139.255.13.209

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	[portscan] tcp/23 [TELNET] *(RWIN=13179)(10120855)	2020-10-12 21:11:29
attack	TCP (SYN) 139.255.13.209:1655 -> port 23, len 40	2020-10-12 12:41:13

相同子网IP讨论:

IP	类型	评论内容	时间
139.255.134.111	attackbots	2019-02-07 02:50:00 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14607 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-07 02:50:15 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14726 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-07 02:50:24 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14788 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-05 00:48:55

类型

评论内容

时间

139.255.134.111

attackbots

2019-02-07 02:50:00 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14607 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-07 02:50:15 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14726 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-07 02:50:24 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14788 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...

2020-02-05 00:48:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.13.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.13.209.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101101 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 12 12:41:10 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

209.13.255.139.in-addr.arpa domain name pointer ln-static-139-255-13-209.link.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
209.13.255.139.in-addr.arpa	name = ln-static-139-255-13-209.link.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
35.238.45.38	attackbotsspam	tcp 6379	2019-11-22 00:02:22
218.92.0.208	attackbots	2019-11-21T15:28:01.415651abusebot-7.cloudsearch.cf sshd\[30142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root	2019-11-21 23:41:30
124.156.50.52	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-21 23:45:47
123.235.3.189	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 00:13:08
201.205.137.173	attackbots	Nov 20 20:26:41 server2 sshd[5624]: Address 201.205.137.173 maps to mail.gruposervica.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 20 20:26:41 server2 sshd[5624]: Invalid user watcher from 201.205.137.173 Nov 20 20:26:41 server2 sshd[5624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.205.137.173 Nov 20 20:26:43 server2 sshd[5624]: Failed password for invalid user watcher from 201.205.137.173 port 53552 ssh2 Nov 20 20:26:43 server2 sshd[5624]: Received disconnect from 201.205.137.173: 11: Bye Bye [preauth] Nov 20 20:39:03 server2 sshd[6628]: Address 201.205.137.173 maps to mail.gruposervica.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 20 20:39:03 server2 sshd[6628]: Invalid user test from 201.205.137.173 Nov 20 20:39:03 server2 sshd[6628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.205.137.173 ........ ----------------------------------------	2019-11-22 00:12:03
222.186.180.41	attackbotsspam	Nov 21 17:04:31 dev0-dcde-rnet sshd[17387]: Failed password for root from 222.186.180.41 port 34934 ssh2 Nov 21 17:04:44 dev0-dcde-rnet sshd[17387]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 34934 ssh2 [preauth] Nov 21 17:04:51 dev0-dcde-rnet sshd[17389]: Failed password for root from 222.186.180.41 port 22020 ssh2	2019-11-22 00:08:19
119.115.130.234	attackspambots	Nov 21 15:55:01 srv206 sshd[12420]: Invalid user sh3ll from 119.115.130.234 ...	2019-11-22 00:17:28
218.104.204.101	attack	Brute force attempt	2019-11-21 23:43:10
187.167.67.187	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-21 23:38:19
222.186.175.220	attackbots	Nov 21 16:38:27 mail sshd[16193]: Failed password for root from 222.186.175.220 port 6958 ssh2 Nov 21 16:38:31 mail sshd[16193]: Failed password for root from 222.186.175.220 port 6958 ssh2 Nov 21 16:38:36 mail sshd[16193]: Failed password for root from 222.186.175.220 port 6958 ssh2 Nov 21 16:38:39 mail sshd[16193]: Failed password for root from 222.186.175.220 port 6958 ssh2	2019-11-21 23:42:47
196.245.175.199	attack	Automatic report - Banned IP Access	2019-11-21 23:47:02
95.123.171.191	attackbotsspam	Repeated brute force against a port	2019-11-22 00:05:33
216.218.206.94	attackbotsspam	3389BruteforceFW22	2019-11-21 23:49:50
220.92.16.82	attackspambots	Automatic report - Banned IP Access	2019-11-22 00:11:02
51.144.160.217	attack	Port Scan detected from 51.144.160.217 (NL/Netherlands/-). 4 hits in the last 60 seconds	2019-11-22 00:09:32

最近上报的IP列表

139.138.65.250	152.136.90.84	124.104.208.34	188.166.91.52
210.82.30.186	188.255.131.102	142.93.237.57	188.166.255.77
47.93.235.139	167.99.235.21	85.97.197.121	115.249.50.242
69.94.46.58	191.239.246.25	139.155.34.181	5.3.69.43
3.22.223.189	88.249.36.10	172.217.10.142	59.50.17.5