139.99.62.10 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Hosting Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 17 20:11:40 saschabauer sshd[24591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 17 20:11:42 saschabauer sshd[24591]: Failed password for invalid user adda from 139.99.62.10 port 43454 ssh2	2019-09-18 02:20:35
attackspam	Sep 16 00:16:00 localhost sshd\[2743\]: Invalid user marco from 139.99.62.10 port 40548 Sep 16 00:16:00 localhost sshd\[2743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 16 00:16:02 localhost sshd\[2743\]: Failed password for invalid user marco from 139.99.62.10 port 40548 ssh2 ...	2019-09-16 08:47:25
attack	Sep 15 07:37:17 vps647732 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 15 07:37:19 vps647732 sshd[14868]: Failed password for invalid user q2w3e4R from 139.99.62.10 port 51936 ssh2 ...	2019-09-15 13:50:48
attackbotsspam	Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: Invalid user student from 139.99.62.10 Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 10 17:07:49 friendsofhawaii sshd\[27694\]: Failed password for invalid user student from 139.99.62.10 port 42312 ssh2 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: Invalid user q3server from 139.99.62.10 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-11 11:17:28
attack	Sep 5 11:39:11 auw2 sshd\[26721\]: Invalid user oracle from 139.99.62.10 Sep 5 11:39:11 auw2 sshd\[26721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 5 11:39:13 auw2 sshd\[26721\]: Failed password for invalid user oracle from 139.99.62.10 port 56602 ssh2 Sep 5 11:43:53 auw2 sshd\[27124\]: Invalid user smbuser from 139.99.62.10 Sep 5 11:43:53 auw2 sshd\[27124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-06 05:54:40
attackspambots	Sep 1 13:44:45 auw2 sshd\[12472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia user=root Sep 1 13:44:47 auw2 sshd\[12472\]: Failed password for root from 139.99.62.10 port 42604 ssh2 Sep 1 13:49:34 auw2 sshd\[12850\]: Invalid user duncan from 139.99.62.10 Sep 1 13:49:34 auw2 sshd\[12850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 1 13:49:36 auw2 sshd\[12850\]: Failed password for invalid user duncan from 139.99.62.10 port 36740 ssh2	2019-09-02 11:06:55
attack	Aug 30 20:12:57 meumeu sshd[18937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 30 20:12:59 meumeu sshd[18937]: Failed password for invalid user qqq from 139.99.62.10 port 51166 ssh2 Aug 30 20:17:38 meumeu sshd[19498]: Failed password for root from 139.99.62.10 port 47666 ssh2 ...	2019-08-31 02:35:10
attackspambots	Aug 25 00:49:13 root sshd[3077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 25 00:49:15 root sshd[3077]: Failed password for invalid user library from 139.99.62.10 port 44704 ssh2 Aug 25 00:53:43 root sshd[3142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 ...	2019-08-25 07:15:07
attackspam	Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:44 ns315508 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:46 ns315508 sshd[28068]: Failed password for invalid user weblogic from 139.99.62.10 port 38434 ssh2 Aug 20 08:29:26 ns315508 sshd[28101]: Invalid user test2 from 139.99.62.10 port 37162 ...	2019-08-20 16:39:03
attackspam	Aug 17 18:28:50 * sshd[26078]: Failed password for invalid user student01 from 139.99.62.10 port 42818 ssh2 Aug 17 18:39:46 * sshd[26271]: Failed password for invalid user yap from 139.99.62.10 port 45908 ssh2 Aug 17 18:44:33 * sshd[26404]: Failed password for invalid user test from 139.99.62.10 port 35672 ssh2 Aug 17 18:49:17 * sshd[26477]: Failed password for invalid user grey from 139.99.62.10 port 53674 ssh2 Aug 17 18:54:04 * sshd[26539]: Failed password for invalid user nagios from 139.99.62.10 port 43430 ssh2 Aug 17 18:58:54 * sshd[26607]: Failed password for invalid user shekhar from 139.99.62.10 port 33182 ssh2 Aug 17 19:03:46 * sshd[26730]: Failed password for invalid user jp from 139.99.62.10 port 51172 ssh2 Aug 17 19:08:29 * sshd[26829]: Failed password for invalid user nexus from 139.99.62.10 port 40952 ssh2 Aug 17 19:13:16 * sshd[26955]: Failed password for invalid user wp-user from 139.99.62.10 port 58962 ssh2 Aug 17 19:27:54 * sshd[27242]: Failed password for invalid user gh	2019-08-19 04:06:58
attackspam	Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:43 marvibiene sshd[61609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:44 marvibiene sshd[61609]: Failed password for invalid user zheng from 139.99.62.10 port 35648 ssh2 ...	2019-08-18 09:52:41

