139.99.62.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Hosting Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
attackspam	xmlrpc attack	2020-10-07 13:58:46
attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.62.10	attack	Sep 17 20:11:40 saschabauer sshd[24591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 17 20:11:42 saschabauer sshd[24591]: Failed password for invalid user adda from 139.99.62.10 port 43454 ssh2	2019-09-18 02:20:35
139.99.62.10	attackspam	Sep 16 00:16:00 localhost sshd\[2743\]: Invalid user marco from 139.99.62.10 port 40548 Sep 16 00:16:00 localhost sshd\[2743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 16 00:16:02 localhost sshd\[2743\]: Failed password for invalid user marco from 139.99.62.10 port 40548 ssh2 ...	2019-09-16 08:47:25
139.99.62.10	attack	Sep 15 07:37:17 vps647732 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 15 07:37:19 vps647732 sshd[14868]: Failed password for invalid user q2w3e4R from 139.99.62.10 port 51936 ssh2 ...	2019-09-15 13:50:48
139.99.62.10	attackbotsspam	Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: Invalid user student from 139.99.62.10 Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 10 17:07:49 friendsofhawaii sshd\[27694\]: Failed password for invalid user student from 139.99.62.10 port 42312 ssh2 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: Invalid user q3server from 139.99.62.10 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-11 11:17:28
139.99.62.10	attack	Sep 5 11:39:11 auw2 sshd\[26721\]: Invalid user oracle from 139.99.62.10 Sep 5 11:39:11 auw2 sshd\[26721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 5 11:39:13 auw2 sshd\[26721\]: Failed password for invalid user oracle from 139.99.62.10 port 56602 ssh2 Sep 5 11:43:53 auw2 sshd\[27124\]: Invalid user smbuser from 139.99.62.10 Sep 5 11:43:53 auw2 sshd\[27124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-06 05:54:40
139.99.62.10	attackspambots	Sep 1 13:44:45 auw2 sshd\[12472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia user=root Sep 1 13:44:47 auw2 sshd\[12472\]: Failed password for root from 139.99.62.10 port 42604 ssh2 Sep 1 13:49:34 auw2 sshd\[12850\]: Invalid user duncan from 139.99.62.10 Sep 1 13:49:34 auw2 sshd\[12850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 1 13:49:36 auw2 sshd\[12850\]: Failed password for invalid user duncan from 139.99.62.10 port 36740 ssh2	2019-09-02 11:06:55
139.99.62.10	attack	Aug 30 20:12:57 meumeu sshd[18937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 30 20:12:59 meumeu sshd[18937]: Failed password for invalid user qqq from 139.99.62.10 port 51166 ssh2 Aug 30 20:17:38 meumeu sshd[19498]: Failed password for root from 139.99.62.10 port 47666 ssh2 ...	2019-08-31 02:35:10
139.99.62.10	attackspambots	Aug 25 00:49:13 root sshd[3077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 25 00:49:15 root sshd[3077]: Failed password for invalid user library from 139.99.62.10 port 44704 ssh2 Aug 25 00:53:43 root sshd[3142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 ...	2019-08-25 07:15:07
139.99.62.10	attackspam	Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:44 ns315508 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:46 ns315508 sshd[28068]: Failed password for invalid user weblogic from 139.99.62.10 port 38434 ssh2 Aug 20 08:29:26 ns315508 sshd[28101]: Invalid user test2 from 139.99.62.10 port 37162 ...	2019-08-20 16:39:03
139.99.62.10	attackspam	Aug 17 18:28:50 * sshd[26078]: Failed password for invalid user student01 from 139.99.62.10 port 42818 ssh2 Aug 17 18:39:46 * sshd[26271]: Failed password for invalid user yap from 139.99.62.10 port 45908 ssh2 Aug 17 18:44:33 * sshd[26404]: Failed password for invalid user test from 139.99.62.10 port 35672 ssh2 Aug 17 18:49:17 * sshd[26477]: Failed password for invalid user grey from 139.99.62.10 port 53674 ssh2 Aug 17 18:54:04 * sshd[26539]: Failed password for invalid user nagios from 139.99.62.10 port 43430 ssh2 Aug 17 18:58:54 * sshd[26607]: Failed password for invalid user shekhar from 139.99.62.10 port 33182 ssh2 Aug 17 19:03:46 * sshd[26730]: Failed password for invalid user jp from 139.99.62.10 port 51172 ssh2 Aug 17 19:08:29 * sshd[26829]: Failed password for invalid user nexus from 139.99.62.10 port 40952 ssh2 Aug 17 19:13:16 * sshd[26955]: Failed password for invalid user wp-user from 139.99.62.10 port 58962 ssh2 Aug 17 19:27:54 * sshd[27242]: Failed password for invalid user gh	2019-08-19 04:06:58
139.99.62.10	attackspam	Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:43 marvibiene sshd[61609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:44 marvibiene sshd[61609]: Failed password for invalid user zheng from 139.99.62.10 port 35648 ssh2 ...	2019-08-18 09:52:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.62.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.62.85.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120800 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 20:08:36 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

85.62.99.139.in-addr.arpa domain name pointer ns562765.ip-139-99-62.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.62.99.139.in-addr.arpa	name = ns562765.ip-139-99-62.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.38.188.20	attackspambots	Invalid user support from 51.38.188.20 port 58908	2020-08-24 21:52:39
175.139.3.41	attackbots	Aug 24 14:48:04 rocket sshd[16464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.3.41 Aug 24 14:48:06 rocket sshd[16464]: Failed password for invalid user ubuntu from 175.139.3.41 port 54944 ssh2 ...	2020-08-24 22:09:14
180.164.176.50	attack	Aug 24 15:46:49 h2427292 sshd\[7673\]: Invalid user zwg from 180.164.176.50 Aug 24 15:46:49 h2427292 sshd\[7673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.176.50 Aug 24 15:46:52 h2427292 sshd\[7673\]: Failed password for invalid user zwg from 180.164.176.50 port 36648 ssh2 ...	2020-08-24 21:46:58
93.115.1.195	attack	Invalid user ts3srv from 93.115.1.195 port 37724	2020-08-24 21:56:56
106.12.210.166	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-24 22:01:38
175.7.196.228	attackspam	Lines containing failures of 175.7.196.228 Aug 24 06:10:42 penfold sshd[16322]: Invalid user eon from 175.7.196.228 port 36710 Aug 24 06:10:42 penfold sshd[16322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.7.196.228 Aug 24 06:10:44 penfold sshd[16322]: Failed password for invalid user eon from 175.7.196.228 port 36710 ssh2 Aug 24 06:10:45 penfold sshd[16322]: Received disconnect from 175.7.196.228 port 36710:11: Bye Bye [preauth] Aug 24 06:10:45 penfold sshd[16322]: Disconnected from invalid user eon 175.7.196.228 port 36710 [preauth] Aug 24 06:25:47 penfold sshd[17959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.7.196.228 user=r.r Aug 24 06:25:49 penfold sshd[17959]: Failed password for r.r from 175.7.196.228 port 43320 ssh2 Aug 24 06:25:50 penfold sshd[17959]: Received disconnect from 175.7.196.228 port 43320:11: Bye Bye [preauth] Aug 24 06:25:50 penfold sshd[17959]: Di........ ------------------------------	2020-08-24 21:53:11
220.133.95.68	attackbotsspam	$f2bV_matches	2020-08-24 22:03:05
66.96.235.110	attack	Aug 24 15:08:45 pkdns2 sshd\[8201\]: Invalid user dgu from 66.96.235.110Aug 24 15:08:46 pkdns2 sshd\[8201\]: Failed password for invalid user dgu from 66.96.235.110 port 51622 ssh2Aug 24 15:10:46 pkdns2 sshd\[8331\]: Failed password for root from 66.96.235.110 port 54600 ssh2Aug 24 15:12:43 pkdns2 sshd\[8426\]: Invalid user stacy from 66.96.235.110Aug 24 15:12:45 pkdns2 sshd\[8426\]: Failed password for invalid user stacy from 66.96.235.110 port 57582 ssh2Aug 24 15:14:34 pkdns2 sshd\[8514\]: Invalid user lxb from 66.96.235.110 ...	2020-08-24 21:52:12
45.129.33.51	attackbotsspam	Port scan - 7 hits (greater than 5)	2020-08-24 21:38:28
34.87.83.179	attack	34.87.83.179 - - [24/Aug/2020:13:46:29 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.87.83.179 - - [24/Aug/2020:13:46:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.87.83.179 - - [24/Aug/2020:13:46:31 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 21:36:56
190.25.45.189	attackspam	Automatic report - Banned IP Access	2020-08-24 21:55:10
119.204.96.131	attack	Aug 24 14:56:22 server sshd[29098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.204.96.131 user=root Aug 24 14:56:24 server sshd[29098]: Failed password for invalid user root from 119.204.96.131 port 55898 ssh2 Aug 24 15:00:56 server sshd[29692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.204.96.131 Aug 24 15:00:58 server sshd[29692]: Failed password for invalid user admin from 119.204.96.131 port 42338 ssh2	2020-08-24 21:46:34
222.186.42.57	attack	prod8 ...	2020-08-24 21:38:59
188.137.75.39	attackspam	Port probing on unauthorized port 23	2020-08-24 21:32:01
211.159.218.251	attackspambots	2020-08-24T11:45:05.249063abusebot-8.cloudsearch.cf sshd[4186]: Invalid user planning from 211.159.218.251 port 58786 2020-08-24T11:45:05.259548abusebot-8.cloudsearch.cf sshd[4186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.218.251 2020-08-24T11:45:05.249063abusebot-8.cloudsearch.cf sshd[4186]: Invalid user planning from 211.159.218.251 port 58786 2020-08-24T11:45:07.096868abusebot-8.cloudsearch.cf sshd[4186]: Failed password for invalid user planning from 211.159.218.251 port 58786 ssh2 2020-08-24T11:51:40.494978abusebot-8.cloudsearch.cf sshd[4200]: Invalid user carlos1 from 211.159.218.251 port 34358 2020-08-24T11:51:40.502107abusebot-8.cloudsearch.cf sshd[4200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.218.251 2020-08-24T11:51:40.494978abusebot-8.cloudsearch.cf sshd[4200]: Invalid user carlos1 from 211.159.218.251 port 34358 2020-08-24T11:51:42.229417abusebot-8.cloudsearch.cf ...	2020-08-24 21:57:17

最近上报的IP列表

196.166.157.178	106.13.216.92	205.113.54.141	188.39.44.200
113.232.138.144	7.41.19.110	91.9.10.130	229.215.59.167
17.156.187.61	167.40.24.223	235.206.131.52	253.124.32.6
183.34.209.152	119.167.130.137	236.170.50.143	83.204.188.233
25.221.2.147	149.247.154.236	18.4.16.162	180.224.44.112