139.99.5.223 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Ruk-Com Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-11-11T07:18:32.357592mail01 postfix/smtpd[15209]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T07:18:39.181446mail01 postfix/smtpd[27485]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T07:25:10.187867mail01 postfix/smtpd[1250]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-11 18:14:20
attackspam	2019-11-10T10:29:34.413912mail01 postfix/smtpd[28849]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-10T10:29:41.418003mail01 postfix/smtpd[17098]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-10T10:39:12.041723mail01 postfix/smtpd[31681]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-10 18:24:42
attackspambots	2019-11-08T08:31:08.186192mail01 postfix/smtpd[31209]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T08:32:38.204450mail01 postfix/smtpd[22413]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T08:35:58.475070mail01 postfix/smtpd[10215]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-08 16:14:27
attackspam	2019-11-07T01:45:37.353071mail01 postfix/smtpd[28225]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-07T01:46:25.332841mail01 postfix/smtpd[8569]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-07T01:46:50.180077mail01 postfix/smtpd[28225]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-07 08:54:08
attackbotsspam	Jul 17 19:35:34 web1 postfix/smtpd[27824]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: authentication failure ...	2019-07-18 08:41:44
attackspam	Jul 15 21:22:20 mail postfix/smtpd\[11322\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 21:23:01 mail postfix/smtpd\[11321\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 21:24:27 mail postfix/smtpd\[11321\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-16 05:42:59

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.55.150	attackbots	Oct 5 12:44:19 ns382633 sshd\[16009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:44:21 ns382633 sshd\[16009\]: Failed password for root from 139.99.55.150 port 33485 ssh2 Oct 5 12:52:28 ns382633 sshd\[16835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:52:30 ns382633 sshd\[16835\]: Failed password for root from 139.99.55.150 port 57762 ssh2 Oct 5 12:56:23 ns382633 sshd\[17334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root	2020-10-06 01:45:25
139.99.55.149	attackbots	[f2b] sshd bruteforce, retries: 1	2020-10-05 04:19:57
139.99.55.149	attackspam	[f2b] sshd bruteforce, retries: 1	2020-10-04 20:12:49
139.99.5.210	attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 23:54:06
139.99.5.210	attack	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 15:27:45
139.99.5.210	attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 08:00:19
139.99.54.20	attack	Aug 31 00:41:01 ny01 sshd[17004]: Failed password for root from 139.99.54.20 port 34572 ssh2 Aug 31 00:45:16 ny01 sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Aug 31 00:45:19 ny01 sshd[17466]: Failed password for invalid user ali from 139.99.54.20 port 40168 ssh2	2020-08-31 12:53:16
139.99.54.20	attack	SSH	2020-08-30 01:54:08
139.99.54.20	attackbots	$f2bV_matches	2020-07-27 15:54:04
139.99.54.20	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-22 06:16:38
139.99.54.20	attackbots	SSHD brute force attack detected by fail2ban	2020-07-19 16:11:55
139.99.54.20	attackspambots	2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:26.041561na-vps210223 sshd[31605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:28.230660na-vps210223 sshd[31605]: Failed password for invalid user test1 from 139.99.54.20 port 53094 ssh2 2020-07-04T03:23:37.151063na-vps210223 sshd[5201]: Invalid user admin from 139.99.54.20 port 59606 ...	2020-07-04 15:26:30
139.99.54.20	attackbotsspam	Jun 18 19:45:28 rush sshd[1735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Jun 18 19:45:30 rush sshd[1735]: Failed password for invalid user acs from 139.99.54.20 port 37198 ssh2 Jun 18 19:49:27 rush sshd[1963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 ...	2020-06-19 04:00:35
139.99.54.20	attackspam	SSH_attack	2020-06-15 16:46:37
139.99.54.20	attackspambots	May 31 19:30:25 ns382633 sshd\[13435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:30:26 ns382633 sshd\[13435\]: Failed password for root from 139.99.54.20 port 33044 ssh2 May 31 19:38:20 ns382633 sshd\[14843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:38:22 ns382633 sshd\[14843\]: Failed password for root from 139.99.54.20 port 47142 ssh2 May 31 19:42:13 ns382633 sshd\[15987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root	2020-06-01 03:18:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.5.223
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18816
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.5.223.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 05:42:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

