城市(city): unknown
省份(region): unknown
国家(country): Singapore
运营商(isp): OVH Singapore Pte. Ltd
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | 190 attacks over the last 10 minutes. Below is a sample of these recent attacks: July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Newspaper Premium Theme <= 6.7.1 - Privilege Escalation July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for WP GDPR Compliance <= 1.4.2 - Update Any Option / Call Any Action in POST body: action=wpgdprc_process_action |
2019-07-15 22:00:37 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.99.91.43 | attackbotsspam | SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - - |
2020-09-19 03:35:21 |
| 139.99.91.43 | attack | SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - - |
2020-09-18 19:38:02 |
| 139.99.98.248 | attack | Sep 15 02:29:45 pixelmemory sshd[3244134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 Sep 15 02:29:45 pixelmemory sshd[3244134]: Invalid user ftpuser from 139.99.98.248 port 36638 Sep 15 02:29:48 pixelmemory sshd[3244134]: Failed password for invalid user ftpuser from 139.99.98.248 port 36638 ssh2 Sep 15 02:34:23 pixelmemory sshd[3263707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 user=root Sep 15 02:34:25 pixelmemory sshd[3263707]: Failed password for root from 139.99.98.248 port 48038 ssh2 ... |
2020-09-15 23:43:34 |
| 139.99.98.248 | attack | <6 unauthorized SSH connections |
2020-09-15 15:35:43 |
| 139.99.98.248 | attackbots | 2020-09-14T14:03:39.9058751495-001 sshd[4066]: Failed password for root from 139.99.98.248 port 52108 ssh2 2020-09-14T14:08:06.9147731495-001 sshd[4393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 user=root 2020-09-14T14:08:08.8283481495-001 sshd[4393]: Failed password for root from 139.99.98.248 port 36120 ssh2 2020-09-14T14:12:30.1052501495-001 sshd[4741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 user=root 2020-09-14T14:12:31.9281851495-001 sshd[4741]: Failed password for root from 139.99.98.248 port 48364 ssh2 2020-09-14T14:16:52.0759361495-001 sshd[5011]: Invalid user anne from 139.99.98.248 port 60634 ... |
2020-09-15 07:41:11 |
| 139.99.98.248 | attackspam | Aug 29 08:08:35 abendstille sshd\[1938\]: Invalid user izt from 139.99.98.248 Aug 29 08:08:35 abendstille sshd\[1938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 Aug 29 08:08:38 abendstille sshd\[1938\]: Failed password for invalid user izt from 139.99.98.248 port 56444 ssh2 Aug 29 08:13:07 abendstille sshd\[6155\]: Invalid user testftp from 139.99.98.248 Aug 29 08:13:07 abendstille sshd\[6155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 ... |
2020-08-29 18:49:01 |
| 139.99.98.248 | attackspambots | Invalid user ftpuser from 139.99.98.248 port 45004 |
2020-08-28 14:46:52 |
| 139.99.98.248 | attack | 2020-08-26T17:55:03.136961ks3355764 sshd[22117]: Failed password for invalid user joshua from 139.99.98.248 port 37534 ssh2 2020-08-26T19:55:48.057031ks3355764 sshd[23954]: Invalid user dante from 139.99.98.248 port 56122 ... |
2020-08-27 03:54:57 |
| 139.99.91.151 | attackbots | ssh brute force |
2020-08-26 17:04:27 |
| 139.99.98.248 | attackbotsspam | Aug 21 08:37:33 ny01 sshd[6616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 Aug 21 08:37:34 ny01 sshd[6616]: Failed password for invalid user esq from 139.99.98.248 port 38196 ssh2 Aug 21 08:42:01 ny01 sshd[7226]: Failed password for root from 139.99.98.248 port 45748 ssh2 |
2020-08-21 21:28:36 |
| 139.99.98.248 | attack | Aug 19 03:53:55 marvibiene sshd[7312]: Invalid user usuarios from 139.99.98.248 port 44524 Aug 19 03:53:55 marvibiene sshd[7312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 Aug 19 03:53:55 marvibiene sshd[7312]: Invalid user usuarios from 139.99.98.248 port 44524 Aug 19 03:53:58 marvibiene sshd[7312]: Failed password for invalid user usuarios from 139.99.98.248 port 44524 ssh2 |
2020-08-19 14:23:50 |
| 139.99.98.248 | attackbotsspam | Aug 14 12:20:29 webhost01 sshd[15384]: Failed password for root from 139.99.98.248 port 48842 ssh2 ... |
2020-08-14 16:44:52 |
| 139.99.98.248 | attack | leo_www |
2020-08-09 17:30:57 |
| 139.99.98.248 | attackspambots | SSH Brute Force |
2020-07-29 23:12:21 |
| 139.99.98.248 | attackspambots | Jul 25 01:45:37 Ubuntu-1404-trusty-64-minimal sshd\[11209\]: Invalid user gzp from 139.99.98.248 Jul 25 01:45:37 Ubuntu-1404-trusty-64-minimal sshd\[11209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 Jul 25 01:45:39 Ubuntu-1404-trusty-64-minimal sshd\[11209\]: Failed password for invalid user gzp from 139.99.98.248 port 35414 ssh2 Jul 25 02:00:17 Ubuntu-1404-trusty-64-minimal sshd\[22705\]: Invalid user guohanning from 139.99.98.248 Jul 25 02:00:17 Ubuntu-1404-trusty-64-minimal sshd\[22705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.98.248 |
