必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): Ruk-Com Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackbotsspam
Sep  8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210  user=daemon
Sep  8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2
...
2020-09-08 23:54:06
attack
Sep  8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210  user=daemon
Sep  8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2
...
2020-09-08 15:27:45
attackbotsspam
Sep  8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210  user=daemon
Sep  8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2
...
2020-09-08 08:00:19
attackspambots
May 22 00:04:21 163-172-32-151 sshd[11165]: Invalid user admin from 139.99.5.210 port 21049
...
2020-05-22 06:40:24
相同子网IP讨论:
IP 类型 评论内容 时间
139.99.55.150 attackbots
Oct  5 12:44:19 ns382633 sshd\[16009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150  user=root
Oct  5 12:44:21 ns382633 sshd\[16009\]: Failed password for root from 139.99.55.150 port 33485 ssh2
Oct  5 12:52:28 ns382633 sshd\[16835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150  user=root
Oct  5 12:52:30 ns382633 sshd\[16835\]: Failed password for root from 139.99.55.150 port 57762 ssh2
Oct  5 12:56:23 ns382633 sshd\[17334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150  user=root
2020-10-06 01:45:25
139.99.55.149 attackbots
[f2b] sshd bruteforce, retries: 1
2020-10-05 04:19:57
139.99.55.149 attackspam
[f2b] sshd bruteforce, retries: 1
2020-10-04 20:12:49
139.99.54.20 attack
Aug 31 00:41:01 ny01 sshd[17004]: Failed password for root from 139.99.54.20 port 34572 ssh2
Aug 31 00:45:16 ny01 sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20
Aug 31 00:45:19 ny01 sshd[17466]: Failed password for invalid user ali from 139.99.54.20 port 40168 ssh2
2020-08-31 12:53:16
139.99.54.20 attack
SSH
2020-08-30 01:54:08
139.99.54.20 attackbots
$f2bV_matches
2020-07-27 15:54:04
139.99.54.20 attackspambots
Connection to SSH Honeypot - Detected by HoneypotDB
2020-07-22 06:16:38
139.99.54.20 attackbots
SSHD brute force attack detected by fail2ban
2020-07-19 16:11:55
139.99.54.20 attackspambots
2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094
2020-07-04T03:21:26.041561na-vps210223 sshd[31605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20
2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094
2020-07-04T03:21:28.230660na-vps210223 sshd[31605]: Failed password for invalid user test1 from 139.99.54.20 port 53094 ssh2
2020-07-04T03:23:37.151063na-vps210223 sshd[5201]: Invalid user admin from 139.99.54.20 port 59606
...
2020-07-04 15:26:30
139.99.54.20 attackbotsspam
Jun 18 19:45:28 rush sshd[1735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20
Jun 18 19:45:30 rush sshd[1735]: Failed password for invalid user acs from 139.99.54.20 port 37198 ssh2
Jun 18 19:49:27 rush sshd[1963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20
...
2020-06-19 04:00:35
139.99.54.20 attackspam
SSH_attack
2020-06-15 16:46:37
139.99.54.20 attackspambots
May 31 19:30:25 ns382633 sshd\[13435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20  user=root
May 31 19:30:26 ns382633 sshd\[13435\]: Failed password for root from 139.99.54.20 port 33044 ssh2
May 31 19:38:20 ns382633 sshd\[14843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20  user=root
May 31 19:38:22 ns382633 sshd\[14843\]: Failed password for root from 139.99.54.20 port 47142 ssh2
May 31 19:42:13 ns382633 sshd\[15987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20  user=root
2020-06-01 03:18:08
139.99.54.20 attackbots
May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20
May 24 13:16:17 l02a sshd[23182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 
May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20
May 24 13:16:19 l02a sshd[23182]: Failed password for invalid user salb from 139.99.54.20 port 54544 ssh2
2020-05-24 20:35:09
139.99.54.20 attack
Lines containing failures of 139.99.54.20
May 22 13:52:23 shared09 sshd[4439]: Invalid user nfn from 139.99.54.20 port 41096
May 22 13:52:23 shared09 sshd[4439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20
May 22 13:52:25 shared09 sshd[4439]: Failed password for invalid user nfn from 139.99.54.20 port 41096 ssh2
May 22 13:52:26 shared09 sshd[4439]: Received disconnect from 139.99.54.20 port 41096:11: Bye Bye [preauth]
May 22 13:52:26 shared09 sshd[4439]: Disconnected from invalid user nfn 139.99.54.20 port 41096 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=139.99.54.20
2020-05-23 02:06:38
139.99.57.14 attackbotsspam
Automatic report - XMLRPC Attack
2019-11-13 04:03:37
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.5.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55113
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.5.210.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052102 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 06:40:19 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
210.5.99.139.in-addr.arpa domain name pointer ip210.ip-139-99-5.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
210.5.99.139.in-addr.arpa	name = ip210.ip-139-99-5.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
139.59.90.40 attackbotsspam
Jul 22 10:55:44 plusreed sshd[26906]: Invalid user rust from 139.59.90.40
...
