139.99.62.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Hosting Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
attackspam	xmlrpc attack	2020-10-07 13:58:46
attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.62.10	attack	Sep 17 20:11:40 saschabauer sshd[24591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 17 20:11:42 saschabauer sshd[24591]: Failed password for invalid user adda from 139.99.62.10 port 43454 ssh2	2019-09-18 02:20:35
139.99.62.10	attackspam	Sep 16 00:16:00 localhost sshd\[2743\]: Invalid user marco from 139.99.62.10 port 40548 Sep 16 00:16:00 localhost sshd\[2743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 16 00:16:02 localhost sshd\[2743\]: Failed password for invalid user marco from 139.99.62.10 port 40548 ssh2 ...	2019-09-16 08:47:25
139.99.62.10	attack	Sep 15 07:37:17 vps647732 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 15 07:37:19 vps647732 sshd[14868]: Failed password for invalid user q2w3e4R from 139.99.62.10 port 51936 ssh2 ...	2019-09-15 13:50:48
139.99.62.10	attackbotsspam	Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: Invalid user student from 139.99.62.10 Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 10 17:07:49 friendsofhawaii sshd\[27694\]: Failed password for invalid user student from 139.99.62.10 port 42312 ssh2 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: Invalid user q3server from 139.99.62.10 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-11 11:17:28
139.99.62.10	attack	Sep 5 11:39:11 auw2 sshd\[26721\]: Invalid user oracle from 139.99.62.10 Sep 5 11:39:11 auw2 sshd\[26721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 5 11:39:13 auw2 sshd\[26721\]: Failed password for invalid user oracle from 139.99.62.10 port 56602 ssh2 Sep 5 11:43:53 auw2 sshd\[27124\]: Invalid user smbuser from 139.99.62.10 Sep 5 11:43:53 auw2 sshd\[27124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-06 05:54:40
139.99.62.10	attackspambots	Sep 1 13:44:45 auw2 sshd\[12472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia user=root Sep 1 13:44:47 auw2 sshd\[12472\]: Failed password for root from 139.99.62.10 port 42604 ssh2 Sep 1 13:49:34 auw2 sshd\[12850\]: Invalid user duncan from 139.99.62.10 Sep 1 13:49:34 auw2 sshd\[12850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 1 13:49:36 auw2 sshd\[12850\]: Failed password for invalid user duncan from 139.99.62.10 port 36740 ssh2	2019-09-02 11:06:55
139.99.62.10	attack	Aug 30 20:12:57 meumeu sshd[18937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 30 20:12:59 meumeu sshd[18937]: Failed password for invalid user qqq from 139.99.62.10 port 51166 ssh2 Aug 30 20:17:38 meumeu sshd[19498]: Failed password for root from 139.99.62.10 port 47666 ssh2 ...	2019-08-31 02:35:10
139.99.62.10	attackspambots	Aug 25 00:49:13 root sshd[3077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 25 00:49:15 root sshd[3077]: Failed password for invalid user library from 139.99.62.10 port 44704 ssh2 Aug 25 00:53:43 root sshd[3142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 ...	2019-08-25 07:15:07
139.99.62.10	attackspam	Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:44 ns315508 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:46 ns315508 sshd[28068]: Failed password for invalid user weblogic from 139.99.62.10 port 38434 ssh2 Aug 20 08:29:26 ns315508 sshd[28101]: Invalid user test2 from 139.99.62.10 port 37162 ...	2019-08-20 16:39:03
