110.139.12.10 - IPInfo

基本信息:

城市(city): Surabaya

省份(region): East Java

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
110.139.125.16	spam	Emiratefix UAE Duabi 0543747022 تصليح مكيفات يورك, وكيل مكيفات يورك 0543747022 وكيل مكيفات يورك (bookmarkspiral.com)	2025-04-27 22:35:56
110.139.126.220	attackspam	1589169014 - 05/11/2020 05:50:14 Host: 110.139.126.220/110.139.126.220 Port: 445 TCP Blocked	2020-05-11 17:42:12
110.139.127.165	attackspam	20/3/10@09:04:00: FAIL: Alarm-Network address from=110.139.127.165 ...	2020-03-10 22:45:13
110.139.122.150	attack	SSH bruteforce	2020-03-02 16:48:47
110.139.128.23	attackbots	Honeypot attack, port: 445, PTR: 23.subnet110-139-128.speedy.telkom.net.id.	2020-01-13 18:14:01
110.139.126.130	attackbotsspam	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-10 05:12:11
110.139.126.130	attackbots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-09 15:05:08
110.139.126.130	attackspambots	2019-11-08T08:44:59.174851abusebot-2.cloudsearch.cf sshd\[6816\]: Invalid user 123 from 110.139.126.130 port 62441	2019-11-08 16:46:04
110.139.126.130	attackbots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-08 09:11:31
110.139.126.130	attackspambots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-06 19:45:44
110.139.126.130	attackbotsspam	Nov 5 23:00:21 www1 sshd\[65443\]: Invalid user nation from 110.139.126.130Nov 5 23:00:23 www1 sshd\[65443\]: Failed password for invalid user nation from 110.139.126.130 port 63466 ssh2Nov 5 23:04:19 www1 sshd\[10224\]: Invalid user sno from 110.139.126.130Nov 5 23:04:21 www1 sshd\[10224\]: Failed password for invalid user sno from 110.139.126.130 port 45217 ssh2Nov 5 23:08:20 www1 sshd\[20319\]: Invalid user $passwor from 110.139.126.130Nov 5 23:08:22 www1 sshd\[20319\]: Failed password for invalid user $passwor from 110.139.126.130 port 27100 ssh2 ...	2019-11-06 05:12:27
110.139.126.130	attackspambots	Nov 5 07:34:49 vps sshd[6801]: Failed password for root from 110.139.126.130 port 27426 ssh2 Nov 5 07:55:43 vps sshd[7831]: Failed password for root from 110.139.126.130 port 13866 ssh2 ...	2019-11-05 16:57:22
110.139.128.232	attackbots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 05:26:54
110.139.129.188	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 00:45:21,226 INFO [shellcode_manager] (110.139.129.188) no match, writing hexdump (9c38f3d76b968a9d1134b19522980231 :2247277) - MS17010 (EternalBlue)	2019-07-17 16:07:09

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.12.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45548
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.12.10.			IN	A

;; AUTHORITY SECTION:
.			2099	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 05:54:15 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

10.12.139.110.in-addr.arpa domain name pointer 10.subnet110-139-12.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.12.139.110.in-addr.arpa	name = 10.subnet110-139-12.speedy.telkom.net.id.

Authoritative answers can be found from:

IP	类型	评论内容	时间
114.247.177.155	attackbots	SSH Brute Force	2019-09-08 03:26:30
107.189.1.182	attackbots	107.189.1.182 - - [07/Sep/2019:10:08:42 +0200] "POST /wp-login.php HTTP/1.1" 403 1612 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" bf2b38998e91ef197a09ef8505dbb7b8 Luxembourg LU Luxembourg Roost 107.189.1.182 - - [07/Sep/2019:12:41:38 +0200] "POST /wp-login.php HTTP/1.1" 403 1612 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 7477db290d115ee7cba0e8a8cdd7a991 Luxembourg LU Luxembourg Roost	2019-09-08 03:52:15
111.231.66.135	attackspambots	Reported by AbuseIPDB proxy server.	2019-09-08 02:59:48
81.22.45.219	attack	Sep 7 20:39:00 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.219 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=35621 PROTO=TCP SPT=52961 DPT=3566 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-08 03:05:02
110.88.126.74	attack	" "	2019-09-08 03:28:30
34.68.136.212	attackbots	$f2bV_matches	2019-09-08 03:15:35
41.224.247.207	attackbotsspam	Unauthorized connection attempt from IP address 41.224.247.207 on Port 445(SMB)	2019-09-08 03:05:33
112.252.105.250	attackspambots	firewall-block, port(s): 23/tcp	2019-09-08 03:27:06
112.85.42.179	attack	Sep 7 21:01:11 srv206 sshd[31571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.179 user=root Sep 7 21:01:13 srv206 sshd[31571]: Failed password for root from 112.85.42.179 port 57982 ssh2 ...	2019-09-08 03:27:49
78.85.121.251	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 10:03:51,521 INFO [amun_request_handler] PortScan Detected on Port: 445 (78.85.121.251)	2019-09-08 03:13:18
42.230.213.149	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-09-08 03:11:29
194.37.92.42	attackspam	Automatic report - Banned IP Access	2019-09-08 03:19:23
66.249.73.159	attackspambots	SQL injection:/index.php?menu_selected=70&language=ru&sub_menu_selected=	2019-09-08 03:32:26
201.183.225.114	attackspambots	Automatic report - Port Scan Attack	2019-09-08 03:13:45
157.230.240.34	attackspambots	Sep 7 21:24:00 SilenceServices sshd[20690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.240.34 Sep 7 21:24:02 SilenceServices sshd[20690]: Failed password for invalid user 123 from 157.230.240.34 port 55050 ssh2 Sep 7 21:28:17 SilenceServices sshd[22189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.240.34	2019-09-08 03:38:36

最近上报的IP列表

86.97.128.97	196.109.118.52	2.90.123.62	45.246.68.92
116.237.89.3	185.252.125.179	196.162.246.229	70.88.105.248
156.216.133.29	218.60.148.244	109.198.150.14	145.11.62.209
35.229.104.30	13.109.30.146	12.97.136.116	125.109.78.255
3.35.211.55	103.234.42.105	134.169.235.124	196.61.101.236