139.194.254.3 - IPInfo

基本信息:

城市(city): Medan

省份(region): North Sumatra

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.194.254.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28438
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.194.254.3.			IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051100 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 11 16:11:15 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

3.254.194.139.in-addr.arpa domain name pointer fm-dyn-139-194-254-3.fast.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.254.194.139.in-addr.arpa	name = fm-dyn-139-194-254-3.fast.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
2.87.209.136	attackbots	59354/udp [2020-05-10]1pkt	2020-05-11 05:20:32
113.85.40.127	attackbotsspam	23/tcp [2020-05-10]1pkt	2020-05-11 05:03:08
63.82.52.100	attackbotsspam	May 10 22:24:02 web01 postfix/smtpd[31769]: connect from doubt.durmakas.com[63.82.52.100] May 10 22:24:02 web01 policyd-spf[31822]: None; identhostnamey=helo; client-ip=63.82.52.100; helo=doubt.dilshantg.com; envelope-from=x@x May 10 22:24:02 web01 policyd-spf[31822]: Pass; identhostnamey=mailfrom; client-ip=63.82.52.100; helo=doubt.dilshantg.com; envelope-from=x@x May x@x May 10 22:24:03 web01 postfix/smtpd[31769]: disconnect from doubt.durmakas.com[63.82.52.100] May 10 22:25:47 web01 postfix/smtpd[31769]: connect from doubt.durmakas.com[63.82.52.100] May 10 22:25:47 web01 policyd-spf[31822]: None; identhostnamey=helo; client-ip=63.82.52.100; helo=doubt.dilshantg.com; envelope-from=x@x May 10 22:25:47 web01 policyd-spf[31822]: Pass; identhostnamey=mailfrom; client-ip=63.82.52.100; helo=doubt.dilshantg.com; envelope-from=x@x May x@x May 10 22:25:47 web01 postfix/smtpd[31769]: disconnect from doubt.durmakas.com[63.82.52.100] May 10 22:31:33 web01 postfix/smtpd[32255]: co........ -------------------------------	2020-05-11 05:25:16
78.217.177.232	attackspambots	May 10 23:10:50 host sshd[6904]: Invalid user ly from 78.217.177.232 port 50924 ...	2020-05-11 05:12:25
161.35.129.42	attackspam	May 10 23:26:00 master sshd[1608]: Failed password for invalid user admin from 161.35.129.42 port 43874 ssh2 May 10 23:26:10 master sshd[1610]: Failed password for root from 161.35.129.42 port 60732 ssh2 May 10 23:26:19 master sshd[1612]: Failed password for root from 161.35.129.42 port 58216 ssh2 May 10 23:26:28 master sshd[1614]: Failed password for invalid user user from 161.35.129.42 port 53810 ssh2 May 10 23:26:36 master sshd[1616]: Failed password for invalid user support from 161.35.129.42 port 49066 ssh2 May 10 23:26:45 master sshd[1618]: Failed password for invalid user usuario from 161.35.129.42 port 43182 ssh2 May 10 23:26:54 master sshd[1620]: Failed password for invalid user ubnt from 161.35.129.42 port 35236 ssh2 May 10 23:27:02 master sshd[1622]: Failed password for invalid user admin from 161.35.129.42 port 57206 ssh2 May 10 23:27:11 master sshd[1624]: Failed password for invalid user test from 161.35.129.42 port 50754 ssh2	2020-05-11 05:11:15
167.86.120.118	attackbots	May 10 22:56:32 home sshd[26426]: Failed password for root from 167.86.120.118 port 49982 ssh2 May 10 22:57:44 home sshd[26621]: Failed password for root from 167.86.120.118 port 53070 ssh2 ...	2020-05-11 05:16:39
124.95.128.163	attackspambots	SSH Brute-Force. Ports scanning.	2020-05-11 05:07:37
94.249.80.147	attackbotsspam	37215/tcp [2020-05-10]1pkt	2020-05-11 05:08:14
138.121.52.226	attack	May 10 23:12:46 host sshd[7872]: Invalid user bad from 138.121.52.226 port 4654 ...	2020-05-11 05:19:17
218.65.18.180	attack	445/tcp [2020-05-10]1pkt	2020-05-11 05:28:12
45.55.243.124	attack	May 10 22:32:40 MainVPS sshd[15748]: Invalid user user3 from 45.55.243.124 port 57336 May 10 22:32:40 MainVPS sshd[15748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 May 10 22:32:40 MainVPS sshd[15748]: Invalid user user3 from 45.55.243.124 port 57336 May 10 22:32:42 MainVPS sshd[15748]: Failed password for invalid user user3 from 45.55.243.124 port 57336 ssh2 May 10 22:36:21 MainVPS sshd[19042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 user=root May 10 22:36:23 MainVPS sshd[19042]: Failed password for root from 45.55.243.124 port 38454 ssh2 ...	2020-05-11 05:16:06
213.146.201.125	attackbots	22/tcp 22/tcp 22/tcp [2020-05-10]3pkt	2020-05-11 04:58:25
159.203.42.157	attack	May 10 22:48:36 meumeu sshd[20945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.42.157 May 10 22:48:38 meumeu sshd[20945]: Failed password for invalid user q3 from 159.203.42.157 port 59352 ssh2 May 10 22:52:41 meumeu sshd[21771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.42.157 ...	2020-05-11 05:07:10
162.243.138.228	attackspam	Connection by 162.243.138.228 on port: 2083 got caught by honeypot at 5/10/2020 9:36:34 PM	2020-05-11 05:03:59
36.22.110.140	attackbots	[SunMay1022:36:02.5203382020][:error][pid31488:tid47395494348544][client36.22.110.140:63480][client36.22.110.140]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"foreveryoungonline.ch"][uri"/wp-content/plugins/wp-testimonial-widget/readme.txt"][unique_id"XrhlsgYaf6dh0u3ETVz9NwAAAMo"][SunMay1022:36:09.3150362020][:error][pid26022:tid47395572291328][client36.22.110.140:63486][client36.22.110.140]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1	2020-05-11 05:28:43

最近上报的IP列表

83.219.60.169	172.98.67.8	176.98.21.183	181.192.89.83
136.169.210.217	144.25.42.69	223.1.46.171	216.27.230.210
186.174.205.156	102.165.35.121	77.91.212.41	194.87.205.63
178.176.174.7	61.54.175.213	63.40.117.6	151.162.181.160
248.246.116.42	26.198.180.252	203.86.235.183	103.151.228.54