139.99.62.10	attackspam	Aug 17 18:28:50 * sshd[26078]: Failed password for invalid user student01 from 139.99.62.10 port 42818 ssh2 Aug 17 18:39:46 * sshd[26271]: Failed password for invalid user yap from 139.99.62.10 port 45908 ssh2 Aug 17 18:44:33 * sshd[26404]: Failed password for invalid user test from 139.99.62.10 port 35672 ssh2 Aug 17 18:49:17 * sshd[26477]: Failed password for invalid user grey from 139.99.62.10 port 53674 ssh2 Aug 17 18:54:04 * sshd[26539]: Failed password for invalid user nagios from 139.99.62.10 port 43430 ssh2 Aug 17 18:58:54 * sshd[26607]: Failed password for invalid user shekhar from 139.99.62.10 port 33182 ssh2 Aug 17 19:03:46 * sshd[26730]: Failed password for invalid user jp from 139.99.62.10 port 51172 ssh2 Aug 17 19:08:29 * sshd[26829]: Failed password for invalid user nexus from 139.99.62.10 port 40952 ssh2 Aug 17 19:13:16 * sshd[26955]: Failed password for invalid user wp-user from 139.99.62.10 port 58962 ssh2 Aug 17 19:27:54 * sshd[27242]: Failed password for invalid user gh	2019-08-19 04:06:58
139.99.62.10	attackspam	Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:43 marvibiene sshd[61609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:44 marvibiene sshd[61609]: Failed password for invalid user zheng from 139.99.62.10 port 35648 ssh2 ...	2019-08-18 09:52:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.62.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.62.85.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120800 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 20:08:36 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

85.62.99.139.in-addr.arpa domain name pointer ns562765.ip-139-99-62.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.62.99.139.in-addr.arpa	name = ns562765.ip-139-99-62.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
189.124.8.7	attackbotsspam	Jun 7 14:33:19 server sshd[30648]: Failed password for root from 189.124.8.7 port 40087 ssh2 Jun 7 14:34:36 server sshd[30733]: Failed password for root from 189.124.8.7 port 47873 ssh2 ...	2020-06-07 20:53:46
138.197.129.38	attackbotsspam	2020-06-07T12:08:46.359978homeassistant sshd[12641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 user=root 2020-06-07T12:08:47.824973homeassistant sshd[12641]: Failed password for root from 138.197.129.38 port 57620 ssh2 ...	2020-06-07 21:16:34
122.51.179.14	attack	2020-06-07 14:08:56,382 fail2ban.actions: WARNING [ssh] Ban 122.51.179.14	2020-06-07 21:10:39
187.101.230.6	attackbots	Jun 4 21:36:12 srv01 sshd[30627]: reveeclipse mapping checking getaddrinfo for 187-101-230-6.dsl.telesp.net.br [187.101.230.6] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 4 21:36:12 srv01 sshd[30627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.101.230.6 user=r.r Jun 4 21:36:14 srv01 sshd[30627]: Failed password for r.r from 187.101.230.6 port 32737 ssh2 Jun 4 21:36:14 srv01 sshd[30627]: Received disconnect from 187.101.230.6: 11: Bye Bye [preauth] Jun 4 21:37:43 srv01 sshd[30785]: reveeclipse mapping checking getaddrinfo for 187-101-230-6.dsl.telesp.net.br [187.101.230.6] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 4 21:37:43 srv01 sshd[30785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.101.230.6 user=r.r Jun 4 21:37:45 srv01 sshd[30785]: Failed password for r.r from 187.101.230.6 port 43777 ssh2 Jun 4 21:37:45 srv01 sshd[30785]: Received disconnect from 187.101.230.6: 11........ -------------------------------	2020-06-07 20:48:27
36.104.146.244	attackbotsspam	Jun 7 14:18:29 lnxmail61 sshd[14328]: Failed password for root from 36.104.146.244 port 35142 ssh2 Jun 7 14:18:29 lnxmail61 sshd[14328]: Failed password for root from 36.104.146.244 port 35142 ssh2	2020-06-07 20:39:11
