城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): PT. First Media TBK
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | Unauthorised access (Oct 19) SRC=139.195.245.20 LEN=44 TTL=244 ID=60475 TCP DPT=139 WINDOW=1024 SYN |
2019-10-20 07:35:34 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.195.245.113 | attack | Unauthorized connection attempt from IP address 139.195.245.113 on Port 139(NETBIOS) |
2020-01-24 09:56:05 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.195.245.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23066
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.195.245.20. IN A
;; AUTHORITY SECTION:
. 307 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019101901 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 20 07:35:31 CST 2019
;; MSG SIZE rcvd: 118Host 20.245.195.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 20.245.195.139.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 80.211.59.160 | attackspambots | 2019-08-09T11:08:28.167470abusebot-7.cloudsearch.cf sshd\[14770\]: Invalid user demo from 80.211.59.160 port 44496 |
2019-08-10 01:21:39 |
| 202.69.40.174 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-09 05:50:12,300 INFO [amun_request_handler] PortScan Detected on Port: 445 (202.69.40.174) |
2019-08-10 00:48:47 |
| 167.114.114.193 | attackbots | Aug 9 19:37:36 pornomens sshd\[8122\]: Invalid user transport from 167.114.114.193 port 51748 Aug 9 19:37:36 pornomens sshd\[8122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.114.193 Aug 9 19:37:39 pornomens sshd\[8122\]: Failed password for invalid user transport from 167.114.114.193 port 51748 ssh2 ... |
2019-08-10 01:41:13 |
| 139.199.133.160 | attackbots | Brute force SMTP login attempted. ... |
2019-08-10 01:46:03 |
| 139.199.167.135 | attack | Brute force SMTP login attempted. ... |
2019-08-10 01:43:33 |
| 221.5.37.194 | attack | 2019-08-09T16:56:42.118775enmeeting.mahidol.ac.th sshd\[7676\]: Invalid user darshan from 221.5.37.194 port 37490 2019-08-09T16:56:42.132785enmeeting.mahidol.ac.th sshd\[7676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.5.37.194 2019-08-09T16:56:43.895343enmeeting.mahidol.ac.th sshd\[7676\]: Failed password for invalid user darshan from 221.5.37.194 port 37490 ssh2 ... |
2019-08-10 01:28:24 |
| 40.68.1.240 | attackspambots | 2019-08-09 07:27:20,979 fail2ban.actions [1802]: NOTICE [sshd] Ban 40.68.1.240 |
2019-08-10 00:42:26 |
| 85.90.218.98 | attack | scan z |
2019-08-10 01:23:37 |
| 185.175.93.104 | attack | 08/09/2019-12:58:21.622246 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-08-10 00:59:08 |
| 123.252.240.106 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-09 05:46:44,947 INFO [amun_request_handler] PortScan Detected on Port: 445 (123.252.240.106) |
2019-08-10 01:03:05 |
| 97.74.24.102 | attackbotsspam | xmlrpc attack |
2019-08-10 00:51:32 |
| 139.199.122.96 | attackspam | Brute force SMTP login attempted. ... |
2019-08-10 01:47:19 |
| 182.71.144.122 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-09 05:49:02,013 INFO [amun_request_handler] PortScan Detected on Port: 445 (182.71.144.122) |
2019-08-10 00:54:03 |
| 139.199.158.14 | attack | Aug 9 12:44:12 MK-Soft-Root2 sshd\[4992\]: Invalid user alex from 139.199.158.14 port 42486 Aug 9 12:44:12 MK-Soft-Root2 sshd\[4992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.158.14 Aug 9 12:44:14 MK-Soft-Root2 sshd\[4992\]: Failed password for invalid user alex from 139.199.158.14 port 42486 ssh2 ... |
2019-08-10 01:36:05 |
| 23.129.64.100 | attackspam | Aug 9 19:37:22 km20725 sshd\[8231\]: Invalid user enisa from 23.129.64.100Aug 9 19:37:24 km20725 sshd\[8231\]: Failed password for invalid user enisa from 23.129.64.100 port 37926 ssh2Aug 9 19:37:29 km20725 sshd\[8233\]: Invalid user geosolutions from 23.129.64.100Aug 9 19:37:31 km20725 sshd\[8233\]: Failed password for invalid user geosolutions from 23.129.64.100 port 44767 ssh2 ... |
2019-08-10 01:49:39 |