110.139.12.10 - IPInfo

基本信息:

城市(city): Surabaya

省份(region): East Java

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
110.139.125.16	spam	Emiratefix UAE Duabi 0543747022 تصليح مكيفات يورك, وكيل مكيفات يورك 0543747022 وكيل مكيفات يورك (bookmarkspiral.com)	2025-04-27 22:35:56
110.139.126.220	attackspam	1589169014 - 05/11/2020 05:50:14 Host: 110.139.126.220/110.139.126.220 Port: 445 TCP Blocked	2020-05-11 17:42:12
110.139.127.165	attackspam	20/3/10@09:04:00: FAIL: Alarm-Network address from=110.139.127.165 ...	2020-03-10 22:45:13
110.139.122.150	attack	SSH bruteforce	2020-03-02 16:48:47
110.139.128.23	attackbots	Honeypot attack, port: 445, PTR: 23.subnet110-139-128.speedy.telkom.net.id.	2020-01-13 18:14:01
110.139.126.130	attackbotsspam	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-10 05:12:11
110.139.126.130	attackbots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-09 15:05:08
110.139.126.130	attackspambots	2019-11-08T08:44:59.174851abusebot-2.cloudsearch.cf sshd\[6816\]: Invalid user 123 from 110.139.126.130 port 62441	2019-11-08 16:46:04
110.139.126.130	attackbots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-08 09:11:31
110.139.126.130	attackspambots	Nov 5 06:46:02 olgosrv01 sshd[1101]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:46:02 olgosrv01 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 user=r.r Nov 5 06:46:04 olgosrv01 sshd[1101]: Failed password for r.r from 110.139.126.130 port 16278 ssh2 Nov 5 06:46:05 olgosrv01 sshd[1101]: Received disconnect from 110.139.126.130: 11: Bye Bye [preauth] Nov 5 06:51:03 olgosrv01 sshd[1462]: reveeclipse mapping checking getaddrinfo for 130.subnet110-139-126.speedy.telkom.net.id [110.139.126.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 06:51:03 olgosrv01 sshd[1462]: Invalid user apache from 110.139.126.130 Nov 5 06:51:03 olgosrv01 sshd[1462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.126.130 Nov 5 06:51:06 olgosrv01 sshd[1462]: Failed pass........ -------------------------------	2019-11-06 19:45:44
110.139.126.130	attackbotsspam	Nov 5 23:00:21 www1 sshd\[65443\]: Invalid user nation from 110.139.126.130Nov 5 23:00:23 www1 sshd\[65443\]: Failed password for invalid user nation from 110.139.126.130 port 63466 ssh2Nov 5 23:04:19 www1 sshd\[10224\]: Invalid user sno from 110.139.126.130Nov 5 23:04:21 www1 sshd\[10224\]: Failed password for invalid user sno from 110.139.126.130 port 45217 ssh2Nov 5 23:08:20 www1 sshd\[20319\]: Invalid user $passwor from 110.139.126.130Nov 5 23:08:22 www1 sshd\[20319\]: Failed password for invalid user $passwor from 110.139.126.130 port 27100 ssh2 ...	2019-11-06 05:12:27
110.139.126.130	attackspambots	Nov 5 07:34:49 vps sshd[6801]: Failed password for root from 110.139.126.130 port 27426 ssh2 Nov 5 07:55:43 vps sshd[7831]: Failed password for root from 110.139.126.130 port 13866 ssh2 ...	2019-11-05 16:57:22
110.139.128.232	attackbots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 05:26:54
110.139.129.188	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 00:45:21,226 INFO [shellcode_manager] (110.139.129.188) no match, writing hexdump (9c38f3d76b968a9d1134b19522980231 :2247277) - MS17010 (EternalBlue)	2019-07-17 16:07:09

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.12.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45548
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.12.10.			IN	A

;; AUTHORITY SECTION:
.			2099	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 05:54:15 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

