139.0.12.19 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	20/6/21@23:47:59: FAIL: Alarm-Network address from=139.0.12.19 ...	2020-06-22 19:14:39
attackspambots	unauthorized connection attempt	2020-02-04 13:50:40
attackspambots	Unauthorized connection attempt detected from IP address 139.0.12.19 to port 445	2019-12-12 20:11:21
attackspambots	Unauthorized connection attempt from IP address 139.0.12.19 on Port 445(SMB)	2019-08-25 22:13:06

相同子网IP讨论:

IP	类型	评论内容	时间
139.0.126.193	attack	Dec 19 15:39:51 grey postfix/smtpd\[23398\]: NOQUEUE: reject: RCPT from unknown\[139.0.126.193\]: 554 5.7.1 Service unavailable\; Client host \[139.0.126.193\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[139.0.126.193\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-19 22:40:00

类型

评论内容

时间

139.0.126.193

attack

Dec 19 15:39:51 grey postfix/smtpd\[23398\]: NOQUEUE: reject: RCPT from unknown\[139.0.126.193\]: 554 5.7.1 Service unavailable\; Client host \[139.0.126.193\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[139.0.126.193\]\; from=\ to=\ proto=ESMTP helo=\
...

2019-12-19 22:40:00

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.0.12.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11715
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.0.12.19.			IN	A

;; AUTHORITY SECTION:
.			1319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051700 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 17 16:11:36 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

19.12.0.139.in-addr.arpa domain name pointer ln-static-139-0-12-19.link.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.12.0.139.in-addr.arpa	name = ln-static-139-0-12-19.link.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
160.120.165.107	attackbotsspam	Port 1433 Scan	2019-10-16 18:01:23
133.130.90.174	attack	2019-10-16T03:18:17.735855ns525875 sshd\[31275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v133-130-90-174.a01f.g.tyo1.static.cnode.io user=root 2019-10-16T03:18:19.929846ns525875 sshd\[31275\]: Failed password for root from 133.130.90.174 port 56760 ssh2 2019-10-16T03:22:22.747267ns525875 sshd\[3883\]: Invalid user nuevos from 133.130.90.174 port 38882 2019-10-16T03:22:22.753442ns525875 sshd\[3883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v133-130-90-174.a01f.g.tyo1.static.cnode.io ...	2019-10-16 18:02:39
221.162.255.66	attackspambots	2019-10-16T09:53:21.005240abusebot-5.cloudsearch.cf sshd\[19869\]: Invalid user hp from 221.162.255.66 port 42018 2019-10-16T09:53:21.009740abusebot-5.cloudsearch.cf sshd\[19869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.162.255.66	2019-10-16 18:05:29
123.136.161.146	attackbots	Oct 16 08:52:00 host sshd[14197]: Invalid user super from 123.136.161.146 port 46116 Oct 16 08:52:00 host sshd[14197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 Oct 16 08:52:00 host sshd[14197]: Invalid user super from 123.136.161.146 port 46116 Oct 16 08:52:01 host sshd[14197]: Failed password for invalid user super from 123.136.161.146 port 46116 ssh2 ...	2019-10-16 17:57:22
92.63.194.115	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 94 - port: 44578 proto: TCP cat: Misc Attack	2019-10-16 17:37:23
182.61.36.38	attackbotsspam	Oct 16 02:58:39 ny01 sshd[706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.36.38 Oct 16 02:58:41 ny01 sshd[706]: Failed password for invalid user nsukei1 from 182.61.36.38 port 51708 ssh2 Oct 16 03:04:00 ny01 sshd[1223]: Failed password for root from 182.61.36.38 port 60530 ssh2	2019-10-16 17:47:40
124.234.141.247	attackspambots	" "	2019-10-16 17:55:36
134.209.63.140	attackbots	2019-10-16T07:28:00.749501abusebot-5.cloudsearch.cf sshd\[18160\]: Invalid user bip from 134.209.63.140 port 38126	2019-10-16 17:58:09
80.201.114.249	attackspambots	Automatic report - Banned IP Access	2019-10-16 17:47:19
103.114.107.240	attackspam	Oct 16 10:22:48 lcl-usvr-02 sshd[31229]: Invalid user support from 103.114.107.240 port 54301 Oct 16 10:22:48 lcl-usvr-02 sshd[31229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.114.107.240 Oct 16 10:22:48 lcl-usvr-02 sshd[31229]: Invalid user support from 103.114.107.240 port 54301 Oct 16 10:22:50 lcl-usvr-02 sshd[31229]: Failed password for invalid user support from 103.114.107.240 port 54301 ssh2 Oct 16 10:22:48 lcl-usvr-02 sshd[31229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.114.107.240 Oct 16 10:22:48 lcl-usvr-02 sshd[31229]: Invalid user support from 103.114.107.240 port 54301 Oct 16 10:22:50 lcl-usvr-02 sshd[31229]: Failed password for invalid user support from 103.114.107.240 port 54301 ssh2 Oct 16 10:22:50 lcl-usvr-02 sshd[31229]: error: Received disconnect from 103.114.107.240 port 54301:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2019-10-16 17:41:51
106.12.27.46	attackspambots	2019-10-16T05:31:10.455467abusebot-7.cloudsearch.cf sshd\[1579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.46 user=root	2019-10-16 17:55:55
175.211.116.226	attackbots	2019-10-16T09:24:53.901041abusebot-5.cloudsearch.cf sshd\[19518\]: Invalid user robert from 175.211.116.226 port 52106	2019-10-16 17:36:39
123.206.18.14	attack	Oct 16 11:33:39 vpn01 sshd[3452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.18.14 Oct 16 11:33:41 vpn01 sshd[3452]: Failed password for invalid user tiny from 123.206.18.14 port 39706 ssh2 ...	2019-10-16 17:53:28
165.227.15.124	attack	WordPress wp-login brute force :: 165.227.15.124 0.120 BYPASS [16/Oct/2019:17:23:12 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-16 18:11:27
95.90.142.55	attackbots	Automatic report - Banned IP Access	2019-10-16 17:40:06

最近上报的IP列表

208.45.190.24	248.123.97.82	187.169.80.209	111.85.11.22
60.194.21.73	188.108.142.99	9.239.2.28	119.58.93.107
235.91.23.78	117.74.125.192	240.193.214.63	19.49.88.232
231.70.115.249	37.63.142.251	27.208.59.235	239.61.233.84
214.224.175.80	138.216.229.64	115.216.58.144	114.142.219.243