139.99.37.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Oct 13 17:07:43 sauna sshd[160889]: Failed password for root from 139.99.37.134 port 56616 ssh2 ...	2019-10-13 22:34:16
attackbotsspam	Oct 11 06:10:53 localhost sshd\[35407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root Oct 11 06:10:54 localhost sshd\[35407\]: Failed password for root from 139.99.37.134 port 38946 ssh2 Oct 11 06:16:16 localhost sshd\[35639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root Oct 11 06:16:18 localhost sshd\[35639\]: Failed password for root from 139.99.37.134 port 50580 ssh2 Oct 11 06:21:43 localhost sshd\[35848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root ...	2019-10-11 14:22:49
attackspambots	SSH bruteforce	2019-10-05 23:02:28

类型

评论内容

时间

attackbots

Oct 13 17:07:43 sauna sshd[160889]: Failed password for root from 139.99.37.134 port 56616 ssh2
...

2019-10-13 22:34:16

attackbotsspam

Oct 11 06:10:53 localhost sshd\[35407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134  user=root
Oct 11 06:10:54 localhost sshd\[35407\]: Failed password for root from 139.99.37.134 port 38946 ssh2
Oct 11 06:16:16 localhost sshd\[35639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134  user=root
Oct 11 06:16:18 localhost sshd\[35639\]: Failed password for root from 139.99.37.134 port 50580 ssh2
Oct 11 06:21:43 localhost sshd\[35848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134  user=root
...

