21:34
115.231.231.3	attack	2020-04-16T07:48:09.457707Z 669b3db3555c New connection: 115.231.231.3:38768 (172.17.0.5:2222) [session: 669b3db3555c] 2020-04-16T08:04:08.799057Z 7e45c7c44d7c New connection: 115.231.231.3:53802 (172.17.0.5:2222) [session: 7e45c7c44d7c]	2020-04-16 17:35:47
150.158.118.154	attackbots	Bruteforce detected by fail2ban	2020-04-16 17:56:50
67.245.202.208	attackspambots	k+ssh-bruteforce	2020-04-16 17:15:31
115.79.35.110	attackbotsspam	Lines containing failures of 115.79.35.110 Apr 16 07:29:52 own sshd[25304]: Invalid user testuser from 115.79.35.110 port 62685 Apr 16 07:29:52 own sshd[25304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.35.110 Apr 16 07:29:54 own sshd[25304]: Failed password for invalid user testuser from 115.79.35.110 port 62685 ssh2 Apr 16 07:29:55 own sshd[25304]: Received disconnect from 115.79.35.110 port 62685:11: Bye Bye [preauth] Apr 16 07:29:55 own sshd[25304]: Disconnected from invalid user testuser 115.79.35.110 port 62685 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.79.35.110	2020-04-16 17:19:20
37.187.12.126	attackspambots	Invalid user annie from 37.187.12.126 port 60916	2020-04-16 17:32:43
1.193.160.164	attackspam	Apr 16 09:34:09 sshd[12875]: Failed password for invalid user scs from 1.193.160.164 port 43700 ssh2	2020-04-16 17:53:58
222.186.30.167	attack	Apr 16 11:20:46 OPSO sshd\[26462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Apr 16 11:20:48 OPSO sshd\[26462\]: Failed password for root from 222.186.30.167 port 42242 ssh2 Apr 16 11:20:50 OPSO sshd\[26462\]: Failed password for root from 222.186.30.167 port 42242 ssh2 Apr 16 11:20:52 OPSO sshd\[26462\]: Failed password for root from 222.186.30.167 port 42242 ssh2 Apr 16 11:30:46 OPSO sshd\[28026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root	2020-04-16 17:31:50
1.160.149.56	attackbots	Automatic report - Port Scan Attack	2020-04-16 17:41:12
165.22.98.172	attackspam	(From fernandes.magdalena@yahoo.com) Hi NEW Hydravid PRO is the next generation software program for fast video creation and syndication. What’s more, creating videos has never been easier than the drag and drop interface within this software. You can easily syndicate out to multiple accounts on the biggest video platforms in the world, with just one click or schedule them live on Facebook or YouTube. MORE INFO HERE=> https://bit.ly/2wDN8Kr Kind Regards, Magdalena Fernandes	2020-04-16 17:46:52
192.241.238.90	attackbots	Unauthorized connection attempt detected from IP address 192.241.238.90 to port 8080	2020-04-16 17:28:08
109.235.189.159	attackbots	Apr 16 10:50:00 eventyay sshd[30406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.235.189.159 Apr 16 10:50:02 eventyay sshd[30406]: Failed password for invalid user musikbot from 109.235.189.159 port 38442 ssh2 Apr 16 10:53:47 eventyay sshd[30518]: Failed password for root from 109.235.189.159 port 41513 ssh2 ...	2020-04-16 17:17:50
139.59.56.174	attackspambots	Apr 16 08:37:35 debian-2gb-nbg1-2 kernel: \[9278036.981010\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.59.56.174 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=27143 PROTO=TCP SPT=54304 DPT=22996 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-16 18:00:26
167.172.145.243	attack	SIP/5060 Probe, BF, Hack -	2020-04-16 17:18:09

最近上报的IP列表

68.74.123.67	216.246.108.218	111.92.191.160	121.12.252.10
36.255.253.89	10.163.240.171	106.13.125.159	18.189.195.183
169.198.162.52	105.165.6.55	60.189.125.122	36.89.237.154
125.39.240.247	217.182.197.93	45.7.4.62	116.139.63.143
180.176.213.215	1.52.34.14	182.53.148.234	124.165.159.223