139.99.91.35 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): OVH Singapore Pte. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Feb 22 15:00:22 hanapaa sshd\[18593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net user=root Feb 22 15:00:24 hanapaa sshd\[18593\]: Failed password for root from 139.99.91.35 port 40618 ssh2 Feb 22 15:04:19 hanapaa sshd\[18952\]: Invalid user www from 139.99.91.35 Feb 22 15:04:19 hanapaa sshd\[18952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net Feb 22 15:04:20 hanapaa sshd\[18952\]: Failed password for invalid user www from 139.99.91.35 port 35834 ssh2	2020-02-23 09:07:39
attackbotsspam	Feb 12 05:45:13 roki sshd[9406]: Invalid user ruhnow from 139.99.91.35 Feb 12 05:45:13 roki sshd[9406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 Feb 12 05:45:15 roki sshd[9406]: Failed password for invalid user ruhnow from 139.99.91.35 port 51972 ssh2 Feb 12 05:58:41 roki sshd[11771]: Invalid user goodluck from 139.99.91.35 Feb 12 05:58:41 roki sshd[11771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 ...	2020-02-12 13:13:37
attack	Unauthorized connection attempt detected from IP address 139.99.91.35 to port 2220 [J]	2020-01-30 00:33:50

类型

评论内容

时间

attackspam

Feb 22 15:00:22 hanapaa sshd\[18593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net  user=root
Feb 22 15:00:24 hanapaa sshd\[18593\]: Failed password for root from 139.99.91.35 port 40618 ssh2
Feb 22 15:04:19 hanapaa sshd\[18952\]: Invalid user www from 139.99.91.35
Feb 22 15:04:19 hanapaa sshd\[18952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net
Feb 22 15:04:20 hanapaa sshd\[18952\]: Failed password for invalid user www from 139.99.91.35 port 35834 ssh2

2020-02-23 09:07:39

attackbotsspam

Feb 12 05:45:13 roki sshd[9406]: Invalid user ruhnow from 139.99.91.35
Feb 12 05:45:13 roki sshd[9406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35
Feb 12 05:45:15 roki sshd[9406]: Failed password for invalid user ruhnow from 139.99.91.35 port 51972 ssh2
Feb 12 05:58:41 roki sshd[11771]: Invalid user goodluck from 139.99.91.35
Feb 12 05:58:41 roki sshd[11771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35
...

2020-02-12 13:13:37

attack

Unauthorized connection attempt detected from IP address 139.99.91.35 to port 2220 [J]

2020-01-30 00:33:50

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.91.43	attackbotsspam	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-19 03:35:21
139.99.91.43	attack	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-18 19:38:02
139.99.91.151	attackbots	ssh brute force	2020-08-26 17:04:27
139.99.91.132	attackbots	Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:29 ns392434 sshd[10712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:31 ns392434 sshd[10712]: Failed password for invalid user rashmi from 139.99.91.132 port 35618 ssh2 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:53 ns392434 sshd[10931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:55 ns392434 sshd[10931]: Failed password for invalid user sj from 139.99.91.132 port 56048 ssh2 Apr 27 13:58:12 ns392434 sshd[11090]: Invalid user gavin from 139.99.91.132 port 39114	2020-04-27 20:33:57
139.99.91.132	attackbotsspam	Apr 23 22:10:05 sxvn sshd[417655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132	2020-04-24 04:10:13
139.99.91.132	attackspambots	Apr 17 11:55:54 sshgateway sshd\[11379\]: Invalid user oracle from 139.99.91.132 Apr 17 11:55:54 sshgateway sshd\[11379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-139-99-91.net Apr 17 11:55:57 sshgateway sshd\[11379\]: Failed password for invalid user oracle from 139.99.91.132 port 34736 ssh2	2020-04-17 20:43:28
139.99.91.132	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-04-14 01:49:00
139.99.91.132	attackspam	Mar 30 02:29:26 XXX sshd[53004]: Invalid user usa from 139.99.91.132 port 46016	2020-03-30 09:33:49
139.99.91.161	attackbotsspam	Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:56 localhost sshd[92545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.ip-139-99-91.net Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:57 localhost sshd[92545]: Failed password for invalid user usertest from 139.99.91.161 port 60422 ssh2 Mar 25 13:28:02 localhost sshd[93269]: Invalid user raamatukogu from 139.99.91.161 port 58896 ...	2020-03-25 21:39:59
139.99.91.161	attackspambots	Brute force attempt	2020-03-25 17:05:50
139.99.91.161	attackbotsspam	$f2bV_matches	2020-03-21 14:24:14
139.99.91.161	attackbotsspam	Mar 19 09:18:16 gw1 sshd[496]: Failed password for root from 139.99.91.161 port 53600 ssh2 ...	2020-03-19 12:47:28
139.99.91.84	attack	Feb 7 23:20:56 ovpn sshd\[16557\]: Invalid user pfy from 139.99.91.84 Feb 7 23:20:56 ovpn sshd\[16557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 7 23:20:58 ovpn sshd\[16557\]: Failed password for invalid user pfy from 139.99.91.84 port 39270 ssh2 Feb 7 23:37:29 ovpn sshd\[20700\]: Invalid user ogo from 139.99.91.84 Feb 7 23:37:29 ovpn sshd\[20700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84	2020-02-08 08:55:16
139.99.91.84	attackspam	Feb 6 02:45:56 legacy sshd[8820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 02:45:59 legacy sshd[8820]: Failed password for invalid user zet from 139.99.91.84 port 38882 ssh2 Feb 6 02:49:11 legacy sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:51:18
139.99.91.84	attack	Feb 6 01:57:20 legacy sshd[5898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 01:57:22 legacy sshd[5898]: Failed password for invalid user mha from 139.99.91.84 port 48966 ssh2 Feb 6 02:00:32 legacy sshd[6132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:11:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.91.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.91.35.			IN	A

