139.99.5.223 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Ruk-Com Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-11-11T07:18:32.357592mail01 postfix/smtpd[15209]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T07:18:39.181446mail01 postfix/smtpd[27485]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T07:25:10.187867mail01 postfix/smtpd[1250]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-11 18:14:20
attackspam	2019-11-10T10:29:34.413912mail01 postfix/smtpd[28849]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-10T10:29:41.418003mail01 postfix/smtpd[17098]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-10T10:39:12.041723mail01 postfix/smtpd[31681]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-10 18:24:42
attackspambots	2019-11-08T08:31:08.186192mail01 postfix/smtpd[31209]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T08:32:38.204450mail01 postfix/smtpd[22413]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T08:35:58.475070mail01 postfix/smtpd[10215]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-08 16:14:27
attackspam	2019-11-07T01:45:37.353071mail01 postfix/smtpd[28225]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-07T01:46:25.332841mail01 postfix/smtpd[8569]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-07T01:46:50.180077mail01 postfix/smtpd[28225]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-07 08:54:08
attackbotsspam	Jul 17 19:35:34 web1 postfix/smtpd[27824]: warning: ip223.ip-139-99-5.net[139.99.5.223]: SASL LOGIN authentication failed: authentication failure ...	2019-07-18 08:41:44
attackspam	Jul 15 21:22:20 mail postfix/smtpd\[11322\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 21:23:01 mail postfix/smtpd\[11321\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 15 21:24:27 mail postfix/smtpd\[11321\]: warning: ip223.ip-139-99-5.net\[139.99.5.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-16 05:42:59

相同子网IP讨论:

IP	类型	评论内容	时间
139.99.55.150	attackbots	Oct 5 12:44:19 ns382633 sshd\[16009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:44:21 ns382633 sshd\[16009\]: Failed password for root from 139.99.55.150 port 33485 ssh2 Oct 5 12:52:28 ns382633 sshd\[16835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root Oct 5 12:52:30 ns382633 sshd\[16835\]: Failed password for root from 139.99.55.150 port 57762 ssh2 Oct 5 12:56:23 ns382633 sshd\[17334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.55.150 user=root	2020-10-06 01:45:25
139.99.55.149	attackbots	[f2b] sshd bruteforce, retries: 1	2020-10-05 04:19:57
139.99.55.149	attackspam	[f2b] sshd bruteforce, retries: 1	2020-10-04 20:12:49
139.99.5.210	attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 23:54:06
139.99.5.210	attack	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 15:27:45
139.99.5.210	attackbotsspam	Sep 8 00:02:55 fhem-rasp sshd[4268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.5.210 user=daemon Sep 8 00:02:57 fhem-rasp sshd[4268]: Failed password for invalid user daemon from 139.99.5.210 port 43603 ssh2 ...	2020-09-08 08:00:19
139.99.54.20	attack	Aug 31 00:41:01 ny01 sshd[17004]: Failed password for root from 139.99.54.20 port 34572 ssh2 Aug 31 00:45:16 ny01 sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Aug 31 00:45:19 ny01 sshd[17466]: Failed password for invalid user ali from 139.99.54.20 port 40168 ssh2	2020-08-31 12:53:16
139.99.54.20	attack	SSH	2020-08-30 01:54:08
139.99.54.20	attackbots	$f2bV_matches	2020-07-27 15:54:04
139.99.54.20	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-22 06:16:38
139.99.54.20	attackbots	SSHD brute force attack detected by fail2ban	2020-07-19 16:11:55
139.99.54.20	attackspambots	2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:26.041561na-vps210223 sshd[31605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 2020-07-04T03:21:26.033435na-vps210223 sshd[31605]: Invalid user test1 from 139.99.54.20 port 53094 2020-07-04T03:21:28.230660na-vps210223 sshd[31605]: Failed password for invalid user test1 from 139.99.54.20 port 53094 ssh2 2020-07-04T03:23:37.151063na-vps210223 sshd[5201]: Invalid user admin from 139.99.54.20 port 59606 ...	2020-07-04 15:26:30
139.99.54.20	attackbotsspam	Jun 18 19:45:28 rush sshd[1735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 Jun 18 19:45:30 rush sshd[1735]: Failed password for invalid user acs from 139.99.54.20 port 37198 ssh2 Jun 18 19:49:27 rush sshd[1963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 ...	2020-06-19 04:00:35
139.99.54.20	attackspam	SSH_attack	2020-06-15 16:46:37
139.99.54.20	attackspambots	May 31 19:30:25 ns382633 sshd\[13435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:30:26 ns382633 sshd\[13435\]: Failed password for root from 139.99.54.20 port 33044 ssh2 May 31 19:38:20 ns382633 sshd\[14843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root May 31 19:38:22 ns382633 sshd\[14843\]: Failed password for root from 139.99.54.20 port 47142 ssh2 May 31 19:42:13 ns382633 sshd\[15987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.54.20 user=root	2020-06-01 03:18:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.5.223
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18816
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.5.223.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 05:42:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

