202.138.252.3 - IPInfo

基本信息:

城市(city): Bandung

省份(region): West Java

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Melsa-i-net AS

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
202.138.252.115	attack	Unauthorized connection attempt detected from IP address 202.138.252.115 to port 81	2020-07-07 03:50:06
202.138.252.18	attackbotsspam	1585972357 - 04/04/2020 05:52:37 Host: 202.138.252.18/202.138.252.18 Port: 445 TCP Blocked	2020-04-04 18:53:16
202.138.252.115	attackbotsspam	Unauthorized connection attempt detected from IP address 202.138.252.115 to port 81	2019-12-29 16:58:29
202.138.252.197	attack	Absender hat Spam-Falle ausgel?st	2019-12-19 16:02:03
202.138.252.197	attack	invalid login attempt	2019-11-25 03:25:35
202.138.252.160	attack	Sending SPAM email	2019-06-27 09:39:38

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.138.252.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9957
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.138.252.3.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061400 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 15 02:25:52 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

3.252.138.202.in-addr.arpa domain name pointer ns5.melsa.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
3.252.138.202.in-addr.arpa	name = ns5.melsa.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.55.63.101	attack	445/tcp [2019-06-21]1pkt	2019-06-21 14:05:34
89.248.169.12	attackspambots	8010/tcp 8889/tcp 8800/tcp... [2019-05-10/06-21]125pkt,18pt.(tcp)	2019-06-21 13:49:46
85.230.177.32	attackbots	¯\_(ツ)_/¯	2019-06-21 13:52:49
184.105.139.90	attack	21/tcp 11211/tcp 50075/tcp... [2019-04-21/06-21]32pkt,13pt.(tcp),2pt.(udp)	2019-06-21 13:50:09
104.0.143.234	attackspam	Jun 17 15:59:27 xb0 sshd[6702]: Failed password for invalid user xguest from 104.0.143.234 port 21395 ssh2 Jun 17 15:59:27 xb0 sshd[6702]: Received disconnect from 104.0.143.234: 11: Bye Bye [preauth] Jun 17 16:03:52 xb0 sshd[4916]: Failed password for invalid user buseman from 104.0.143.234 port 43434 ssh2 Jun 17 16:03:53 xb0 sshd[4916]: Received disconnect from 104.0.143.234: 11: Bye Bye [preauth] Jun 17 16:06:05 xb0 sshd[31235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.0.143.234 user=r.r Jun 17 16:06:07 xb0 sshd[31235]: Failed password for r.r from 104.0.143.234 port 54440 ssh2 Jun 17 16:06:07 xb0 sshd[31235]: Received disconnect from 104.0.143.234: 11: Bye Bye [preauth] Jun 17 16:10:35 xb0 sshd[29599]: Failed password for invalid user scott from 104.0.143.234 port 19955 ssh2 Jun 17 16:10:36 xb0 sshd[29599]: Received disconnect from 104.0.143.234: 11: Bye Bye [preauth] Jun 17 16:12:55 xb0 sshd[4127]: Failed password........ -------------------------------	2019-06-21 13:20:51
177.79.35.108	attackspam	port scan and connect, tcp 22 (ssh)	2019-06-21 13:45:23
62.117.67.46	attackspam	slow and persistent scanner	2019-06-21 14:10:59
123.127.107.70	attackbots	2019-06-21T06:43:31.579280test01.cajus.name sshd\[5705\]: Invalid user nong from 123.127.107.70 port 33083 2019-06-21T06:43:31.610541test01.cajus.name sshd\[5705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.107.70 2019-06-21T06:43:33.821707test01.cajus.name sshd\[5705\]: Failed password for invalid user nong from 123.127.107.70 port 33083 ssh2	2019-06-21 14:07:17
89.46.104.200	attackspambots	xmlrpc attack	2019-06-21 13:40:04
174.138.0.191	attackspam	37215/tcp 52869/tcp [2019-06-14/21]2pkt	2019-06-21 13:44:06
