139.255.13.210

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.255.13.209	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=13179)(10120855)	2020-10-12 21:11:29
139.255.13.209	attack	TCP (SYN) 139.255.13.209:1655 -> port 23, len 40	2020-10-12 12:41:13
139.255.134.111	attackbots	2019-02-07 02:50:00 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14607 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-07 02:50:15 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14726 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-02-07 02:50:24 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14788 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-05 00:48:55

类型

评论内容

时间

139.255.13.209

attackbots

[portscan] tcp/23 [TELNET]
*(RWIN=13179)(10120855)

2020-10-12 21:11:29

139.255.13.209

attack

 TCP (SYN) 139.255.13.209:1655 -> port 23, len 40

2020-10-12 12:41:13

139.255.134.111

attackbots

2019-02-07 02:50:00 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14607 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-07 02:50:15 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14726 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-02-07 02:50:24 H=\(ln-static-139-255-134-111.link.net.id\) \[139.255.134.111\]:14788 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...

2020-02-05 00:48:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.13.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28304
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.255.13.210.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 17:32:12 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

210.13.255.139.in-addr.arpa domain name pointer ln-static-139-255-13-210.link.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
210.13.255.139.in-addr.arpa	name = ln-static-139-255-13-210.link.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
62.234.127.234	attackbotsspam	Invalid user chris from 62.234.127.234 port 53794	2020-09-18 17:44:33
45.176.215.24	attackbots	Sep 17 18:50:15 mail.srvfarm.net postfix/smtpd[163729]: warning: unknown[45.176.215.24]: SASL PLAIN authentication failed: Sep 17 18:50:17 mail.srvfarm.net postfix/smtpd[163729]: lost connection after AUTH from unknown[45.176.215.24] Sep 17 18:50:36 mail.srvfarm.net postfix/smtps/smtpd[161661]: warning: unknown[45.176.215.24]: SASL PLAIN authentication failed: Sep 17 18:50:37 mail.srvfarm.net postfix/smtps/smtpd[161661]: lost connection after AUTH from unknown[45.176.215.24] Sep 17 18:55:52 mail.srvfarm.net postfix/smtpd[162891]: warning: unknown[45.176.215.24]: SASL PLAIN authentication failed:	2020-09-18 17:53:28
198.71.55.148	attackbots	Sep 17 16:21:05 cumulus sshd[24519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.71.55.148 user=r.r Sep 17 16:21:07 cumulus sshd[24519]: Failed password for r.r from 198.71.55.148 port 47092 ssh2 Sep 17 16:21:07 cumulus sshd[24519]: Received disconnect from 198.71.55.148 port 47092:11: Bye Bye [preauth] Sep 17 16:21:07 cumulus sshd[24519]: Disconnected from 198.71.55.148 port 47092 [preauth] Sep 17 19:18:32 cumulus sshd[10169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.71.55.148 user=r.r Sep 17 19:18:34 cumulus sshd[10169]: Failed password for r.r from 198.71.55.148 port 51700 ssh2 Sep 17 19:18:34 cumulus sshd[10169]: Received disconnect from 198.71.55.148 port 51700:11: Bye Bye [preauth] Sep 17 19:18:34 cumulus sshd[10169]: Disconnected from 198.71.55.148 port 51700 [preauth] Sep 17 19:33:52 cumulus sshd[11397]: Invalid user tekkhostnamecannon from 198.71.55.148 port 540........ -------------------------------	2020-09-18 17:34:04
177.53.110.229	attackbots	Sep 17 18:23:18 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[177.53.110.229]: SASL PLAIN authentication failed: Sep 17 18:23:18 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[177.53.110.229] Sep 17 18:25:01 mail.srvfarm.net postfix/smtps/smtpd[157126]: warning: unknown[177.53.110.229]: SASL PLAIN authentication failed: Sep 17 18:25:01 mail.srvfarm.net postfix/smtps/smtpd[157126]: lost connection after AUTH from unknown[177.53.110.229] Sep 17 18:30:34 mail.srvfarm.net postfix/smtpd[143206]: warning: unknown[177.53.110.229]: SASL PLAIN authentication failed:	2020-09-18 17:59:52
49.235.247.75	attackbotsspam	DATE:2020-09-18 09:12:58,IP:49.235.247.75,MATCHES:10,PORT:ssh	2020-09-18 17:52:34
