110.139.2.19 - IPInfo

基本信息:

城市(city): Surabaya

省份(region): East Java

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Automatic report - Port Scan Attack	2019-11-06 18:06:27

相同子网IP讨论:

IP	类型	评论内容	时间
110.139.203.164	attackspambots	20/8/24@01:01:27: FAIL: Alarm-Network address from=110.139.203.164 ...	2020-08-24 15:31:28
110.139.206.154	attackspam	Unauthorized connection attempt from IP address 110.139.206.154 on Port 445(SMB)	2020-07-07 21:02:32
110.139.226.153	attackbotsspam	(sshd) Failed SSH login from 110.139.226.153 (ID/Indonesia/153.subnet110-139-226.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 10 05:51:47 ubnt-55d23 sshd[27433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.226.153 user=root Jun 10 05:51:48 ubnt-55d23 sshd[27433]: Failed password for root from 110.139.226.153 port 34194 ssh2	2020-06-10 15:10:42
110.139.253.201	attackspambots	Unauthorized connection attempt from IP address 110.139.253.201 on Port 445(SMB)	2020-04-28 19:26:38
110.139.254.47	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 28-03-2020 03:55:08.	2020-03-28 12:30:19
110.139.2.146	attack	Unauthorized connection attempt from IP address 110.139.2.146 on Port 445(SMB)	2020-02-27 18:21:50
110.139.207.18	attackbotsspam	Invalid user peh from 110.139.207.18 port 34986	2019-12-24 22:06:17
110.139.253.194	attackspam	Automatic report - Port Scan Attack	2019-10-31 00:54:21
110.139.28.59	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 25-10-2019 04:55:14.	2019-10-25 13:55:48
110.139.250.61	attack	Unauthorised access (Sep 19) SRC=110.139.250.61 LEN=52 TTL=116 ID=4728 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-20 02:34:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.2.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.2.19.			IN	A

;; AUTHORITY SECTION:
.			284	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110600 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 06 18:06:24 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

19.2.139.110.in-addr.arpa domain name pointer 19.subnet110-139-2.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.2.139.110.in-addr.arpa	name = 19.subnet110-139-2.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
217.61.0.236	attack	5060/udp 5060/udp 5060/udp... [2019-07-26/08-02]29pkt,1pt.(udp)	2019-08-03 07:35:16
49.234.194.208	attack	Automatic report - Banned IP Access	2019-08-03 07:47:36
66.96.239.111	attackspambots	37215/tcp 37215/tcp [2019-08-02]2pkt	2019-08-03 07:03:29
77.247.109.78	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-03 07:52:18
42.99.180.135	attackbots	Aug 3 01:19:08 vps647732 sshd[26243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.99.180.135 Aug 3 01:19:10 vps647732 sshd[26243]: Failed password for invalid user administrator from 42.99.180.135 port 44472 ssh2 ...	2019-08-03 07:36:45
8.23.224.108	attackspambots	Message ID Created at: Fri, Aug 2, 2019 at 6:30 AM (Delivered after 0 seconds) From: PAYPAAL ? To: "97,190.ci45.inbox@amfd02.alpha-mail.net> <" Subject: Re:C0NGRATSS.(bimmernut318).Your..$1,OOO Paypal Giift..Card..Has Arriived..!!! SPF: PASS with IP 62.210.11.172 Learn more DKIM: 'PASS' with domain standup.dynns.com Learn more DMARC: 'PASS' Learn more	2019-08-03 06:58:34
118.24.7.101	attackbotsspam	2019-08-02T22:23:58.995568lon01.zurich-datacenter.net sshd\[23317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.7.101 user=root 2019-08-02T22:24:01.017979lon01.zurich-datacenter.net sshd\[23317\]: Failed password for root from 118.24.7.101 port 52144 ssh2 2019-08-02T22:26:58.965869lon01.zurich-datacenter.net sshd\[23379\]: Invalid user qm from 118.24.7.101 port 53740 2019-08-02T22:26:58.971511lon01.zurich-datacenter.net sshd\[23379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.7.101 2019-08-02T22:27:01.039282lon01.zurich-datacenter.net sshd\[23379\]: Failed password for invalid user qm from 118.24.7.101 port 53740 ssh2 ...	2019-08-03 07:28:35
5.198.166.115	attackspam	445/tcp [2019-08-02]1pkt	2019-08-03 07:19:46
79.124.7.4	attack	Automatic report - Banned IP Access	2019-08-03 07:12:55
222.139.77.213	attack	23/tcp [2019-08-02]1pkt	2019-08-03 07:33:54
54.39.138.246	attackspambots	Aug 3 01:06:50 v22018076622670303 sshd\[9260\]: Invalid user cora from 54.39.138.246 port 50314 Aug 3 01:06:50 v22018076622670303 sshd\[9260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.246 Aug 3 01:06:52 v22018076622670303 sshd\[9260\]: Failed password for invalid user cora from 54.39.138.246 port 50314 ssh2 ...	2019-08-03 07:09:51
206.189.132.246	attackbotsspam	Aug 3 02:29:52 hosting sshd[3271]: Invalid user fake from 206.189.132.246 port 57442 Aug 3 02:29:52 hosting sshd[3271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.246 Aug 3 02:29:52 hosting sshd[3271]: Invalid user fake from 206.189.132.246 port 57442 Aug 3 02:29:54 hosting sshd[3271]: Failed password for invalid user fake from 206.189.132.246 port 57442 ssh2 Aug 3 02:29:55 hosting sshd[3273]: Invalid user support from 206.189.132.246 port 33104 ...	2019-08-03 07:50:39
167.99.230.57	attackbotsspam	Aug 2 19:25:42 *** sshd[9540]: User root from 167.99.230.57 not allowed because not listed in AllowUsers	2019-08-03 07:08:14
77.247.108.154	attackspam	02.08.2019 23:16:58 Connection to port 23 blocked by firewall	2019-08-03 07:26:28
120.89.37.36	attackbots	Aug 2 15:25:37 localhost kernel: [16018130.835836] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.89.37.36 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=3256 DF PROTO=TCP SPT=50660 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 2 15:25:37 localhost kernel: [16018130.835845] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.89.37.36 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=3256 DF PROTO=TCP SPT=50660 DPT=445 SEQ=179044332 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405640103030801010402) Aug 2 15:25:40 localhost kernel: [16018133.839619] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.89.37.36 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=3529 DF PROTO=TCP SPT=50660 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 2 15:25:40 localhost kernel: [16018133.839650] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.89.37.36 DST	2019-08-03 07:14:16

最近上报的IP列表

179.95.59.180	220.132.245.14	176.125.63.31	189.89.3.117
177.105.163.137	80.122.133.146	219.239.31.10	80.211.251.135
59.91.218.77	36.26.78.36	185.183.41.18	112.17.78.170
182.48.38.103	151.56.92.36	192.144.216.119	202.157.176.31
179.14.105.56	182.55.136.224	62.234.145.195	187.111.222.131

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表