139.99.62.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
attackspam	xmlrpc attack	2020-10-07 13:58:46
attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

Comments on same subnet:

IP	Type	Details	Datetime
139.99.62.10	attack	Sep 17 20:11:40 saschabauer sshd[24591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 17 20:11:42 saschabauer sshd[24591]: Failed password for invalid user adda from 139.99.62.10 port 43454 ssh2	2019-09-18 02:20:35
139.99.62.10	attackspam	Sep 16 00:16:00 localhost sshd\[2743\]: Invalid user marco from 139.99.62.10 port 40548 Sep 16 00:16:00 localhost sshd\[2743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 16 00:16:02 localhost sshd\[2743\]: Failed password for invalid user marco from 139.99.62.10 port 40548 ssh2 ...	2019-09-16 08:47:25
139.99.62.10	attack	Sep 15 07:37:17 vps647732 sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Sep 15 07:37:19 vps647732 sshd[14868]: Failed password for invalid user q2w3e4R from 139.99.62.10 port 51936 ssh2 ...	2019-09-15 13:50:48
139.99.62.10	attackbotsspam	Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: Invalid user student from 139.99.62.10 Sep 10 17:07:47 friendsofhawaii sshd\[27694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 10 17:07:49 friendsofhawaii sshd\[27694\]: Failed password for invalid user student from 139.99.62.10 port 42312 ssh2 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: Invalid user q3server from 139.99.62.10 Sep 10 17:14:43 friendsofhawaii sshd\[28448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-11 11:17:28
139.99.62.10	attack	Sep 5 11:39:11 auw2 sshd\[26721\]: Invalid user oracle from 139.99.62.10 Sep 5 11:39:11 auw2 sshd\[26721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 5 11:39:13 auw2 sshd\[26721\]: Failed password for invalid user oracle from 139.99.62.10 port 56602 ssh2 Sep 5 11:43:53 auw2 sshd\[27124\]: Invalid user smbuser from 139.99.62.10 Sep 5 11:43:53 auw2 sshd\[27124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia	2019-09-06 05:54:40
139.99.62.10	attackspambots	Sep 1 13:44:45 auw2 sshd\[12472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia user=root Sep 1 13:44:47 auw2 sshd\[12472\]: Failed password for root from 139.99.62.10 port 42604 ssh2 Sep 1 13:49:34 auw2 sshd\[12850\]: Invalid user duncan from 139.99.62.10 Sep 1 13:49:34 auw2 sshd\[12850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxy.ecoit.asia Sep 1 13:49:36 auw2 sshd\[12850\]: Failed password for invalid user duncan from 139.99.62.10 port 36740 ssh2	2019-09-02 11:06:55
139.99.62.10	attack	Aug 30 20:12:57 meumeu sshd[18937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 30 20:12:59 meumeu sshd[18937]: Failed password for invalid user qqq from 139.99.62.10 port 51166 ssh2 Aug 30 20:17:38 meumeu sshd[19498]: Failed password for root from 139.99.62.10 port 47666 ssh2 ...	2019-08-31 02:35:10
139.99.62.10	attackspambots	Aug 25 00:49:13 root sshd[3077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 25 00:49:15 root sshd[3077]: Failed password for invalid user library from 139.99.62.10 port 44704 ssh2 Aug 25 00:53:43 root sshd[3142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 ...	2019-08-25 07:15:07
139.99.62.10	attackspam	Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:44 ns315508 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 20 08:24:44 ns315508 sshd[28068]: Invalid user weblogic from 139.99.62.10 port 38434 Aug 20 08:24:46 ns315508 sshd[28068]: Failed password for invalid user weblogic from 139.99.62.10 port 38434 ssh2 Aug 20 08:29:26 ns315508 sshd[28101]: Invalid user test2 from 139.99.62.10 port 37162 ...	2019-08-20 16:39:03
139.99.62.10	attackspam	Aug 17 18:28:50 * sshd[26078]: Failed password for invalid user student01 from 139.99.62.10 port 42818 ssh2 Aug 17 18:39:46 * sshd[26271]: Failed password for invalid user yap from 139.99.62.10 port 45908 ssh2 Aug 17 18:44:33 * sshd[26404]: Failed password for invalid user test from 139.99.62.10 port 35672 ssh2 Aug 17 18:49:17 * sshd[26477]: Failed password for invalid user grey from 139.99.62.10 port 53674 ssh2 Aug 17 18:54:04 * sshd[26539]: Failed password for invalid user nagios from 139.99.62.10 port 43430 ssh2 Aug 17 18:58:54 * sshd[26607]: Failed password for invalid user shekhar from 139.99.62.10 port 33182 ssh2 Aug 17 19:03:46 * sshd[26730]: Failed password for invalid user jp from 139.99.62.10 port 51172 ssh2 Aug 17 19:08:29 * sshd[26829]: Failed password for invalid user nexus from 139.99.62.10 port 40952 ssh2 Aug 17 19:13:16 * sshd[26955]: Failed password for invalid user wp-user from 139.99.62.10 port 58962 ssh2 Aug 17 19:27:54 * sshd[27242]: Failed password for invalid user gh	2019-08-19 04:06:58
139.99.62.10	attackspam	Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:43 marvibiene sshd[61609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.62.10 Aug 17 21:57:43 marvibiene sshd[61609]: Invalid user zheng from 139.99.62.10 port 35648 Aug 17 21:57:44 marvibiene sshd[61609]: Failed password for invalid user zheng from 139.99.62.10 port 35648 ssh2 ...	2019-08-18 09:52:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.62.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.62.85.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120800 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 20:08:36 CST 2019
;; MSG SIZE  rcvd: 116