2019-07-23 02:13:08
185.154.207.198 attack
Automatic report - Port Scan Attack
2019-07-23 01:48:48
142.93.15.179 attackspam
Jul 22 17:31:16 localhost sshd\[25660\]: Invalid user qhsupport from 142.93.15.179 port 34258
Jul 22 17:31:16 localhost sshd\[25660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.15.179
...
2019-07-23 01:41:22
83.86.47.46 attackspam
Automatic report - Port Scan Attack
2019-07-23 02:14:42
185.176.26.19 attackspam
firewall-block, port(s): 9999/tcp
2019-07-23 02:07:48
206.189.185.202 attackspambots
2019-07-22T17:43:17.546978abusebot-7.cloudsearch.cf sshd\[10895\]: Invalid user lorena from 206.189.185.202 port 34362
2019-07-23 02:05:26
41.233.54.31 attack
Jul 22 14:40:03 master sshd[29784]: Failed password for invalid user admin from 41.233.54.31 port 46399 ssh2
2019-07-23 01:29:02
68.183.48.172 attackspambots
Jul 22 11:05:41 plusreed sshd[31561]: Invalid user stefan from 68.183.48.172
...
2019-07-23 02:08:52
92.53.90.132 attack
Port scan
2019-07-23 01:42:17
183.88.59.156 attack
Jul 22 15:06:59 master sshd[29821]: Failed password for invalid user admin from 183.88.59.156 port 45983 ssh2
2019-07-23 01:23:43
72.235.0.138 attack
Jul 22 22:30:45 vibhu-HP-Z238-Microtower-Workstation sshd\[6834\]: Invalid user masanpar from 72.235.0.138
Jul 22 22:30:45 vibhu-HP-Z238-Microtower-Workstation sshd\[6834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.235.0.138
Jul 22 22:30:47 vibhu-HP-Z238-Microtower-Workstation sshd\[6834\]: Failed password for invalid user masanpar from 72.235.0.138 port 58434 ssh2
Jul 22 22:36:12 vibhu-HP-Z238-Microtower-Workstation sshd\[6963\]: Invalid user arojas from 72.235.0.138
Jul 22 22:36:12 vibhu-HP-Z238-Microtower-Workstation sshd\[6963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.235.0.138
...
2019-07-23 01:18:29
121.122.120.147 attack
Telnetd brute force attack detected by fail2ban
2019-07-23 01:39:34
165.22.109.53 attackbotsspam
Jul 22 18:35:35 vserver sshd\[10746\]: Invalid user ts from 165.22.109.53Jul 22 18:35:36 vserver sshd\[10746\]: Failed password for invalid user ts from 165.22.109.53 port 51454 ssh2Jul 22 18:40:43 vserver sshd\[10818\]: Invalid user jboss from 165.22.109.53Jul 22 18:40:46 vserver sshd\[10818\]: Failed password for invalid user jboss from 165.22.109.53 port 47470 ssh2
...
2019-07-23 01:27:18
206.189.166.172 attackspambots
Jul 22 16:09:02 host sshd\[8940\]: Invalid user ftp_test from 206.189.166.172 port 60462
Jul 22 16:09:02 host sshd\[8940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.166.172
...
2019-07-23 02:21:48
119.15.95.75 attack
Jul 22 13:16:38 heicom postfix/smtpd\[30598\]: warning: unknown\[119.15.95.75\]: SASL CRAM-MD5 authentication failed: authentication failure
Jul 22 13:16:39 heicom postfix/smtpd\[30598\]: warning: unknown\[119.15.95.75\]: SASL PLAIN authentication failed: authentication failure
Jul 22 13:16:40 heicom postfix/smtpd\[30598\]: warning: unknown\[119.15.95.75\]: SASL LOGIN authentication failed: authentication failure
Jul 22 13:16:44 heicom postfix/smtpd\[30601\]: warning: unknown\[119.15.95.75\]: SASL CRAM-MD5 authentication failed: authentication failure
Jul 22 13:16:45 heicom postfix/smtpd\[30601\]: warning: unknown\[119.15.95.75\]: SASL PLAIN authentication failed: authentication failure
...
2019-07-23 02:24:56

最近上报的IP列表

84.148.174.164 128.151.5.210 90.191.132.19 174.254.64.70
119.122.77.250 160.80.156.35 121.209.61.210 85.94.75.19
157.245.86.220 125.115.73.171 79.226.82.186 89.232.146.132
100.149.206.88 141.8.129.79 93.218.75.205 154.110.19.30
191.159.227.164 100.48.34.49 88.19.251.117 181.133.128.152