5.111.200.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Saudi Arabia

运营商(isp): Etihad Etisalat a Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Hits on port : 445	2020-03-29 20:59:37

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.111.200.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12069
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.111.200.139.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032900 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 29 20:59:31 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 139.200.111.5.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.200.111.5.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.187.113.144	attack	Mar 5 12:24:39 gw1 sshd[25184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.144 Mar 5 12:24:41 gw1 sshd[25184]: Failed password for invalid user andrew from 37.187.113.144 port 51070 ssh2 ...	2020-03-05 15:41:51
63.82.48.223	attack	Mar 5 06:32:05 mail.srvfarm.net postfix/smtpd[301281]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:32:34 mail.srvfarm.net postfix/smtpd[304677]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:36:29 mail.srvfarm.net postfix/smtpd[304676]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.82.48.223]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:36:29 mail.srvfarm.net postfix/smtpd[303285]: NOQUEUE: reject: RCPT from jump.jdmbrosllc.com[63.8	2020-03-05 15:55:16
66.175.238.223	attack	Mar 4 21:21:13 hpm sshd\[24322\]: Invalid user webadmin from 66.175.238.223 Mar 4 21:21:13 hpm sshd\[24322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Mar 4 21:21:15 hpm sshd\[24322\]: Failed password for invalid user webadmin from 66.175.238.223 port 60366 ssh2 Mar 4 21:30:02 hpm sshd\[24981\]: Invalid user odoo from 66.175.238.223 Mar 4 21:30:02 hpm sshd\[24981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223	2020-03-05 15:45:25
138.197.33.113	attack	Mar 5 09:00:12 sshd\[27782\]: Invalid user sunlei from 138.197.33.113Mar 5 09:00:15 sshd\[27782\]: Failed password for invalid user sunlei from 138.197.33.113 port 46404 ssh2 ...	2020-03-05 16:02:47
112.85.42.182	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Failed password for root from 112.85.42.182 port 38551 ssh2 Failed password for root from 112.85.42.182 port 38551 ssh2 Failed password for root from 112.85.42.182 port 38551 ssh2 Failed password for root from 112.85.42.182 port 38551 ssh2	2020-03-05 16:13:01
197.219.94.47	attackspam	1583383827 - 03/05/2020 05:50:27 Host: 197.219.94.47/197.219.94.47 Port: 445 TCP Blocked	2020-03-05 16:23:44
178.62.32.153	attackbots	Mar 5 12:45:11 gw1 sshd[26436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.32.153 Mar 5 12:45:14 gw1 sshd[26436]: Failed password for invalid user paul from 178.62.32.153 port 39948 ssh2 ...	2020-03-05 15:51:18
148.217.200.125	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2020-03-05 16:15:19
185.244.173.194	attackbots	Mar 4 21:15:51 tdfoods sshd\[29389\]: Invalid user kernoops from 185.244.173.194 Mar 4 21:15:51 tdfoods sshd\[29389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.173.194 Mar 4 21:15:53 tdfoods sshd\[29389\]: Failed password for invalid user kernoops from 185.244.173.194 port 49506 ssh2 Mar 4 21:25:29 tdfoods sshd\[30324\]: Invalid user wlk-lab from 185.244.173.194 Mar 4 21:25:29 tdfoods sshd\[30324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.173.194	2020-03-05 15:42:40
71.6.158.166	attack	71.6.158.166 - - [05/Mar/2020:09:06:32 +0800] "quit" 400 150 "-" "-" "-"	2020-03-05 16:13:23
159.89.115.126	attackspambots	Mar 5 01:50:28 ws24vmsma01 sshd[162552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 Mar 5 01:50:30 ws24vmsma01 sshd[162552]: Failed password for invalid user csserver from 159.89.115.126 port 43918 ssh2 ...	2020-03-05 16:18:55
178.204.249.170	attackspam	Unauthorized connection attempt from IP address 178.204.249.170 on Port 445(SMB)	2020-03-05 16:20:41
134.73.51.184	attackbotsspam	Mar 5 06:42:47 mail.srvfarm.net postfix/smtpd[304676]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:42:48 mail.srvfarm.net postfix/smtpd[759064]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:46:00 mail.srvfarm.net postfix/smtpd[1068686]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 06:47:03 mail.srvfarm.net postfix/smtpd[1068645]: NOQUEUE: reject: RCPT from unknown[134.73.51.184]: 450 4.1.8 : Send	2020-03-05 15:51:51
14.172.68.142	attack	Email rejected due to spam filtering	2020-03-05 16:00:25
185.143.223.161	attack	Mar 5 08:34:17 relay postfix/smtpd\[1287\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 5 08:34:17 relay postfix/smtpd\[1287\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 5 08:34:17 relay postfix/smtpd\[1287\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 5 08:34:17 relay postfix/smtpd\[1287\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 \: Relay access denied\; from=\	2020-03-05 15:50:15

最近上报的IP列表

197.68.150.26	138.36.99.176	78.186.15.192	238.198.161.140
41.234.115.136	45.143.221.60	106.13.197.35	187.228.55.95
51.158.31.243	121.121.103.20	111.67.195.117	115.199.103.249
37.187.244.128	180.76.172.123	201.250.47.187	177.40.187.183
183.88.56.43	49.232.81.191	35.200.183.13	89.183.11.204