139.255.52.203

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-07-09 06:35:35 1hkhqo-0006V5-70 SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:39249 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:46 1hkhqz-0006VG-2e SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:36139 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:54 1hkhr7-0006VN-HF SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:48745 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 00:47:16
attackbots	Mail sent to address hacked/leaked from Last.fm	2019-07-15 14:19:36

类型

评论内容

时间

attack

2019-07-09 06:35:35 1hkhqo-0006V5-70 SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:39249 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-09 06:35:46 1hkhqz-0006VG-2e SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:36139 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-09 06:35:54 1hkhr7-0006VN-HF SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:48745 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-02-05 00:47:16

attackbots

Mail sent to address hacked/leaked from Last.fm

2019-07-15 14:19:36

相同子网IP讨论:

IP	类型	评论内容	时间
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-05 08:03:32
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-05 00:25:34
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-04 16:08:24
139.255.52.218	attackspam	Unauthorized connection attempt from IP address 139.255.52.218 on Port 445(SMB)	2020-02-08 04:49:50
139.255.52.98	attackbotsspam	Unauthorized connection attempt from IP address 139.255.52.98 on Port 445(SMB)	2020-01-17 23:50:34
139.255.52.68	attackbots	445/tcp [2019-07-30]1pkt	2019-07-31 03:27:38
139.255.52.218	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 00:20:46,229 INFO [shellcode_manager] (139.255.52.218) no match, writing hexdump (7edbc2fd47b865f111efd673b193f6b5 :2164185) - MS17010 (EternalBlue)	2019-07-06 13:28:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.52.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9219
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.52.203.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 14:19:30 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

