110.138.137.1 - IPInfo

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
110.138.137.154	attackbotsspam	Brute force SMTP login attempted. ...	2020-04-01 09:32:55
110.138.137.238	attackspambots	Sep 30 23:49:27 localhost kernel: [3639586.297534] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=31727 DF PROTO=TCP SPT=4519 DPT=445 SEQ=955856925 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030801010402) Sep 30 23:49:30 localhost kernel: [3639589.327975] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=241 DF PROTO=TCP SPT=4519 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 30 23:49:30 localhost kernel: [3639589.328005] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=241 DF PROTO=TCP SPT=4519 DPT=445 SEQ=955856925 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030801010402)	2019-10-01 17:16:43

类型

评论内容

时间

110.138.137.154

attackbotsspam

Brute force SMTP login attempted.
...

2020-04-01 09:32:55

110.138.137.238

attackspambots

Sep 30 23:49:27 localhost kernel: [3639586.297534] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=31727 DF PROTO=TCP SPT=4519 DPT=445 SEQ=955856925 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030801010402) 
Sep 30 23:49:30 localhost kernel: [3639589.327975] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=241 DF PROTO=TCP SPT=4519 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 
Sep 30 23:49:30 localhost kernel: [3639589.328005] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=110.138.137.238 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=245 ID=241 DF PROTO=TCP SPT=4519 DPT=445 SEQ=955856925 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030801010402)

2019-10-01 17:16:43

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.137.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51252
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.137.1.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 17 14:26:02 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

1.137.138.110.in-addr.arpa domain name pointer 1.subnet110-138-137.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
1.137.138.110.in-addr.arpa	name = 1.subnet110-138-137.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.196.83.14	attackspambots	2019-11-06T09:06:42.491324abusebot-7.cloudsearch.cf sshd\[19851\]: Invalid user cp from 119.196.83.14 port 44066	2019-11-06 17:50:59
201.48.65.147	attackbotsspam	Nov 6 06:19:48 host sshd[51818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.65.147 Nov 6 06:19:48 host sshd[51818]: Invalid user tie from 201.48.65.147 port 33066 Nov 6 06:19:51 host sshd[51818]: Failed password for invalid user tie from 201.48.65.147 port 33066 ssh2 ...	2019-11-06 18:18:53
109.123.117.237	attackbots	" "	2019-11-06 18:30:45
103.17.55.200	attackbotsspam	SSH Brute-Force attacks	2019-11-06 17:47:21
140.114.91.94	attack	Nov 4 02:35:55 srv1 sshd[14673]: Invalid user user from 140.114.91.94 Nov 4 02:35:57 srv1 sshd[14673]: Failed password for invalid user user from 140.114.91.94 port 47164 ssh2 Nov 4 02:52:34 srv1 sshd[14841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.91.94 user=r.r Nov 4 02:52:36 srv1 sshd[14841]: Failed password for r.r from 140.114.91.94 port 48458 ssh2 Nov 4 02:57:06 srv1 sshd[14917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.91.94 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.114.91.94	2019-11-06 17:56:46
117.50.50.44	attackspambots	Nov 6 09:24:23 meumeu sshd[26258]: Failed password for root from 117.50.50.44 port 56636 ssh2 Nov 6 09:29:16 meumeu sshd[26839]: Failed password for root from 117.50.50.44 port 56768 ssh2 ...	2019-11-06 18:04:45
92.42.109.150	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-11-06 18:14:40
113.125.23.185	attack	Nov 6 11:39:44 microserver sshd[28340]: Invalid user lsfadmin from 113.125.23.185 port 59106 Nov 6 11:39:44 microserver sshd[28340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.23.185 Nov 6 11:39:46 microserver sshd[28340]: Failed password for invalid user lsfadmin from 113.125.23.185 port 59106 ssh2 Nov 6 11:44:37 microserver sshd[28992]: Invalid user modserver from 113.125.23.185 port 38390 Nov 6 11:44:37 microserver sshd[28992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.23.185 Nov 6 11:59:55 microserver sshd[31038]: Invalid user db2fenc1 from 113.125.23.185 port 32818 Nov 6 11:59:55 microserver sshd[31038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.23.185 Nov 6 11:59:57 microserver sshd[31038]: Failed password for invalid user db2fenc1 from 113.125.23.185 port 32818 ssh2 Nov 6 12:04:47 microserver sshd[31716]: pam_unix(sshd:auth): authentic	2019-11-06 17:58:10
118.126.111.108	attackbotsspam	Nov 6 01:26:27 debian sshd\[11558\]: Invalid user peuser from 118.126.111.108 port 52408 Nov 6 01:26:27 debian sshd\[11558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.111.108 Nov 6 01:26:29 debian sshd\[11558\]: Failed password for invalid user peuser from 118.126.111.108 port 52408 ssh2 ...	2019-11-06 17:53:48
115.159.65.195	attackbotsspam	Nov 6 10:14:22 lnxmysql61 sshd[25113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.65.195	2019-11-06 18:23:46
66.249.64.194	attack	Automatic report - Banned IP Access	2019-11-06 18:23:01
222.186.190.2	attack	$f2bV_matches	2019-11-06 18:28:09
106.0.4.31	attack	" "	2019-11-06 18:27:41
51.254.123.127	attack	2019-11-06T09:48:23.633208 sshd[22246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.123.127 user=root 2019-11-06T09:48:25.493509 sshd[22246]: Failed password for root from 51.254.123.127 port 44361 ssh2 2019-11-06T09:57:59.868195 sshd[22315]: Invalid user tomcat from 51.254.123.127 port 51151 2019-11-06T09:57:59.883637 sshd[22315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.123.127 2019-11-06T09:57:59.868195 sshd[22315]: Invalid user tomcat from 51.254.123.127 port 51151 2019-11-06T09:58:01.487381 sshd[22315]: Failed password for invalid user tomcat from 51.254.123.127 port 51151 ssh2 ...	2019-11-06 17:58:23
64.31.6.82	attack	CloudCIX Reconnaissance Scan Detected, PTR: 82-6-31-64.static.reverse.lstn.net.	2019-11-06 18:19:06

最近上报的IP列表

184.22.158.62	183.89.14.72	125.162.74.175	202.191.120.106
117.239.242.106	39.64.114.254	118.69.32.121	201.247.246.4
125.24.152.55	187.74.224.94	123.24.82.91	113.163.94.203
222.71.75.54	27.71.253.80	34.194.34.83	188.212.26.13
183.13.202.232	81.22.45.72	197.53.237.33	106.51.64.117