99.132.140.63 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): AT&T Corp.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Log entries: Apr 9 09:51:20 sundrops sshd[27430]: Invalid user postgres from 99.132.140.63 Apr 9 09:51:20 sundrops sshd[27430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.132.140.63 Apr 9 09:51:21 sundrops sshd[27430]: Failed password for invalid user postgres from 99.132.140.63 port 54662 ssh2 Apr 9 10:06:14 sundrops sshd[29674]: Invalid user teamspeak from 99.132.140.63 Apr 9 10:06:14 sundrops sshd[29674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.132.140.63	2020-04-12 12:59:16
attackspam	Apr 10 07:15:39 ift sshd\[2197\]: Failed password for root from 99.132.140.63 port 43138 ssh2Apr 10 07:22:06 ift sshd\[3010\]: Invalid user postgres from 99.132.140.63Apr 10 07:22:08 ift sshd\[3010\]: Failed password for invalid user postgres from 99.132.140.63 port 60104 ssh2Apr 10 07:25:30 ift sshd\[3741\]: Invalid user deploy from 99.132.140.63Apr 10 07:25:32 ift sshd\[3741\]: Failed password for invalid user deploy from 99.132.140.63 port 38206 ssh2 ...	2020-04-10 16:46:26
attackspambots	2020-04-09T12:02:06.834281librenms sshd[13821]: Invalid user deploy from 99.132.140.63 port 44990 2020-04-09T12:02:08.922021librenms sshd[13821]: Failed password for invalid user deploy from 99.132.140.63 port 44990 ssh2 2020-04-09T12:05:42.748377librenms sshd[14452]: Invalid user docker from 99.132.140.63 port 55744 ...	2020-04-09 19:35:46

类型

评论内容

时间

attack

Log entries:

Apr  9 09:51:20 sundrops sshd[27430]: Invalid user postgres from 99.132.140.63
Apr  9 09:51:20 sundrops sshd[27430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.132.140.63 
Apr  9 09:51:21 sundrops sshd[27430]: Failed password for invalid user postgres from 99.132.140.63 port 54662 ssh2
Apr  9 10:06:14 sundrops sshd[29674]: Invalid user teamspeak from 99.132.140.63
Apr  9 10:06:14 sundrops sshd[29674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.132.140.63

2020-04-12 12:59:16

attackspam

Apr 10 07:15:39 ift sshd\[2197\]: Failed password for root from 99.132.140.63 port 43138 ssh2Apr 10 07:22:06 ift sshd\[3010\]: Invalid user postgres from 99.132.140.63Apr 10 07:22:08 ift sshd\[3010\]: Failed password for invalid user postgres from 99.132.140.63 port 60104 ssh2Apr 10 07:25:30 ift sshd\[3741\]: Invalid user deploy from 99.132.140.63Apr 10 07:25:32 ift sshd\[3741\]: Failed password for invalid user deploy from 99.132.140.63 port 38206 ssh2
...

2020-04-10 16:46:26

attackspambots

2020-04-09T12:02:06.834281librenms sshd[13821]: Invalid user deploy from 99.132.140.63 port 44990
2020-04-09T12:02:08.922021librenms sshd[13821]: Failed password for invalid user deploy from 99.132.140.63 port 44990 ssh2
2020-04-09T12:05:42.748377librenms sshd[14452]: Invalid user docker from 99.132.140.63 port 55744
...

2020-04-09 19:35:46

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.132.140.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28930
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;99.132.140.63.			IN	A

;; AUTHORITY SECTION:
.			520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040900 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 09 19:35:39 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 63.140.132.99.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.140.132.99.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
83.110.212.85	attack	Jun 27 23:16:19 ns381471 sshd[13483]: Failed password for root from 83.110.212.85 port 14022 ssh2	2020-06-28 05:34:49
190.104.121.176	attackspambots	190.104.121.176 - - [27/Jun/2020:21:45:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 190.104.121.176 - - [27/Jun/2020:21:45:22 +0100] "POST /wp-login.php HTTP/1.1" 200 5422 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 190.104.121.176 - - [27/Jun/2020:21:47:52 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-06-28 06:02:23
197.185.105.112	attackspam	WordPress brute force	2020-06-28 05:57:14
200.178.4.103	attackspambots	Unauthorized connection attempt from IP address 200.178.4.103 on Port 445(SMB)	2020-06-28 06:07:37
115.84.92.250	attackspambots	Dovecot Invalid User Login Attempt.	2020-06-28 05:54:48
51.38.124.144	attack	From aluguel-1ed96-marcoslimaimoveis.com.br-1ed96@osmelhores.live Sat Jun 27 17:45:56 2020 Received: from aproveite-144-124-38-51.osmelhores.live ([51.38.124.144]:60108)	2020-06-28 05:31:56
41.242.136.18	attackspam	WordPress brute force	2020-06-28 05:48:04
49.232.5.230	attackspam	2020-06-27T21:36:28.596213shield sshd\[19041\]: Invalid user bma from 49.232.5.230 port 42406 2020-06-27T21:36:28.600242shield sshd\[19041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.5.230 2020-06-27T21:36:31.152838shield sshd\[19041\]: Failed password for invalid user bma from 49.232.5.230 port 42406 ssh2 2020-06-27T21:40:15.850470shield sshd\[19510\]: Invalid user odoo from 49.232.5.230 port 44986 2020-06-27T21:40:15.854084shield sshd\[19510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.5.230	2020-06-28 05:52:34
46.38.145.4	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 46.38.145.4 (GB/United Kingdom/-): 5 in the last 3600 secs	2020-06-28 06:06:48
31.223.26.242	attackbotsspam	WordPress brute force	2020-06-28 05:51:42
52.230.7.48	attack	2020-06-27T15:35:46.007168linuxbox-skyline sshd[288624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.230.7.48 user=root 2020-06-27T15:35:48.323885linuxbox-skyline sshd[288624]: Failed password for root from 52.230.7.48 port 4038 ssh2 ...	2020-06-28 05:56:28
178.33.12.237	attackspam	Invalid user ark from 178.33.12.237 port 55240	2020-06-28 06:00:34
2001:e68:5051:53d3:12be:f5ff:fe29:d018	attack	Jun 27 14:45:45 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=2001:e68:5051:53d3:12be:f5ff:fe29:d018, lip=2a04:bdc7:100:28::2, TLS, session=<8BDR6BapSoEgAQ5oUFFT0xK+9f/+KdAY> ...	2020-06-28 05:59:08
113.176.89.116	attackbotsspam	Jun 27 23:17:48 ns381471 sshd[13545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.176.89.116 Jun 27 23:17:50 ns381471 sshd[13545]: Failed password for invalid user henry from 113.176.89.116 port 58632 ssh2	2020-06-28 05:30:41
24.76.189.112	attackspam	WordPress brute force	2020-06-28 05:53:47

最近上报的IP列表

244.124.198.158	42.209.143.63	54.105.11.227	5.240.2.46
75.232.161.229	246.141.192.6	51.207.227.63	194.26.29.212
41.32.140.171	36.73.66.68	134.122.16.152	50.115.172.104
202.188.216.191	157.100.58.254	31.168.88.98	217.112.142.150
27.210.159.1	1.32.116.240	122.233.104.140	227.52.195.229