139.193.18.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	2019-07-08 x@x 2019-07-08 x@x 2019-07-08 x@x 2019-07-08 x@x 2019-07-08 21:24:50 dovecot_plain authenticator failed for (sella) [139.193.18.249]:63818: 535 Incorrect authentication data (set_id=mihail.chebachev) 2019-07-08 21:24:56 dovecot_login authenticator failed for (sella) [139.193.18.249]:63818: 535 Incorrect authentication data (set_id=mihail.chebachev) 2019-07-08 21:25:03 dovecot_plain authenticator failed for (sella) [139.193.18.249]:50953: 535 Incorrect authentication data (set_id=mihail.chebachev) 2019-07-08 21:25:05 dovecot_login authenticator failed for (sella) [139.193.18.249]:50953: 535 Incorrect authentication data (set_id=mihail.chebachev) 2019-07-08 x@x 2019-07-08 x@x 2019-07-08 x@x 2019-07-08 x@x 2019-07-08 21:25:20 dovecot_plain authenticator failed for (sella) [139.193.18.249]:51709: 535 Incorrect authentication data (set_id=mihail.chebachev) 2019-07-08 21:25:23 dovecot_login authenticator failed for (sella) [139.193.18.249]:51709: 535 Incorrect authe........ ------------------------------	2019-07-09 06:32:20

类型

评论内容

时间

attackspambots

2019-07-08 x@x
2019-07-08 x@x
2019-07-08 x@x
2019-07-08 x@x
2019-07-08 21:24:50 dovecot_plain authenticator failed for (sella) [139.193.18.249]:63818: 535 Incorrect authentication data (set_id=mihail.chebachev)
2019-07-08 21:24:56 dovecot_login authenticator failed for (sella) [139.193.18.249]:63818: 535 Incorrect authentication data (set_id=mihail.chebachev)
2019-07-08 21:25:03 dovecot_plain authenticator failed for (sella) [139.193.18.249]:50953: 535 Incorrect authentication data (set_id=mihail.chebachev)
2019-07-08 21:25:05 dovecot_login authenticator failed for (sella) [139.193.18.249]:50953: 535 Incorrect authentication data (set_id=mihail.chebachev)
2019-07-08 x@x
2019-07-08 x@x
2019-07-08 x@x
2019-07-08 x@x
2019-07-08 21:25:20 dovecot_plain authenticator failed for (sella) [139.193.18.249]:51709: 535 Incorrect authentication data (set_id=mihail.chebachev)
2019-07-08 21:25:23 dovecot_login authenticator failed for (sella) [139.193.18.249]:51709: 535 Incorrect authe........
------------------------------

2019-07-09 06:32:20

相同子网IP讨论:

IP	类型	评论内容	时间
139.193.183.30	attackspam	Feb 9 14:36:07 vmd38886 sshd\[12525\]: Invalid user tech from 139.193.183.30 port 57013 Feb 9 14:36:08 vmd38886 sshd\[12525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.193.183.30 Feb 9 14:36:10 vmd38886 sshd\[12525\]: Failed password for invalid user tech from 139.193.183.30 port 57013 ssh2	2020-02-09 23:34:43
139.193.184.23	attackbotsspam	2019-11-17 06:45:01 139.193.184.23 burfeindt@schlarmannvongeyso.de newshosting@mydomain.com dnsbl reject RCPT: 550 5.7.1 Service unavailable; client [139.193.184.23] blocked using zen.spamhaus.org	2019-11-19 08:37:18

类型

评论内容

时间

139.193.183.30

attackspam

Feb  9 14:36:07 vmd38886 sshd\[12525\]: Invalid user tech from 139.193.183.30 port 57013
Feb  9 14:36:08 vmd38886 sshd\[12525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.193.183.30
Feb  9 14:36:10 vmd38886 sshd\[12525\]: Failed password for invalid user tech from 139.193.183.30 port 57013 ssh2

2020-02-09 23:34:43

139.193.184.23

attackbotsspam

2019-11-17	06:45:01	139.193.184.23	burfeindt@schlarmannvongeyso.de	newshosting@mydomain.com		dnsbl	reject RCPT: 550 5.7.1 Service unavailable; client [139.193.184.23] blocked using zen.spamhaus.org

2019-11-19 08:37:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.193.18.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26167
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.193.18.249.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070802 1800 900 604800 86400

;; Query time: 5 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 09 06:32:14 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