2019-10-11 14:22:49

attackspambots

SSH bruteforce

2019-10-05 23:02:28

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.37.24	attackspambots	2020-06-13T15:17:21.253757h2857900.stratoserver.net sshd[14742]: Invalid user fake from 139.99.37.24 port 42658 2020-06-13T15:17:22.729998h2857900.stratoserver.net sshd[14744]: Invalid user admin from 139.99.37.24 port 45648 ...	2020-06-13 21:21:40
139.99.37.130	attackspambots	Nov 22 21:33:45 DAAP sshd[24409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 user=backup Nov 22 21:33:46 DAAP sshd[24409]: Failed password for backup from 139.99.37.130 port 47792 ssh2 Nov 22 21:37:57 DAAP sshd[24440]: Invalid user shopsupport from 139.99.37.130 port 57114 Nov 22 21:37:57 DAAP sshd[24440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Nov 22 21:37:57 DAAP sshd[24440]: Invalid user shopsupport from 139.99.37.130 port 57114 Nov 22 21:37:59 DAAP sshd[24440]: Failed password for invalid user shopsupport from 139.99.37.130 port 57114 ssh2 ...	2019-11-23 06:53:54
139.99.37.130	attack	Invalid user barit from 139.99.37.130 port 48420	2019-11-16 21:50:11
139.99.37.130	attack	[Aegis] @ 2019-11-09 07:27:59 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-11-09 15:57:41
139.99.37.130	attackspambots	Nov 2 17:13:22 [host] sshd[27934]: Invalid user danb from 139.99.37.130 Nov 2 17:13:22 [host] sshd[27934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Nov 2 17:13:24 [host] sshd[27934]: Failed password for invalid user danb from 139.99.37.130 port 40456 ssh2	2019-11-03 00:32:27
139.99.37.130	attack	Oct 18 03:52:56 work-partkepr sshd\[16929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 user=root Oct 18 03:52:57 work-partkepr sshd\[16929\]: Failed password for root from 139.99.37.130 port 2472 ssh2 ...	2019-10-18 14:45:39
139.99.37.130	attackbotsspam	Oct 13 20:51:10 nandi sshd[28138]: Failed password for r.r from 139.99.37.130 port 63452 ssh2 Oct 13 20:51:10 nandi sshd[28138]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:14:17 nandi sshd[20327]: Failed password for r.r from 139.99.37.130 port 61756 ssh2 Oct 13 21:14:17 nandi sshd[20327]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:20:19 nandi sshd[26326]: Failed password for r.r from 139.99.37.130 port 34244 ssh2 Oct 13 21:20:19 nandi sshd[26326]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:26:10 nandi sshd[1507]: Failed password for r.r from 139.99.37.130 port 6720 ssh2 Oct 13 21:26:10 nandi sshd[1507]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:31:54 nandi sshd[7816]: Failed password for r.r from 139.99.37.130 port 43176 ssh2 Oct 13 21:31:55 nandi sshd[7816]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:37:31 nandi sshd[14021]:........ -------------------------------	2019-10-14 18:55:09
139.99.37.130	attack	2019-08-23 17:03:29,038 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 2019-08-23 20:14:57,802 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 2019-08-23 23:24:35,283 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 ...	2019-10-03 15:12:32
139.99.37.130	attackbotsspam	Sep 29 02:08:08 aat-srv002 sshd[3866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 29 02:08:10 aat-srv002 sshd[3866]: Failed password for invalid user hy123 from 139.99.37.130 port 15394 ssh2 Sep 29 02:12:15 aat-srv002 sshd[4010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 29 02:12:18 aat-srv002 sshd[4010]: Failed password for invalid user fernanda123 from 139.99.37.130 port 52164 ssh2 ...	2019-09-29 16:54:01
139.99.37.130	attackspam	Sep 27 23:00:10 microserver sshd[12401]: Invalid user system from 139.99.37.130 port 1658 Sep 27 23:00:10 microserver sshd[12401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:00:12 microserver sshd[12401]: Failed password for invalid user system from 139.99.37.130 port 1658 ssh2 Sep 27 23:05:17 microserver sshd[13240]: Invalid user fcube from 139.99.37.130 port 38368 Sep 27 23:05:17 microserver sshd[13240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:18:49 microserver sshd[14857]: Invalid user system from 139.99.37.130 port 20512 Sep 27 23:18:49 microserver sshd[14857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:18:51 microserver sshd[14857]: Failed password for invalid user system from 139.99.37.130 port 20512 ssh2 Sep 27 23:23:26 microserver sshd[15550]: Invalid user skyrix from 139.99.37.130 port 57210 Se	2019-09-28 06:27:38
139.99.37.157	attackspambots	fail2ban	2019-09-25 18:49:19
139.99.37.130	attack	Sep 25 06:12:43 SilenceServices sshd[9243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 25 06:12:45 SilenceServices sshd[9243]: Failed password for invalid user 123 from 139.99.37.130 port 34802 ssh2 Sep 25 06:16:33 SilenceServices sshd[10253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130	2019-09-25 12:35:53
139.99.37.130	attack	Sep 24 08:32:18 markkoudstaal sshd[32291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 24 08:32:20 markkoudstaal sshd[32291]: Failed password for invalid user ftp from 139.99.37.130 port 7052 ssh2 Sep 24 08:37:03 markkoudstaal sshd[32743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130	2019-09-24 14:48:00
139.99.37.130	attackspambots	Sep 23 16:45:11 server sshd\[12275\]: Invalid user test from 139.99.37.130 port 24060 Sep 23 16:45:11 server sshd\[12275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 23 16:45:13 server sshd\[12275\]: Failed password for invalid user test from 139.99.37.130 port 24060 ssh2 Sep 23 16:49:56 server sshd\[31943\]: Invalid user helenl from 139.99.37.130 port 62556 Sep 23 16:49:56 server sshd\[31943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130	2019-09-23 22:03:21
139.99.37.130	attackbotsspam	2019-09-21T10:53:45.7558501495-001 sshd\[54107\]: Failed password for invalid user webmaster from 139.99.37.130 port 47988 ssh2 2019-09-21T11:08:09.6264081495-001 sshd\[55221\]: Invalid user gast2 from 139.99.37.130 port 37378 2019-09-21T11:08:09.6299091495-001 sshd\[55221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip130.ip-139-99-37.net 2019-09-21T11:08:12.0932511495-001 sshd\[55221\]: Failed password for invalid user gast2 from 139.99.37.130 port 37378 ssh2 2019-09-21T11:12:57.7828871495-001 sshd\[55551\]: Invalid user mainville from 139.99.37.130 port 12518 2019-09-21T11:12:57.7860491495-001 sshd\[55551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip130.ip-139-99-37.net ...	2019-09-21 23:22:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.37.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.37.134.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100500 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 05 23:02:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