2020-07-25 08:35:48 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.9.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61281
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.9.2. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019071500 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 22:00:23 CST 2019
;; MSG SIZE rcvd: 1142.9.99.139.in-addr.arpa domain name pointer sg1.xanh.org.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
2.9.99.139.in-addr.arpa name = sg1.xanh.org.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 14.161.12.119 | attackspam | 2020-05-08T14:07:28.427546shield sshd\[27478\]: Invalid user ping from 14.161.12.119 port 63181 2020-05-08T14:07:28.432081shield sshd\[27478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 2020-05-08T14:07:30.498698shield sshd\[27478\]: Failed password for invalid user ping from 14.161.12.119 port 63181 ssh2 2020-05-08T14:12:43.980402shield sshd\[28961\]: Invalid user testuser from 14.161.12.119 port 39297 2020-05-08T14:12:43.990364shield sshd\[28961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.12.119 |
2020-05-08 22:12:58 |
| 217.160.75.142 | attackbotsspam | 2020-05-08T08:23:15.161133linuxbox-skyline sshd[26973]: Invalid user hora from 217.160.75.142 port 47408 ... |
2020-05-08 22:48:01 |
| 211.159.153.62 | attack | (sshd) Failed SSH login from 211.159.153.62 (CN/China/-): 5 in the last 3600 secs |
2020-05-08 22:45:07 |
| 41.208.68.4 | attackbots | Fail2Ban Ban Triggered (2) |
2020-05-08 22:22:44 |
| 116.62.49.96 | attackspam | 116.62.49.96 - - \[08/May/2020:14:13:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 6963 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 116.62.49.96 - - \[08/May/2020:14:13:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 6785 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 116.62.49.96 - - \[08/May/2020:14:14:03 +0200\] "POST /wp-login.php HTTP/1.0" 200 6783 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-05-08 22:41:57 |
| 185.143.75.81 | attackspam | May 8 16:37:55 vmanager6029 postfix/smtpd\[16506\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 8 16:38:35 vmanager6029 postfix/smtpd\[16506\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-05-08 22:51:56 |
| 223.71.167.165 | attackspam | Fail2Ban Ban Triggered |
2020-05-08 22:39:05 |
| 49.233.186.66 | attackbots | May 8 17:30:55 gw1 sshd[18702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.186.66 May 8 17:30:57 gw1 sshd[18702]: Failed password for invalid user rce from 49.233.186.66 port 37513 ssh2 ... |
2020-05-08 22:20:49 |
| 181.231.83.162 | attack | 2020-05-08 08:06:11.167336-0500 localhost sshd[21500]: Failed password for invalid user barry from 181.231.83.162 port 59145 ssh2 |
2020-05-08 22:39:26 |
| 14.184.105.177 | attackspambots | [Fri May 08 19:56:16 2020] - Syn Flood From IP: 14.184.105.177 Port: 31358 |
2020-05-08 22:12:37 |
| 125.212.172.118 | attack | Unauthorised access (May 8) SRC=125.212.172.118 LEN=52 TTL=43 ID=28302 DF TCP DPT=445 WINDOW=8192 SYN |
2020-05-08 22:17:18 |
| 77.42.73.190 | attack | Automatic report - Port Scan Attack |
2020-05-08 22:32:46 |
| 192.144.219.201 | attackspam | 2020-05-08T12:25:35.666201shield sshd\[9730\]: Invalid user lina from 192.144.219.201 port 39432 2020-05-08T12:25:35.669755shield sshd\[9730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.219.201 2020-05-08T12:25:37.862390shield sshd\[9730\]: Failed password for invalid user lina from 192.144.219.201 port 39432 ssh2 2020-05-08T12:27:04.414811shield sshd\[10113\]: Invalid user marcom from 192.144.219.201 port 54404 2020-05-08T12:27:04.418928shield sshd\[10113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.219.201 |
2020-05-08 22:22:20 |
| 152.136.102.131 | attack | (sshd) Failed SSH login from 152.136.102.131 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 8 15:08:34 srv sshd[935]: Invalid user none from 152.136.102.131 port 48634 May 8 15:08:35 srv sshd[935]: Failed password for invalid user none from 152.136.102.131 port 48634 ssh2 May 8 15:11:34 srv sshd[1295]: Invalid user viktor from 152.136.102.131 port 56188 May 8 15:11:36 srv sshd[1295]: Failed password for invalid user viktor from 152.136.102.131 port 56188 ssh2 May 8 15:13:49 srv sshd[1569]: Invalid user bhushan from 152.136.102.131 port 54976 |
2020-05-08 22:55:44 |
| 24.241.18.157 | attackspambots | May 8 14:14:22 mout sshd[26037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.241.18.157 user=pi May 8 14:14:24 mout sshd[26037]: Failed password for pi from 24.241.18.157 port 35808 ssh2 May 8 14:14:24 mout sshd[26037]: Connection closed by 24.241.18.157 port 35808 [preauth] |
2020-05-08 22:21:22 |