139.99.37.157 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	fail2ban	2019-09-25 18:49:19
attackbotsspam	Sep 20 00:32:12 DAAP sshd[9381]: Invalid user fctserver from 139.99.37.157 port 34136 ...	2019-09-20 08:38:58

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.37.24	attackspambots	2020-06-13T15:17:21.253757h2857900.stratoserver.net sshd[14742]: Invalid user fake from 139.99.37.24 port 42658 2020-06-13T15:17:22.729998h2857900.stratoserver.net sshd[14744]: Invalid user admin from 139.99.37.24 port 45648 ...	2020-06-13 21:21:40
139.99.37.130	attackspambots	Nov 22 21:33:45 DAAP sshd[24409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 user=backup Nov 22 21:33:46 DAAP sshd[24409]: Failed password for backup from 139.99.37.130 port 47792 ssh2 Nov 22 21:37:57 DAAP sshd[24440]: Invalid user shopsupport from 139.99.37.130 port 57114 Nov 22 21:37:57 DAAP sshd[24440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Nov 22 21:37:57 DAAP sshd[24440]: Invalid user shopsupport from 139.99.37.130 port 57114 Nov 22 21:37:59 DAAP sshd[24440]: Failed password for invalid user shopsupport from 139.99.37.130 port 57114 ssh2 ...	2019-11-23 06:53:54
139.99.37.130	attack	Invalid user barit from 139.99.37.130 port 48420	2019-11-16 21:50:11
139.99.37.130	attack	[Aegis] @ 2019-11-09 07:27:59 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-11-09 15:57:41
139.99.37.130	attackspambots	Nov 2 17:13:22 [host] sshd[27934]: Invalid user danb from 139.99.37.130 Nov 2 17:13:22 [host] sshd[27934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Nov 2 17:13:24 [host] sshd[27934]: Failed password for invalid user danb from 139.99.37.130 port 40456 ssh2	2019-11-03 00:32:27
139.99.37.130	attack	Oct 18 03:52:56 work-partkepr sshd\[16929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 user=root Oct 18 03:52:57 work-partkepr sshd\[16929\]: Failed password for root from 139.99.37.130 port 2472 ssh2 ...	2019-10-18 14:45:39
139.99.37.130	attackbotsspam	Oct 13 20:51:10 nandi sshd[28138]: Failed password for r.r from 139.99.37.130 port 63452 ssh2 Oct 13 20:51:10 nandi sshd[28138]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:14:17 nandi sshd[20327]: Failed password for r.r from 139.99.37.130 port 61756 ssh2 Oct 13 21:14:17 nandi sshd[20327]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:20:19 nandi sshd[26326]: Failed password for r.r from 139.99.37.130 port 34244 ssh2 Oct 13 21:20:19 nandi sshd[26326]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:26:10 nandi sshd[1507]: Failed password for r.r from 139.99.37.130 port 6720 ssh2 Oct 13 21:26:10 nandi sshd[1507]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:31:54 nandi sshd[7816]: Failed password for r.r from 139.99.37.130 port 43176 ssh2 Oct 13 21:31:55 nandi sshd[7816]: Received disconnect from 139.99.37.130: 11: Bye Bye [preauth] Oct 13 21:37:31 nandi sshd[14021]:........ -------------------------------	2019-10-14 18:55:09
139.99.37.134	attackbots	Oct 13 17:07:43 sauna sshd[160889]: Failed password for root from 139.99.37.134 port 56616 ssh2 ...	2019-10-13 22:34:16