134.37.99.139.in-addr.arpa domain name pointer ip134.ip-139-99-37.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.37.99.139.in-addr.arpa	name = ip134.ip-139-99-37.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
118.174.139.118	attackspam	Jul 22 17:24:15 plg sshd[12811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.139.118 Jul 22 17:24:17 plg sshd[12811]: Failed password for invalid user rabbitmq from 118.174.139.118 port 57952 ssh2 Jul 22 17:27:36 plg sshd[12860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.139.118 Jul 22 17:27:38 plg sshd[12860]: Failed password for invalid user hah from 118.174.139.118 port 38596 ssh2 Jul 22 17:30:51 plg sshd[12903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.139.118 Jul 22 17:30:53 plg sshd[12903]: Failed password for invalid user www from 118.174.139.118 port 49982 ssh2 ...	2020-07-23 01:03:49
106.13.231.103	attackbotsspam	Jul 22 17:53:13 rancher-0 sshd[518003]: Invalid user boi from 106.13.231.103 port 54316 ...	2020-07-23 00:53:54
222.186.30.57	attackspam	Jul 22 19:17:28 PorscheCustomer sshd[5319]: Failed password for root from 222.186.30.57 port 17870 ssh2 Jul 22 19:17:39 PorscheCustomer sshd[5323]: Failed password for root from 222.186.30.57 port 42007 ssh2 ...	2020-07-23 01:18:48
106.13.110.74	attackspam	Jul 23 00:50:40 localhost sshd[863627]: Connection closed by 106.13.110.74 port 56054 [preauth] ...	2020-07-23 01:12:27
64.225.42.124	attack	Attempted WordPress login: "GET /wp-login.php"	2020-07-23 00:50:37
62.213.172.200	attackspam	TCP (SYN) 62.213.172.200:11981 -> port 80, len 44	2020-07-23 01:23:01
14.225.17.9	attackbotsspam	Jul 22 17:24:44 inter-technics sshd[32204]: Invalid user labuser1 from 14.225.17.9 port 60506 Jul 22 17:24:44 inter-technics sshd[32204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.225.17.9 Jul 22 17:24:44 inter-technics sshd[32204]: Invalid user labuser1 from 14.225.17.9 port 60506 Jul 22 17:24:46 inter-technics sshd[32204]: Failed password for invalid user labuser1 from 14.225.17.9 port 60506 ssh2 Jul 22 17:28:18 inter-technics sshd[32439]: Invalid user mayer from 14.225.17.9 port 51992 ...	2020-07-23 01:04:07
13.210.228.162	attackbots	[Wed Jul 22 09:36:42.183331 2020] [php7:error] [pid 60683] [client 13.210.228.162:63114] script /Volumes/ColoData/WebSites/cnccoop.com/wp-login.php not found or unable to stat	2020-07-23 00:53:11
192.35.169.17	attack	Firewall Dropped Connection	2020-07-23 01:13:45
193.35.51.13	attack	Jul 22 18:14:35 relay postfix/smtpd\[7459\]: warning: unknown\[193.35.51.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 18:14:53 relay postfix/smtpd\[7458\]: warning: unknown\[193.35.51.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 18:18:09 relay postfix/smtpd\[7455\]: warning: unknown\[193.35.51.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 18:18:27 relay postfix/smtpd\[5768\]: warning: unknown\[193.35.51.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 18:31:11 relay postfix/smtpd\[5768\]: warning: unknown\[193.35.51.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-23 00:54:49
193.112.126.198	attackspambots	2020-07-22T16:46:35.951862amanda2.illicoweb.com sshd\[4599\]: Invalid user alena from 193.112.126.198 port 46520 2020-07-22T16:46:35.957315amanda2.illicoweb.com sshd\[4599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.126.198 2020-07-22T16:46:38.032423amanda2.illicoweb.com sshd\[4599\]: Failed password for invalid user alena from 193.112.126.198 port 46520 ssh2 2020-07-22T16:50:53.393925amanda2.illicoweb.com sshd\[4860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.126.198 user=nobody 2020-07-22T16:50:55.554342amanda2.illicoweb.com sshd\[4860\]: Failed password for nobody from 193.112.126.198 port 34424 ssh2 ...	2020-07-23 00:58:25
101.69.200.162	attack	[ssh] SSH attack	2020-07-23 00:57:07
45.95.168.77	attackbots	Jul 22 18:39:55 mail postfix/smtpd\[23666\]: warning: unknown\[45.95.168.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 19:02:02 mail postfix/smtpd\[24089\]: warning: unknown\[45.95.168.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 19:02:02 mail postfix/smtpd\[24446\]: warning: unknown\[45.95.168.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 19:02:02 mail postfix/smtpd\[24447\]: warning: unknown\[45.95.168.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-07-23 01:14:13
218.92.0.246	attackspambots	Jul 22 18:57:06 PorscheCustomer sshd[4909]: Failed password for root from 218.92.0.246 port 34298 ssh2 Jul 22 18:57:19 PorscheCustomer sshd[4909]: error: maximum authentication attempts exceeded for root from 218.92.0.246 port 34298 ssh2 [preauth] Jul 22 18:57:26 PorscheCustomer sshd[4912]: Failed password for root from 218.92.0.246 port 2648 ssh2 ...	2020-07-23 00:59:37
141.98.10.197	attack	Jul 22 17:11:06 django-0 sshd[6898]: Invalid user admin from 141.98.10.197 ...	2020-07-23 01:11:41

最近上报的IP列表

5.175.92.33	2.134.12.143	45.40.199.87	190.55.2.188
5.104.111.46	50.108.63.246	144.91.64.167	202.128.228.121
190.219.200.31	40.136.193.54	1.241.114.42	84.120.247.150
200.113.164.140	182.206.93.2	67.120.179.107	54.106.223.111
251.103.177.130	57.199.65.159	205.162.85.69	145.46.152.124