223.5.99.139.in-addr.arpa domain name pointer ip223.ip-139-99-5.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
223.5.99.139.in-addr.arpa	name = ip223.ip-139-99-5.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
148.70.26.85	attack	Automatic report - Banned IP Access	2019-09-17 05:00:25
218.92.0.210	attack	Sep 16 21:22:59 game-panel sshd[2276]: Failed password for root from 218.92.0.210 port 64380 ssh2 Sep 16 21:23:00 game-panel sshd[2276]: Failed password for root from 218.92.0.210 port 64380 ssh2 Sep 16 21:23:02 game-panel sshd[2276]: Failed password for root from 218.92.0.210 port 64380 ssh2	2019-09-17 05:32:51
51.68.123.37	attackspambots	Sep 16 23:12:46 cp sshd[31273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.37 Sep 16 23:12:48 cp sshd[31273]: Failed password for invalid user student from 51.68.123.37 port 36838 ssh2 Sep 16 23:16:25 cp sshd[919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.37	2019-09-17 05:26:01
222.186.30.152	attackspambots	Sep 16 23:25:35 cvbnet sshd[2643]: Failed password for root from 222.186.30.152 port 27205 ssh2 Sep 16 23:25:39 cvbnet sshd[2643]: Failed password for root from 222.186.30.152 port 27205 ssh2	2019-09-17 05:30:14
27.254.130.69	attackspambots	F2B jail: sshd. Time: 2019-09-16 23:08:37, Reported by: VKReport	2019-09-17 05:28:57
111.230.151.134	attack	Sep 16 22:49:42 vps691689 sshd[8795]: Failed password for root from 111.230.151.134 port 34174 ssh2 Sep 16 22:53:54 vps691689 sshd[8883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.151.134 ...	2019-09-17 04:56:59
130.61.122.5	attack	Sep 16 23:24:25 core sshd[17097]: Invalid user admin from 130.61.122.5 port 55336 Sep 16 23:24:27 core sshd[17097]: Failed password for invalid user admin from 130.61.122.5 port 55336 ssh2 ...	2019-09-17 05:32:00
206.81.7.42	attack	Sep 16 10:38:58 tdfoods sshd\[10651\]: Invalid user web from 206.81.7.42 Sep 16 10:38:58 tdfoods sshd\[10651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.7.42 Sep 16 10:39:00 tdfoods sshd\[10651\]: Failed password for invalid user web from 206.81.7.42 port 55134 ssh2 Sep 16 10:42:24 tdfoods sshd\[11037\]: Invalid user bentley from 206.81.7.42 Sep 16 10:42:24 tdfoods sshd\[11037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.7.42	2019-09-17 04:51:32
187.189.63.198	attackspam	Sep 16 22:14:01 vps647732 sshd[32062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.63.198 Sep 16 22:14:03 vps647732 sshd[32062]: Failed password for invalid user ze from 187.189.63.198 port 52122 ssh2 ...	2019-09-17 04:51:54
134.119.212.52	attackbots	Sep 16 22:12:26 lnxded64 sshd[12994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.212.52	2019-09-17 04:50:32
60.191.103.162	attackbots	Invalid user fre from 60.191.103.162 port 53278	2019-09-17 05:08:26
191.82.139.112	attackspam	scan z	2019-09-17 05:16:36
14.63.223.226	attackspam	Feb 26 11:37:14 vtv3 sshd\[22532\]: Invalid user cx from 14.63.223.226 port 51067 Feb 26 11:37:14 vtv3 sshd\[22532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Feb 26 11:37:16 vtv3 sshd\[22532\]: Failed password for invalid user cx from 14.63.223.226 port 51067 ssh2 Feb 26 11:45:37 vtv3 sshd\[25389\]: Invalid user nagios from 14.63.223.226 port 40387 Feb 26 11:45:37 vtv3 sshd\[25389\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Feb 26 11:56:22 vtv3 sshd\[28866\]: Invalid user xq from 14.63.223.226 port 37710 Feb 26 11:56:22 vtv3 sshd\[28866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Feb 26 11:56:25 vtv3 sshd\[28866\]: Failed password for invalid user xq from 14.63.223.226 port 37710 ssh2 Feb 26 12:01:58 vtv3 sshd\[30634\]: Invalid user es from 14.63.223.226 port 50488 Feb 26 12:01:58 vtv3 sshd\[30634\]: pam_unix\(sshd:auth	2019-09-17 05:05:09
81.22.45.225	attackspambots	Sep 16 22:44:54 mc1 kernel: \[1217241.895095\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.225 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=20407 PROTO=TCP SPT=46578 DPT=333 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 16 22:52:28 mc1 kernel: \[1217695.602995\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.225 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52851 PROTO=TCP SPT=46578 DPT=222 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 16 22:53:42 mc1 kernel: \[1217770.047991\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.225 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=22165 PROTO=TCP SPT=46578 DPT=9090 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-17 05:10:24
41.94.30.38	attackbots	Sep 16 23:36:32 yabzik sshd[3557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.94.30.38 Sep 16 23:36:34 yabzik sshd[3557]: Failed password for invalid user oracle from 41.94.30.38 port 48342 ssh2 Sep 16 23:41:20 yabzik sshd[5797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.94.30.38	2019-09-17 04:59:35

最近上报的IP列表

99.238.44.137	179.90.234.123	73.95.96.181	161.65.51.110
109.117.164.178	178.219.50.205	106.4.255.198	94.221.213.21
87.110.42.107	93.81.103.25	82.181.113.248	50.77.86.160
209.122.13.204	67.15.79.90	201.136.79.121	89.170.193.108
196.29.164.164	108.73.139.8	22.38.20.121	202.137.10.179