110.138.148.128

基本信息:

城市(city): Bekasi

省份(region): West Java

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
110.138.148.134	attackbotsspam	Unauthorized connection attempt from IP address 110.138.148.134 on Port 445(SMB)	2020-05-28 21:26:50
110.138.148.101	attackspambots		2020-05-13 08:33:54
110.138.148.227	attackbots	20/4/26@23:52:23: FAIL: Alarm-Network address from=110.138.148.227 20/4/26@23:52:23: FAIL: Alarm-Network address from=110.138.148.227 ...	2020-04-27 17:41:32
110.138.148.241	attackspambots	Brute force SMTP login attempted. ...	2020-04-01 09:29:16
110.138.148.83	attackspam	Brute force SMTP login attempted. ...	2020-04-01 09:29:01
110.138.148.10	attackbotsspam	firewall-block, port(s): 22/tcp, 8728/tcp	2020-03-11 15:39:12
110.138.148.96	attack	suspicious action Thu, 27 Feb 2020 11:27:38 -0300	2020-02-27 22:48:45
110.138.148.4	attack	Honeypot attack, port: 445, PTR: 4.subnet110-138-148.speedy.telkom.net.id.	2020-02-26 02:22:52
110.138.148.112	attack	Unauthorized connection attempt detected from IP address 110.138.148.112 to port 80 [J]	2020-02-23 21:00:20
110.138.148.143	attack	Unauthorized connection attempt from IP address 110.138.148.143 on Port 445(SMB)	2020-02-15 19:42:45
110.138.148.5	attackbotsspam	Feb 14 04:51:10 l02a sshd[5329]: Invalid user 888888 from 110.138.148.5 Feb 14 04:51:11 l02a sshd[5345]: Invalid user 888888 from 110.138.148.5	2020-02-14 20:18:40
110.138.148.14	attackbotsspam	1578401666 - 01/07/2020 13:54:26 Host: 110.138.148.14/110.138.148.14 Port: 445 TCP Blocked	2020-01-08 04:27:13
110.138.148.101	attack	Unauthorized connection attempt from IP address 110.138.148.101 on Port 445(SMB)	2019-12-25 03:17:21
110.138.148.229	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:28.	2019-11-26 18:31:06
110.138.148.71	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 22-10-2019 12:45:22.	2019-10-23 01:59:17

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.148.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49986
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.148.128.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 12:04:12 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

128.148.138.110.in-addr.arpa domain name pointer 128.subnet110-138-148.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
128.148.138.110.in-addr.arpa	name = 128.subnet110-138-148.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.78.215.150	attack	Jun 8 07:56:51 minden010 sshd[19677]: Failed password for root from 103.78.215.150 port 60734 ssh2 Jun 8 08:01:17 minden010 sshd[20206]: Failed password for root from 103.78.215.150 port 58474 ssh2 ...	2020-06-08 19:47:23
185.104.85.50	attackbotsspam	TCP (SYN) 185.104.85.50:56434 -> port 445, len 40	2020-06-08 19:43:04
1.2.128.223	attack	Unauthorized connection attempt from IP address 1.2.128.223 on Port 445(SMB)	2020-06-08 19:12:05
200.179.23.83	attack	Brute force attempt	2020-06-08 19:42:13
83.159.194.187	attackbots	web-1 [ssh] SSH Attack	2020-06-08 19:33:39
101.51.28.181	attackspambots	Unauthorized connection attempt from IP address 101.51.28.181 on Port 445(SMB)	2020-06-08 19:48:47
171.238.76.28	attackspam	Unauthorized connection attempt from IP address 171.238.76.28 on Port 445(SMB)	2020-06-08 19:31:05
46.101.81.132	attackspam	SS5,DEF GET /wp-login.php	2020-06-08 19:47:41
202.79.34.76	attackbots	2020-06-08T11:22:48.771859shield sshd\[4492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root 2020-06-08T11:22:50.822833shield sshd\[4492\]: Failed password for root from 202.79.34.76 port 54346 ssh2 2020-06-08T11:27:24.035797shield sshd\[7111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root 2020-06-08T11:27:26.643709shield sshd\[7111\]: Failed password for root from 202.79.34.76 port 57640 ssh2 2020-06-08T11:31:54.798723shield sshd\[9377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root	2020-06-08 19:32:13
170.254.231.114	attack	Unauthorized connection attempt from IP address 170.254.231.114 on Port 445(SMB)	2020-06-08 19:49:29
122.51.195.104	attack	Jun 8 08:45:51 xeon sshd[38266]: Failed password for root from 122.51.195.104 port 38692 ssh2	2020-06-08 19:12:43
103.79.154.122	attackbotsspam	1591593133 - 06/08/2020 07:12:13 Host: 103.79.154.122/103.79.154.122 Port: 445 TCP Blocked	2020-06-08 19:08:07
47.56.156.227	attack	bruteforce detected	2020-06-08 19:19:03
36.72.220.13	attack	Unauthorized connection attempt from IP address 36.72.220.13 on Port 445(SMB)	2020-06-08 19:30:00
120.131.8.12	attack	Lines containing failures of 120.131.8.12 Jun 8 04:25:48 nxxxxxxx sshd[15333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.8.12 user=r.r Jun 8 04:25:51 nxxxxxxx sshd[15333]: Failed password for r.r from 120.131.8.12 port 20304 ssh2 Jun 8 04:25:51 nxxxxxxx sshd[15333]: Received disconnect from 120.131.8.12 port 20304:11: Bye Bye [preauth] Jun 8 04:25:51 nxxxxxxx sshd[15333]: Disconnected from authenticating user r.r 120.131.8.12 port 20304 [preauth] Jun 8 04:33:27 nxxxxxxx sshd[16163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.8.12 user=r.r Jun 8 04:33:29 nxxxxxxx sshd[16163]: Failed password for r.r from 120.131.8.12 port 14890 ssh2 Jun 8 04:33:29 nxxxxxxx sshd[16163]: Received disconnect from 120.131.8.12 port 14890:11: Bye Bye [preauth] Jun 8 04:33:29 nxxxxxxx sshd[16163]: Disconnected from authenticating user r.r 120.131.8.12 port 14890 [preauth] Jun 8 ........ ------------------------------	2020-06-08 19:37:19

最近上报的IP列表

82.147.105.182	178.141.197.152	128.199.85.184	118.25.71.104
92.151.92.181	36.69.51.185	212.200.26.10	194.24.160.167
200.85.37.66	23.250.37.42	84.22.32.166	1.32.53.3
218.92.0.192	190.57.185.138	77.128.74.143	129.204.3.240
111.62.18.16	13.124.12.214	218.92.0.198	86.16.74.182