139.99.37.134	attackbotsspam	Oct 11 06:10:53 localhost sshd\[35407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root Oct 11 06:10:54 localhost sshd\[35407\]: Failed password for root from 139.99.37.134 port 38946 ssh2 Oct 11 06:16:16 localhost sshd\[35639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root Oct 11 06:16:18 localhost sshd\[35639\]: Failed password for root from 139.99.37.134 port 50580 ssh2 Oct 11 06:21:43 localhost sshd\[35848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.134 user=root ...	2019-10-11 14:22:49
139.99.37.134	attackspambots	SSH bruteforce	2019-10-05 23:02:28
139.99.37.130	attack	2019-08-23 17:03:29,038 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 2019-08-23 20:14:57,802 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 2019-08-23 23:24:35,283 fail2ban.actions [878]: NOTICE [sshd] Ban 139.99.37.130 ...	2019-10-03 15:12:32
139.99.37.130	attackbotsspam	Sep 29 02:08:08 aat-srv002 sshd[3866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 29 02:08:10 aat-srv002 sshd[3866]: Failed password for invalid user hy123 from 139.99.37.130 port 15394 ssh2 Sep 29 02:12:15 aat-srv002 sshd[4010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 29 02:12:18 aat-srv002 sshd[4010]: Failed password for invalid user fernanda123 from 139.99.37.130 port 52164 ssh2 ...	2019-09-29 16:54:01
139.99.37.130	attackspam	Sep 27 23:00:10 microserver sshd[12401]: Invalid user system from 139.99.37.130 port 1658 Sep 27 23:00:10 microserver sshd[12401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:00:12 microserver sshd[12401]: Failed password for invalid user system from 139.99.37.130 port 1658 ssh2 Sep 27 23:05:17 microserver sshd[13240]: Invalid user fcube from 139.99.37.130 port 38368 Sep 27 23:05:17 microserver sshd[13240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:18:49 microserver sshd[14857]: Invalid user system from 139.99.37.130 port 20512 Sep 27 23:18:49 microserver sshd[14857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 27 23:18:51 microserver sshd[14857]: Failed password for invalid user system from 139.99.37.130 port 20512 ssh2 Sep 27 23:23:26 microserver sshd[15550]: Invalid user skyrix from 139.99.37.130 port 57210 Se	2019-09-28 06:27:38
139.99.37.130	attack	Sep 25 06:12:43 SilenceServices sshd[9243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 25 06:12:45 SilenceServices sshd[9243]: Failed password for invalid user 123 from 139.99.37.130 port 34802 ssh2 Sep 25 06:16:33 SilenceServices sshd[10253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130	2019-09-25 12:35:53
139.99.37.130	attack	Sep 24 08:32:18 markkoudstaal sshd[32291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130 Sep 24 08:32:20 markkoudstaal sshd[32291]: Failed password for invalid user ftp from 139.99.37.130 port 7052 ssh2 Sep 24 08:37:03 markkoudstaal sshd[32743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.37.130	2019-09-24 14:48:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.37.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41938
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.37.157.			IN	A