Host info

85.62.99.139.in-addr.arpa domain name pointer ns562765.ip-139-99-62.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.62.99.139.in-addr.arpa	name = ns562765.ip-139-99-62.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.128.156.144	attackspambots	Aug 30 01:41:30 aat-srv002 sshd[2831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.156.144 Aug 30 01:41:32 aat-srv002 sshd[2831]: Failed password for invalid user cpanel from 178.128.156.144 port 37314 ssh2 Aug 30 01:46:20 aat-srv002 sshd[2973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.156.144 Aug 30 01:46:22 aat-srv002 sshd[2973]: Failed password for invalid user test from 178.128.156.144 port 52620 ssh2 ...	2019-08-30 14:54:06
159.93.73.12	attackbots	Aug 30 09:01:06 dedicated sshd[30052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.93.73.12 user=root Aug 30 09:01:09 dedicated sshd[30052]: Failed password for root from 159.93.73.12 port 34028 ssh2	2019-08-30 15:20:25
125.129.185.117	attackbots	Aug 29 19:48:07 lcdev sshd\[8694\]: Invalid user admin from 125.129.185.117 Aug 29 19:48:07 lcdev sshd\[8694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.129.185.117 Aug 29 19:48:09 lcdev sshd\[8694\]: Failed password for invalid user admin from 125.129.185.117 port 60277 ssh2 Aug 29 19:48:11 lcdev sshd\[8694\]: Failed password for invalid user admin from 125.129.185.117 port 60277 ssh2 Aug 29 19:48:13 lcdev sshd\[8694\]: Failed password for invalid user admin from 125.129.185.117 port 60277 ssh2	2019-08-30 15:23:28
117.60.134.28	attack	Lines containing failures of 117.60.134.28 Aug 30 07:41:25 zabbix sshd[11571]: Invalid user admin from 117.60.134.28 port 60401 Aug 30 07:41:25 zabbix sshd[11571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.60.134.28 Aug 30 07:41:27 zabbix sshd[11571]: Failed password for invalid user admin from 117.60.134.28 port 60401 ssh2 Aug 30 07:41:30 zabbix sshd[11571]: Failed password for invalid user admin from 117.60.134.28 port 60401 ssh2 Aug 30 07:41:33 zabbix sshd[11571]: Failed password for invalid user admin from 117.60.134.28 port 60401 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.60.134.28	2019-08-30 14:58:00
151.80.144.39	attackbots	Aug 30 01:04:35 aat-srv002 sshd[1749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Aug 30 01:04:37 aat-srv002 sshd[1749]: Failed password for invalid user go from 151.80.144.39 port 49176 ssh2 Aug 30 01:08:20 aat-srv002 sshd[1821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Aug 30 01:08:22 aat-srv002 sshd[1821]: Failed password for invalid user yu from 151.80.144.39 port 35808 ssh2 ...	2019-08-30 14:54:34
104.131.93.33	attackbotsspam	Aug 30 08:36:41 [HOSTNAME] sshd[27907]: User removed from 104.131.93.33 not allowed because not listed in AllowUsers Aug 30 08:44:57 [HOSTNAME] sshd[28027]: Invalid user valvoja from 104.131.93.33 port 49869 Aug 30 08:55:14 [HOSTNAME] sshd[28109]: Invalid user hate from 104.131.93.33 port 43397 ...	2019-08-30 15:02:53
108.52.107.31	attackbotsspam	Aug 30 08:50:50 * sshd[25916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.52.107.31 Aug 30 08:50:51 * sshd[25916]: Failed password for invalid user much from 108.52.107.31 port 41676 ssh2	2019-08-30 15:22:19
185.12.227.227	attackspam	[portscan] Port scan	2019-08-30 14:45:05
141.98.9.205	attackspam	Aug 30 08:57:12 relay postfix/smtpd\[16435\]: warning: unknown\[141.98.9.205\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:58:05 relay postfix/smtpd\[24416\]: warning: unknown\[141.98.9.205\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:58:22 relay postfix/smtpd\[18611\]: warning: unknown\[141.98.9.205\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:59:15 relay postfix/smtpd\[24416\]: warning: unknown\[141.98.9.205\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:59:32 relay postfix/smtpd\[27927\]: warning: unknown\[141.98.9.205\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-30 15:00:32
200.236.123.176	attackspambots	Automatic report - Port Scan Attack	2019-08-30 15:15:05
162.216.16.234	attackspam	FW: Kontakt. Nachricht	2019-08-30 14:48:31
190.145.25.166	attackspam	Invalid user ilse from 190.145.25.166 port 17553	2019-08-30 15:13:03
42.242.237.32	attackspam	Unauthorised access (Aug 30) SRC=42.242.237.32 LEN=40 TTL=50 ID=20470 TCP DPT=23 WINDOW=337 SYN	2019-08-30 14:41:02
54.38.185.87	attack	Aug 30 08:58:30 localhost sshd\[22711\]: Invalid user ema from 54.38.185.87 port 57520 Aug 30 08:58:30 localhost sshd\[22711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.87 Aug 30 08:58:32 localhost sshd\[22711\]: Failed password for invalid user ema from 54.38.185.87 port 57520 ssh2	2019-08-30 15:20:06
91.53.39.156	attackbotsspam	/var/log/apache/pucorp.org.log:91.53.39.156 - - [30/Aug/2019:13:16:24 +0800] "GET /product-category/%E6%9B%B8/%E6%BC%AB%E7%95%AB/?lang=ja/feed/&m5_columns=5&add_to_wishlist=4492 HTTP/1.1" 302 2750 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; hxxp://mj12bot.com/)" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.53.39.156	2019-08-30 15:03:17

Recently Reported IPs

196.166.157.178	106.13.216.92	205.113.54.141	188.39.44.200
113.232.138.144	7.41.19.110	91.9.10.130	229.215.59.167
17.156.187.61	167.40.24.223	235.206.131.52	253.124.32.6
183.34.209.152	119.167.130.137	236.170.50.143	83.204.188.233
25.221.2.147	149.247.154.236	18.4.16.162	180.224.44.112