39.99.128.174 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Mar 10 21:25:52 SilenceServices sshd[12839]: Failed password for root from 39.99.128.174 port 47298 ssh2 Mar 10 21:28:27 SilenceServices sshd[9096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.99.128.174 Mar 10 21:28:28 SilenceServices sshd[9096]: Failed password for invalid user user from 39.99.128.174 port 48628 ssh2	2020-03-11 05:49:07
attackspambots	invalid login attempt (packer)	2020-03-08 00:50:15

类型

评论内容

时间

attack

Mar 10 21:25:52 SilenceServices sshd[12839]: Failed password for root from 39.99.128.174 port 47298 ssh2
Mar 10 21:28:27 SilenceServices sshd[9096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.99.128.174
Mar 10 21:28:28 SilenceServices sshd[9096]: Failed password for invalid user user from 39.99.128.174 port 48628 ssh2

2020-03-11 05:49:07

attackspambots

invalid login attempt (packer)

2020-03-08 00:50:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.99.128.174
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.99.128.174.			IN	A

;; AUTHORITY SECTION:
.			357	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030700 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 00:50:08 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 174.128.99.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 174.128.99.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.141.51.186	attack	TCP (SYN) 209.141.51.186:50901 -> port 2005, len 44	2020-06-13 13:46:17
198.50.177.42	attackbotsspam	Jun 13 06:07:54 ns382633 sshd\[30995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 user=root Jun 13 06:07:57 ns382633 sshd\[30995\]: Failed password for root from 198.50.177.42 port 36354 ssh2 Jun 13 06:10:25 ns382633 sshd\[31765\]: Invalid user lqq from 198.50.177.42 port 57962 Jun 13 06:10:25 ns382633 sshd\[31765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 Jun 13 06:10:27 ns382633 sshd\[31765\]: Failed password for invalid user lqq from 198.50.177.42 port 57962 ssh2	2020-06-13 13:40:32
218.92.0.189	attack	06/13/2020-01:35:46.916127 218.92.0.189 Protocol: 6 ET SCAN Potential SSH Scan	2020-06-13 13:37:24
14.175.90.105	attackbotsspam	firewall-block, port(s): 445/tcp	2020-06-13 14:06:23
62.171.144.195	attackspam	[2020-06-13 01:59:21] NOTICE[1273] chan_sip.c: Registration from '' failed for '62.171.144.195:47657' - Wrong password [2020-06-13 01:59:21] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-13T01:59:21.781-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="sip",SessionID="0x7f31c018ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.171.144.195/47657",Challenge="334f9d55",ReceivedChallenge="334f9d55",ReceivedHash="1a284c99f6d5ae9792b2012354ca8b56" [2020-06-13 02:04:02] NOTICE[1273] chan_sip.c: Registration from '' failed for '62.171.144.195:52898' - Wrong password [2020-06-13 02:04:02] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-13T02:04:02.382-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="asd",SessionID="0x7f31c018ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.171.144.195/5 ...	2020-06-13 14:05:55
139.186.74.64	attack	Invalid user keiv from 139.186.74.64 port 46030	2020-06-13 13:53:44
83.9.116.22	attack	Jun 13 08:05:12 server sshd[2190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.9.116.22 Jun 13 08:05:15 server sshd[2190]: Failed password for invalid user rocha from 83.9.116.22 port 60512 ssh2 Jun 13 08:09:18 server sshd[2733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.9.116.22 ...	2020-06-13 14:13:22
122.224.232.66	attack	Jun 13 08:09:42 lnxmysql61 sshd[30792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.232.66	2020-06-13 14:17:02
46.38.145.250	attackbotsspam	Jun 13 07:36:16 srv01 postfix/smtpd\[23676\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 13 07:36:23 srv01 postfix/smtpd\[2158\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 13 07:36:57 srv01 postfix/smtpd\[4583\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 13 07:37:29 srv01 postfix/smtpd\[2158\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 13 07:37:49 srv01 postfix/smtpd\[4583\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-13 13:39:00
189.207.108.219	attack	Automatic report - Port Scan Attack	2020-06-13 14:19:16
112.253.11.105	attackbotsspam	reported through recidive - multiple failed attempts(SSH)	2020-06-13 14:10:40
179.191.237.172	attack	Invalid user yj from 179.191.237.172 port 55187	2020-06-13 14:07:24
14.170.170.42	attackbots	1592021411 - 06/13/2020 06:10:11 Host: 14.170.170.42/14.170.170.42 Port: 445 TCP Blocked	2020-06-13 13:54:40
95.169.6.47	attack	Jun 13 07:42:42 OPSO sshd\[24059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.169.6.47 user=root Jun 13 07:42:44 OPSO sshd\[24059\]: Failed password for root from 95.169.6.47 port 43596 ssh2 Jun 13 07:47:18 OPSO sshd\[24771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.169.6.47 user=root Jun 13 07:47:19 OPSO sshd\[24771\]: Failed password for root from 95.169.6.47 port 45774 ssh2 Jun 13 07:51:55 OPSO sshd\[25754\]: Invalid user litong from 95.169.6.47 port 47876 Jun 13 07:51:55 OPSO sshd\[25754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.169.6.47	2020-06-13 14:17:35
106.52.236.23	attack	2020-06-13T04:08:43.315615shield sshd\[32336\]: Invalid user edwin from 106.52.236.23 port 35132 2020-06-13T04:08:43.319453shield sshd\[32336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.236.23 2020-06-13T04:08:45.922632shield sshd\[32336\]: Failed password for invalid user edwin from 106.52.236.23 port 35132 ssh2 2020-06-13T04:10:01.294399shield sshd\[397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.236.23 user=root 2020-06-13T04:10:03.937953shield sshd\[397\]: Failed password for root from 106.52.236.23 port 48744 ssh2	2020-06-13 14:04:15

最近上报的IP列表

31.167.186.228	123.20.117.228	192.99.33.202	192.241.219.121
190.38.157.242	37.114.183.203	191.96.249.126	36.37.208.78
187.85.170.119	182.247.148.29	36.81.47.197	14.248.69.107
195.175.84.174	157.36.223.125	51.77.103.232	14.246.213.250
123.27.118.231	183.83.88.115	182.232.239.43	197.149.170.234