AbuseIPDB » 110.139.60.241
110.139.60.241
This IP was reported 6 times. Confidence of
Abuse
is 30% : ?
ISP
PT TELKOM INDONESIA
Usage Type
Fixed Line ISP
ASN
AS7713
Domain Name
telkom.co.id
Country
๐ฎ๐ฉ
Indonesia
City
Sidoarjo, East Java
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 110.139.60.241 :
This IP address has been reported a total of
6
times from
6 distinct
sources.
110.139.60.241 was first reported on
April 28th 2025 , and the most recent report was
1 week ago
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฉ๐ช
Martin Lundstrom
2026-06-05 04:15:18
(1 week ago)
https://www.eagleeye-intelligence.com โ IDS: database port scan (MySQL/PostgreSQL/MSSQL). Automatica ...
show more
https://www.eagleeye-intelligence.com โ IDS: database port scan (MySQL/PostgreSQL/MSSQL). Automatically detected and blocked.
show less
Port Scan
๐ณ๐ฑ
BIV
2026-06-05 03:12:59
(1 week ago)
Honeypot multi-source hit. Sources: dshield:fw,tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 445. Auto ...
show more
Honeypot multi-source hit. Sources: dshield:fw,tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 445. Automated tiered (T-Pot+DShield).
show less
Port Scan
Hacking
๐ฉ๐ช
Yachiyo Runami
2026-06-04 06:48:29
(1 week ago)
Port Scan on Honeypot | Ports: 445/SMB | Proto: TCP(1) | Flags: all SYN | TTL: 107 | Len: 52B | Win: ...
show more
Port Scan on Honeypot | Ports: 445/SMB | Proto: TCP(1) | Flags: all SYN | TTL: 107 | Len: 52B | Win: 8192(1) | F2B/ufw-honeypot@2026-06-04T06:48:29Z
show less
Port Scan
Hacking
๐น๐ท
Threat.live
2026-06-03 03:25:03
(1 week ago)
Suspicious Connection Attempts
Brute-Force
๐ฌ๐ง
Andrew
2026-06-02 07:03:20
(1 week ago)
Blocked by UFW (TCP on port 1433).
Source port: 51395
TTL: 115
Packet length: 52
TOS: 0x00
This rep ...
show more
Blocked by UFW (TCP on port 1433).
Source port: 51395
TTL: 115
Packet length: 52
TOS: 0x00
This report (for 110.139.60.241) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ฎ๐ฉ
hermawan
2025-04-28 10:21:29
(1 year ago)
[Mon Apr 28 17:13:49.422425 2025] [security2:error] [pid 569327:tid 140330397542080] [client 110.139 ...
show more
[Mon Apr 28 17:13:49.422425 2025] [security2:error] [pid 569327:tid 140330397542080] [client 110.139.60.241:47406] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.*?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].*?[\\"'`]|(?:\\\\r?\\\\n)?\\\\z|[^\\"'`]+)|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]*?from|(?:alter|(?:(?:cre|trunc|upd)at|renam)e|d(?:e(?:lete|sc)|rop)|(?:inser|selec)t|load)[\\\\s\\\\x0b]*?\\\\([\\\\s\\\\x0b]*?space[\\\\s\\\\x0b]*?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2168"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/135.0.7049.100 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 11; V2043
...
show less
Hacking
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: