139.99.62.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Hosting Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
attackspam	xmlrpc attack	2020-10-07 13:58:46
attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.62.10	attack	Sep 17 20:11:40 saschabauer sshd[24591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 17 20:11:42 saschabauer sshd[24591]: Failed password for invalid user adda from 139.99.62.10 port 43454 ssh2	2019-09-18 02:20:35
139.99.62.10	attackspam	Sep 16 00:16:00 localhost sshd\[2743\]: Invalid user marco from 139.99.62.10 port 40548 Sep 16 00:16:00 localhost sshd\[2743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 16 00:16:02 localhost sshd\[2743\]: Failed password for invalid user marco from 139.99.62.10 port 40548 ssh2 ...	2019-09-16 08:47:25
139.99.62.10	attack	Sep 15 07:37:17 vps647732 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 15 07:37:19 vps647732 sshd[14868]: Failed password for invalid user q2w3e4R from 139.99.62.10 port 51936 ssh2 ...	2019-09-15 13:50:48
139.99.62.10	attackbotsspam	Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: Invalid user student from 139.99.62.10 Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 10 17:07:49 friendsofhawaii sshd\[27694\]: Failed password for invalid user student from 139.99.62.10 port 42312 ssh2 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: Invalid user q3server from 139.99.62.10 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-11 11:17:28
139.99.62.10	attack	Sep 5 11:39:11 auw2 sshd\[26721\]: Invalid user oracle from 139.99.62.10 Sep 5 11:39:11 auw2 sshd\[26721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 5 11:39:13 auw2 sshd\[26721\]: Failed password for invalid user oracle from 139.99.62.10 port 56602 ssh2 Sep 5 11:43:53 auw2 sshd\[27124\]: Invalid user smbuser from 139.99.62.10 Sep 5 11:43:53 auw2 sshd\[27124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-06 05:54:40
139.99.62.10	attackspambots	Sep 1 13:44:45 auw2 sshd\[12472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia user=root Sep 1 13:44:47 auw2 sshd\[12472\]: Failed password for root from 139.99.62.10 port 42604 ssh2 Sep 1 13:49:34 auw2 sshd\[12850\]: Invalid user duncan from 139.99.62.10 Sep 1 13:49:34 auw2 sshd\[12850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 1 13:49:36 auw2 sshd\[12850\]: Failed password for invalid user duncan from 139.99.62.10 port 36740 ssh2	2019-09-02 11:06:55
139.99.62.10	attack	Aug 30 20:12:57 meumeu sshd[18937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 30 20:12:59 meumeu sshd[18937]: Failed password for invalid user qqq from 139.99.62.10 port 51166 ssh2 Aug 30 20:17:38 meumeu sshd[19498]: Failed password for root from 139.99.62.10 port 47666 ssh2 ...	2019-08-31 02:35:10
139.99.62.10	attackspambots	Aug 25 00:49:13 root sshd[3077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 25 00:49:15 root sshd[3077]: Failed password for invalid user library from 139.99.62.10 port 44704 ssh2 Aug 25 00:53:43 root sshd[3142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 ...	2019-08-25 07:15:07
139.99.62.10	attackspam	Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:44 ns315508 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:46 ns315508 sshd[28068]: Failed password for invalid user weblogic from 139.99.62.10 port 38434 ssh2 Aug 20 08:29:26 ns315508 sshd[28101]: Invalid user test2 from 139.99.62.10 port 37162 ...	2019-08-20 16:39:03
139.99.62.10	attackspam	Aug 17 18:28:50 * sshd[26078]: Failed password for invalid user student01 from 139.99.62.10 port 42818 ssh2 Aug 17 18:39:46 * sshd[26271]: Failed password for invalid user yap from 139.99.62.10 port 45908 ssh2 Aug 17 18:44:33 * sshd[26404]: Failed password for invalid user test from 139.99.62.10 port 35672 ssh2 Aug 17 18:49:17 * sshd[26477]: Failed password for invalid user grey from 139.99.62.10 port 53674 ssh2 Aug 17 18:54:04 * sshd[26539]: Failed password for invalid user nagios from 139.99.62.10 port 43430 ssh2 Aug 17 18:58:54 * sshd[26607]: Failed password for invalid user shekhar from 139.99.62.10 port 33182 ssh2 Aug 17 19:03:46 * sshd[26730]: Failed password for invalid user jp from 139.99.62.10 port 51172 ssh2 Aug 17 19:08:29 * sshd[26829]: Failed password for invalid user nexus from 139.99.62.10 port 40952 ssh2 Aug 17 19:13:16 * sshd[26955]: Failed password for invalid user wp-user from 139.99.62.10 port 58962 ssh2 Aug 17 19:27:54 * sshd[27242]: Failed password for invalid user gh	2019-08-19 04:06:58
139.99.62.10	attackspam	Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:43 marvibiene sshd[61609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:44 marvibiene sshd[61609]: Failed password for invalid user zheng from 139.99.62.10 port 35648 ssh2 ...	2019-08-18 09:52:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.62.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.62.85.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120800 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 20:08:36 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

85.62.99.139.in-addr.arpa domain name pointer ns562765.ip-139-99-62.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.62.99.139.in-addr.arpa	name = ns562765.ip-139-99-62.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
159.65.175.37	attackspam	Apr 18 01:44:56 server sshd\[130740\]: Invalid user test from 159.65.175.37 Apr 18 01:44:56 server sshd\[130740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.175.37 Apr 18 01:44:58 server sshd\[130740\]: Failed password for invalid user test from 159.65.175.37 port 39294 ssh2 ...	2019-10-09 17:19:39
159.89.164.167	attackbots	Apr 12 04:15:54 server sshd\[142588\]: Invalid user oracle from 159.89.164.167 Apr 12 04:15:54 server sshd\[142588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.164.167 Apr 12 04:15:56 server sshd\[142588\]: Failed password for invalid user oracle from 159.89.164.167 port 58896 ssh2 ...	2019-10-09 16:51:00
185.180.129.192	attackspambots	Automatic report - Port Scan Attack	2019-10-09 17:14:20
222.186.173.142	attackspam	Oct 9 04:53:04 ny01 sshd[15911]: Failed password for root from 222.186.173.142 port 44146 ssh2 Oct 9 04:53:22 ny01 sshd[15911]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 44146 ssh2 [preauth] Oct 9 04:53:34 ny01 sshd[15952]: Failed password for root from 222.186.173.142 port 53478 ssh2	2019-10-09 17:07:39
116.212.141.50	attack	SSH invalid-user multiple login attempts	2019-10-09 17:23:28
159.89.139.228	attackbotsspam	Jun 23 15:17:52 server sshd\[34350\]: Invalid user jeanmarc from 159.89.139.228 Jun 23 15:17:52 server sshd\[34350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228 Jun 23 15:17:55 server sshd\[34350\]: Failed password for invalid user jeanmarc from 159.89.139.228 port 50736 ssh2 ...	2019-10-09 16:53:26
222.186.175.6	attackspam	Oct 9 10:47:16 ks10 sshd[15056]: Failed password for root from 222.186.175.6 port 21848 ssh2 Oct 9 10:47:23 ks10 sshd[15056]: Failed password for root from 222.186.175.6 port 21848 ssh2 ...	2019-10-09 17:04:56
193.70.36.161	attackbotsspam	Oct 9 11:00:55 dedicated sshd[25005]: Invalid user TEST@2018 from 193.70.36.161 port 54808	2019-10-09 17:07:52
139.59.89.7	attackspam	Oct 9 11:14:58 MK-Soft-VM6 sshd[16107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.89.7 Oct 9 11:15:00 MK-Soft-VM6 sshd[16107]: Failed password for invalid user !23e$56y&89o from 139.59.89.7 port 44292 ssh2 ...	2019-10-09 17:18:03
159.65.99.90	attack	May 27 08:48:07 server sshd\[38113\]: Invalid user raspberry from 159.65.99.90 May 27 08:48:07 server sshd\[38113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.99.90 May 27 08:48:09 server sshd\[38113\]: Failed password for invalid user raspberry from 159.65.99.90 port 52160 ssh2 ...	2019-10-09 16:58:36
159.89.155.148	attackbots	Aug 3 19:27:22 server sshd\[152333\]: Invalid user carlos from 159.89.155.148 Aug 3 19:27:22 server sshd\[152333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.155.148 Aug 3 19:27:25 server sshd\[152333\]: Failed password for invalid user carlos from 159.89.155.148 port 57288 ssh2 ...	2019-10-09 16:51:48
159.65.81.187	attackspam	Apr 10 00:54:14 server sshd\[52343\]: Invalid user vps from 159.65.81.187 Apr 10 00:54:14 server sshd\[52343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.81.187 Apr 10 00:54:16 server sshd\[52343\]: Failed password for invalid user vps from 159.65.81.187 port 37676 ssh2 ...	2019-10-09 17:02:24
51.75.29.61	attackspam	Oct 9 03:38:23 xtremcommunity sshd\[336338\]: Invalid user ident from 51.75.29.61 port 49526 Oct 9 03:38:23 xtremcommunity sshd\[336338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.29.61 Oct 9 03:38:24 xtremcommunity sshd\[336338\]: Failed password for invalid user ident from 51.75.29.61 port 49526 ssh2 Oct 9 03:39:05 xtremcommunity sshd\[336408\]: Invalid user resin from 51.75.29.61 port 34986 Oct 9 03:39:05 xtremcommunity sshd\[336408\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.29.61 ...	2019-10-09 16:50:00
134.209.56.60	attack	2019-10-09T09:10:08.511503abusebot-2.cloudsearch.cf sshd\[6049\]: Invalid user 123Genius from 134.209.56.60 port 39110	2019-10-09 17:28:38
178.128.107.61	attackbotsspam	2019-10-09T07:38:14.412014abusebot-5.cloudsearch.cf sshd\[15085\]: Invalid user fuckyou from 178.128.107.61 port 42072	2019-10-09 17:21:28

最近上报的IP列表

196.166.157.178	106.13.216.92	205.113.54.141	188.39.44.200
113.232.138.144	7.41.19.110	91.9.10.130	229.215.59.167
17.156.187.61	167.40.24.223	235.206.131.52	253.124.32.6
183.34.209.152	119.167.130.137	236.170.50.143	83.204.188.233
25.221.2.147	149.247.154.236	18.4.16.162	180.224.44.112