110.139.13.95 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	1581569729 - 02/13/2020 05:55:29 Host: 110.139.13.95/110.139.13.95 Port: 445 TCP Blocked	2020-02-13 13:01:08

相同子网IP讨论:

IP	类型	评论内容	时间
110.139.132.13	attackspam	Unauthorized connection attempt from IP address 110.139.132.13 on Port 445(SMB)	2020-08-27 17:13:53
110.139.130.99	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-06 20:07:25,699 INFO [amun_request_handler] PortScan Detected on Port: 445 (110.139.130.99)	2019-08-07 06:52:26

类型

评论内容

时间

110.139.132.13

attackspam

Unauthorized connection attempt from IP address 110.139.132.13 on Port 445(SMB)

2020-08-27 17:13:53

110.139.130.99

attackbotsspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-06 20:07:25,699 INFO [amun_request_handler] PortScan Detected on Port: 445 (110.139.130.99)

2019-08-07 06:52:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.13.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.13.95.			IN	A

;; AUTHORITY SECTION:
.			279	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021202 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 12:57:39 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

95.13.139.110.in-addr.arpa domain name pointer 95.subnet110-139-13.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
95.13.139.110.in-addr.arpa	name = 95.subnet110-139-13.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
52.230.127.59	attackspambots	WordPress wp-login brute force :: 52.230.127.59 0.096 BYPASS [05/Nov/2019:04:52:44 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 1525 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-05 14:22:13
51.158.113.194	attackspambots	Nov 4 20:27:12 tdfoods sshd\[31677\]: Invalid user student from 51.158.113.194 Nov 4 20:27:12 tdfoods sshd\[31677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.113.194 Nov 4 20:27:14 tdfoods sshd\[31677\]: Failed password for invalid user student from 51.158.113.194 port 44232 ssh2 Nov 4 20:30:32 tdfoods sshd\[31948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.113.194 user=root Nov 4 20:30:34 tdfoods sshd\[31948\]: Failed password for root from 51.158.113.194 port 54072 ssh2	2019-11-05 14:47:39
209.97.175.191	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-11-05 14:28:09
119.163.250.237	attackbots	Nov 5 05:53:12 localhost sshd\[16751\]: Invalid user pi from 119.163.250.237 port 28934 Nov 5 05:53:13 localhost sshd\[16751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.163.250.237 Nov 5 05:53:14 localhost sshd\[16751\]: Failed password for invalid user pi from 119.163.250.237 port 28934 ssh2	2019-11-05 14:04:26
79.25.165.147	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.25.165.147/ IT - 1H : (103) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 79.25.165.147 CIDR : 79.24.0.0/15 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 ATTACKS DETECTED ASN3269 : 1H - 2 3H - 6 6H - 15 12H - 36 24H - 64 DateTime : 2019-11-05 05:53:23 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-05 14:00:21
176.27.41.249	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/176.27.41.249/ GB - 1H : (73) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN5607 IP : 176.27.41.249 CIDR : 176.24.0.0/14 PREFIX COUNT : 35 UNIQUE IP COUNT : 5376768 ATTACKS DETECTED ASN5607 : 1H - 1 3H - 2 6H - 2 12H - 3 24H - 6 DateTime : 2019-11-05 05:52:59 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-05 14:13:05
2.232.250.118	attackbots	2.232.250.118 was recorded 5 times by 1 hosts attempting to connect to the following ports: 23. Incident counter (4h, 24h, all-time): 5, 15, 15	2019-11-05 14:21:14
188.254.0.112	attackbots	Nov 5 07:05:41 dedicated sshd[31294]: Invalid user abbai from 188.254.0.112 port 43398	2019-11-05 14:15:07
222.186.173.142	attackbotsspam	2019-11-05T05:57:00.353808hub.schaetter.us sshd\[20040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root 2019-11-05T05:57:01.989618hub.schaetter.us sshd\[20040\]: Failed password for root from 222.186.173.142 port 33632 ssh2 2019-11-05T05:57:06.849286hub.schaetter.us sshd\[20040\]: Failed password for root from 222.186.173.142 port 33632 ssh2 2019-11-05T05:57:11.613928hub.schaetter.us sshd\[20040\]: Failed password for root from 222.186.173.142 port 33632 ssh2 2019-11-05T05:57:15.589996hub.schaetter.us sshd\[20040\]: Failed password for root from 222.186.173.142 port 33632 ssh2 ...	2019-11-05 14:17:07
51.254.140.83	attackbots	Nov 5 01:15:18 plusreed sshd[2214]: Invalid user morango from 51.254.140.83 ...	2019-11-05 14:23:16
202.191.56.69	attackbotsspam	Nov 5 07:26:13 localhost sshd\[26946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.69 user=root Nov 5 07:26:15 localhost sshd\[26946\]: Failed password for root from 202.191.56.69 port 37970 ssh2 Nov 5 07:30:33 localhost sshd\[27463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.69 user=root	2019-11-05 14:41:30
222.186.175.182	attack	k+ssh-bruteforce	2019-11-05 14:08:18
58.37.225.126	attackbots	2019-11-05T06:38:58.075089tmaserv sshd\[22092\]: Invalid user bmp from 58.37.225.126 port 32509 2019-11-05T06:38:58.078619tmaserv sshd\[22092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.37.225.126 2019-11-05T06:39:00.290673tmaserv sshd\[22092\]: Failed password for invalid user bmp from 58.37.225.126 port 32509 ssh2 2019-11-05T06:43:18.261248tmaserv sshd\[22318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.37.225.126 user=root 2019-11-05T06:43:19.831633tmaserv sshd\[22318\]: Failed password for root from 58.37.225.126 port 51068 ssh2 2019-11-05T06:51:38.306294tmaserv sshd\[22737\]: Invalid user su from 58.37.225.126 port 27188 ...	2019-11-05 14:12:18
52.52.1.216	attackspam	F2B jail: sshd. Time: 2019-11-05 07:31:08, Reported by: VKReport	2019-11-05 14:43:09
142.93.172.185	attack	Automatic report - XMLRPC Attack	2019-11-05 14:26:33

最近上报的IP列表

49.235.69.80	180.183.16.20	197.248.127.222	200.84.96.152
101.200.172.191	47.244.13.202	47.96.68.153	186.91.201.27
88.41.86.22	116.109.33.59	50.7.248.18	172.246.70.135
171.90.27.220	170.82.0.243	107.152.205.47	154.9.173.217
154.9.166.216	154.9.166.117	154.9.165.81	51.178.48.185