139.5.222.204 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.5.222.55	attackbots	Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[	2019-08-12 05:54:52

类型

评论内容

时间

139.5.222.55

attackbots

Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) 
Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[

2019-08-12 05:54:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.5.222.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.5.222.204.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:31:59 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 204.222.5.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.222.5.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
195.54.160.180	attackspambots	Oct 12 20:05:00 er4gw sshd[19698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180	2020-10-13 08:03:50
92.63.197.53	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 82 - port: 7131 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 08:09:40
209.141.33.122	attack	Oct 11 12:05:41 : SSH login attempts with invalid user	2020-10-13 07:59:18
170.210.214.51	attackspam	Invalid user lcy from 170.210.214.51 port 35454	2020-10-13 08:00:11
125.91.126.92	attackbotsspam	Oct 12 22:08:11 localhost sshd[25641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.126.92 user=root Oct 12 22:08:13 localhost sshd[25641]: Failed password for root from 125.91.126.92 port 53262 ssh2 Oct 12 22:12:56 localhost sshd[26063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.126.92 user=root Oct 12 22:12:57 localhost sshd[26063]: Failed password for root from 125.91.126.92 port 48452 ssh2 Oct 12 22:17:36 localhost sshd[26498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.126.92 user=root Oct 12 22:17:38 localhost sshd[26498]: Failed password for root from 125.91.126.92 port 43644 ssh2 ...	2020-10-13 08:29:52
106.12.148.170	attackbots	SSH brute-force attempt	2020-10-13 08:16:48
140.143.26.171	attack	Ssh brute force	2020-10-13 08:04:10
37.211.146.174	attackspam	fail2ban/Oct 12 22:47:03 h1962932 sshd[21091]: Invalid user admin from 37.211.146.174 port 56199 Oct 12 22:47:03 h1962932 sshd[21091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.211.146.174 Oct 12 22:47:03 h1962932 sshd[21091]: Invalid user admin from 37.211.146.174 port 56199 Oct 12 22:47:06 h1962932 sshd[21091]: Failed password for invalid user admin from 37.211.146.174 port 56199 ssh2 Oct 12 22:47:09 h1962932 sshd[21105]: Invalid user admin from 37.211.146.174 port 56224	2020-10-13 07:57:33
101.36.151.78	attackbots	Oct 13 05:59:20 itv-usvr-02 sshd[20200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.151.78 user=root Oct 13 05:59:23 itv-usvr-02 sshd[20200]: Failed password for root from 101.36.151.78 port 54824 ssh2 Oct 13 06:02:34 itv-usvr-02 sshd[20309]: Invalid user webadmin from 101.36.151.78 port 49680 Oct 13 06:02:34 itv-usvr-02 sshd[20309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.151.78 Oct 13 06:02:34 itv-usvr-02 sshd[20309]: Invalid user webadmin from 101.36.151.78 port 49680 Oct 13 06:02:37 itv-usvr-02 sshd[20309]: Failed password for invalid user webadmin from 101.36.151.78 port 49680 ssh2	2020-10-13 08:31:32
49.234.221.104	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-12T23:47:24Z and 2020-10-12T23:57:49Z	2020-10-13 08:06:55
119.29.182.185	attack	2020-10-12T23:44:26.654219dmca.cloudsearch.cf sshd[8079]: Invalid user miguel from 119.29.182.185 port 51454 2020-10-12T23:44:26.659733dmca.cloudsearch.cf sshd[8079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.182.185 2020-10-12T23:44:26.654219dmca.cloudsearch.cf sshd[8079]: Invalid user miguel from 119.29.182.185 port 51454 2020-10-12T23:44:28.625638dmca.cloudsearch.cf sshd[8079]: Failed password for invalid user miguel from 119.29.182.185 port 51454 ssh2 2020-10-12T23:50:10.430955dmca.cloudsearch.cf sshd[8252]: Invalid user flores from 119.29.182.185 port 37456 2020-10-12T23:50:10.436560dmca.cloudsearch.cf sshd[8252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.182.185 2020-10-12T23:50:10.430955dmca.cloudsearch.cf sshd[8252]: Invalid user flores from 119.29.182.185 port 37456 2020-10-12T23:50:12.296697dmca.cloudsearch.cf sshd[8252]: Failed password for invalid user flores from 119.2 ...	2020-10-13 07:58:21
156.96.58.239	attackbots	12-10-2020 22:21:18 Unauthorized connection attempt (Brute-Force). 12-10-2020 22:21:18 Connection from IP address: 156.96.58.239 on port: 110 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.96.58.239	2020-10-13 07:53:12
103.18.6.65	attackbotsspam	Vulnerability exploiter using /blog/wp-login.php. Automatically blocked.	2020-10-13 07:51:38
192.142.164.139	attackspam	ENG,WP GET /wp-login.php	2020-10-13 08:14:36
139.99.69.189	attackspam	CMS (WordPress or Joomla) login attempt.	2020-10-13 07:54:32

最近上报的IP列表

139.5.222.203	139.5.222.200	139.5.222.18	139.5.222.185
139.5.222.201	139.5.222.176	139.5.222.180	118.254.141.120
139.5.222.174	139.5.222.210	139.5.222.239	139.5.222.221
139.5.222.223	139.5.222.27	139.5.222.236	139.5.222.36
139.5.222.232	139.5.222.5	139.5.222.65	139.5.222.78