139.99.91.35 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Feb 22 15:00:22 hanapaa sshd\[18593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net user=root Feb 22 15:00:24 hanapaa sshd\[18593\]: Failed password for root from 139.99.91.35 port 40618 ssh2 Feb 22 15:04:19 hanapaa sshd\[18952\]: Invalid user www from 139.99.91.35 Feb 22 15:04:19 hanapaa sshd\[18952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net Feb 22 15:04:20 hanapaa sshd\[18952\]: Failed password for invalid user www from 139.99.91.35 port 35834 ssh2	2020-02-23 09:07:39
attackbotsspam	Feb 12 05:45:13 roki sshd[9406]: Invalid user ruhnow from 139.99.91.35 Feb 12 05:45:13 roki sshd[9406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 Feb 12 05:45:15 roki sshd[9406]: Failed password for invalid user ruhnow from 139.99.91.35 port 51972 ssh2 Feb 12 05:58:41 roki sshd[11771]: Invalid user goodluck from 139.99.91.35 Feb 12 05:58:41 roki sshd[11771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 ...	2020-02-12 13:13:37
attack	Unauthorized connection attempt detected from IP address 139.99.91.35 to port 2220 [J]	2020-01-30 00:33:50

类型

评论内容

时间

attackspam

Feb 22 15:00:22 hanapaa sshd\[18593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net  user=root
Feb 22 15:00:24 hanapaa sshd\[18593\]: Failed password for root from 139.99.91.35 port 40618 ssh2
Feb 22 15:04:19 hanapaa sshd\[18952\]: Invalid user www from 139.99.91.35
Feb 22 15:04:19 hanapaa sshd\[18952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net
Feb 22 15:04:20 hanapaa sshd\[18952\]: Failed password for invalid user www from 139.99.91.35 port 35834 ssh2

2020-02-23 09:07:39

attackbotsspam

Feb 12 05:45:13 roki sshd[9406]: Invalid user ruhnow from 139.99.91.35
Feb 12 05:45:13 roki sshd[9406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35
Feb 12 05:45:15 roki sshd[9406]: Failed password for invalid user ruhnow from 139.99.91.35 port 51972 ssh2
Feb 12 05:58:41 roki sshd[11771]: Invalid user goodluck from 139.99.91.35
Feb 12 05:58:41 roki sshd[11771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35
...

2020-02-12 13:13:37

attack

Unauthorized connection attempt detected from IP address 139.99.91.35 to port 2220 [J]

2020-01-30 00:33:50

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.91.43	attackbotsspam	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-19 03:35:21
139.99.91.43	attack	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-18 19:38:02
139.99.91.151	attackbots	ssh brute force	2020-08-26 17:04:27
139.99.91.132	attackbots	Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:29 ns392434 sshd[10712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:31 ns392434 sshd[10712]: Failed password for invalid user rashmi from 139.99.91.132 port 35618 ssh2 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:53 ns392434 sshd[10931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:55 ns392434 sshd[10931]: Failed password for invalid user sj from 139.99.91.132 port 56048 ssh2 Apr 27 13:58:12 ns392434 sshd[11090]: Invalid user gavin from 139.99.91.132 port 39114	2020-04-27 20:33:57
139.99.91.132	attackbotsspam	Apr 23 22:10:05 sxvn sshd[417655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132	2020-04-24 04:10:13
139.99.91.132	attackspambots	Apr 17 11:55:54 sshgateway sshd\[11379\]: Invalid user oracle from 139.99.91.132 Apr 17 11:55:54 sshgateway sshd\[11379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-139-99-91.net Apr 17 11:55:57 sshgateway sshd\[11379\]: Failed password for invalid user oracle from 139.99.91.132 port 34736 ssh2	2020-04-17 20:43:28
139.99.91.132	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-04-14 01:49:00
139.99.91.132	attackspam	Mar 30 02:29:26 XXX sshd[53004]: Invalid user usa from 139.99.91.132 port 46016	2020-03-30 09:33:49
139.99.91.161	attackbotsspam	Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:56 localhost sshd[92545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.ip-139-99-91.net Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:57 localhost sshd[92545]: Failed password for invalid user usertest from 139.99.91.161 port 60422 ssh2 Mar 25 13:28:02 localhost sshd[93269]: Invalid user raamatukogu from 139.99.91.161 port 58896 ...	2020-03-25 21:39:59
139.99.91.161	attackspambots	Brute force attempt	2020-03-25 17:05:50
139.99.91.161	attackbotsspam	$f2bV_matches	2020-03-21 14:24:14
139.99.91.161	attackbotsspam	Mar 19 09:18:16 gw1 sshd[496]: Failed password for root from 139.99.91.161 port 53600 ssh2 ...	2020-03-19 12:47:28
139.99.91.84	attack	Feb 7 23:20:56 ovpn sshd\[16557\]: Invalid user pfy from 139.99.91.84 Feb 7 23:20:56 ovpn sshd\[16557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 7 23:20:58 ovpn sshd\[16557\]: Failed password for invalid user pfy from 139.99.91.84 port 39270 ssh2 Feb 7 23:37:29 ovpn sshd\[20700\]: Invalid user ogo from 139.99.91.84 Feb 7 23:37:29 ovpn sshd\[20700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84	2020-02-08 08:55:16
139.99.91.84	attackspam	Feb 6 02:45:56 legacy sshd[8820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 02:45:59 legacy sshd[8820]: Failed password for invalid user zet from 139.99.91.84 port 38882 ssh2 Feb 6 02:49:11 legacy sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:51:18
139.99.91.84	attack	Feb 6 01:57:20 legacy sshd[5898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 01:57:22 legacy sshd[5898]: Failed password for invalid user mha from 139.99.91.84 port 48966 ssh2 Feb 6 02:00:32 legacy sshd[6132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:11:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.91.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.91.35.			IN	A

