139.99.125.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	3320/tcp [2020-03-23]1pkt	2020-03-23 20:06:07

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.125.58	attackspam	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=10001 . dstport=32936 . (1089)	2020-09-17 19:04:12
139.99.125.230	attack	TCP (SYN) 139.99.125.230:51409 -> port 22, len 48	2020-09-01 21:06:56
139.99.125.231	attackspambots	TCP (SYN) 139.99.125.231:50637 -> port 22, len 48	2020-09-01 19:04:17
139.99.125.230	attack	SmallBizIT.US 1 packets to tcp(22)	2020-09-01 18:25:28
139.99.125.230	attackspambots	2020-08-31T19:25:50.598331abusebot-2.cloudsearch.cf sshd[11620]: Invalid user ubnt from 139.99.125.230 port 59752 2020-08-31T19:25:50.645193abusebot-2.cloudsearch.cf sshd[11622]: Invalid user admin from 139.99.125.230 port 35698 2020-08-31T19:25:50.647160abusebot-2.cloudsearch.cf sshd[11626]: Invalid user 1234 from 139.99.125.230 port 43918 2020-08-31T19:25:51.722996abusebot-2.cloudsearch.cf sshd[11628]: Invalid user usuario from 139.99.125.230 port 49656 ...	2020-09-01 03:42:24
139.99.125.84	attackspambots	Port probing on unauthorized port 22	2020-08-29 02:11:39
139.99.125.86	attack	Attempted connection to port 64129.	2020-08-24 21:24:56
139.99.125.191	attackspam	139.99.125.191 was recorded 6 times by 4 hosts attempting to connect to the following ports: 26014,50570,39019,51856. Incident counter (4h, 24h, all-time): 6, 31, 1174	2020-04-28 21:33:58
139.99.125.191	attackbotsspam	139.99.125.191 was recorded 11 times by 7 hosts attempting to connect to the following ports: 26014,51856,39019,20269,50570,60429. Incident counter (4h, 24h, all-time): 11, 19, 1146	2020-04-27 23:12:32
139.99.125.191	attack	139.99.125.191 was recorded 28 times by 9 hosts attempting to connect to the following ports: 50570,51856,39019,54434,56610,52084,20269,60429,51142. Incident counter (4h, 24h, all-time): 28, 86, 1123	2020-04-25 21:06:30
139.99.125.191	attack	Port 27034 scan denied	2020-03-28 19:23:50
139.99.125.191	attackbots	139.99.125.191 was recorded 13 times by 8 hosts attempting to connect to the following ports: 39019,54434,20269,51856,56610,52084,60429,51142. Incident counter (4h, 24h, all-time): 13, 112, 855	2020-03-28 06:26:16
139.99.125.191	attackbotsspam	139.99.125.191 was recorded 8 times by 5 hosts attempting to connect to the following ports: 60429,54434,50570,52084,51142. Incident counter (4h, 24h, all-time): 8, 116, 846	2020-03-28 04:19:40
139.99.125.191	attackspam	probes 16 times on the port 34928 59003 62781	2020-03-27 18:25:06
139.99.125.191	attackspambots	139.99.125.191 was recorded 20 times by 9 hosts attempting to connect to the following ports: 51856,39019,50570,52084,54434,56610,51142,60429,26014. Incident counter (4h, 24h, all-time): 20, 82, 683	2020-03-26 16:58:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.125.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14167
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.125.22.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032300 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 20:06:02 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