;; AUTHORITY SECTION:
.			404	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 00:33:46 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

35.91.99.139.in-addr.arpa domain name pointer 35.ip-139-99-91.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
35.91.99.139.in-addr.arpa	name = 35.ip-139-99-91.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
94.230.112.106	attack	Feb 17 23:09:24 grey postfix/smtpd\[8939\]: NOQUEUE: reject: RCPT from 02-106.ppp.dianet.ru\[94.230.112.106\]: 554 5.7.1 Service unavailable\; Client host \[94.230.112.106\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[94.230.112.106\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-02-18 09:00:17
193.32.161.60	attackspambots	Multiport scan : 9 ports scanned 3343 3415 4015 5510 5590 5633 6690 8200 33789	2020-02-18 09:01:07
73.64.87.211	attack	2019-12-10T12:24:02.896099suse-nuc sshd[6963]: Invalid user admin from 73.64.87.211 port 53294 ...	2020-02-18 09:23:21
37.117.176.50	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 08:53:15
115.124.68.162	attack	Feb 17 23:52:58 andromeda sshd\[19606\]: Invalid user paetti from 115.124.68.162 port 58237 Feb 17 23:52:58 andromeda sshd\[19606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.124.68.162 Feb 17 23:53:00 andromeda sshd\[19639\]: Invalid user paetti from 115.124.68.162 port 58437	2020-02-18 08:57:10
74.105.122.60	attackbotsspam	2020-01-11T16:21:37.919311suse-nuc sshd[30264]: Invalid user pi from 74.105.122.60 port 36992 2020-01-11T16:21:38.248627suse-nuc sshd[30266]: Invalid user pi from 74.105.122.60 port 37000 ...	2020-02-18 09:16:09
217.13.50.40	attack	Port scan on 1 port(s): 21	2020-02-18 09:17:12
45.79.44.25	attackspambots	Port probing on unauthorized port 20547	2020-02-18 09:18:28
76.102.148.183	attack	2019-12-23T14:37:50.127531suse-nuc sshd[30256]: Invalid user nfs from 76.102.148.183 port 37214 ...	2020-02-18 08:49:25
222.186.175.216	attackspam	Feb 17 20:19:10 NPSTNNYC01T sshd[30624]: Failed password for root from 222.186.175.216 port 65372 ssh2 Feb 17 20:19:23 NPSTNNYC01T sshd[30624]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 65372 ssh2 [preauth] Feb 17 20:19:28 NPSTNNYC01T sshd[30633]: Failed password for root from 222.186.175.216 port 6764 ssh2 ...	2020-02-18 09:24:58
73.90.129.233	attack	2019-12-12T23:34:31.191932suse-nuc sshd[1435]: Invalid user toor from 73.90.129.233 port 53952 ...	2020-02-18 09:22:30
74.101.130.157	attackbots	Feb 17 10:35:51 XXX sshd[26857]: Invalid user testing from 74.101.130.157 port 43536	2020-02-18 09:17:54
222.186.180.130	attackspambots	Feb 18 01:51:26 * sshd[30173]: Failed password for root from 222.186.180.130 port 55592 ssh2	2020-02-18 09:09:57
80.227.12.38	attackspam	Feb 18 00:48:33 *** sshd[11397]: Invalid user test from 80.227.12.38	2020-02-18 08:52:47
74.67.58.119	attackspam	Feb 17 21:34:15 ws12vmsma01 sshd[31472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-74-67-58-119.nycap.res.rr.com Feb 17 21:34:15 ws12vmsma01 sshd[31472]: Invalid user pi from 74.67.58.119 Feb 17 21:34:22 ws12vmsma01 sshd[31472]: Failed password for invalid user pi from 74.67.58.119 port 48638 ssh2 ...	2020-02-18 09:08:07

最近上报的IP列表

78.180.139.193	101.95.139.229	239.151.92.79	182.23.116.61
232.181.43.32	58.32.74.225	78.217.83.0	87.130.238.203
119.235.102.65	200.119.213.182	135.15.255.210	86.220.240.130
200.118.134.40	200.117.104.9	217.174.248.133	200.114.103.222
200.111.167.146	35.183.68.118	200.108.131.250	59.42.37.132