110.139.78.140

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Telkom Indonesia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 110.139.78.140 on Port 445(SMB)	2020-03-03 17:47:52

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.78.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42128
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.78.140.			IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030202 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 17:47:46 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

140.78.139.110.in-addr.arpa domain name pointer 140.subnet110-139-78.speedy.telkom.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.78.139.110.in-addr.arpa	name = 140.subnet110-139-78.speedy.telkom.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
203.190.154.109	attackbotsspam	Mar 28 19:46:05 vmd26974 sshd[8015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.190.154.109 Mar 28 19:46:07 vmd26974 sshd[8015]: Failed password for invalid user jur from 203.190.154.109 port 48104 ssh2 ...	2020-03-29 04:48:19
77.232.100.253	attackbotsspam	Lines containing failures of 77.232.100.253 Mar 28 17:36:11 UTC__SANYALnet-Labs__cac12 sshd[1858]: Connection from 77.232.100.253 port 51854 on 45.62.253.138 port 22 Mar 28 17:36:12 UTC__SANYALnet-Labs__cac12 sshd[1858]: Invalid user atk from 77.232.100.253 port 51854 Mar 28 17:36:12 UTC__SANYALnet-Labs__cac12 sshd[1858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.100.253 Mar 28 17:36:14 UTC__SANYALnet-Labs__cac12 sshd[1858]: Failed password for invalid user atk from 77.232.100.253 port 51854 ssh2 Mar 28 17:36:14 UTC__SANYALnet-Labs__cac12 sshd[1858]: Received disconnect from 77.232.100.253 port 51854:11: Bye Bye [preauth] Mar 28 17:36:14 UTC__SANYALnet-Labs__cac12 sshd[1858]: Disconnected from 77.232.100.253 port 51854 [preauth] Mar 28 17:50:00 UTC__SANYALnet-Labs__cac12 sshd[2144]: Connection from 77.232.100.253 port 39482 on 45.62.253.138 port 22 Mar 28 17:50:01 UTC__SANYALnet-Labs__cac12 sshd[2144]: Invalid user hxm........ ------------------------------	2020-03-29 05:01:25
49.235.133.208	attackbotsspam	SSH Brute-Force Attack	2020-03-29 05:03:04
69.229.6.4	attackspam	2020-03-28T20:52:54.538781Z fcd146f5c66d New connection: 69.229.6.4:58728 (172.17.0.3:2222) [session: fcd146f5c66d] 2020-03-28T20:58:26.961944Z d1ebeee7976b New connection: 69.229.6.4:50256 (172.17.0.3:2222) [session: d1ebeee7976b]	2020-03-29 05:14:17
65.30.158.231	attack	trying to access non-authorized port	2020-03-29 05:19:42
47.23.79.50	attackspam	[27/Mar/2020:23:53:51 -0400] "POST /boaform/admin/formPing HTTP/1.1" "polaris botnet"	2020-03-29 05:22:38
188.128.39.127	attackspambots	Mar 28 18:14:01 h1745522 sshd[31655]: Invalid user phl from 188.128.39.127 port 53346 Mar 28 18:14:01 h1745522 sshd[31655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.127 Mar 28 18:14:01 h1745522 sshd[31655]: Invalid user phl from 188.128.39.127 port 53346 Mar 28 18:14:03 h1745522 sshd[31655]: Failed password for invalid user phl from 188.128.39.127 port 53346 ssh2 Mar 28 18:18:41 h1745522 sshd[31907]: Invalid user zck from 188.128.39.127 port 40382 Mar 28 18:18:41 h1745522 sshd[31907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.127 Mar 28 18:18:41 h1745522 sshd[31907]: Invalid user zck from 188.128.39.127 port 40382 Mar 28 18:18:43 h1745522 sshd[31907]: Failed password for invalid user zck from 188.128.39.127 port 40382 ssh2 Mar 28 18:23:21 h1745522 sshd[32142]: Invalid user gxs from 188.128.39.127 port 55622 ...	2020-03-29 04:59:05
94.247.241.70	attack	Mar 28 13:38:29 exim[25814]: [1\33] 1jIAjN-0006iM-G0 H=(94-247-241-70.westcall.net) [94.247.241.70] F= rejected after DATA: This message scored 104.8 spam points.	2020-03-29 04:59:49
199.83.207.6	attack	TCP Port Scanning	2020-03-29 04:58:40
184.95.0.82	attackspam	DATE:2020-03-28 13:34:39, IP:184.95.0.82, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 05:15:04
120.70.102.16	attack	Mar 28 19:12:30 ns3164893 sshd[15983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.102.16 Mar 28 19:12:32 ns3164893 sshd[15983]: Failed password for invalid user wgg from 120.70.102.16 port 38507 ssh2 ...	2020-03-29 04:45:13
188.244.13.190	attackspambots	1585399122 - 03/28/2020 13:38:42 Host: 188.244.13.190/188.244.13.190 Port: 445 TCP Blocked	2020-03-29 05:13:48
111.67.194.84	attack	2020-03-28T16:45:01.204450v22018076590370373 sshd[27645]: Invalid user gfm from 111.67.194.84 port 53892 2020-03-28T16:45:01.209581v22018076590370373 sshd[27645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.194.84 2020-03-28T16:45:01.204450v22018076590370373 sshd[27645]: Invalid user gfm from 111.67.194.84 port 53892 2020-03-28T16:45:03.299938v22018076590370373 sshd[27645]: Failed password for invalid user gfm from 111.67.194.84 port 53892 ssh2 2020-03-28T16:52:28.746625v22018076590370373 sshd[25120]: Invalid user ku from 111.67.194.84 port 32790 ...	2020-03-29 04:45:34
198.98.60.141	attackspam	fail2ban -- 198.98.60.141 ...	2020-03-29 05:06:37
152.32.134.90	attackbotsspam	bruteforce detected	2020-03-29 05:05:49

最近上报的IP列表

175.228.67.234	41.118.6.158	233.70.113.251	223.185.108.232
151.239.105.231	147.128.155.116	165.149.94.13	237.247.190.32
106.248.198.246	113.161.244.33	104.238.176.248	254.22.157.6
26.63.41.30	53.10.35.104	192.222.57.48	103.199.36.146
250.57.7.160	118.173.134.68	195.18.23.144	183.19.191.94