22.125.99.139.in-addr.arpa domain name pointer ns564104.ip-139-99-125.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.125.99.139.in-addr.arpa	name = ns564104.ip-139-99-125.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.163.180.183	attackbotsspam	May 9 04:16:31 PorscheCustomer sshd[14705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.163.180.183 May 9 04:16:33 PorscheCustomer sshd[14705]: Failed password for invalid user creator from 201.163.180.183 port 34783 ssh2 May 9 04:20:41 PorscheCustomer sshd[14813]: Failed password for root from 201.163.180.183 port 39009 ssh2 ...	2020-05-09 13:22:09
140.143.236.54	attackspambots	Unauthorized connection attempt detected from IP address 140.143.236.54 to port 12103 [T]	2020-05-09 13:26:10
112.85.42.72	attack	May 9 03:02:52 pkdns2 sshd\[31853\]: Failed password for root from 112.85.42.72 port 13884 ssh2May 9 03:02:54 pkdns2 sshd\[31853\]: Failed password for root from 112.85.42.72 port 13884 ssh2May 9 03:02:57 pkdns2 sshd\[31853\]: Failed password for root from 112.85.42.72 port 13884 ssh2May 9 03:03:11 pkdns2 sshd\[31887\]: Failed password for root from 112.85.42.72 port 14561 ssh2May 9 03:11:45 pkdns2 sshd\[32263\]: Failed password for root from 112.85.42.72 port 43772 ssh2May 9 03:11:47 pkdns2 sshd\[32263\]: Failed password for root from 112.85.42.72 port 43772 ssh2 ...	2020-05-09 13:43:06
103.109.179.74	attack	Automatic report - Port Scan Attack	2020-05-09 13:21:13
118.24.210.254	attackspam	May 9 04:49:06 mout sshd[31225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.210.254 user=root May 9 04:49:08 mout sshd[31225]: Failed password for root from 118.24.210.254 port 54368 ssh2	2020-05-09 13:41:49
85.239.35.161	attackbotsspam	May 9 04:58:12 srv206 sshd[17073]: Invalid user admin from 85.239.35.161 ...	2020-05-09 13:38:22
173.252.95.16	attackspambots	(mod_security) mod_security (id:20000006) triggered by 173.252.95.16 (US/United States/fwdproxy-atn-016.fbsv.net): 5 in the last 300 secs	2020-05-09 13:37:25
58.64.157.162	attackspambots	20/5/8@20:50:06: FAIL: Alarm-Network address from=58.64.157.162 ...	2020-05-09 14:02:38
178.128.217.135	attackspambots	May 9 02:03:43 lock-38 sshd[2126510]: Failed password for invalid user natasha from 178.128.217.135 port 58022 ssh2 May 9 02:03:43 lock-38 sshd[2126510]: Disconnected from invalid user natasha 178.128.217.135 port 58022 [preauth] May 9 02:12:24 lock-38 sshd[2126825]: Invalid user ftpuser from 178.128.217.135 port 51484 May 9 02:12:24 lock-38 sshd[2126825]: Invalid user ftpuser from 178.128.217.135 port 51484 May 9 02:12:24 lock-38 sshd[2126825]: Failed password for invalid user ftpuser from 178.128.217.135 port 51484 ssh2 ...	2020-05-09 13:22:25
194.26.29.114	attack	May 9 04:53:25 debian-2gb-nbg1-2 kernel: \[11251683.296101\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.114 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=38762 PROTO=TCP SPT=48496 DPT=5294 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-09 13:27:56
190.60.200.126	attackspambots	May 9 04:54:44 buvik sshd[19299]: Failed password for root from 190.60.200.126 port 53830 ssh2 May 9 04:58:24 buvik sshd[19836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.200.126 user=root May 9 04:58:26 buvik sshd[19836]: Failed password for root from 190.60.200.126 port 55207 ssh2 ...	2020-05-09 13:22:51
104.211.54.133	attackbots	May 8 14:30:44 santamaria sshd\[1120\]: Invalid user alejandra from 104.211.54.133 May 8 14:30:44 santamaria sshd\[1120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.54.133 May 8 14:30:46 santamaria sshd\[1120\]: Failed password for invalid user alejandra from 104.211.54.133 port 49280 ssh2 ...	2020-05-09 13:54:21
118.24.197.247	attackbotsspam	May 9 02:10:44 vps sshd[37146]: Failed password for invalid user tomek from 118.24.197.247 port 32784 ssh2 May 9 02:15:08 vps sshd[59170]: Invalid user share from 118.24.197.247 port 51126 May 9 02:15:08 vps sshd[59170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.197.247 May 9 02:15:09 vps sshd[59170]: Failed password for invalid user share from 118.24.197.247 port 51126 ssh2 May 9 02:19:36 vps sshd[76580]: Invalid user info3 from 118.24.197.247 port 41240 ...	2020-05-09 13:24:56
106.13.181.170	attack	srv02 Mass scanning activity detected Target: 30769 ..	2020-05-09 13:41:20
167.172.57.75	attack	DATE:2020-05-09 04:20:41, IP:167.172.57.75, PORT:ssh SSH brute force auth (docker-dc)	2020-05-09 14:01:46

最近上报的IP列表

115.86.94.62	51.141.11.240	176.88.224.94	110.139.57.91
31.168.241.114	176.195.60.86	121.196.197.227	240.245.185.143
176.41.176.250	135.189.84.201	43.145.178.80	163.231.27.228
207.232.16.184	57.9.6.34	138.248.1.172	14.181.160.233
46.218.189.93	188.194.95.158	142.52.191.232	234.37.70.114