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.62.85	attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
139.99.62.85	attackspam	xmlrpc attack	2020-10-07 13:58:46
139.99.62.85	attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
139.99.62.85	attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.62.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5805
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.62.10.			IN	A

;; AUTHORITY SECTION:
.			2879	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081701 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 09:52:35 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

10.62.99.139.in-addr.arpa domain name pointer proxy.ecoit.asia.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.62.99.139.in-addr.arpa	name = proxy.ecoit.asia.

Authoritative answers can be found from:

IP	类型	评论内容	时间
196.200.181.7	attack	Unauthorized connection attempt detected from IP address 196.200.181.7 to port 445	2020-06-22 05:50:40
49.51.241.239	attackspambots	Unauthorized connection attempt detected from IP address 49.51.241.239 to port 3521	2020-06-22 06:03:09
111.224.248.52	attackspam	Unauthorized connection attempt detected from IP address 111.224.248.52 to port 8118	2020-06-22 06:15:24
116.252.0.186	attackbots	Unauthorized connection attempt detected from IP address 116.252.0.186 to port 8118	2020-06-22 06:13:50
202.102.90.85	attackbotsspam	Unauthorized connection attempt detected from IP address 202.102.90.85 to port 8088	2020-06-22 06:08:42
113.128.105.152	attack	Unauthorized connection attempt detected from IP address 113.128.105.152 to port 8118	2020-06-22 06:14:38
222.94.163.129	attack	Unauthorized connection attempt detected from IP address 222.94.163.129 to port 8118	2020-06-22 06:06:49
196.200.181.6	attackbotsspam	Unauthorized connection attempt detected from IP address 196.200.181.6 to port 445	2020-06-22 05:51:10
80.28.149.32	attack	Unauthorized connection attempt detected from IP address 80.28.149.32 to port 23	2020-06-22 05:43:55
110.164.149.226	attackspambots	Unauthorized connection attempt detected from IP address 110.164.149.226 to port 5900	2020-06-22 06:16:13
186.233.180.146	attack	Unauthorized connection attempt detected from IP address 186.233.180.146 to port 8080	2020-06-22 05:38:55
197.164.157.51	attackspambots	Unauthorized connection attempt detected from IP address 197.164.157.51 to port 80	2020-06-22 06:09:12
124.118.67.48	attack	Unauthorized connection attempt detected from IP address 124.118.67.48 to port 80	2020-06-22 05:42:22
183.105.117.38	attackspambots	Unauthorized connection attempt detected from IP address 183.105.117.38 to port 23	2020-06-22 05:55:27
176.10.144.25	attackbots	Unauthorized connection attempt detected from IP address 176.10.144.25 to port 23	2020-06-22 06:11:37

最近上报的IP列表

59.148.51.46	106.58.210.27	110.134.53.6	193.109.69.77
148.72.209.113	73.52.11.67	103.225.143.118	27.5.75.19
24.224.228.29	129.211.63.79	128.199.235.131	117.50.21.156
77.168.167.96	58.209.212.128	129.211.97.55	45.115.174.77
50.232.209.190	2001:41d0:2:d5b7::	155.133.138.66	94.130.50.184