144.139.20.252

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Australia

运营商(isp): Telstra Internet

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Honeypot attack, port: 81, PTR: koo2293696.lnk.telstra.net.	2019-12-30 22:05:06
attackspam	Automatic report - Port Scan Attack	2019-10-31 17:17:01

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.139.20.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47193
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;144.139.20.252.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103100 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 17:16:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

252.20.139.144.in-addr.arpa domain name pointer koo2293696.lnk.telstra.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.20.139.144.in-addr.arpa	name = koo2293696.lnk.telstra.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
109.210.129.110	attack	DATE:2020-07-28 05:52:15, IP:109.210.129.110, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-07-28 17:05:57
14.98.157.126	attack	14.98.157.126 - - [28/Jul/2020:09:49:46 +0200] "POST /wp-login.php HTTP/1.1" 200 3434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-28 17:07:00
139.59.70.255	attack	Jul 28 11:07:44 theomazars sshd[13368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.70.255 user=root Jul 28 11:07:46 theomazars sshd[13368]: Failed password for root from 139.59.70.255 port 39544 ssh2	2020-07-28 17:24:56
47.97.83.145	attackspam	Jul 28 07:52:23 lukav-desktop sshd\[22112\]: Invalid user terrariaserver from 47.97.83.145 Jul 28 07:52:23 lukav-desktop sshd\[22112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.97.83.145 Jul 28 07:52:25 lukav-desktop sshd\[22112\]: Failed password for invalid user terrariaserver from 47.97.83.145 port 59844 ssh2 Jul 28 07:54:26 lukav-desktop sshd\[22152\]: Invalid user zhangyao from 47.97.83.145 Jul 28 07:54:26 lukav-desktop sshd\[22152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.97.83.145	2020-07-28 17:21:48
120.92.149.231	attack	Jul 28 05:46:27 eventyay sshd[14151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.149.231 Jul 28 05:46:29 eventyay sshd[14151]: Failed password for invalid user sehee from 120.92.149.231 port 63862 ssh2 Jul 28 05:51:40 eventyay sshd[14243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.149.231 ...	2020-07-28 17:30:41
197.53.136.64	attack	DATE:2020-07-28 05:51:53, IP:197.53.136.64, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-07-28 17:12:45
172.82.239.22	attackbotsspam	Jul 28 08:56:48 mail.srvfarm.net postfix/smtpd[2422832]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 28 08:58:54 mail.srvfarm.net postfix/smtpd[2422830]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 28 08:59:58 mail.srvfarm.net postfix/smtpd[2422364]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 28 09:01:09 mail.srvfarm.net postfix/smtpd[2422825]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 28 09:02:16 mail.srvfarm.net postfix/smtpd[2438847]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22]	2020-07-28 17:45:46
61.133.232.252	attack	Jul 28 10:08:51 vserver sshd\[16140\]: Invalid user xuyb from 61.133.232.252Jul 28 10:08:54 vserver sshd\[16140\]: Failed password for invalid user xuyb from 61.133.232.252 port 35394 ssh2Jul 28 10:13:02 vserver sshd\[16232\]: Invalid user voronin from 61.133.232.252Jul 28 10:13:04 vserver sshd\[16232\]: Failed password for invalid user voronin from 61.133.232.252 port 45605 ssh2 ...	2020-07-28 17:13:17
138.36.201.20	attackbots	Jul 28 05:25:08 mail.srvfarm.net postfix/smtps/smtpd[2338002]: warning: unknown[138.36.201.20]: SASL PLAIN authentication failed: Jul 28 05:25:08 mail.srvfarm.net postfix/smtps/smtpd[2338002]: lost connection after AUTH from unknown[138.36.201.20] Jul 28 05:27:05 mail.srvfarm.net postfix/smtpd[2327643]: warning: unknown[138.36.201.20]: SASL PLAIN authentication failed: Jul 28 05:27:05 mail.srvfarm.net postfix/smtpd[2327643]: lost connection after AUTH from unknown[138.36.201.20] Jul 28 05:27:12 mail.srvfarm.net postfix/smtps/smtpd[2353459]: warning: unknown[138.36.201.20]: SASL PLAIN authentication failed:	2020-07-28 17:47:14
177.154.77.218	attackspambots	Jul 28 05:38:16 mail.srvfarm.net postfix/smtps/smtpd[2356781]: warning: unknown[177.154.77.218]: SASL PLAIN authentication failed: Jul 28 05:38:16 mail.srvfarm.net postfix/smtps/smtpd[2356781]: lost connection after AUTH from unknown[177.154.77.218] Jul 28 05:40:13 mail.srvfarm.net postfix/smtpd[2353403]: warning: unknown[177.154.77.218]: SASL PLAIN authentication failed: Jul 28 05:40:14 mail.srvfarm.net postfix/smtpd[2353403]: lost connection after AUTH from unknown[177.154.77.218] Jul 28 05:43:34 mail.srvfarm.net postfix/smtpd[2354259]: warning: unknown[177.154.77.218]: SASL PLAIN authentication failed:	2020-07-28 17:44:19
110.172.135.234	attackspam	Dovecot Invalid User Login Attempt.	2020-07-28 17:29:07
35.224.108.63	attackbotsspam	2020-07-28T11:28:18.986427mail.standpoint.com.ua sshd[4033]: Invalid user nisuser2 from 35.224.108.63 port 57148 2020-07-28T11:28:18.989125mail.standpoint.com.ua sshd[4033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.108.224.35.bc.googleusercontent.com 2020-07-28T11:28:18.986427mail.standpoint.com.ua sshd[4033]: Invalid user nisuser2 from 35.224.108.63 port 57148 2020-07-28T11:28:20.500528mail.standpoint.com.ua sshd[4033]: Failed password for invalid user nisuser2 from 35.224.108.63 port 57148 ssh2 2020-07-28T11:32:03.781474mail.standpoint.com.ua sshd[4912]: Invalid user weiwang from 35.224.108.63 port 57148 ...	2020-07-28 17:31:47
122.168.197.113	attackbots	web-1 [ssh] SSH Attack	2020-07-28 17:15:11
124.165.205.126	attackbots	Jul 28 08:54:50 sigma sshd\[1420\]: Invalid user jinyang_stu from 124.165.205.126Jul 28 08:54:53 sigma sshd\[1420\]: Failed password for invalid user jinyang_stu from 124.165.205.126 port 59304 ssh2 ...	2020-07-28 17:18:27
106.13.112.221	attackbots	Jul 28 07:29:32 vpn01 sshd[24383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.221 Jul 28 07:29:35 vpn01 sshd[24383]: Failed password for invalid user jakubr from 106.13.112.221 port 45420 ssh2 ...	2020-07-28 17:18:05

最近上报的IP列表

147.227.161.163	63.13.104.17	95.177.21.191	227.108.68.202
21.108.188.7	73.1.100.211	245.186.181.247	88.110.78.153
113.173.230.103	254.90.184.155	106.10.130.126	187.159.92.158
17.163.25.183	62.67.34.162	149.200.224.34	36.54.79.35
21.252.22.155	60.243.85.172	171.147.242.1	72.111.242.175