139.0.42.197 - IPInfo

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Registration form abuse	2019-10-08 03:34:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.0.42.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.0.42.197.			IN	A

;; AUTHORITY SECTION:
.			60	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100702 1800 900 604800 86400

;; Query time: 429 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 03:34:44 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

197.42.0.139.in-addr.arpa domain name pointer fm-dyn-139-0-42-197.fast.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.42.0.139.in-addr.arpa	name = fm-dyn-139-0-42-197.fast.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
62.99.78.120	attack	Dovecot Invalid User Login Attempt.	2020-09-30 00:59:06
120.211.61.213	attackspambots	Lines containing failures of 120.211.61.213 (max 1000) Sep 28 08:34:15 UTC__SANYALnet-Labs__cac12 sshd[29562]: Connection from 120.211.61.213 port 50562 on 64.137.176.96 port 22 Sep 28 08:34:36 UTC__SANYALnet-Labs__cac12 sshd[29562]: Invalid user user from 120.211.61.213 port 50562 Sep 28 08:34:36 UTC__SANYALnet-Labs__cac12 sshd[29562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.211.61.213 Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Failed password for invalid user user from 120.211.61.213 port 50562 ssh2 Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Received disconnect from 120.211.61.213 port 50562:11: Bye Bye [preauth] Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Disconnected from 120.211.61.213 port 50562 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.211.61.213	2020-09-30 01:40:40
197.1.48.143	attackbots	20/9/28@16:35:07: FAIL: Alarm-Network address from=197.1.48.143 ...	2020-09-30 01:07:16
27.128.236.189	attackspambots	SSH Brute-Force Attack	2020-09-30 01:36:35
185.191.171.4	attackbots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-09-30 01:19:21
106.13.180.245	attackspambots	Sep 29 12:39:13 ns3164893 sshd[16701]: Failed password for root from 106.13.180.245 port 43330 ssh2 Sep 29 12:50:57 ns3164893 sshd[17288]: Invalid user deploy from 106.13.180.245 port 50262 ...	2020-09-30 01:25:56
190.75.54.143	attack	Port Scan ...	2020-09-30 00:55:57
115.159.115.17	attack	$f2bV_matches	2020-09-30 01:01:25
101.99.81.141	attack	Sep 28 16:12:07 mailserver postfix/smtpd[1108]: connect from unknown[101.99.81.141] Sep 28 16:12:07 mailserver postfix/smtpd[1108]: lost connection after CONNECT from unknown[101.99.81.141] Sep 28 16:12:07 mailserver postfix/smtpd[1108]: disconnect from unknown[101.99.81.141] commands=0/0 Sep 28 16:12:10 mailserver postfix/smtpd[1108]: connect from unknown[101.99.81.141] Sep 28 16:12:11 mailserver postfix/smtpd[1108]: NOQUEUE: reject: RCPT from unknown[101.99.81.141]: 454 4.7.1 : Relay access denied; from= to= proto=SMTP helo= Sep 28 16:12:12 mailserver postfix/smtpd[1112]: connect from unknown[101.99.81.141] Sep 28 16:12:15 mailserver postfix/smtpd[1113]: connect from unknown[101.99.81.141] Sep 28 16:12:17 mailserver postfix/smtpd[1116]: connect from unknown[101.99.81.141] Sep 28 16:12:18 mailserver postfix/smtpd[1117]: connect from unknown[101.99.81.141] Sep 28 16:12:27 mailserver postfix/smtpd[1118]: connect from unknown[101.99.81.141] Sep...	2020-09-30 01:19:07
62.234.80.115	attackbotsspam	$f2bV_matches	2020-09-30 00:57:36
173.249.54.66	attackspam	Invalid user admin from 173.249.54.66 port 42854	2020-09-30 01:39:27
178.16.174.0	attack	(sshd) Failed SSH login from 178.16.174.0 (FR/France/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-09-30 01:10:10
14.228.75.180	attack	1601325275 - 09/28/2020 22:34:35 Host: 14.228.75.180/14.228.75.180 Port: 445 TCP Blocked	2020-09-30 01:31:17
107.182.178.177	attack	Lines containing failures of 107.182.178.177 (max 1000) Sep 29 04:33:55 UTC__SANYALnet-Labs__cac12 sshd[25229]: Connection from 107.182.178.177 port 42028 on 64.137.176.96 port 22 Sep 29 04:33:56 UTC__SANYALnet-Labs__cac12 sshd[25229]: User r.r from 107.182.178.177.16clouds.com not allowed because not listed in AllowUsers Sep 29 04:33:56 UTC__SANYALnet-Labs__cac12 sshd[25229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.178.177.16clouds.com user=r.r Sep 29 04:33:59 UTC__SANYALnet-Labs__cac12 sshd[25229]: Failed password for invalid user r.r from 107.182.178.177 port 42028 ssh2 Sep 29 04:34:00 UTC__SANYALnet-Labs__cac12 sshd[25229]: Received disconnect from 107.182.178.177 port 42028:11: Bye Bye [preauth] Sep 29 04:34:00 UTC__SANYALnet-Labs__cac12 sshd[25229]: Disconnected from 107.182.178.177 port 42028 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=107.182.178.177	2020-09-30 01:15:38
154.86.2.141	attackbots	SIP/5060 Probe, BF, Hack -	2020-09-30 01:30:10

最近上报的IP列表

188.2.115.147	95.83.118.248	121.228.207.150	204.181.222.155
208.252.33.234	122.113.56.56	73.26.9.150	178.55.155.204
218.24.153.189	210.3.22.8	23.16.98.91	14.127.11.147
71.30.10.128	112.137.107.181	159.203.201.154	172.248.22.206
99.70.155.119	203.208.60.83	104.230.157.15	129.211.141.41