103.119.140.123

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): PT Bali Towerindo Sentra TBK

主机名(hostname): unknown

机构(organization): PT Bali Towerindo Sentra, Tbk

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 103.119.140.123 on Port 445(SMB)	2019-08-17 06:29:18

相同子网IP讨论:

IP	类型	评论内容	时间
103.119.140.195	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 03:55:36
103.119.140.195	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 19:36:36
103.119.140.45	attack	Distributed brute force attack	2020-04-10 08:34:38
103.119.140.188	attack	Honeypot attack, port: 445, PTR: ip-140-188.balifiber.id.	2020-03-03 16:40:10
103.119.140.203	attackspam	Unauthorized connection attempt from IP address 103.119.140.203 on Port 445(SMB)	2019-12-06 03:03:46
103.119.140.97	attack	2019-11-20 13:59:56 H=(ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) 2019-11-20 13:59:57 unexpected disconnection while reading SMTP command from (ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-11-20 15:41:33 H=(ip-140-97.balifiber.id) [103.119.140.97]:18432 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.119.140.97	2019-11-21 00:09:14
103.119.140.225	attackbots	Automatic report - Port Scan Attack	2019-07-26 01:29:30
103.119.140.15	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 13:01:42,079 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.119.140.15)	2019-07-08 04:56:34
103.119.140.25	attack	Unauthorized connection attempt from IP address 103.119.140.25 on Port 445(SMB)	2019-07-05 06:04:06
103.119.140.55	attackspambots	Unauthorized connection attempt from IP address 103.119.140.55 on Port 445(SMB)	2019-07-03 00:02:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.140.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24214
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.140.123.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 06:29:05 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

123.140.119.103.in-addr.arpa domain name pointer ip-140-123.balifiber.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
123.140.119.103.in-addr.arpa	name = ip-140-123.balifiber.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
74.199.108.162	attack	" "	2020-04-16 02:07:21
46.146.213.166	attackbots	Apr 15 17:05:48 debian sshd[1364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.146.213.166 Apr 15 17:05:50 debian sshd[1364]: Failed password for invalid user admin from 46.146.213.166 port 57552 ssh2 Apr 15 17:14:58 debian sshd[1389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.146.213.166	2020-04-16 02:25:07
27.128.161.234	attack	Invalid user hyung from 27.128.161.234 port 57033	2020-04-16 02:32:41
2405:201:4800:afd1:19cd:d1c9:f2fc:c487	attack	C1,WP GET /wp-login.php	2020-04-16 02:20:01
49.51.160.139	attackbotsspam	Apr 15 20:03:19 * sshd[32092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 Apr 15 20:03:21 * sshd[32092]: Failed password for invalid user gmodserver from 49.51.160.139 port 50712 ssh2	2020-04-16 02:19:25
43.226.144.46	attackbotsspam	prod6 ...	2020-04-16 02:27:33
223.223.188.208	attackspam	Apr 15 20:00:28 lock-38 sshd[1048334]: Failed password for invalid user webmaster from 223.223.188.208 port 56377 ssh2 Apr 15 20:03:43 lock-38 sshd[1048396]: Failed password for root from 223.223.188.208 port 45891 ssh2 Apr 15 20:06:20 lock-38 sshd[1048472]: Invalid user test5 from 223.223.188.208 port 33049 Apr 15 20:06:20 lock-38 sshd[1048472]: Invalid user test5 from 223.223.188.208 port 33049 Apr 15 20:06:20 lock-38 sshd[1048472]: Failed password for invalid user test5 from 223.223.188.208 port 33049 ssh2 ...	2020-04-16 02:31:21
54.38.185.226	attackbotsspam	Apr 15 16:58:37 vpn01 sshd[32467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.226 Apr 15 16:58:39 vpn01 sshd[32467]: Failed password for invalid user jenkins from 54.38.185.226 port 51612 ssh2 ...	2020-04-16 02:14:40
49.234.23.248	attackbots	(sshd) Failed SSH login from 49.234.23.248 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 15 13:30:42 localhost sshd[4718]: Invalid user admin from 49.234.23.248 port 50944 Apr 15 13:30:44 localhost sshd[4718]: Failed password for invalid user admin from 49.234.23.248 port 50944 ssh2 Apr 15 14:01:34 localhost sshd[6997]: Invalid user dl from 49.234.23.248 port 36216 Apr 15 14:01:36 localhost sshd[6997]: Failed password for invalid user dl from 49.234.23.248 port 36216 ssh2 Apr 15 14:05:40 localhost sshd[7273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.23.248 user=root	2020-04-16 02:21:22
91.121.116.65	attackbotsspam	SSH login attempts.	2020-04-16 01:53:32
116.106.12.207	attack	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-04-16 02:24:34
37.59.229.31	attack	$f2bV_matches	2020-04-16 02:30:42
82.64.32.76	attack	Apr 15 19:36:29 srv206 sshd[15140]: Invalid user meng from 82.64.32.76 ...	2020-04-16 02:03:36
47.176.39.218	attack	Apr 15 12:42:03 askasleikir sshd[200434]: Failed password for invalid user cgh from 47.176.39.218 port 64047 ssh2 Apr 15 12:38:36 askasleikir sshd[200391]: Failed password for invalid user server from 47.176.39.218 port 56706 ssh2 Apr 15 12:34:55 askasleikir sshd[200210]: Failed password for invalid user oracle from 47.176.39.218 port 49357 ssh2	2020-04-16 02:23:35
219.76.200.27	attackbotsspam	2020-04-15T17:43:36.802279shield sshd\[28708\]: Invalid user ms from 219.76.200.27 port 56786 2020-04-15T17:43:36.806527shield sshd\[28708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=n219076200027.netvigator.com 2020-04-15T17:43:38.877270shield sshd\[28708\]: Failed password for invalid user ms from 219.76.200.27 port 56786 ssh2 2020-04-15T17:46:30.520456shield sshd\[29172\]: Invalid user clamav from 219.76.200.27 port 58336 2020-04-15T17:46:30.524210shield sshd\[29172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=n219076200027.netvigator.com	2020-04-16 01:55:35

最近上报的IP列表

43.167.187.145	214.235.38.60	155.49.155.172	106.13.54.153
91.92.125.187	198.130.78.237	131.84.172.179	136.232.17.130
162.83.88.244	185.238.136.13	84.142.42.185	204.135.230.59
104.131.218.9	121.10.77.94	222.131.26.98	165.22.142.176
183.153.123.208	32.86.220.151	14.142.203.90	12.138.64.179