139.255.52.68 - IPInfo

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT. First Media TBK

主机名(hostname): unknown

机构(organization): Linknet ASN

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	445/tcp [2019-07-30]1pkt	2019-07-31 03:27:38

相同子网IP讨论:

IP	类型	评论内容	时间
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-05 08:03:32
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-05 00:25:34
139.255.52.58	attackbotsspam	445/tcp [2020-10-03]1pkt	2020-10-04 16:08:24
139.255.52.218	attackspam	Unauthorized connection attempt from IP address 139.255.52.218 on Port 445(SMB)	2020-02-08 04:49:50
139.255.52.203	attack	2019-07-09 06:35:35 1hkhqo-0006V5-70 SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:39249 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:46 1hkhqz-0006VG-2e SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:36139 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:54 1hkhr7-0006VN-HF SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:48745 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 00:47:16
139.255.52.98	attackbotsspam	Unauthorized connection attempt from IP address 139.255.52.98 on Port 445(SMB)	2020-01-17 23:50:34
139.255.52.203	attackbots	Mail sent to address hacked/leaked from Last.fm	2019-07-15 14:19:36
139.255.52.218	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 00:20:46,229 INFO [shellcode_manager] (139.255.52.218) no match, writing hexdump (7edbc2fd47b865f111efd673b193f6b5 :2164185) - MS17010 (EternalBlue)	2019-07-06 13:28:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.52.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34982
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.52.68.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073002 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 03:27:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