10.12.139.110.in-addr.arpa domain name pointer 10.subnet110-139-12.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.12.139.110.in-addr.arpa	name = 10.subnet110-139-12.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.17.130.197	attack	Jul 7 00:22:04 plusreed sshd[27810]: Invalid user ftpuser from 201.17.130.197 Jul 7 00:22:04 plusreed sshd[27810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.17.130.197 Jul 7 00:22:04 plusreed sshd[27810]: Invalid user ftpuser from 201.17.130.197 Jul 7 00:22:06 plusreed sshd[27810]: Failed password for invalid user ftpuser from 201.17.130.197 port 35535 ssh2 ...	2019-07-07 12:45:56
177.74.79.142	attackspambots	Jul 7 04:19:37 mail sshd\[10709\]: Invalid user walker from 177.74.79.142 port 12169 Jul 7 04:19:37 mail sshd\[10709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.79.142 Jul 7 04:19:39 mail sshd\[10709\]: Failed password for invalid user walker from 177.74.79.142 port 12169 ssh2 Jul 7 04:23:11 mail sshd\[10729\]: Invalid user ajay from 177.74.79.142 port 51982 Jul 7 04:23:11 mail sshd\[10729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.79.142 ...	2019-07-07 13:04:16
180.167.155.237	attack	Invalid user r from 180.167.155.237 port 33160	2019-07-07 13:09:11
185.108.228.1	attackbotsspam	Jul 7 05:57:18 tux-35-217 sshd\[13857\]: Invalid user mc from 185.108.228.1 port 36446 Jul 7 05:57:18 tux-35-217 sshd\[13857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.108.228.1 Jul 7 05:57:20 tux-35-217 sshd\[13857\]: Failed password for invalid user mc from 185.108.228.1 port 36446 ssh2 Jul 7 06:00:23 tux-35-217 sshd\[13872\]: Invalid user test from 185.108.228.1 port 42244 Jul 7 06:00:23 tux-35-217 sshd\[13872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.108.228.1 ...	2019-07-07 12:33:44
91.201.42.61	attackspam	/wp-includes/ob.php	2019-07-07 12:57:09
118.24.48.13	attackbots	Jul 7 04:09:57 localhost sshd\[19749\]: Invalid user vivian from 118.24.48.13 port 54278 Jul 7 04:09:57 localhost sshd\[19749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.48.13 Jul 7 04:09:59 localhost sshd\[19749\]: Failed password for invalid user vivian from 118.24.48.13 port 54278 ssh2 ...	2019-07-07 13:14:14
148.70.113.127	attack	Jul 7 03:55:12 work-partkepr sshd\[17746\]: Invalid user vagrant from 148.70.113.127 port 56602 Jul 7 03:55:12 work-partkepr sshd\[17746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.113.127 ...	2019-07-07 13:10:23
187.59.105.87	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 00:11:28,184 INFO [shellcode_manager] (187.59.105.87) no match, writing hexdump (be25ac1a40677c43de109732ffe47c2c :14920) - SMB (Unknown)	2019-07-07 13:28:58
219.128.51.65	attackspambots	Jul 7 11:52:04 bacztwo courieresmtpd[25447]: error,relay=::ffff:219.128.51.65,from=<>,to=<>: 500 Invalid address Jul 7 11:52:26 bacztwo courieresmtpd[27110]: error,relay=::ffff:219.128.51.65,from=<>,to=<>: 500 Invalid address Jul 7 11:52:49 bacztwo courieresmtpd[29713]: error,relay=::ffff:219.128.51.65,from=<>,to=<>: 500 Invalid address Jul 7 11:53:50 bacztwo courieresmtpd[1691]: error,relay=::ffff:219.128.51.65,from=<>,to=<>: 500 Invalid address Jul 7 11:54:24 bacztwo courieresmtpd[4353]: error,relay=::ffff:219.128.51.65,from=<>,to=<>: 500 Invalid address ...	2019-07-07 13:35:14
111.230.66.65	attack	Triggered by Fail2Ban at Ares web server	2019-07-07 13:11:11
142.93.162.141	attackbots	Jul 7 06:43:02 lnxweb62 sshd[30878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.162.141 Jul 7 06:43:04 lnxweb62 sshd[30878]: Failed password for invalid user shao from 142.93.162.141 port 58744 ssh2 Jul 7 06:47:15 lnxweb62 sshd[676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.162.141	2019-07-07 12:49:00
119.29.247.225	attackbots	Jul 7 03:56:03 MK-Soft-VM3 sshd\[28929\]: Invalid user ftp from 119.29.247.225 port 44210 Jul 7 03:56:03 MK-Soft-VM3 sshd\[28929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.247.225 Jul 7 03:56:05 MK-Soft-VM3 sshd\[28929\]: Failed password for invalid user ftp from 119.29.247.225 port 44210 ssh2 ...	2019-07-07 12:41:48
123.201.36.96	attack	Sniffing for wp-login	2019-07-07 13:15:10
73.116.1.76	attackbotsspam	[SunJul0705:54:35.6470152019][:error][pid20579:tid47152594962176][client73.116.1.76:41248][client73.116.1.76]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"391"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected$DisableifyouwanttoallowMSIE6$"][severity"WARNING"][hostname"foreveryoungonline.ch"][uri"/wp-content/plugins/sirv/sirv/readme.txt"][unique_id"XSFs@zSONHnKQBPfCf1PxgAAAMk"][SunJul0705:54:39.8754262019][:error][pid20578:tid47152626480896][client73.116.1.76:57932][client73.116.1.76]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"391"][id"397989"][rev"1"][msg"Atomicorp.c	2019-07-07 13:26:38
36.76.209.62	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 03:51:32,732 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.76.209.62)	2019-07-07 13:27:52

最近上报的IP列表

86.97.128.97	196.109.118.52	2.90.123.62	45.246.68.92
116.237.89.3	185.252.125.179	196.162.246.229	70.88.105.248
156.216.133.29	218.60.148.244	109.198.150.14	145.11.62.209
35.229.104.30	13.109.30.146	12.97.136.116	125.109.78.255
3.35.211.55	103.234.42.105	134.169.235.124	196.61.101.236