;; AUTHORITY SECTION:
.			329	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 08:38:55 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

157.37.99.139.in-addr.arpa domain name pointer ip157.ip-139-99-37.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.37.99.139.in-addr.arpa	name = ip157.ip-139-99-37.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
58.150.135.178	attackbots	2019-08-14T23:33:49.7544471240 sshd\[11816\]: Invalid user etfile from 58.150.135.178 port 19226 2019-08-14T23:33:49.7605071240 sshd\[11816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.150.135.178 2019-08-14T23:33:51.3850121240 sshd\[11816\]: Failed password for invalid user etfile from 58.150.135.178 port 19226 ssh2 ...	2019-08-15 07:24:28
222.212.90.32	attackbotsspam	Aug 14 15:03:41 srv206 sshd[11358]: Invalid user juniper from 222.212.90.32 ...	2019-08-15 06:59:36
27.254.206.238	attackbots	Aug 14 22:37:41 MK-Soft-VM5 sshd\[22653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.206.238 user=root Aug 14 22:37:43 MK-Soft-VM5 sshd\[22653\]: Failed password for root from 27.254.206.238 port 37798 ssh2 Aug 14 22:42:48 MK-Soft-VM5 sshd\[22695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.206.238 user=root ...	2019-08-15 06:51:17
202.146.1.4	attackbotsspam	Aug 14 14:57:49 localhost sshd\[5673\]: Invalid user earl from 202.146.1.4 Aug 14 14:57:49 localhost sshd\[5673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.146.1.4 Aug 14 14:57:51 localhost sshd\[5673\]: Failed password for invalid user earl from 202.146.1.4 port 35022 ssh2 Aug 14 15:03:30 localhost sshd\[5984\]: Invalid user ops from 202.146.1.4 Aug 14 15:03:30 localhost sshd\[5984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.146.1.4 ...	2019-08-15 07:11:50
109.87.115.220	attack	Aug 14 19:29:09 XXX sshd[21669]: Invalid user ofsaa from 109.87.115.220 port 50139	2019-08-15 07:00:44
78.194.214.19	attackspambots	2019-08-14T15:12:34.084795abusebot-4.cloudsearch.cf sshd\[31922\]: Invalid user plaza from 78.194.214.19 port 51898	2019-08-15 06:55:14
103.28.52.84	attack	Aug 15 00:56:36 vps691689 sshd[32079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.52.84 Aug 15 00:56:37 vps691689 sshd[32079]: Failed password for invalid user git from 103.28.52.84 port 35566 ssh2 ...	2019-08-15 07:10:15
85.98.52.166	attack	Aug 14 08:03:44 localhost kernel: [17028418.130899] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=85.98.52.166 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=30059 PROTO=TCP SPT=10576 DPT=52869 WINDOW=52163 RES=0x00 SYN URGP=0 Aug 14 08:03:44 localhost kernel: [17028418.130927] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=85.98.52.166 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=30059 PROTO=TCP SPT=10576 DPT=52869 SEQ=758669438 ACK=0 WINDOW=52163 RES=0x00 SYN URGP=0 OPT (020405AC) Aug 14 09:03:25 localhost kernel: [17031999.159703] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=85.98.52.166 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=63169 PROTO=TCP SPT=26844 DPT=52869 WINDOW=11701 RES=0x00 SYN URGP=0 Aug 14 09:03:25 localhost kernel: [17031999.159736] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=85.98.52.166 DST=[mungedIP2] LEN	2019-08-15 07:17:23
23.129.64.181	attackbotsspam	Bruteforce on SSH Honeypot	2019-08-15 06:42:41
12.199.28.175	attack	Aug 14 20:09:25 XXX sshd[24675]: Invalid user mehdi from 12.199.28.175 port 59636	2019-08-15 06:55:47
153.37.192.4	attack	Aug 14 18:46:24 TORMINT sshd\[15379\]: Invalid user odoo from 153.37.192.4 Aug 14 18:46:24 TORMINT sshd\[15379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.37.192.4 Aug 14 18:46:26 TORMINT sshd\[15379\]: Failed password for invalid user odoo from 153.37.192.4 port 54426 ssh2 ...	2019-08-15 06:57:13
27.211.110.13	attack	Aug 14 22:57:19 db sshd\[21813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.211.110.13 user=root Aug 14 22:57:21 db sshd\[21813\]: Failed password for root from 27.211.110.13 port 30899 ssh2 Aug 14 22:57:24 db sshd\[21813\]: Failed password for root from 27.211.110.13 port 30899 ssh2 Aug 14 22:57:27 db sshd\[21813\]: Failed password for root from 27.211.110.13 port 30899 ssh2 Aug 14 22:57:30 db sshd\[21813\]: Failed password for root from 27.211.110.13 port 30899 ssh2 ...	2019-08-15 07:10:41
220.165.143.137	attackspambots	Unauthorized connection attempt from IP address 220.165.143.137 on Port 445(SMB)	2019-08-15 06:58:25
223.206.246.191	attackspam	Unauthorized connection attempt from IP address 223.206.246.191 on Port 445(SMB)	2019-08-15 07:06:58
178.255.126.198	attackspambots	DATE:2019-08-14 23:14:11, IP:178.255.126.198, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-15 07:18:02

最近上报的IP列表

45.164.236.97	231.61.167.242	154.243.43.42	196.178.132.178
59.248.38.18	233.61.90.63	118.127.151.28	38.192.197.227
79.156.250.78	195.74.76.194	12.195.99.83	156.139.125.119
97.144.148.70	160.172.41.182	207.69.35.149	7.178.13.244
233.69.233.75	177.37.129.243	163.141.169.107	79.182.188.141