68.52.255.139.in-addr.arpa domain name pointer ln-static-139-255-52-68.link.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
68.52.255.139.in-addr.arpa	name = ln-static-139-255-52-68.link.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
194.150.235.195	attack	Sep 22 21:09:39 web01.agentur-b-2.de postfix/smtpd[1294058]: NOQUEUE: reject: RCPT from unknown[194.150.235.195]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo= Sep 22 21:10:40 web01.agentur-b-2.de postfix/smtpd[1297645]: NOQUEUE: reject: RCPT from unknown[194.150.235.195]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo= Sep 22 21:11:39 web01.agentur-b-2.de postfix/smtpd[1315478]: NOQUEUE: reject: RCPT from unknown[194.150.235.195]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo= Sep 22 21:12:39 web01.agentur-b-2.de postfix/smtpd[1315478]: NOQUEUE: reject: RCPT from unknown[194.150.235.195]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP h	2020-09-23 04:07:25
119.28.21.55	attack	Sep 22 18:50:21 vps sshd[31820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.21.55 Sep 22 18:50:23 vps sshd[31820]: Failed password for invalid user cs from 119.28.21.55 port 51582 ssh2 Sep 22 18:53:34 vps sshd[31971]: Failed password for root from 119.28.21.55 port 57054 ssh2 ...	2020-09-23 03:41:29
119.45.48.108	attack	2020-09-22T22:10:54.834520ollin.zadara.org sshd[1012811]: Invalid user wh from 119.45.48.108 port 37428 2020-09-22T22:10:57.441192ollin.zadara.org sshd[1012811]: Failed password for invalid user wh from 119.45.48.108 port 37428 ssh2 ...	2020-09-23 03:51:30
200.118.57.190	attack	Sep 22 19:13:39 ns382633 sshd\[5926\]: Invalid user teamspeak from 200.118.57.190 port 33070 Sep 22 19:13:39 ns382633 sshd\[5926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.118.57.190 Sep 22 19:13:41 ns382633 sshd\[5926\]: Failed password for invalid user teamspeak from 200.118.57.190 port 33070 ssh2 Sep 22 19:22:37 ns382633 sshd\[7929\]: Invalid user miles from 200.118.57.190 port 58274 Sep 22 19:22:37 ns382633 sshd\[7929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.118.57.190	2020-09-23 03:59:52
187.87.2.129	attack	Sep 22 18:53:56 mail.srvfarm.net postfix/smtps/smtpd[3673006]: warning: 187-87-2-129.provedorm4net.com.br[187.87.2.129]: SASL PLAIN authentication failed: Sep 22 18:53:57 mail.srvfarm.net postfix/smtps/smtpd[3673006]: lost connection after AUTH from 187-87-2-129.provedorm4net.com.br[187.87.2.129] Sep 22 18:56:38 mail.srvfarm.net postfix/smtpd[3676425]: warning: 187-87-2-129.provedorm4net.com.br[187.87.2.129]: SASL PLAIN authentication failed: Sep 22 18:56:39 mail.srvfarm.net postfix/smtpd[3676425]: lost connection after AUTH from 187-87-2-129.provedorm4net.com.br[187.87.2.129] Sep 22 19:01:13 mail.srvfarm.net postfix/smtpd[3678320]: warning: 187-87-2-129.provedorm4net.com.br[187.87.2.129]: SASL PLAIN authentication failed:	2020-09-23 04:09:15
187.112.20.37	attackbotsspam	1600794352 - 09/22/2020 19:05:52 Host: 187.112.20.37/187.112.20.37 Port: 445 TCP Blocked	2020-09-23 03:45:30
103.145.13.21	attackbots	firewall-block, port(s): 5070/udp	2020-09-23 03:42:15
106.51.84.151	attackbots	Lines containing failures of 106.51.84.151 Sep 22 16:39:01 kopano sshd[29449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.84.151 user=r.r Sep 22 16:39:03 kopano sshd[29449]: Failed password for r.r from 106.51.84.151 port 34080 ssh2 Sep 22 16:39:03 kopano sshd[29449]: Received disconnect from 106.51.84.151 port 34080:11: Bye Bye [preauth] Sep 22 16:39:03 kopano sshd[29449]: Disconnected from authenticating user r.r 106.51.84.151 port 34080 [preauth] Sep 22 16:43:40 kopano sshd[29709]: Invalid user informix from 106.51.84.151 port 46044 Sep 22 16:43:40 kopano sshd[29709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.84.151 Sep 22 16:43:42 kopano sshd[29709]: Failed password for invalid user informix from 106.51.84.151 port 46044 ssh2 Sep 22 16:43:42 kopano sshd[29709]: Received disconnect from 106.51.84.151 port 46044:11: Bye Bye [preauth] Sep 22 16:43:42 kopano sshd[297........ ------------------------------	2020-09-23 04:18:43
190.156.231.245	attackbots	2 SSH login attempts.	2020-09-23 03:42:53
91.225.117.19	attack	Brute-force attempt banned	2020-09-23 03:58:19
222.186.175.217	attackspam	2020-09-22T22:34:55.051799lavrinenko.info sshd[23042]: Failed password for root from 222.186.175.217 port 35534 ssh2 2020-09-22T22:35:00.018285lavrinenko.info sshd[23042]: Failed password for root from 222.186.175.217 port 35534 ssh2 2020-09-22T22:35:05.808388lavrinenko.info sshd[23042]: Failed password for root from 222.186.175.217 port 35534 ssh2 2020-09-22T22:35:10.453369lavrinenko.info sshd[23042]: Failed password for root from 222.186.175.217 port 35534 ssh2 2020-09-22T22:35:14.156862lavrinenko.info sshd[23042]: Failed password for root from 222.186.175.217 port 35534 ssh2 ...	2020-09-23 03:41:01
2002:b06f:ad0c::b06f:ad0c	attack	Sep 22 21:07:01 web01.agentur-b-2.de postfix/smtpd[1297645]: warning: unknown[2002:b06f:ad0c::b06f:ad0c]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 22 21:07:01 web01.agentur-b-2.de postfix/smtpd[1297645]: lost connection after AUTH from unknown[2002:b06f:ad0c::b06f:ad0c] Sep 22 21:10:24 web01.agentur-b-2.de postfix/smtpd[1296295]: warning: unknown[2002:b06f:ad0c::b06f:ad0c]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 22 21:10:24 web01.agentur-b-2.de postfix/smtpd[1296295]: lost connection after AUTH from unknown[2002:b06f:ad0c::b06f:ad0c] Sep 22 21:15:07 web01.agentur-b-2.de postfix/smtpd[1297645]: warning: unknown[2002:b06f:ad0c::b06f:ad0c]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-23 04:16:25
62.210.194.9	attackbots	Sep 22 21:13:03 mail.srvfarm.net postfix/smtpd[3718511]: lost connection after STARTTLS from r9.news.eu.rvca.com[62.210.194.9] Sep 22 21:14:38 mail.srvfarm.net postfix/smtpd[3736887]: lost connection after STARTTLS from r9.news.eu.rvca.com[62.210.194.9] Sep 22 21:15:07 mail.srvfarm.net postfix/smtpd[3737017]: lost connection after STARTTLS from r9.news.eu.rvca.com[62.210.194.9] Sep 22 21:17:17 mail.srvfarm.net postfix/smtpd[3736887]: lost connection after STARTTLS from r9.news.eu.rvca.com[62.210.194.9] Sep 22 21:19:15 mail.srvfarm.net postfix/smtpd[3737016]: lost connection after STARTTLS from r9.news.eu.rvca.com[62.210.194.9]	2020-09-23 04:13:58
87.170.34.23	attack	Sep 22 19:05:31 host1 sshd[48799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.170.34.23 user=mysql Sep 22 19:05:33 host1 sshd[48799]: Failed password for mysql from 87.170.34.23 port 34118 ssh2 ...	2020-09-23 04:18:12
167.114.203.73	attack	Sep 22 17:31:19 email sshd\[8357\]: Invalid user ubuntu from 167.114.203.73 Sep 22 17:31:19 email sshd\[8357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.203.73 Sep 22 17:31:21 email sshd\[8357\]: Failed password for invalid user ubuntu from 167.114.203.73 port 43652 ssh2 Sep 22 17:34:54 email sshd\[9042\]: Invalid user ubuntu from 167.114.203.73 Sep 22 17:34:54 email sshd\[9042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.203.73 ...	2020-09-23 03:46:50

最近上报的IP列表

212.35.133.79	62.210.148.238	206.213.217.204	106.210.254.102
160.20.109.182	116.29.237.210	171.65.43.106	35.195.102.251
99.144.100.155	109.76.174.72	217.48.44.33	47.198.224.90
95.55.16.93	106.172.128.202	114.216.185.245	223.116.67.46
90.230.58.219	91.43.89.134	117.10.164.106	113.87.47.85

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表