87.246.7.66	attack	Jun 7 14:53:03 srv01 postfix/smtpd\[12551\]: warning: unknown\[87.246.7.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 14:53:13 srv01 postfix/smtpd\[12551\]: warning: unknown\[87.246.7.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 14:53:14 srv01 postfix/smtpd\[15331\]: warning: unknown\[87.246.7.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 14:53:14 srv01 postfix/smtpd\[15332\]: warning: unknown\[87.246.7.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 14:53:41 srv01 postfix/smtpd\[12551\]: warning: unknown\[87.246.7.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-07 20:56:27
90.219.250.51	attack	Automatic report - Port Scan Attack	2020-06-07 21:11:53
180.76.246.38	attackspambots	Jun 7 15:25:42 pkdns2 sshd\[8096\]: Failed password for root from 180.76.246.38 port 39648 ssh2Jun 7 15:27:11 pkdns2 sshd\[8164\]: Failed password for root from 180.76.246.38 port 59964 ssh2Jun 7 15:28:43 pkdns2 sshd\[8221\]: Failed password for root from 180.76.246.38 port 52038 ssh2Jun 7 15:30:21 pkdns2 sshd\[8350\]: Failed password for root from 180.76.246.38 port 44166 ssh2Jun 7 15:31:55 pkdns2 sshd\[8416\]: Failed password for root from 180.76.246.38 port 36268 ssh2Jun 7 15:33:29 pkdns2 sshd\[8487\]: Failed password for root from 180.76.246.38 port 56598 ssh2 ...	2020-06-07 20:56:00
114.67.112.120	attack	Jun 7 14:51:47 cp sshd[29842]: Failed password for root from 114.67.112.120 port 41616 ssh2 Jun 7 14:51:47 cp sshd[29842]: Failed password for root from 114.67.112.120 port 41616 ssh2	2020-06-07 20:52:49
218.92.0.202	attack	Jun 7 14:08:53 santamaria sshd\[8899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.202 user=root Jun 7 14:08:54 santamaria sshd\[8899\]: Failed password for root from 218.92.0.202 port 51589 ssh2 Jun 7 14:08:57 santamaria sshd\[8899\]: Failed password for root from 218.92.0.202 port 51589 ssh2 ...	2020-06-07 21:07:28
34.69.181.230	attackbots	Synology	2020-06-07 20:41:34
31.221.81.222	attackspam	Jun 7 14:59:10 legacy sshd[7497]: Failed password for root from 31.221.81.222 port 46582 ssh2 Jun 7 15:00:40 legacy sshd[7546]: Failed password for root from 31.221.81.222 port 42222 ssh2 ...	2020-06-07 21:02:22
51.75.73.211	attack	Jun 7 08:09:01 mail sshd\[31463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.73.211 user=root ...	2020-06-07 21:01:20
80.82.77.212	attackspambots	Jun 7 14:47:14 debian-2gb-nbg1-2 kernel: \[13792778.919207\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.77.212 DST=195.201.40.59 LEN=58 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=59639 DPT=1604 LEN=38	2020-06-07 21:19:56
106.12.126.54	attackspam	Lines containing failures of 106.12.126.54 Jun 5 12:48:43 shared04 sshd[10894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.126.54 user=r.r Jun 5 12:48:45 shared04 sshd[10894]: Failed password for r.r from 106.12.126.54 port 34040 ssh2 Jun 5 12:48:45 shared04 sshd[10894]: Received disconnect from 106.12.126.54 port 34040:11: Bye Bye [preauth] Jun 5 12:48:45 shared04 sshd[10894]: Disconnected from authenticating user r.r 106.12.126.54 port 34040 [preauth] Jun 5 12:58:50 shared04 sshd[14592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.126.54 user=r.r Jun 5 12:58:52 shared04 sshd[14592]: Failed password for r.r from 106.12.126.54 port 49946 ssh2 Jun 5 12:58:52 shared04 sshd[14592]: Received disconnect from 106.12.126.54 port 49946:11: Bye Bye [preauth] Jun 5 12:58:52 shared04 sshd[14592]: Disconnected from authenticating user r.r 106.12.126.54 port 49946 [preauth........ ------------------------------	2020-06-07 21:19:21

最近上报的IP列表

196.166.157.178	106.13.216.92	205.113.54.141	188.39.44.200
113.232.138.144	7.41.19.110	91.9.10.130	229.215.59.167
17.156.187.61	167.40.24.223	235.206.131.52	253.124.32.6
183.34.209.152	119.167.130.137	236.170.50.143	83.204.188.233
25.221.2.147	149.247.154.236	18.4.16.162	180.224.44.112