139.99.5.210 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): Ruk-Com Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 23:54:06
attack	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 15:27:45
attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 08:00:19
attackspambots	May 22 00:04:21 163-172-32-151 sshd[11165]: Invalid user admin from 139.99.5.210 port 21049 ...	2020-05-22 06:40:24

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.55.150	attackbots	Oct 5 12:44:19 ns382633 sshd\[16009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:44:21 ns382633 sshd\[16009\]: Failed password for root from 139.99.55.150 port 33485 ssh2 Oct 5 12:52:28 ns382633 sshd\[16835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:52:30 ns382633 sshd\[16835\]: Failed password for root from 139.99.55.150 port 57762 ssh2 Oct 5 12:56:23 ns382633 sshd\[17334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root	2020-10-06 01:45:25
139.99.55.149	attackbots	[f2b] sshd bruteforce, retries: 1	2020-10-05 04:19:57
139.99.55.149	attackspam	[f2b] sshd bruteforce, retries: 1	2020-10-04 20:12:49
139.99.54.20	attack	Aug 31 00:41:01 ny01 sshd[17004]: Failed password for root from 139.99.54.20 port 34572 ssh2 Aug 31 00:45:16 ny01 sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Aug 31 00:45:19 ny01 sshd[17466]: Failed password for invalid user ali from 139.99.54.20 port 40168 ssh2	2020-08-31 12:53:16
139.99.54.20	attack	SSH	2020-08-30 01:54:08
139.99.54.20	attackbots	$f2bV_matches	2020-07-27 15:54:04
139.99.54.20	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-22 06:16:38
139.99.54.20	attackbots	SSHD brute force attack detected by fail2ban	2020-07-19 16:11:55
139.99.54.20	attackspambots	2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:26.041561na-vps210223 sshd[31605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:28.230660na-vps210223 sshd[31605]: Failed password for invalid user test1 from 139.99.54.20 port 53094 ssh2 2020-07-04T03:23:37.151063na-vps210223 sshd[5201]: Invalid user admin from 139.99.54.20 port 59606 ...	2020-07-04 15:26:30
139.99.54.20	attackbotsspam	Jun 18 19:45:28 rush sshd[1735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Jun 18 19:45:30 rush sshd[1735]: Failed password for invalid user acs from 139.99.54.20 port 37198 ssh2 Jun 18 19:49:27 rush sshd[1963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 ...	2020-06-19 04:00:35
139.99.54.20	attackspam	SSH_attack	2020-06-15 16:46:37
139.99.54.20	attackspambots	May 31 19:30:25 ns382633 sshd\[13435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:30:26 ns382633 sshd\[13435\]: Failed password for root from 139.99.54.20 port 33044 ssh2 May 31 19:38:20 ns382633 sshd\[14843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:38:22 ns382633 sshd\[14843\]: Failed password for root from 139.99.54.20 port 47142 ssh2 May 31 19:42:13 ns382633 sshd\[15987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root	2020-06-01 03:18:08
139.99.54.20	attackbots	May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20 May 24 13:16:17 l02a sshd[23182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 May 24 13:16:17 l02a sshd[23182]: Invalid user salb from 139.99.54.20 May 24 13:16:19 l02a sshd[23182]: Failed password for invalid user salb from 139.99.54.20 port 54544 ssh2	2020-05-24 20:35:09
139.99.54.20	attack	Lines containing failures of 139.99.54.20 May 22 13:52:23 shared09 sshd[4439]: Invalid user nfn from 139.99.54.20 port 41096 May 22 13:52:23 shared09 sshd[4439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 May 22 13:52:25 shared09 sshd[4439]: Failed password for invalid user nfn from 139.99.54.20 port 41096 ssh2 May 22 13:52:26 shared09 sshd[4439]: Received disconnect from 139.99.54.20 port 41096:11: Bye Bye [preauth] May 22 13:52:26 shared09 sshd[4439]: Disconnected from invalid user nfn 139.99.54.20 port 41096 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.99.54.20	2020-05-23 02:06:38
139.99.57.14	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-13 04:03:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.5.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55113
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.5.210.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052102 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 06:40:19 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

