139.5.222.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.5.222.55	attackbots	Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[	2019-08-12 05:54:52

类型

评论内容

时间

139.5.222.55

attackbots

Aug 11 14:10:11 localhost kernel: [16791204.435693] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:11 localhost kernel: [16791204.435720] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=24333 DF PROTO=TCP SPT=58009 DPT=8291 SEQ=1780344358 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (0204056E01010402) 
Aug 11 14:10:14 localhost kernel: [16791207.414272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=8764 DF PROTO=TCP SPT=58016 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Aug 11 14:10:14 localhost kernel: [16791207.414304] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=139.5.222.55 DST=[

2019-08-12 05:54:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.5.222.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.5.222.239.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:32:03 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 239.222.5.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.222.5.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
93.115.1.195	attack	Invalid user ts3srv from 93.115.1.195 port 37724	2020-08-24 21:56:56
190.25.45.189	attackspam	Automatic report - Banned IP Access	2020-08-24 21:55:10
181.117.26.104	attackbotsspam	Aug 24 13:37:32 ns382633 sshd\[31186\]: Invalid user user from 181.117.26.104 port 50111 Aug 24 13:37:32 ns382633 sshd\[31186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.117.26.104 Aug 24 13:37:35 ns382633 sshd\[31186\]: Failed password for invalid user user from 181.117.26.104 port 50111 ssh2 Aug 24 13:51:44 ns382633 sshd\[1249\]: Invalid user kyang from 181.117.26.104 port 24815 Aug 24 13:51:44 ns382633 sshd\[1249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.117.26.104	2020-08-24 21:55:28
201.210.229.168	attack	1598269933 - 08/24/2020 13:52:13 Host: 201.210.229.168/201.210.229.168 Port: 445 TCP Blocked	2020-08-24 21:34:18
78.217.177.232	attack	Aug 24 12:59:01 XXX sshd[43750]: Invalid user test from 78.217.177.232 port 37250	2020-08-24 22:08:25
111.229.248.87	attackbots	Aug 24 14:05:18 pornomens sshd\[2938\]: Invalid user elba from 111.229.248.87 port 38602 Aug 24 14:05:18 pornomens sshd\[2938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.248.87 Aug 24 14:05:21 pornomens sshd\[2938\]: Failed password for invalid user elba from 111.229.248.87 port 38602 ssh2 ...	2020-08-24 22:09:38
198.38.90.79	attackspam	198.38.90.79 - - [24/Aug/2020:12:51:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.38.90.79 - - [24/Aug/2020:12:51:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.38.90.79 - - [24/Aug/2020:12:51:50 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 21:50:33
175.7.196.228	attackspam	Lines containing failures of 175.7.196.228 Aug 24 06:10:42 penfold sshd[16322]: Invalid user eon from 175.7.196.228 port 36710 Aug 24 06:10:42 penfold sshd[16322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.7.196.228 Aug 24 06:10:44 penfold sshd[16322]: Failed password for invalid user eon from 175.7.196.228 port 36710 ssh2 Aug 24 06:10:45 penfold sshd[16322]: Received disconnect from 175.7.196.228 port 36710:11: Bye Bye [preauth] Aug 24 06:10:45 penfold sshd[16322]: Disconnected from invalid user eon 175.7.196.228 port 36710 [preauth] Aug 24 06:25:47 penfold sshd[17959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.7.196.228 user=r.r Aug 24 06:25:49 penfold sshd[17959]: Failed password for r.r from 175.7.196.228 port 43320 ssh2 Aug 24 06:25:50 penfold sshd[17959]: Received disconnect from 175.7.196.228 port 43320:11: Bye Bye [preauth] Aug 24 06:25:50 penfold sshd[17959]: Di........ ------------------------------	2020-08-24 21:53:11
117.221.67.73	attackbotsspam	1598269890 - 08/24/2020 13:51:30 Host: 117.221.67.73/117.221.67.73 Port: 445 TCP Blocked	2020-08-24 22:07:52
23.237.68.66	attackspam	Aug 24 15:55:02 journals sshd\[832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.237.68.66 user=root Aug 24 15:55:03 journals sshd\[832\]: Failed password for root from 23.237.68.66 port 34529 ssh2 Aug 24 15:55:05 journals sshd\[832\]: Failed password for root from 23.237.68.66 port 34529 ssh2 Aug 24 15:55:07 journals sshd\[832\]: Failed password for root from 23.237.68.66 port 34529 ssh2 Aug 24 15:55:10 journals sshd\[832\]: Failed password for root from 23.237.68.66 port 34529 ssh2 ...	2020-08-24 22:15:07
111.95.224.163	attackbotsspam	Unauthorised access (Aug 24) SRC=111.95.224.163 LEN=44 TTL=54 ID=3947 TCP DPT=23 WINDOW=59399 SYN	2020-08-24 22:13:48
183.91.66.99	attack	Automatic report - Banned IP Access	2020-08-24 22:11:38
34.87.83.179	attack	34.87.83.179 - - [24/Aug/2020:13:46:29 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.87.83.179 - - [24/Aug/2020:13:46:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.87.83.179 - - [24/Aug/2020:13:46:31 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 21:36:56
139.59.18.197	attack	" "	2020-08-24 21:51:02
123.194.209.23	attack	Port probing on unauthorized port 5555	2020-08-24 21:40:24

最近上报的IP列表

139.5.222.210	139.5.222.221	139.5.222.223	139.5.222.27
139.5.222.236	139.5.222.36	139.5.222.232	139.5.222.5
139.5.222.65	139.5.222.78	139.5.222.81	139.5.222.87
118.254.141.122	139.5.222.94	139.5.223.101	139.5.223.106
139.5.223.1	139.5.223.113	139.5.223.10	139.5.222.56