185.222.209.56	attackspambots	2019-06-21 07:04:24 dovecot_plain authenticator failed for \(\[185.222.209.56\]\) \[185.222.209.56\]: 535 Incorrect authentication data \(set_id=giorgio@opso.it\) 2019-06-21 07:04:36 dovecot_plain authenticator failed for \(\[185.222.209.56\]\) \[185.222.209.56\]: 535 Incorrect authentication data \(set_id=giorgio\) 2019-06-21 07:04:45 dovecot_plain authenticator failed for \(\[185.222.209.56\]\) \[185.222.209.56\]: 535 Incorrect authentication data 2019-06-21 07:05:00 dovecot_plain authenticator failed for \(\[185.222.209.56\]\) \[185.222.209.56\]: 535 Incorrect authentication data \(set_id=giuseppe@opso.it\) 2019-06-21 07:05:04 dovecot_plain authenticator failed for \(\[185.222.209.56\]\) \[185.222.209.56\]: 535 Incorrect authentication data	2019-06-21 13:50:58
185.222.211.13	attackbots	2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \[185.222.211.13\] F=\ rejected RCPT \: Unrouteable address 2019-06-21 07:47:44 H=\(hosting-by.nstorage.org\) \	2019-06-21 13:54:18
222.132.40.255	attackspambots	Jun 17 20:59:48 Serveur sshd[5413]: Invalid user nexthink from 222.132.40.255 port 42836 Jun 17 20:59:48 Serveur sshd[5413]: Failed password for invalid user nexthink from 222.132.40.255 port 42836 ssh2 Jun 17 20:59:48 Serveur sshd[5413]: Connection closed by invalid user nexthink 222.132.40.255 port 42836 [preauth] Jun 17 20:59:50 Serveur sshd[5430]: Invalid user misp from 222.132.40.255 port 43765 Jun 17 20:59:51 Serveur sshd[5430]: Failed password for invalid user misp from 222.132.40.255 port 43765 ssh2 Jun 17 20:59:51 Serveur sshd[5430]: Connection closed by invalid user misp 222.132.40.255 port 43765 [preauth] Jun 17 20:59:53 Serveur sshd[5485]: Invalid user osbash from 222.132.40.255 port 44758 Jun 17 20:59:53 Serveur sshd[5485]: Failed password for invalid user osbash from 222.132.40.255 port 44758 ssh2 Jun 17 20:59:53 Serveur sshd[5485]: Connection closed by invalid user osbash 222.132.40.255 port 44758 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/v	2019-06-21 13:26:50
108.31.7.46	attackspam	RDP Bruteforce	2019-06-21 13:21:39
68.160.224.34	attack	Jun 17 11:13:55 cumulus sshd[11381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.160.224.34 user=r.r Jun 17 11:13:57 cumulus sshd[11381]: Failed password for r.r from 68.160.224.34 port 49191 ssh2 Jun 17 11:13:57 cumulus sshd[11381]: Received disconnect from 68.160.224.34 port 49191:11: Bye Bye [preauth] Jun 17 11:13:57 cumulus sshd[11381]: Disconnected from 68.160.224.34 port 49191 [preauth] Jun 17 11:18:44 cumulus sshd[11824]: Invalid user nfs from 68.160.224.34 port 49009 Jun 17 11:18:44 cumulus sshd[11824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.160.224.34 Jun 17 11:18:46 cumulus sshd[11824]: Failed password for invalid user nfs from 68.160.224.34 port 49009 ssh2 Jun 17 11:18:46 cumulus sshd[11824]: Received disconnect from 68.160.224.34 port 49009:11: Bye Bye [preauth] Jun 17 11:18:46 cumulus sshd[11824]: Disconnected from 68.160.224.34 port 49009 [preauth] ........ --------------------------------------	2019-06-21 13:22:42

最近上报的IP列表

2.195.147.119	115.217.70.186	69.119.230.70	108.104.30.206
165.199.182.180	176.58.226.50	212.175.227.243	179.189.38.93
216.134.187.83	122.108.106.95	113.155.152.13	58.239.186.43
49.66.76.17	57.73.141.188	23.237.18.236	119.228.211.52
78.82.171.56	83.81.118.61	146.229.225.96	202.151.84.45