103.119.140.123

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT Bali Towerindo Sentra TBK

主机名(hostname): unknown

机构(organization): PT Bali Towerindo Sentra, Tbk

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 103.119.140.123 on Port 445(SMB)	2019-08-17 06:29:18

相同子网IP讨论:

IP	类型	评论内容	时间
103.119.140.195	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 03:55:36
103.119.140.195	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 19:36:36
103.119.140.45	attack	Distributed brute force attack	2020-04-10 08:34:38
103.119.140.188	attack	Honeypot attack, port: 445, PTR: ip-140-188.balifiber.id.	2020-03-03 16:40:10
103.119.140.203	attackspam	Unauthorized connection attempt from IP address 103.119.140.203 on Port 445(SMB)	2019-12-06 03:03:46
103.119.140.97	attack	2019-11-20 13:59:56 H=(ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) 2019-11-20 13:59:57 unexpected disconnection while reading SMTP command from (ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-11-20 15:41:33 H=(ip-140-97.balifiber.id) [103.119.140.97]:18432 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.119.140.97	2019-11-21 00:09:14
103.119.140.225	attackbots	Automatic report - Port Scan Attack	2019-07-26 01:29:30
103.119.140.15	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 13:01:42,079 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.119.140.15)	2019-07-08 04:56:34
103.119.140.25	attack	Unauthorized connection attempt from IP address 103.119.140.25 on Port 445(SMB)	2019-07-05 06:04:06
103.119.140.55	attackspambots	Unauthorized connection attempt from IP address 103.119.140.55 on Port 445(SMB)	2019-07-03 00:02:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.140.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24214
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.140.123.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 06:29:05 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

123.140.119.103.in-addr.arpa domain name pointer ip-140-123.balifiber.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
123.140.119.103.in-addr.arpa	name = ip-140-123.balifiber.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.235.250.69	attackspam	Mar 6 14:05:35 mockhub sshd[27977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.250.69 Mar 6 14:05:37 mockhub sshd[27977]: Failed password for invalid user mailserver from 49.235.250.69 port 52834 ssh2 ...	2020-03-07 06:50:42
177.128.137.147	attackbots	1583532352 - 03/06/2020 23:05:52 Host: 177.128.137.147/177.128.137.147 Port: 23 TCP Blocked	2020-03-07 06:44:58
167.71.57.61	attackspambots	Lines containing failures of 167.71.57.61 Mar 3 17:40:56 neweola sshd[21459]: Did not receive identification string from 167.71.57.61 port 50468 Mar 3 17:41:00 neweola sshd[21467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.57.61 user=r.r Mar 3 17:41:02 neweola sshd[21467]: Failed password for r.r from 167.71.57.61 port 45056 ssh2 Mar 3 17:41:02 neweola sshd[21467]: Received disconnect from 167.71.57.61 port 45056:11: Normal Shutdown, Thank you for playing [preauth] Mar 3 17:41:02 neweola sshd[21467]: Disconnected from authenticating user r.r 167.71.57.61 port 45056 [preauth] Mar 3 17:41:12 neweola sshd[21494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.57.61 user=r.r Mar 3 17:41:13 neweola sshd[21494]: Failed password for r.r from 167.71.57.61 port 41286 ssh2 Mar 3 17:41:14 neweola sshd[21494]: Received disconnect from 167.71.57.61 port 41286:11: Normal Shut........ ------------------------------	2020-03-07 07:03:34
94.102.56.181	attackbots	Mar 7 00:00:46 debian-2gb-nbg1-2 kernel: \[5794809.356187\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.56.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=29904 PROTO=TCP SPT=52758 DPT=33892 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-07 07:06:18
222.186.173.180	attackspambots	Mar 6 18:06:48 NPSTNNYC01T sshd[32631]: Failed password for root from 222.186.173.180 port 46880 ssh2 Mar 6 18:06:51 NPSTNNYC01T sshd[32631]: Failed password for root from 222.186.173.180 port 46880 ssh2 Mar 6 18:07:01 NPSTNNYC01T sshd[32631]: error: maximum authentication attempts exceeded for root from 222.186.173.180 port 46880 ssh2 [preauth] ...	2020-03-07 07:08:44
1.53.194.9	attackbotsspam	1583532341 - 03/06/2020 23:05:41 Host: 1.53.194.9/1.53.194.9 Port: 23 TCP Blocked	2020-03-07 06:49:00
94.143.51.3	attackspam	Unauthorised access (Mar 7) SRC=94.143.51.3 LEN=52 PREC=0x20 TTL=122 ID=12239 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Mar 5) SRC=94.143.51.3 LEN=48 PREC=0x20 TTL=122 ID=8732 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Mar 5) SRC=94.143.51.3 LEN=48 PREC=0x20 TTL=122 ID=14331 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Mar 1) SRC=94.143.51.3 LEN=48 TTL=123 ID=28306 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-07 06:40:33
176.32.34.6	attackspam	port scan and connect, tcp 22 (ssh)	2020-03-07 06:36:53
112.217.207.130	attack	Mar 7 03:30:31 gw1 sshd[22965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.207.130 Mar 7 03:30:34 gw1 sshd[22965]: Failed password for invalid user daniele from 112.217.207.130 port 47286 ssh2 ...	2020-03-07 06:51:51
134.175.89.186	attackspambots	fail2ban	2020-03-07 06:54:39
217.112.142.157	attackbots	Mar 6 23:02:17 web01.agentur-b-2.de postfix/smtpd[747981]: NOQUEUE: reject: RCPT from unknown[217.112.142.157]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 6 23:02:20 web01.agentur-b-2.de postfix/smtpd[747532]: NOQUEUE: reject: RCPT from unknown[217.112.142.157]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 6 23:02:20 web01.agentur-b-2.de postfix/smtpd[747980]: NOQUEUE: reject: RCPT from unknown[217.112.142.157]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 6 23:02:20 web01.agentur-b-2.de postfix/smtpd[747978]: NOQUEUE: reject: RCPT from unknown[217.112.142.157]: 450 4.7.1 : Helo command rejec	2020-03-07 06:56:50
140.143.127.179	attackbots	Mar 6 23:05:20 lnxded64 sshd[27071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.179	2020-03-07 07:09:11
82.223.33.63	attackbots	Mar 3 11:17:29 mail sshd[18232]: Failed password for invalid user guest from 82.223.33.63 port 36804 ssh2 Mar 3 11:17:29 mail sshd[18232]: Received disconnect from 82.223.33.63: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=82.223.33.63	2020-03-07 06:53:59
61.160.245.87	attackspambots	Mar 7 00:42:08 server sshd\[16888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.160.245.87 user=root Mar 7 00:42:10 server sshd\[16888\]: Failed password for root from 61.160.245.87 port 34518 ssh2 Mar 7 01:01:08 server sshd\[20744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.160.245.87 user=root Mar 7 01:01:09 server sshd\[20744\]: Failed password for root from 61.160.245.87 port 34982 ssh2 Mar 7 01:05:38 server sshd\[21634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.160.245.87 user=root ...	2020-03-07 06:50:16
188.213.49.210	attackbots	Fail2Ban Ban Triggered	2020-03-07 06:30:18

最近上报的IP列表

43.167.187.145	214.235.38.60	155.49.155.172	106.13.54.153
91.92.125.187	198.130.78.237	131.84.172.179	136.232.17.130
162.83.88.244	185.238.136.13	84.142.42.185	204.135.230.59
104.131.218.9	121.10.77.94	222.131.26.98	165.22.142.176
183.153.123.208	32.86.220.151	14.142.203.90	12.138.64.179