城市(city): Jakarta
省份(region): Jakarta
国家(country): Indonesia
运营商(isp): PT Bali Towerindo Sentra TBK
主机名(hostname): unknown
机构(organization): PT Bali Towerindo Sentra, Tbk
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Unauthorized connection attempt from IP address 103.119.140.123 on Port 445(SMB) |
2019-08-17 06:29:18 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 103.119.140.195 | attack | "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES: |
2020-09-03 03:55:36 |
| 103.119.140.195 | attackbots | "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES: |
2020-09-02 19:36:36 |
| 103.119.140.45 | attack | Distributed brute force attack |
2020-04-10 08:34:38 |
| 103.119.140.188 | attack | Honeypot attack, port: 445, PTR: ip-140-188.balifiber.id. |
2020-03-03 16:40:10 |
| 103.119.140.203 | attackspam | Unauthorized connection attempt from IP address 103.119.140.203 on Port 445(SMB) |
2019-12-06 03:03:46 |
| 103.119.140.97 | attack | 2019-11-20 13:59:56 H=(ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 F= |
2019-11-21 00:09:14 |
| 103.119.140.225 | attackbots | Automatic report - Port Scan Attack |
2019-07-26 01:29:30 |
| 103.119.140.15 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 13:01:42,079 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.119.140.15) |
2019-07-08 04:56:34 |
| 103.119.140.25 | attack | Unauthorized connection attempt from IP address 103.119.140.25 on Port 445(SMB) |
2019-07-05 06:04:06 |
| 103.119.140.55 | attackspambots | Unauthorized connection attempt from IP address 103.119.140.55 on Port 445(SMB) |
2019-07-03 00:02:22 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.140.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24214
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.140.123. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019081601 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 06:29:05 CST 2019
;; MSG SIZE rcvd: 119123.140.119.103.in-addr.arpa domain name pointer ip-140-123.balifiber.id.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
123.140.119.103.in-addr.arpa name = ip-140-123.balifiber.id.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 123.125.71.116 | attackbotsspam | Bad bot/spoofed identity |
2019-06-22 05:03:17 |
| 172.87.163.42 | attack | failed_logins |
2019-06-22 04:56:28 |
| 95.111.74.98 | attackspambots | Jun 21 21:45:20 ArkNodeAT sshd\[23018\]: Invalid user cron from 95.111.74.98 Jun 21 21:45:20 ArkNodeAT sshd\[23018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.111.74.98 Jun 21 21:45:23 ArkNodeAT sshd\[23018\]: Failed password for invalid user cron from 95.111.74.98 port 34696 ssh2 |
2019-06-22 05:19:11 |
| 111.67.196.127 | attackspam | Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "Mozilla/5.0 zgrab/0.x" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "Mozilla/5.0 zgrab/0.x" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "Mozilla/5.0 zgrab/0.x" |
2019-06-22 05:18:39 |
| 115.217.103.185 | attackspam | Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" |
2019-06-22 05:30:22 |
| 68.183.50.70 | attackspam | Request: "GET / HTTP/2.0" |
2019-06-22 05:21:16 |
| 58.242.83.29 | attack | 2019-06-21T20:52:17.249573abusebot-4.cloudsearch.cf sshd\[693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.242.83.29 user=root |
2019-06-22 04:55:14 |
| 204.48.22.221 | attack | 2019-06-21T21:46:00.364098centos sshd\[28415\]: Invalid user gitolite from 204.48.22.221 port 44872 2019-06-21T21:46:00.371175centos sshd\[28415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.22.221 2019-06-21T21:46:02.629086centos sshd\[28415\]: Failed password for invalid user gitolite from 204.48.22.221 port 44872 ssh2 |
2019-06-22 04:57:37 |
| 130.0.29.77 | attack | Request: "GET / HTTP/1.1" |
2019-06-22 05:09:02 |
| 80.48.191.129 | attackbotsspam | Request: "GET / HTTP/1.1" |
2019-06-22 05:07:17 |
| 87.17.241.78 | attackbots | SSHD brute force attack detected by fail2ban |
2019-06-22 05:13:52 |
| 54.193.66.148 | attackbots | Bad Bot Bad Request: "GET /app HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic" |
2019-06-22 05:33:08 |
| 113.15.211.211 | attackspam | Jun 19 19:19:54 xb0 sshd[16577]: Failed password for invalid user info from 113.15.211.211 port 17042 ssh2 Jun 19 19:19:55 xb0 sshd[16577]: Received disconnect from 113.15.211.211: 11: Bye Bye [preauth] Jun 19 19:22:17 xb0 sshd[11438]: Failed password for invalid user ubuntu from 113.15.211.211 port 13459 ssh2 Jun 19 19:22:17 xb0 sshd[11438]: Received disconnect from 113.15.211.211: 11: Bye Bye [preauth] Jun 19 19:24:31 xb0 sshd[16513]: Failed password for invalid user jenkins from 113.15.211.211 port 14047 ssh2 Jun 19 19:24:32 xb0 sshd[16513]: Received disconnect from 113.15.211.211: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.15.211.211 |
2019-06-22 04:59:29 |
| 80.241.208.162 | attack | Jun 21 22:07:53 dedicated sshd[22343]: Invalid user mysqldump from 80.241.208.162 port 41462 Jun 21 22:07:55 dedicated sshd[22343]: Failed password for invalid user mysqldump from 80.241.208.162 port 41462 ssh2 Jun 21 22:07:53 dedicated sshd[22343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.241.208.162 Jun 21 22:07:53 dedicated sshd[22343]: Invalid user mysqldump from 80.241.208.162 port 41462 Jun 21 22:07:55 dedicated sshd[22343]: Failed password for invalid user mysqldump from 80.241.208.162 port 41462 ssh2 |
2019-06-22 05:20:53 |
| 167.114.115.22 | attack | 2019-06-21T19:45:45.779776abusebot-6.cloudsearch.cf sshd\[6032\]: Invalid user prestashop from 167.114.115.22 port 39406 |
2019-06-22 05:11:19 |