103.104.119.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Representative Office of Ligh Technology Viet Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jul 12 09:36:04 mail sshd[12616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.107 Jul 12 09:36:06 mail sshd[12616]: Failed password for invalid user nerida from 103.104.119.107 port 52074 ssh2 ...	2020-07-14 13:39:28
attack	Wordpress Admin Login attack	2020-04-21 04:01:53

类型

评论内容

时间

attackbotsspam

Jul 12 09:36:04 mail sshd[12616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.107 
Jul 12 09:36:06 mail sshd[12616]: Failed password for invalid user nerida from 103.104.119.107 port 52074 ssh2
...

2020-07-14 13:39:28

attack

Wordpress Admin Login attack

2020-04-21 04:01:53

相同子网IP讨论:

IP	类型	评论内容	时间
103.104.119.66	attackbots	Port Scan ...	2020-08-29 19:41:06
103.104.119.133	attackspam	Invalid user peter from 103.104.119.133 port 36590	2020-07-19 03:35:35
103.104.119.165	attack	Jul 11 00:08:12 meumeu sshd[341322]: Invalid user samantha from 103.104.119.165 port 50420 Jul 11 00:08:12 meumeu sshd[341322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.165 Jul 11 00:08:12 meumeu sshd[341322]: Invalid user samantha from 103.104.119.165 port 50420 Jul 11 00:08:14 meumeu sshd[341322]: Failed password for invalid user samantha from 103.104.119.165 port 50420 ssh2 Jul 11 00:11:27 meumeu sshd[341526]: Invalid user vusers from 103.104.119.165 port 37786 Jul 11 00:11:27 meumeu sshd[341526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.165 Jul 11 00:11:27 meumeu sshd[341526]: Invalid user vusers from 103.104.119.165 port 37786 Jul 11 00:11:29 meumeu sshd[341526]: Failed password for invalid user vusers from 103.104.119.165 port 37786 ssh2 Jul 11 00:14:50 meumeu sshd[341818]: Invalid user tq from 103.104.119.165 port 53418 ...	2020-07-11 06:24:03
103.104.119.133	attackspambots	Jul 9 21:53:18 rocket sshd[21774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.133 Jul 9 21:53:21 rocket sshd[21774]: Failed password for invalid user tsubohara from 103.104.119.133 port 55312 ssh2 Jul 9 21:57:50 rocket sshd[22361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.133 ...	2020-07-10 05:19:11
103.104.119.58	attackbotsspam	DATE:2020-07-09 14:07:35, IP:103.104.119.58, PORT:ssh SSH brute force auth (docker-dc)	2020-07-09 23:03:36
103.104.119.114	attack	2020-07-08 UTC: (37x) - admin,adolfo,batman,cmp,debian,dev,filipp,jace,komiyama,lisbet,lyl,mashuai,melev,mongodb,plex,rapid,roberts,ruben,shunsuke,sm,sq,steam,sunqiu,test,tit,tomcat,user(2x),uta,velarde,vmail,xavier,yuan,zhanzheng,zhouqiurun,zhp,ziping	2020-07-09 19:51:25
103.104.119.189	attackbots	Jul 7 17:41:46 scw-6657dc sshd[12624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.189 Jul 7 17:41:46 scw-6657dc sshd[12624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.189 Jul 7 17:41:48 scw-6657dc sshd[12624]: Failed password for invalid user xinghan from 103.104.119.189 port 34692 ssh2 ...	2020-07-08 02:28:15
103.104.119.58	attackbotsspam	Jul 4 23:25:01 OPSO sshd\[26088\]: Invalid user ppp from 103.104.119.58 port 37416 Jul 4 23:25:01 OPSO sshd\[26088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.58 Jul 4 23:25:03 OPSO sshd\[26088\]: Failed password for invalid user ppp from 103.104.119.58 port 37416 ssh2 Jul 4 23:28:27 OPSO sshd\[26982\]: Invalid user big from 103.104.119.58 port 51228 Jul 4 23:28:27 OPSO sshd\[26982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.58	2020-07-05 05:33:13
103.104.119.189	attackbotsspam	Jul 4 14:25:29 buvik sshd[23618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.189 Jul 4 14:25:31 buvik sshd[23618]: Failed password for invalid user usuario1 from 103.104.119.189 port 59254 ssh2 Jul 4 14:28:40 buvik sshd[24016]: Invalid user bty from 103.104.119.189 ...	2020-07-04 22:45:19
103.104.119.141	attack	Jul 4 08:58:28 gw1 sshd[5725]: Failed password for root from 103.104.119.141 port 33084 ssh2 Jul 4 09:02:31 gw1 sshd[5920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.141 ...	2020-07-04 15:12:58
103.104.119.133	attackbotsspam	Jul 2 20:03:06 server1 sshd\[10361\]: Invalid user bao from 103.104.119.133 Jul 2 20:03:06 server1 sshd\[10361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.133 Jul 2 20:03:07 server1 sshd\[10361\]: Failed password for invalid user bao from 103.104.119.133 port 54796 ssh2 Jul 2 20:07:50 server1 sshd\[11886\]: Invalid user kross from 103.104.119.133 Jul 2 20:07:50 server1 sshd\[11886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.133 ...	2020-07-03 23:21:53
103.104.119.165	attack	2020-06-30T16:44:56.369296mail.csmailer.org sshd[30281]: Invalid user dst from 103.104.119.165 port 50226 2020-06-30T16:44:56.373035mail.csmailer.org sshd[30281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.165 2020-06-30T16:44:56.369296mail.csmailer.org sshd[30281]: Invalid user dst from 103.104.119.165 port 50226 2020-06-30T16:44:58.223748mail.csmailer.org sshd[30281]: Failed password for invalid user dst from 103.104.119.165 port 50226 ssh2 2020-06-30T16:48:36.548739mail.csmailer.org sshd[31094]: Invalid user lucas from 103.104.119.165 port 39588 ...	2020-07-01 05:57:33
103.104.119.173	attackspambots	Invalid user wangying from 103.104.119.173 port 44114	2020-07-01 05:08:37
103.104.119.141	attackbotsspam	Jun 29 15:04:04 meumeu sshd[92086]: Invalid user glassfish from 103.104.119.141 port 59356 Jun 29 15:04:04 meumeu sshd[92086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.141 Jun 29 15:04:04 meumeu sshd[92086]: Invalid user glassfish from 103.104.119.141 port 59356 Jun 29 15:04:07 meumeu sshd[92086]: Failed password for invalid user glassfish from 103.104.119.141 port 59356 ssh2 Jun 29 15:07:34 meumeu sshd[92146]: Invalid user producao from 103.104.119.141 port 42210 Jun 29 15:07:34 meumeu sshd[92146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.119.141 Jun 29 15:07:34 meumeu sshd[92146]: Invalid user producao from 103.104.119.141 port 42210 Jun 29 15:07:36 meumeu sshd[92146]: Failed password for invalid user producao from 103.104.119.141 port 42210 ssh2 Jun 29 15:11:08 meumeu sshd[92267]: Invalid user lpj from 103.104.119.141 port 53290 ...	2020-06-30 01:18:31
103.104.119.66	attackbots	Invalid user bbq from 103.104.119.66 port 47270	2020-06-25 06:05:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.104.119.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.104.119.107.		IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042001 1800 900 604800 86400

