139.5.222.204 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.5.222.55	attackbots	Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[	2019-08-12 05:54:52

类型

评论内容

时间

139.5.222.55

attackbots

Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) 
Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[

2019-08-12 05:54:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.5.222.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.5.222.204.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:31:59 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 204.222.5.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.222.5.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
162.252.58.41	attack	scanning for php files	2019-10-14 22:00:33
98.156.148.239	attackspambots	Oct 14 13:52:20 host sshd\[33897\]: Invalid user Santos_123 from 98.156.148.239 port 33122 Oct 14 13:52:20 host sshd\[33897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.156.148.239 ...	2019-10-14 21:59:43
125.212.212.226	attackbots	Oct 14 14:55:12 bouncer sshd\[15080\]: Invalid user 2wsx3edc from 125.212.212.226 port 55156 Oct 14 14:55:12 bouncer sshd\[15080\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.212.226 Oct 14 14:55:14 bouncer sshd\[15080\]: Failed password for invalid user 2wsx3edc from 125.212.212.226 port 55156 ssh2 ...	2019-10-14 21:45:05
122.171.194.19	attackbots	Automatic report - Port Scan Attack	2019-10-14 21:45:44
182.52.52.67	attackspam	Automatic report - Port Scan Attack	2019-10-14 22:26:25
112.27.129.154	attackbotsspam	Oct 14 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 5 secs$: user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS: Disconnected, session=\<3zj6St6UOIBwG4Ga\> Oct 14 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 4 secs$: user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS, session=\ Oct 14 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 5 secs$: user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS: Disconnected, session=\	2019-10-14 21:48:00
81.22.45.190	attackspam	2019-10-14T15:22:12.420405+02:00 lumpi kernel: [881743.606511] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.190 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14658 PROTO=TCP SPT=47027 DPT=9314 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-14 22:19:12
68.183.19.84	attack	'Fail2Ban'	2019-10-14 22:13:18
138.68.92.121	attackbotsspam	Oct 14 01:48:07 eddieflores sshd\[12317\]: Invalid user P@\$\$word\#1234 from 138.68.92.121 Oct 14 01:48:07 eddieflores sshd\[12317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 Oct 14 01:48:10 eddieflores sshd\[12317\]: Failed password for invalid user P@\$\$word\#1234 from 138.68.92.121 port 40576 ssh2 Oct 14 01:57:03 eddieflores sshd\[12969\]: Invalid user 123qweasd from 138.68.92.121 Oct 14 01:57:03 eddieflores sshd\[12969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121	2019-10-14 22:22:06
185.90.118.100	attack	10/14/2019-08:41:09.711757 185.90.118.100 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 22:01:55
103.8.149.78	attackbots	2019-10-14T14:07:06.641199abusebot-5.cloudsearch.cf sshd\[23054\]: Invalid user cyrus from 103.8.149.78 port 45281	2019-10-14 22:08:55
49.88.112.116	attackbots	Oct 14 15:42:25 root sshd[29269]: Failed password for root from 49.88.112.116 port 45900 ssh2 Oct 14 15:42:28 root sshd[29269]: Failed password for root from 49.88.112.116 port 45900 ssh2 Oct 14 15:42:31 root sshd[29269]: Failed password for root from 49.88.112.116 port 45900 ssh2 ...	2019-10-14 21:53:03
103.116.141.2	attack	port scan and connect, tcp 23 (telnet)	2019-10-14 22:02:23
157.230.57.112	attack	2019-10-14T11:51:49.434260abusebot-2.cloudsearch.cf sshd\[31014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.57.112 user=root	2019-10-14 22:16:55
106.12.218.193	attackspam	Oct 14 13:46:08 vps691689 sshd[23689]: Failed password for root from 106.12.218.193 port 51820 ssh2 Oct 14 13:51:37 vps691689 sshd[23761]: Failed password for root from 106.12.218.193 port 60628 ssh2 ...	2019-10-14 22:22:32

最近上报的IP列表

139.5.222.203	139.5.222.200	139.5.222.18	139.5.222.185
139.5.222.201	139.5.222.176	139.5.222.180	118.254.141.120
139.5.222.174	139.5.222.210	139.5.222.239	139.5.222.221
139.5.222.223	139.5.222.27	139.5.222.236	139.5.222.36
139.5.222.232	139.5.222.5	139.5.222.65	139.5.222.78