城市(city): Jakarta
省份(region): Jakarta
国家(country): Indonesia
运营商(isp): PT. First Media TBK
主机名(hostname): unknown
机构(organization): Linknet ASN
使用类型(Usage Type): Fixed Line ISP
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | 445/tcp [2019-07-30]1pkt |
2019-07-31 03:27:38 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.255.52.58 | attackbotsspam | 445/tcp [2020-10-03]1pkt |
2020-10-05 08:03:32 |
| 139.255.52.58 | attackbotsspam | 445/tcp [2020-10-03]1pkt |
2020-10-05 00:25:34 |
| 139.255.52.58 | attackbotsspam | 445/tcp [2020-10-03]1pkt |
2020-10-04 16:08:24 |
| 139.255.52.218 | attackspam | Unauthorized connection attempt from IP address 139.255.52.218 on Port 445(SMB) |
2020-02-08 04:49:50 |
| 139.255.52.203 | attack | 2019-07-09 06:35:35 1hkhqo-0006V5-70 SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:39249 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:46 1hkhqz-0006VG-2e SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:36139 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 06:35:54 1hkhr7-0006VN-HF SMTP connection from \(ln-static-139-255-52-203.link.net.id\) \[139.255.52.203\]:48745 I=\[193.107.88.166\]:25 closed by DROP in ACL ... |
2020-02-05 00:47:16 |
| 139.255.52.98 | attackbotsspam | Unauthorized connection attempt from IP address 139.255.52.98 on Port 445(SMB) |
2020-01-17 23:50:34 |
| 139.255.52.203 | attackbots | Mail sent to address hacked/leaked from Last.fm |
2019-07-15 14:19:36 |
| 139.255.52.218 | attackspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 00:20:46,229 INFO [shellcode_manager] (139.255.52.218) no match, writing hexdump (7edbc2fd47b865f111efd673b193f6b5 :2164185) - MS17010 (EternalBlue) |
2019-07-06 13:28:06 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.52.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34982
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.52.68. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019073002 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 03:27:32 CST 2019
;; MSG SIZE rcvd: 11768.52.255.139.in-addr.arpa domain name pointer ln-static-139-255-52-68.link.net.id.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
68.52.255.139.in-addr.arpa name = ln-static-139-255-52-68.link.net.id.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 46.29.116.3 | attackspam | Autoban 46.29.116.3 AUTH/CONNECT |
2019-12-13 05:44:16 |
| 46.215.207.89 | attackspambots | Autoban 46.215.207.89 AUTH/CONNECT |
2019-12-13 05:50:12 |
| 119.28.66.152 | attackspam | Dec 12 20:29:43 loxhost sshd\[14532\]: Invalid user admin from 119.28.66.152 port 53100 Dec 12 20:29:43 loxhost sshd\[14532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.66.152 Dec 12 20:29:45 loxhost sshd\[14532\]: Failed password for invalid user admin from 119.28.66.152 port 53100 ssh2 Dec 12 20:36:08 loxhost sshd\[14738\]: Invalid user higginbotham from 119.28.66.152 port 34052 Dec 12 20:36:08 loxhost sshd\[14738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.66.152 ... |
2019-12-13 05:30:28 |
| 46.219.226.60 | attackspambots | Autoban 46.219.226.60 AUTH/CONNECT |
2019-12-13 05:48:32 |
| 45.95.35.37 | attack | Autoban 45.95.35.37 AUTH/CONNECT |
2019-12-13 06:06:45 |
| 54.37.158.218 | attackbots | Dec 12 22:32:37 lnxded63 sshd[13369]: Failed password for root from 54.37.158.218 port 49236 ssh2 Dec 12 22:32:37 lnxded63 sshd[13369]: Failed password for root from 54.37.158.218 port 49236 ssh2 Dec 12 22:37:32 lnxded63 sshd[13703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.218 |
2019-12-13 05:39:20 |
| 77.247.109.48 | attackbots | 5092/udp 5093/udp 5067/udp... [2019-12-10/12]64pkt,22pt.(udp) |
2019-12-13 05:42:07 |
| 46.22.49.41 | attack | Autoban 46.22.49.41 AUTH/CONNECT |
2019-12-13 05:48:53 |
| 46.44.201.116 | attack | Autoban 46.44.201.116 AUTH/CONNECT |
2019-12-13 05:40:42 |
| 49.49.212.222 | attack | Autoban 49.49.212.222 AUTH/CONNECT |
2019-12-13 05:30:58 |
| 113.194.69.160 | attackbotsspam | Invalid user oracle from 113.194.69.160 port 37620 |
2019-12-13 05:58:40 |
| 46.145.68.170 | attackbotsspam | Dec 12 21:20:04 srv01 postfix/smtpd[2252]: warning: unknown[46.145.68.170]: SASL PLAIN authentication failed: authentication failure Dec 12 21:20:04 srv01 postfix/smtpd[2252]: warning: unknown[46.145.68.170]: SASL LOGIN authentication failed: authentication failure Dec 12 21:20:04 srv01 postfix/smtpd[2252]: warning: unknown[46.145.68.170]: SASL CRAM-MD5 authentication failed: authentication failure ... |
2019-12-13 05:59:45 |
| 106.13.216.239 | attack | Dec 12 16:48:26 sd-53420 sshd\[24622\]: User root from 106.13.216.239 not allowed because none of user's groups are listed in AllowGroups Dec 12 16:48:26 sd-53420 sshd\[24622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 user=root Dec 12 16:48:28 sd-53420 sshd\[24622\]: Failed password for invalid user root from 106.13.216.239 port 59280 ssh2 Dec 12 16:54:40 sd-53420 sshd\[25097\]: Invalid user sasabuchi from 106.13.216.239 Dec 12 16:54:40 sd-53420 sshd\[25097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 ... |
2019-12-13 06:05:58 |
| 45.95.35.7 | attackbots | Autoban 45.95.35.7 AUTH/CONNECT |
2019-12-13 06:05:02 |
| 159.65.137.23 | attackbots | Dec 12 16:39:48 h2177944 sshd\[21046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 user=sync Dec 12 16:39:49 h2177944 sshd\[21046\]: Failed password for sync from 159.65.137.23 port 50238 ssh2 Dec 12 16:47:08 h2177944 sshd\[21289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 user=root Dec 12 16:47:10 h2177944 sshd\[21289\]: Failed password for root from 159.65.137.23 port 40876 ssh2 ... |
2019-12-13 06:00:49 |