;; AUTHORITY SECTION:
.			404	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 00:33:46 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

35.91.99.139.in-addr.arpa domain name pointer 35.ip-139-99-91.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
35.91.99.139.in-addr.arpa	name = 35.ip-139-99-91.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
78.234.142.90	attackspambots	Mar 11 15:25:05 vpn01 sshd[19469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.234.142.90 Mar 11 15:25:08 vpn01 sshd[19469]: Failed password for invalid user from 78.234.142.90 port 41506 ssh2 ...	2020-03-12 00:36:35
212.13.31.14	attackspam	SSH login attempts.	2020-03-12 00:20:46
223.207.246.196	attack	Honeypot attack, port: 445, PTR: mx-ll-223.207.246-196.dynamic.3bb.in.th.	2020-03-12 00:22:23
123.207.245.45	attackspam	Mar 11 12:21:51 meumeu sshd[11623]: Failed password for root from 123.207.245.45 port 46650 ssh2 Mar 11 12:26:07 meumeu sshd[12138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.245.45 Mar 11 12:26:09 meumeu sshd[12138]: Failed password for invalid user zhangzihan from 123.207.245.45 port 41680 ssh2 ...	2020-03-11 23:53:07
92.63.194.90	attackspambots	Mar 11 15:27:31 XXXXXX sshd[2327]: Invalid user 1234 from 92.63.194.90 port 43270	2020-03-12 00:29:38
114.34.232.189	attackspam	SSH login attempts.	2020-03-12 00:31:03
222.186.15.10	attackspambots	Mar 11 17:09:41 dcd-gentoo sshd[368]: User root from 222.186.15.10 not allowed because none of user's groups are listed in AllowGroups Mar 11 17:09:43 dcd-gentoo sshd[368]: error: PAM: Authentication failure for illegal user root from 222.186.15.10 Mar 11 17:09:41 dcd-gentoo sshd[368]: User root from 222.186.15.10 not allowed because none of user's groups are listed in AllowGroups Mar 11 17:09:43 dcd-gentoo sshd[368]: error: PAM: Authentication failure for illegal user root from 222.186.15.10 Mar 11 17:09:41 dcd-gentoo sshd[368]: User root from 222.186.15.10 not allowed because none of user's groups are listed in AllowGroups Mar 11 17:09:43 dcd-gentoo sshd[368]: error: PAM: Authentication failure for illegal user root from 222.186.15.10 Mar 11 17:09:43 dcd-gentoo sshd[368]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.10 port 52726 ssh2 ...	2020-03-12 00:11:32
124.123.105.221	attackbots	Unauthorized connection attempt detected from IP address 124.123.105.221 to port 22 [T]	2020-03-12 00:01:14
92.63.194.32	attack	Mar 11 15:27:47 XXXXXX sshd[2354]: Invalid user admin from 92.63.194.32 port 38895	2020-03-12 00:33:18
112.45.122.9	attackspambots	SSH login attempts.	2020-03-11 23:54:54
5.228.39.244	attackbotsspam	Mar 11 12:41:49 www1 sshd\[9794\]: Failed password for root from 5.228.39.244 port 53687 ssh2Mar 11 12:42:06 www1 sshd\[9798\]: Failed password for root from 5.228.39.244 port 53705 ssh2Mar 11 12:42:22 www1 sshd\[9817\]: Failed password for root from 5.228.39.244 port 57314 ssh2Mar 11 12:42:33 www1 sshd\[9825\]: Invalid user admin from 5.228.39.244Mar 11 12:42:35 www1 sshd\[9825\]: Failed password for invalid user admin from 5.228.39.244 port 57322 ssh2Mar 11 12:42:38 www1 sshd\[9825\]: Failed password for invalid user admin from 5.228.39.244 port 57322 ssh2 ...	2020-03-12 00:20:14
119.235.4.66	attackbotsspam	Mar 10 13:39:06 lock-38 sshd[8958]: Failed password for invalid user plex from 119.235.4.66 port 37824 ssh2 ...	2020-03-12 00:15:22
91.205.128.188	attackbots	Unauthorized connection attempt detected from IP address 91.205.128.188 to port 445	2020-03-11 23:55:18
106.217.4.8	spam	Hack	2020-03-12 00:30:18
174.60.121.175	attack	suspicious action Wed, 11 Mar 2020 11:55:09 -0300	2020-03-11 23:58:25

最近上报的IP列表

78.180.139.193	101.95.139.229	239.151.92.79	182.23.116.61
232.181.43.32	58.32.74.225	78.217.83.0	87.130.238.203
119.235.102.65	200.119.213.182	135.15.255.210	86.220.240.130
200.118.134.40	200.117.104.9	217.174.248.133	200.114.103.222
200.111.167.146	35.183.68.118	200.108.131.250	59.42.37.132