110.138.138.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	DATE:2019-10-25 13:51:17, IP:110.138.138.249, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-26 01:15:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.138.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40492
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.138.249.		IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102500 1800 900 604800 86400

;; Query time: 148 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 01:15:17 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

249.138.138.110.in-addr.arpa domain name pointer 249.subnet110-138-138.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.138.138.110.in-addr.arpa	name = 249.subnet110-138-138.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.160	attackbots	2019-10-13T05:27:52.879247abusebot-4.cloudsearch.cf sshd\[16093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.160 user=root	2019-10-13 18:24:39
50.236.62.30	attack	Oct 13 00:27:53 php1 sshd\[17472\]: Invalid user 123QazWsxEdc from 50.236.62.30 Oct 13 00:27:53 php1 sshd\[17472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.236.62.30 Oct 13 00:27:55 php1 sshd\[17472\]: Failed password for invalid user 123QazWsxEdc from 50.236.62.30 port 43845 ssh2 Oct 13 00:31:40 php1 sshd\[17907\]: Invalid user 123Lucas from 50.236.62.30 Oct 13 00:31:40 php1 sshd\[17907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.236.62.30	2019-10-13 18:34:09
180.94.157.195	attackspam	Automatic report - Port Scan Attack	2019-10-13 18:57:34
81.12.13.170	attack	Automatic report - XMLRPC Attack	2019-10-13 18:49:59
181.48.68.54	attackbots	2019-10-13T03:46:25.252947abusebot-5.cloudsearch.cf sshd\[649\]: Invalid user da from 181.48.68.54 port 37370	2019-10-13 18:27:05
41.73.252.236	attackbots	Oct 13 06:27:27 ns381471 sshd[28699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.73.252.236 Oct 13 06:27:29 ns381471 sshd[28699]: Failed password for invalid user Russia2018 from 41.73.252.236 port 55108 ssh2 Oct 13 06:32:37 ns381471 sshd[28871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.73.252.236	2019-10-13 18:49:15
51.75.163.218	attackbotsspam	Oct 13 06:04:46 SilenceServices sshd[13980]: Failed password for root from 51.75.163.218 port 54720 ssh2 Oct 13 06:08:26 SilenceServices sshd[14948]: Failed password for root from 51.75.163.218 port 38050 ssh2	2019-10-13 18:26:02
151.80.254.74	attackbotsspam	Oct 13 10:45:16 web8 sshd\[14967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.74 user=root Oct 13 10:45:17 web8 sshd\[14967\]: Failed password for root from 151.80.254.74 port 46348 ssh2 Oct 13 10:49:29 web8 sshd\[16804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.74 user=root Oct 13 10:49:31 web8 sshd\[16804\]: Failed password for root from 151.80.254.74 port 57966 ssh2 Oct 13 10:54:03 web8 sshd\[18855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.74 user=root	2019-10-13 19:02:53
123.18.206.15	attackbots	2019-10-13T11:20:16.048286 sshd[11204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.18.206.15 user=root 2019-10-13T11:20:18.032069 sshd[11204]: Failed password for root from 123.18.206.15 port 52806 ssh2 2019-10-13T11:25:12.824378 sshd[11268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.18.206.15 user=root 2019-10-13T11:25:14.446149 sshd[11268]: Failed password for root from 123.18.206.15 port 44459 ssh2 2019-10-13T11:30:09.222893 sshd[11348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.18.206.15 user=root 2019-10-13T11:30:11.616252 sshd[11348]: Failed password for root from 123.18.206.15 port 36177 ssh2 ...	2019-10-13 18:44:55
139.199.59.235	attack	Oct 13 00:45:09 firewall sshd[13184]: Invalid user gitolite3 from 139.199.59.235 Oct 13 00:45:12 firewall sshd[13184]: Failed password for invalid user gitolite3 from 139.199.59.235 port 42446 ssh2 Oct 13 00:45:41 firewall sshd[13192]: Invalid user akari from 139.199.59.235 ...	2019-10-13 18:44:28
211.157.2.92	attack	Oct 12 22:51:58 auw2 sshd\[19908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.2.92 user=root Oct 12 22:52:00 auw2 sshd\[19908\]: Failed password for root from 211.157.2.92 port 26618 ssh2 Oct 12 22:57:22 auw2 sshd\[20447\]: Invalid user 123 from 211.157.2.92 Oct 12 22:57:22 auw2 sshd\[20447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.2.92 Oct 12 22:57:24 auw2 sshd\[20447\]: Failed password for invalid user 123 from 211.157.2.92 port 45714 ssh2	2019-10-13 19:10:27
59.93.198.142	attack	Automatic report - Port Scan Attack	2019-10-13 19:04:44
103.28.36.44	attackbotsspam	Oct 13 12:30:19 [host] sshd[12582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.36.44 user=root Oct 13 12:30:21 [host] sshd[12582]: Failed password for root from 103.28.36.44 port 43648 ssh2 Oct 13 12:34:37 [host] sshd[12650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.36.44 user=root	2019-10-13 18:56:30
186.122.149.38	attackspam	2019-10-13T10:45:57.475463abusebot-3.cloudsearch.cf sshd\[12653\]: Invalid user Control123 from 186.122.149.38 port 43358	2019-10-13 18:58:14
51.75.171.150	attack	Oct 13 07:02:45 tux-35-217 sshd\[18943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.171.150 user=root Oct 13 07:02:47 tux-35-217 sshd\[18943\]: Failed password for root from 51.75.171.150 port 34422 ssh2 Oct 13 07:06:58 tux-35-217 sshd\[18967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.171.150 user=root Oct 13 07:07:01 tux-35-217 sshd\[18967\]: Failed password for root from 51.75.171.150 port 45856 ssh2 ...	2019-10-13 18:42:57

最近上报的IP列表

201.212.90.58	161.117.33.53	157.230.231.145	42.116.68.142
44.211.225.102	188.170.75.82	132.67.45.204	66.1.182.39
74.185.27.103	192.223.101.178	165.37.194.41	138.0.104.138
190.220.90.17	242.38.27.204	83.221.220.236	78.38.27.11
193.124.130.239	49.206.14.12	36.79.79.12	182.18.217.193