城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): PT Telkom Indonesia
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Unauthorized connection attempt from IP address 110.139.2.146 on Port 445(SMB) |
2020-02-27 18:21:50 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 110.139.203.164 | attackspambots | 20/8/24@01:01:27: FAIL: Alarm-Network address from=110.139.203.164 ... |
2020-08-24 15:31:28 |
| 110.139.206.154 | attackspam | Unauthorized connection attempt from IP address 110.139.206.154 on Port 445(SMB) |
2020-07-07 21:02:32 |
| 110.139.226.153 | attackbotsspam | (sshd) Failed SSH login from 110.139.226.153 (ID/Indonesia/153.subnet110-139-226.speedy.telkom.net.id): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 10 05:51:47 ubnt-55d23 sshd[27433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.139.226.153 user=root Jun 10 05:51:48 ubnt-55d23 sshd[27433]: Failed password for root from 110.139.226.153 port 34194 ssh2 |
2020-06-10 15:10:42 |
| 110.139.253.201 | attackspambots | Unauthorized connection attempt from IP address 110.139.253.201 on Port 445(SMB) |
2020-04-28 19:26:38 |
| 110.139.254.47 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 28-03-2020 03:55:08. |
2020-03-28 12:30:19 |
| 110.139.207.18 | attackbotsspam | Invalid user peh from 110.139.207.18 port 34986 |
2019-12-24 22:06:17 |
| 110.139.2.19 | attackbots | Automatic report - Port Scan Attack |
2019-11-06 18:06:27 |
| 110.139.253.194 | attackspam | Automatic report - Port Scan Attack |
2019-10-31 00:54:21 |
| 110.139.28.59 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 25-10-2019 04:55:14. |
2019-10-25 13:55:48 |
| 110.139.250.61 | attack | Unauthorised access (Sep 19) SRC=110.139.250.61 LEN=52 TTL=116 ID=4728 DF TCP DPT=445 WINDOW=8192 SYN |
2019-09-20 02:34:07 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.2.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.2.146. IN A
;; AUTHORITY SECTION:
. 291 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020022700 1800 900 604800 86400
;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 18:21:44 CST 2020
;; MSG SIZE rcvd: 117
146.2.139.110.in-addr.arpa domain name pointer 146.subnet110-139-2.speedy.telkom.net.id.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
146.2.139.110.in-addr.arpa name = 146.subnet110-139-2.speedy.telkom.net.id.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 223.199.12.125 | attack | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-05-11 08:13:41 |
| 13.226.36.20 | attack | ET INFO TLS Handshake Failure - port: 10220 proto: TCP cat: Potentially Bad Traffic |
2020-05-11 08:11:39 |
| 13.226.36.72 | attackbots | ET INFO TLS Handshake Failure - port: 27957 proto: TCP cat: Potentially Bad Traffic |
2020-05-11 08:11:12 |
| 186.90.204.4 | attackspambots | "Unauthorized connection attempt on SSHD detected" |
2020-05-11 12:03:53 |
| 185.175.93.27 | attackspam | 05/10/2020-19:46:50.687816 185.175.93.27 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-05-11 08:19:04 |
| 77.247.110.58 | attackbotsspam | 05/10/2020-17:42:49.443850 77.247.110.58 Protocol: 17 ET SCAN Sipvicious Scan |
2020-05-11 08:03:33 |
| 92.118.37.83 | attackspam | firewall-block, port(s): 555/tcp, 1999/tcp, 3456/tcp, 6500/tcp, 13777/tcp, 25001/tcp, 33391/tcp |
2020-05-11 08:31:45 |
| 213.176.34.173 | attack | May 11 10:56:40 webhost01 sshd[18700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.176.34.173 May 11 10:56:42 webhost01 sshd[18700]: Failed password for invalid user friedrich from 213.176.34.173 port 44382 ssh2 ... |
2020-05-11 12:01:17 |
| 195.231.11.173 | attackbotsspam | ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak |
2020-05-11 08:15:42 |
| 89.248.172.16 | attackspambots | Fail2Ban Ban Triggered |
2020-05-11 08:34:23 |
| 87.236.27.177 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 77 - port: 5555 proto: TCP cat: Misc Attack |
2020-05-11 08:37:07 |
| 61.219.11.153 | attackbotsspam | firewall-block, port(s): 80/tcp |
2020-05-11 08:05:41 |
| 176.113.115.210 | attack | ET DROP Dshield Block Listed Source group 1 - port: 3571 proto: TCP cat: Misc Attack |
2020-05-11 08:21:38 |
| 89.248.160.178 | attack | firewall-block, port(s): 5453/tcp, 13381/tcp |
2020-05-11 08:35:38 |
| 68.183.95.11 | attackspam | SSH Invalid Login |
2020-05-11 08:04:46 |