139.0.176.245 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-10 01:04:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.0.176.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34179
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.0.176.245.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060900 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 10 01:04:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

245.176.0.139.in-addr.arpa domain name pointer fm-dyn-139-0-176-245.fast.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.176.0.139.in-addr.arpa	name = fm-dyn-139-0-176-245.fast.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
179.99.213.82	attack	Unauthorized connection attempt from IP address 179.99.213.82 on Port 445(SMB)	2020-10-09 23:38:31
115.182.105.68	attackspam	Oct 9 16:23:40 host1 sshd[1691469]: Invalid user nelson from 115.182.105.68 port 49267 Oct 9 16:23:42 host1 sshd[1691469]: Failed password for invalid user nelson from 115.182.105.68 port 49267 ssh2 Oct 9 16:23:40 host1 sshd[1691469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.182.105.68 Oct 9 16:23:40 host1 sshd[1691469]: Invalid user nelson from 115.182.105.68 port 49267 Oct 9 16:23:42 host1 sshd[1691469]: Failed password for invalid user nelson from 115.182.105.68 port 49267 ssh2 ...	2020-10-09 23:21:34
81.70.40.155	attack	Oct 9 11:30:29 mavik sshd[19566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.40.155 Oct 9 11:30:31 mavik sshd[19566]: Failed password for invalid user odoo from 81.70.40.155 port 47234 ssh2 Oct 9 11:34:25 mavik sshd[19701]: Invalid user odoo from 81.70.40.155 Oct 9 11:34:25 mavik sshd[19701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.40.155 Oct 9 11:34:28 mavik sshd[19701]: Failed password for invalid user odoo from 81.70.40.155 port 34390 ssh2 ...	2020-10-09 23:16:18
200.233.186.57	attack	Oct 9 10:49:59 ny01 sshd[31143]: Failed password for root from 200.233.186.57 port 47362 ssh2 Oct 9 10:53:19 ny01 sshd[31542]: Failed password for root from 200.233.186.57 port 35960 ssh2	2020-10-09 23:22:30
113.190.242.110	attack	Unauthorized connection attempt from IP address 113.190.242.110 on Port 445(SMB)	2020-10-09 23:37:07
112.85.42.190	attackbotsspam	Oct 9 17:27:19 OPSO sshd\[17573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.190 user=root Oct 9 17:27:21 OPSO sshd\[17573\]: Failed password for root from 112.85.42.190 port 61918 ssh2 Oct 9 17:27:26 OPSO sshd\[17573\]: Failed password for root from 112.85.42.190 port 61918 ssh2 Oct 9 17:27:29 OPSO sshd\[17573\]: Failed password for root from 112.85.42.190 port 61918 ssh2 Oct 9 17:27:32 OPSO sshd\[17573\]: Failed password for root from 112.85.42.190 port 61918 ssh2	2020-10-09 23:39:02
62.210.206.78	attack	Oct 9 13:16:15 ns382633 sshd\[20100\]: Invalid user w from 62.210.206.78 port 38816 Oct 9 13:16:15 ns382633 sshd\[20100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.206.78 Oct 9 13:16:16 ns382633 sshd\[20100\]: Failed password for invalid user w from 62.210.206.78 port 38816 ssh2 Oct 9 13:20:22 ns382633 sshd\[20746\]: Invalid user git from 62.210.206.78 port 52138 Oct 9 13:20:22 ns382633 sshd\[20746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.206.78	2020-10-09 23:37:48
43.225.64.246	attackspam	[ssh] SSH attack	2020-10-09 23:30:45
111.95.141.34	attack	Oct 9 11:55:49 firewall sshd[29561]: Failed password for root from 111.95.141.34 port 40478 ssh2 Oct 9 12:00:00 firewall sshd[29670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.95.141.34 user=root Oct 9 12:00:02 firewall sshd[29670]: Failed password for root from 111.95.141.34 port 42092 ssh2 ...	2020-10-09 23:14:05
218.60.41.136	attackspam	(sshd) Failed SSH login from 218.60.41.136 (CN/China/Liaoning/Chaoyang Shi (Shuangta Qu)/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 9 09:01:59 atlas sshd[4884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.136 user=root Oct 9 09:02:01 atlas sshd[4884]: Failed password for root from 218.60.41.136 port 50926 ssh2 Oct 9 09:07:19 atlas sshd[6348]: Invalid user temp from 218.60.41.136 port 39690 Oct 9 09:07:21 atlas sshd[6348]: Failed password for invalid user temp from 218.60.41.136 port 39690 ssh2 Oct 9 09:09:07 atlas sshd[6867]: Invalid user deploy from 218.60.41.136 port 58038	2020-10-09 23:04:25
68.183.110.49	attackbotsspam	Oct 9 14:48:57 localhost sshd[14413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.110.49 user=root Oct 9 14:48:58 localhost sshd[14413]: Failed password for root from 68.183.110.49 port 46456 ssh2 Oct 9 14:52:33 localhost sshd[14790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.110.49 user=root Oct 9 14:52:34 localhost sshd[14790]: Failed password for root from 68.183.110.49 port 52182 ssh2 Oct 9 14:56:12 localhost sshd[15250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.110.49 user=root Oct 9 14:56:14 localhost sshd[15250]: Failed password for root from 68.183.110.49 port 57912 ssh2 ...	2020-10-09 23:16:49
201.187.99.223	attackbotsspam	1602189973 - 10/08/2020 22:46:13 Host: 201.187.99.223/201.187.99.223 Port: 445 TCP Blocked	2020-10-09 23:24:05
106.46.169.103	attack	Unauthorized connection attempt from IP address 106.46.169.103 on Port 445(SMB)	2020-10-09 23:44:14
156.215.21.125	attackspam	Oct 6 22:09:31 finn sshd[20895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.215.21.125 user=r.r Oct 6 22:09:33 finn sshd[20895]: Failed password for r.r from 156.215.21.125 port 44886 ssh2 Oct 6 22:09:33 finn sshd[20895]: Received disconnect from 156.215.21.125 port 44886:11: Bye Bye [preauth] Oct 6 22:09:33 finn sshd[20895]: Disconnected from 156.215.21.125 port 44886 [preauth] Oct 6 22:13:41 finn sshd[22107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.215.21.125 user=r.r Oct 6 22:13:43 finn sshd[22107]: Failed password for r.r from 156.215.21.125 port 52822 ssh2 Oct 6 22:13:43 finn sshd[22107]: Received disconnect from 156.215.21.125 port 52822:11: Bye Bye [preauth] Oct 6 22:13:43 finn sshd[22107]: Disconnected from 156.215.21.125 port 52822 [preauth] Oct 6 22:18:13 finn sshd[23704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh rus........ -------------------------------	2020-10-09 23:28:06
201.209.94.67	attack	20/10/8@16:46:01: FAIL: Alarm-Intrusion address from=201.209.94.67 ...	2020-10-09 23:42:52

最近上报的IP列表

188.166.26.40	81.169.185.148	122.231.150.46	102.36.135.46
105.105.4.251	45.6.19.92	34.68.210.48	115.79.28.118
121.29.76.204	119.45.5.237	91.235.190.194	116.110.121.91
50.3.60.40	36.226.25.241	60.168.130.44	46.142.2.175
117.241.72.45	237.100.33.51	104.37.189.85	107.167.192.19