249.18.193.139.in-addr.arpa domain name pointer fm-dyn-139-193-18-249.fast.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
249.18.193.139.in-addr.arpa	name = fm-dyn-139-193-18-249.fast.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
101.187.39.74	attackspam	Dec 19 19:39:22 gw1 sshd[24100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.187.39.74 Dec 19 19:39:24 gw1 sshd[24100]: Failed password for invalid user ansari from 101.187.39.74 port 57828 ssh2 ...	2019-12-19 23:03:30
94.177.189.145	attack	Dec 19 11:23:33 server sshd\[32021\]: Failed password for invalid user ubnt from 94.177.189.145 port 55162 ssh2 Dec 19 17:48:54 server sshd\[5088\]: Invalid user admin from 94.177.189.145 Dec 19 17:48:54 server sshd\[5088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.189.145 Dec 19 17:48:57 server sshd\[5088\]: Failed password for invalid user admin from 94.177.189.145 port 36902 ssh2 Dec 19 17:48:57 server sshd\[5112\]: Invalid user ubnt from 94.177.189.145 Dec 19 17:48:57 server sshd\[5112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.189.145 ...	2019-12-19 23:12:08
87.246.7.35	attackbots		2019-12-19 22:52:11
123.212.48.26	attackbots	Automatic report - Banned IP Access	2019-12-19 23:28:14
211.157.159.29	attackbotsspam	12/19/2019-09:38:52.714710 211.157.159.29 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-19 23:26:15
193.70.37.140	attack	Dec 19 04:34:14 web9 sshd\[6980\]: Invalid user user4 from 193.70.37.140 Dec 19 04:34:14 web9 sshd\[6980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.37.140 Dec 19 04:34:17 web9 sshd\[6980\]: Failed password for invalid user user4 from 193.70.37.140 port 40940 ssh2 Dec 19 04:39:40 web9 sshd\[7883\]: Invalid user haouas from 193.70.37.140 Dec 19 04:39:40 web9 sshd\[7883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.37.140	2019-12-19 22:48:45
115.73.117.58	attackspambots	Dec 19 15:38:52 grey postfix/smtpd\[15111\]: NOQUEUE: reject: RCPT from unknown\[115.73.117.58\]: 554 5.7.1 Service unavailable\; Client host \[115.73.117.58\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=115.73.117.58\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-19 23:25:48
186.250.232.116	attack	Dec 19 16:30:44 pkdns2 sshd\[30213\]: Invalid user radiusd from 186.250.232.116Dec 19 16:30:45 pkdns2 sshd\[30213\]: Failed password for invalid user radiusd from 186.250.232.116 port 39706 ssh2Dec 19 16:35:03 pkdns2 sshd\[30440\]: Invalid user rodrigo from 186.250.232.116Dec 19 16:35:05 pkdns2 sshd\[30440\]: Failed password for invalid user rodrigo from 186.250.232.116 port 49624 ssh2Dec 19 16:39:21 pkdns2 sshd\[30684\]: Invalid user paste from 186.250.232.116Dec 19 16:39:23 pkdns2 sshd\[30684\]: Failed password for invalid user paste from 186.250.232.116 port 59536 ssh2 ...	2019-12-19 23:02:48
176.100.60.240	attackbots	19.12.2019 15:39:23 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-12-19 23:03:52
138.197.89.186	attackspam	Dec 19 16:05:42 sd-53420 sshd\[17164\]: Invalid user cisco from 138.197.89.186 Dec 19 16:05:42 sd-53420 sshd\[17164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 Dec 19 16:05:45 sd-53420 sshd\[17164\]: Failed password for invalid user cisco from 138.197.89.186 port 53852 ssh2 Dec 19 16:11:02 sd-53420 sshd\[19106\]: Invalid user zimitravich from 138.197.89.186 Dec 19 16:11:02 sd-53420 sshd\[19106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 ...	2019-12-19 23:25:12
78.30.198.41	attackbotsspam	[portscan] Port scan	2019-12-19 23:04:20
195.218.174.50	attackbots	Registration form abuse	2019-12-19 23:17:32
140.207.46.136	attackbots	Bruteforce on SSH Honeypot	2019-12-19 22:53:16
195.154.181.120	attack	195.154.181.120 was recorded 29 times by 29 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 29, 55, 55	2019-12-19 23:14:18
81.218.136.69	attackbotsspam	Dec 19 15:39:28 grey postfix/smtpd\[23398\]: NOQUEUE: reject: RCPT from bzq-218-136-69.cablep.bezeqint.net\[81.218.136.69\]: 554 5.7.1 Service unavailable\; Client host \[81.218.136.69\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?81.218.136.69\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-19 23:00:02

最近上报的IP列表

178.87.106.44	45.82.153.5	36.225.12.176	41.235.220.7
179.127.147.65	77.221.12.111	182.116.223.128	177.73.193.186
190.202.223.135	156.223.171.80	81.178.234.198	70.91.117.134
178.186.85.42	178.221.54.120	35.243.166.187	187.85.210.210
91.205.146.25	77.221.66.105	1.64.103.79	185.36.171.17