203.52.255.139.in-addr.arpa domain name pointer ln-static-139-255-52-203.link.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
203.52.255.139.in-addr.arpa	name = ln-static-139-255-52-203.link.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.114.249.132	attackbotsspam	2019-07-09T02:42:01.585607wiz-ks3 sshd[23214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-167-114-249.eu user=root 2019-07-09T02:42:03.108637wiz-ks3 sshd[23214]: Failed password for root from 167.114.249.132 port 48936 ssh2 2019-07-09T02:42:08.637108wiz-ks3 sshd[23217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-167-114-249.eu user=root 2019-07-09T02:42:10.455982wiz-ks3 sshd[23217]: Failed password for root from 167.114.249.132 port 36314 ssh2 2019-07-09T02:42:15.823507wiz-ks3 sshd[23225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-167-114-249.eu user=root 2019-07-09T02:42:17.938235wiz-ks3 sshd[23225]: Failed password for root from 167.114.249.132 port 51954 ssh2 2019-07-09T02:42:23.117372wiz-ks3 sshd[23227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-167-114-249.eu user=root 2019-07-09T02:42:25.32782	2019-08-06 09:53:53
153.36.236.46	attackbots	2019-07-27T04:35:21.170715wiz-ks3 sshd[13325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.46 user=root 2019-07-27T04:35:23.089369wiz-ks3 sshd[13325]: Failed password for root from 153.36.236.46 port 49557 ssh2 2019-07-27T04:35:25.631564wiz-ks3 sshd[13325]: Failed password for root from 153.36.236.46 port 49557 ssh2 2019-07-27T04:35:21.170715wiz-ks3 sshd[13325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.46 user=root 2019-07-27T04:35:23.089369wiz-ks3 sshd[13325]: Failed password for root from 153.36.236.46 port 49557 ssh2 2019-07-27T04:35:25.631564wiz-ks3 sshd[13325]: Failed password for root from 153.36.236.46 port 49557 ssh2 2019-07-27T04:35:21.170715wiz-ks3 sshd[13325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.46 user=root 2019-07-27T04:35:23.089369wiz-ks3 sshd[13325]: Failed password for root from 153.36.236.46 port 49557 ssh2 2019-07-2	2019-08-06 10:14:37
159.65.12.183	attackspam	Aug 6 03:36:57 dedicated sshd[17555]: Invalid user elizabet from 159.65.12.183 port 57102	2019-08-06 09:55:12
54.39.145.59	attackspambots	Aug 6 03:47:20 bouncer sshd\[2878\]: Invalid user shoo from 54.39.145.59 port 53550 Aug 6 03:47:20 bouncer sshd\[2878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.145.59 Aug 6 03:47:22 bouncer sshd\[2878\]: Failed password for invalid user shoo from 54.39.145.59 port 53550 ssh2 ...	2019-08-06 10:05:37
183.6.43.104	attack	Aug 6 05:09:47 pkdns2 sshd\[24997\]: Invalid user prova from 183.6.43.104Aug 6 05:09:48 pkdns2 sshd\[24997\]: Failed password for invalid user prova from 183.6.43.104 port 20269 ssh2Aug 6 05:10:51 pkdns2 sshd\[25081\]: Invalid user karim from 183.6.43.104Aug 6 05:10:52 pkdns2 sshd\[25081\]: Failed password for invalid user karim from 183.6.43.104 port 33659 ssh2Aug 6 05:11:56 pkdns2 sshd\[25117\]: Invalid user jdeleon from 183.6.43.104Aug 6 05:11:59 pkdns2 sshd\[25117\]: Failed password for invalid user jdeleon from 183.6.43.104 port 47119 ssh2 ...	2019-08-06 10:19:43
128.199.168.51	attackspam	Aug 6 01:11:35 vtv3 sshd\[2007\]: Invalid user password from 128.199.168.51 port 39118 Aug 6 01:11:35 vtv3 sshd\[2007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.168.51 Aug 6 01:11:37 vtv3 sshd\[2007\]: Failed password for invalid user password from 128.199.168.51 port 39118 ssh2 Aug 6 01:16:42 vtv3 sshd\[4468\]: Invalid user panda from 128.199.168.51 port 47138 Aug 6 01:16:42 vtv3 sshd\[4468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.168.51 Aug 6 01:31:23 vtv3 sshd\[11490\]: Invalid user nhlonipho from 128.199.168.51 port 41274 Aug 6 01:31:23 vtv3 sshd\[11490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.168.51 Aug 6 01:31:25 vtv3 sshd\[11490\]: Failed password for invalid user nhlonipho from 128.199.168.51 port 41274 ssh2 Aug 6 01:36:28 vtv3 sshd\[14281\]: Invalid user serv_war from 128.199.168.51 port 48638 Aug 6 01:36:28 vtv3	2019-08-06 10:08:35
112.85.42.94	attack	Aug 5 21:34:26 ny01 sshd[25721]: Failed password for root from 112.85.42.94 port 60747 ssh2 Aug 5 21:36:15 ny01 sshd[25862]: Failed password for root from 112.85.42.94 port 57240 ssh2	2019-08-06 09:50:57
102.143.194.107	attackbotsspam	C2,WP GET /wp-login.php	2019-08-06 09:58:41
213.183.101.89	attackbotsspam	Aug 6 03:32:25 lnxweb61 sshd[455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.183.101.89 Aug 6 03:32:26 lnxweb61 sshd[455]: Failed password for invalid user ana from 213.183.101.89 port 34306 ssh2 Aug 6 03:37:12 lnxweb61 sshd[4711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.183.101.89	2019-08-06 09:46:46
222.171.82.169	attack	2019-08-06T01:54:32.016317abusebot-2.cloudsearch.cf sshd\[6015\]: Invalid user logstash from 222.171.82.169 port 52827	2019-08-06 10:10:43
177.223.103.244	attackbotsspam	2019-07-08T09:46:54.019653wiz-ks3 sshd[16475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.223.103.244.txfiber.net.br user=root 2019-07-08T09:46:55.936365wiz-ks3 sshd[16475]: Failed password for root from 177.223.103.244 port 56451 ssh2 2019-07-08T09:46:57.846696wiz-ks3 sshd[16475]: Failed password for root from 177.223.103.244 port 56451 ssh2 2019-07-08T09:46:54.019653wiz-ks3 sshd[16475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.223.103.244.txfiber.net.br user=root 2019-07-08T09:46:55.936365wiz-ks3 sshd[16475]: Failed password for root from 177.223.103.244 port 56451 ssh2 2019-07-08T09:46:57.846696wiz-ks3 sshd[16475]: Failed password for root from 177.223.103.244 port 56451 ssh2 2019-07-08T09:46:54.019653wiz-ks3 sshd[16475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.223.103.244.txfiber.net.br user=root 2019-07-08T09:46:55.936365wiz-ks3 sshd[16475]: Failed pas	2019-08-06 09:43:29
178.140.194.209	attackspam	2019-07-29T10:48:04.248478wiz-ks3 sshd[18122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-178-140-194-209.ip.moscow.rt.ru user=root 2019-07-29T10:48:05.980798wiz-ks3 sshd[18122]: Failed password for root from 178.140.194.209 port 51164 ssh2 2019-07-29T10:48:08.394033wiz-ks3 sshd[18122]: Failed password for root from 178.140.194.209 port 51164 ssh2 2019-07-29T10:48:04.248478wiz-ks3 sshd[18122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-178-140-194-209.ip.moscow.rt.ru user=root 2019-07-29T10:48:05.980798wiz-ks3 sshd[18122]: Failed password for root from 178.140.194.209 port 51164 ssh2 2019-07-29T10:48:08.394033wiz-ks3 sshd[18122]: Failed password for root from 178.140.194.209 port 51164 ssh2 2019-07-29T10:48:04.248478wiz-ks3 sshd[18122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-178-140-194-209.ip.moscow.rt.ru user=root 2019-07-29T10:48:05.9807	2019-08-06 09:42:55
129.28.148.242	attackbots	Aug 6 03:33:41 v22018076622670303 sshd\[3905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.148.242 user=root Aug 6 03:33:43 v22018076622670303 sshd\[3905\]: Failed password for root from 129.28.148.242 port 34686 ssh2 Aug 6 03:37:25 v22018076622670303 sshd\[3941\]: Invalid user arch from 129.28.148.242 port 43006 Aug 6 03:37:25 v22018076622670303 sshd\[3941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.148.242 ...	2019-08-06 09:38:54
180.76.15.146	attackspambots	Automatic report - Banned IP Access	2019-08-06 09:41:36
111.231.87.233	attackbots	Aug 6 02:21:23 mail sshd\[24603\]: Failed password for invalid user ubuntu from 111.231.87.233 port 57360 ssh2 Aug 6 02:37:27 mail sshd\[24829\]: Invalid user ca from 111.231.87.233 port 43220 ...	2019-08-06 09:37:34

最近上报的IP列表

181.93.199.248	176.125.36.171	114.32.200.188	174.108.135.33
115.61.113.6	179.211.64.199	123.152.151.219	191.217.123.155
177.106.90.115	178.219.113.38	178.140.201.153	73.22.172.242
222.208.137.202	180.171.114.95	83.134.109.47	131.100.77.132
77.242.215.201	82.102.18.43	76.224.225.216	85.99.50.194