223.5.99.139.in-addr.arpa domain name pointer ip223.ip-139-99-5.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
223.5.99.139.in-addr.arpa	name = ip223.ip-139-99-5.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
88.110.65.68	attack	TCP Port: 25 _ invalid blocked dnsbl-sorbs also abuseat-org _ _ _ _ (1449)	2019-09-21 08:27:27
51.75.142.177	attackspambots	Port Scan detected from 51.75.142.177 (FR/France/177.ip-51-75-142.eu). 4 hits in the last 260 seconds	2019-09-21 08:56:54
177.37.77.64	attackspambots	2019-09-21T00:58:15.511264abusebot-7.cloudsearch.cf sshd\[12664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.37.77.64 user=root	2019-09-21 09:05:12
51.15.212.48	attackspambots	Sep 21 02:28:47 OPSO sshd\[10361\]: Invalid user tst from 51.15.212.48 port 48848 Sep 21 02:28:47 OPSO sshd\[10361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.212.48 Sep 21 02:28:49 OPSO sshd\[10361\]: Failed password for invalid user tst from 51.15.212.48 port 48848 ssh2 Sep 21 02:33:29 OPSO sshd\[11698\]: Invalid user squid from 51.15.212.48 port 32998 Sep 21 02:33:29 OPSO sshd\[11698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.212.48	2019-09-21 08:38:18
152.136.86.234	attackbotsspam	Sep 20 22:26:54 anodpoucpklekan sshd[76248]: Invalid user I2b2metadata from 152.136.86.234 port 48252 ...	2019-09-21 08:31:41
142.93.251.1	attackspambots	Sep 21 00:14:55 hcbbdb sshd\[6338\]: Invalid user juliejung from 142.93.251.1 Sep 21 00:14:55 hcbbdb sshd\[6338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1 Sep 21 00:14:57 hcbbdb sshd\[6338\]: Failed password for invalid user juliejung from 142.93.251.1 port 36806 ssh2 Sep 21 00:19:14 hcbbdb sshd\[6806\]: Invalid user diao from 142.93.251.1 Sep 21 00:19:14 hcbbdb sshd\[6806\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1	2019-09-21 08:32:01
103.10.61.114	attackbotsspam	$f2bV_matches	2019-09-21 08:29:12
109.153.209.125	attackspam	TCP Port: 25 _ invalid blocked dnsbl-sorbs also abuseat-org _ _ _ _ (1447)	2019-09-21 08:38:50
186.143.134.244	attackspam	TCP Port: 25 _ invalid blocked abuseat-org also zen-spamhaus _ _ _ _ (1440)	2019-09-21 08:58:04
190.111.249.177	attack	Sep 21 02:47:04 SilenceServices sshd[24001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.249.177 Sep 21 02:47:06 SilenceServices sshd[24001]: Failed password for invalid user school from 190.111.249.177 port 36182 ssh2 Sep 21 02:52:54 SilenceServices sshd[27664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.249.177	2019-09-21 08:54:27
150.95.187.89	attackbotsspam	Sep 21 02:21:21 vps01 sshd[19816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.187.89 Sep 21 02:21:23 vps01 sshd[19816]: Failed password for invalid user hlds from 150.95.187.89 port 49994 ssh2	2019-09-21 08:36:53
185.74.85.203	attack	Telnet Server BruteForce Attack	2019-09-21 08:25:35
131.0.45.8	attack	TCP Port: 25 _ invalid blocked dnsbl-sorbs also abuseat-org _ _ _ _ (1446)	2019-09-21 08:49:46
120.92.138.124	attackbotsspam	Sep 20 18:04:16 ip-172-31-62-245 sshd\[22047\]: Invalid user test from 120.92.138.124\ Sep 20 18:04:18 ip-172-31-62-245 sshd\[22047\]: Failed password for invalid user test from 120.92.138.124 port 42960 ssh2\ Sep 20 18:09:17 ip-172-31-62-245 sshd\[22189\]: Invalid user demo from 120.92.138.124\ Sep 20 18:09:19 ip-172-31-62-245 sshd\[22189\]: Failed password for invalid user demo from 120.92.138.124 port 16980 ssh2\ Sep 20 18:14:15 ip-172-31-62-245 sshd\[22234\]: Invalid user user from 120.92.138.124\	2019-09-21 08:44:31
217.243.172.58	attackspambots	SSH Brute Force	2019-09-21 08:51:18

最近上报的IP列表

99.238.44.137	179.90.234.123	73.95.96.181	161.65.51.110
109.117.164.178	178.219.50.205	106.4.255.198	94.221.213.21
87.110.42.107	93.81.103.25	82.181.113.248	50.77.86.160
209.122.13.204	67.15.79.90	201.136.79.121	89.170.193.108
196.29.164.164	108.73.139.8	22.38.20.121	202.137.10.179