210.5.99.139.in-addr.arpa domain name pointer ip210.ip-139-99-5.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
210.5.99.139.in-addr.arpa	name = ip210.ip-139-99-5.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.158.201.33	attackbotsspam	Apr 14 06:39:46 NPSTNNYC01T sshd[21083]: Failed password for root from 190.158.201.33 port 39280 ssh2 Apr 14 06:43:45 NPSTNNYC01T sshd[21425]: Failed password for root from 190.158.201.33 port 43285 ssh2 ...	2020-04-14 18:51:45
183.129.141.44	attackspam	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2020-04-14 18:26:50
91.241.37.146	attack	Apr 14 11:34:22 our-server-hostname postfix/smtpd[3564]: connect from unknown[91.241.37.146] Apr x@x Apr 14 11:34:25 our-server-hostname postfix/smtpd[3564]: disconnect from unknown[91.241.37.146] Apr 14 12:55:09 our-server-hostname postfix/smtpd[15945]: connect from unknown[91.241.37.146] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.241.37.146	2020-04-14 18:33:19
188.115.131.142	attackbots	Напишите нам сейчас и получите бонус, в виде бесплатного составления оффера для Вашей рассылки Наш E-mail: formmarketing2020@gmail.com P.S. Извините за беспокойство, если мы с Вами уже сотрудничаем. -- Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36	2020-04-14 18:13:17
217.182.68.93	attackbots	Apr 14 09:19:14 vmd48417 sshd[6941]: Failed password for root from 217.182.68.93 port 53974 ssh2	2020-04-14 18:34:24
106.75.4.19	attack	" "	2020-04-14 18:44:41
46.101.136.110	attackspambots	Wordpress malicious attack:[sshd]	2020-04-14 18:14:59
111.229.3.209	attackspambots	Apr 14 01:53:35 ny01 sshd[23346]: Failed password for root from 111.229.3.209 port 43170 ssh2 Apr 14 01:58:31 ny01 sshd[24428]: Failed password for bin from 111.229.3.209 port 41424 ssh2	2020-04-14 18:40:04
195.96.231.213	attack	Apr 14 17:13:12 itv-usvr-01 sshd[6140]: Invalid user 888888 from 195.96.231.213 Apr 14 17:13:12 itv-usvr-01 sshd[6140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.96.231.213 Apr 14 17:13:12 itv-usvr-01 sshd[6140]: Invalid user 888888 from 195.96.231.213 Apr 14 17:13:14 itv-usvr-01 sshd[6140]: Failed password for invalid user 888888 from 195.96.231.213 port 59862 ssh2 Apr 14 17:16:56 itv-usvr-01 sshd[6261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.96.231.213 user=root Apr 14 17:16:58 itv-usvr-01 sshd[6261]: Failed password for root from 195.96.231.213 port 40788 ssh2	2020-04-14 18:42:13
182.61.169.8	attackspam	2020-04-14T04:26:43.191931linuxbox-skyline sshd[113438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.169.8 user=root 2020-04-14T04:26:45.785384linuxbox-skyline sshd[113438]: Failed password for root from 182.61.169.8 port 25533 ssh2 ...	2020-04-14 18:29:10
47.101.218.170	attack	$f2bV_matches	2020-04-14 18:12:19
200.89.178.229	attackspambots	Apr 14 07:28:32 124388 sshd[18024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.229 Apr 14 07:28:32 124388 sshd[18024]: Invalid user admin from 200.89.178.229 port 38668 Apr 14 07:28:34 124388 sshd[18024]: Failed password for invalid user admin from 200.89.178.229 port 38668 ssh2 Apr 14 07:32:56 124388 sshd[18051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.229 user=root Apr 14 07:32:59 124388 sshd[18051]: Failed password for root from 200.89.178.229 port 46314 ssh2	2020-04-14 18:21:48
36.111.171.14	attackbots	2020-04-13 UTC: (4x) - admin,root(3x)	2020-04-14 18:40:26
94.158.244.113	attackspam	" "	2020-04-14 18:17:15
60.216.19.58	attackbotsspam	prod8 ...	2020-04-14 18:42:38

最近上报的IP列表

84.148.174.164	128.151.5.210	90.191.132.19	174.254.64.70
119.122.77.250	160.80.156.35	121.209.61.210	85.94.75.19
157.245.86.220	125.115.73.171	79.226.82.186	89.232.146.132
100.149.206.88	141.8.129.79	93.218.75.205	154.110.19.30
191.159.227.164	100.48.34.49	88.19.251.117	181.133.128.152