82.199.58.43	attackspam	2020-09-17T12:57:06.259624mail.thespaminator.com sshd[5016]: Invalid user admin from 82.199.58.43 port 46737 2020-09-17T12:57:08.918648mail.thespaminator.com sshd[5016]: Failed password for invalid user admin from 82.199.58.43 port 46737 ssh2 ...	2020-09-18 17:33:18
114.69.249.194	attack	Sep 18 07:51:48 IngegnereFirenze sshd[32576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.69.249.194 user=root ...	2020-09-18 17:29:06
140.238.41.3	attackbotsspam	SSH login attempts brute force.	2020-09-18 17:36:35
41.139.10.210	attackspam	Sep 17 18:45:19 mail.srvfarm.net postfix/smtpd[157365]: warning: unknown[41.139.10.210]: SASL PLAIN authentication failed: Sep 17 18:45:19 mail.srvfarm.net postfix/smtpd[157365]: lost connection after AUTH from unknown[41.139.10.210] Sep 17 18:46:54 mail.srvfarm.net postfix/smtpd[163728]: warning: unknown[41.139.10.210]: SASL PLAIN authentication failed: Sep 17 18:46:54 mail.srvfarm.net postfix/smtpd[163728]: lost connection after AUTH from unknown[41.139.10.210] Sep 17 18:49:46 mail.srvfarm.net postfix/smtps/smtpd[159171]: lost connection after CONNECT from unknown[41.139.10.210]	2020-09-18 17:54:30
15.228.42.106	attackspam	Web scraping detected	2020-09-18 17:43:17
54.37.156.188	attackspambots	Sep 18 07:59:24 plex-server sshd[1285393]: Failed password for root from 54.37.156.188 port 54100 ssh2 Sep 18 08:03:07 plex-server sshd[1286921]: Invalid user admin from 54.37.156.188 port 59276 Sep 18 08:03:07 plex-server sshd[1286921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.188 Sep 18 08:03:07 plex-server sshd[1286921]: Invalid user admin from 54.37.156.188 port 59276 Sep 18 08:03:09 plex-server sshd[1286921]: Failed password for invalid user admin from 54.37.156.188 port 59276 ssh2 ...	2020-09-18 17:46:28
98.142.139.4	attack	98.142.139.4 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 18 05:08:23 server2 sshd[17415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.36.34 user=root Sep 18 05:03:37 server2 sshd[14872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.6.149.195 user=root Sep 18 05:03:39 server2 sshd[14872]: Failed password for root from 203.6.149.195 port 51186 ssh2 Sep 18 05:08:12 server2 sshd[17375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.107.34.178 user=root Sep 18 05:08:13 server2 sshd[17375]: Failed password for root from 179.107.34.178 port 3982 ssh2 Sep 18 05:08:06 server2 sshd[17051]: Failed password for root from 98.142.139.4 port 39104 ssh2 IP Addresses Blocked: 103.80.36.34 (-) 203.6.149.195 (ID/Indonesia/-) 179.107.34.178 (BR/Brazil/-)	2020-09-18 17:36:54
58.199.160.156	attackbotsspam	Sep 18 04:16:44 mail sshd\[59947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.199.160.156 user=root ...	2020-09-18 17:35:41
168.63.137.51	attack	168.63.137.51 (HK/Hong Kong/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 18 03:34:31 server2 sshd[25906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.63.137.51 user=root Sep 18 03:34:31 server2 sshd[25904]: Failed password for root from 178.32.221.225 port 50780 ssh2 Sep 18 03:34:33 server2 sshd[25906]: Failed password for root from 168.63.137.51 port 1664 ssh2 Sep 18 03:34:11 server2 sshd[25815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.76.93 user=root Sep 18 03:34:13 server2 sshd[25815]: Failed password for root from 157.245.76.93 port 60238 ssh2 Sep 18 03:38:03 server2 sshd[29979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 user=root IP Addresses Blocked:	2020-09-18 17:32:39
60.10.193.68	attackbotsspam	Sep 18 02:17:55 pixelmemory sshd[3088270]: Failed password for root from 60.10.193.68 port 45182 ssh2 Sep 18 02:22:56 pixelmemory sshd[3089797]: Invalid user tomcat from 60.10.193.68 port 54194 Sep 18 02:22:56 pixelmemory sshd[3089797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.10.193.68 Sep 18 02:22:56 pixelmemory sshd[3089797]: Invalid user tomcat from 60.10.193.68 port 54194 Sep 18 02:22:58 pixelmemory sshd[3089797]: Failed password for invalid user tomcat from 60.10.193.68 port 54194 ssh2 ...	2020-09-18 17:34:22

最近上报的IP列表

156.96.187.67	120.204.157.95	143.85.156.47	4.200.121.53
252.24.26.236	42.177.204.18	171.31.224.145	100.216.159.84
88.212.166.23	236.27.144.105	200.160.208.68	170.130.213.108
250.145.219.219	228.238.51.122	168.155.161.73	159.21.12.179
77.195.238.220	207.130.188.230	19.93.190.6	235.168.132.230