;; Query time: 156 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 04:01:50 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 107.119.104.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.119.104.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
202.90.198.213	attackbots	Nov 1 07:02:04 h2177944 sshd\[1583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.90.198.213 user=root Nov 1 07:02:06 h2177944 sshd\[1583\]: Failed password for root from 202.90.198.213 port 40916 ssh2 Nov 1 07:07:55 h2177944 sshd\[1844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.90.198.213 user=root Nov 1 07:07:57 h2177944 sshd\[1844\]: Failed password for root from 202.90.198.213 port 51608 ssh2 ...	2019-11-01 16:16:51
118.24.99.161	attack	Nov 1 06:12:13 vps647732 sshd[6168]: Failed password for root from 118.24.99.161 port 37346 ssh2 ...	2019-11-01 15:54:38
121.63.106.22	attack	23/tcp [2019-11-01]1pkt	2019-11-01 16:11:34
42.118.42.233	attackbots	Nov 1 03:55:04 mxgate1 postfix/postscreen[3256]: CONNECT from [42.118.42.233]:5201 to [176.31.12.44]:25 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3522]: addr 42.118.42.233 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3522]: addr 42.118.42.233 listed by domain zen.spamhaus.org as 127.0.0.10 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3522]: addr 42.118.42.233 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3521]: addr 42.118.42.233 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3539]: addr 42.118.42.233 listed by domain bl.spamcop.net as 127.0.0.2 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3523]: addr 42.118.42.233 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 1 03:55:04 mxgate1 postfix/dnsblog[3524]: addr 42.118.42.233 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 1 03:55:05 mxgate1 postfix/postscreen[3256]: PREGREET 18 after 0.74 from [42........ -------------------------------	2019-11-01 16:28:52
186.95.236.10	attackbots	445/tcp [2019-11-01]1pkt	2019-11-01 16:23:38
1.172.60.103	attackbots	port 23 attempt blocked	2019-11-01 16:24:02
106.12.202.192	attackspambots	Invalid user Vision from 106.12.202.192 port 34884	2019-11-01 16:34:50
188.166.239.106	attackspam	Nov 1 00:40:22 ny01 sshd[20117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106 Nov 1 00:40:25 ny01 sshd[20117]: Failed password for invalid user chaitanya from 188.166.239.106 port 51183 ssh2 Nov 1 00:44:46 ny01 sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106	2019-11-01 16:20:33
139.199.133.160	attack	2019-11-01T07:37:10.657704abusebot-8.cloudsearch.cf sshd\[1898\]: Invalid user tolarian from 139.199.133.160 port 58972	2019-11-01 16:32:51
202.79.171.196	attack	445/tcp [2019-11-01]1pkt	2019-11-01 16:20:59
193.32.163.182	attack	Nov 1 08:30:02 fr01 sshd[2958]: Invalid user admin from 193.32.163.182 ...	2019-11-01 15:55:35
177.42.254.199	attackspam	web-1 [ssh_2] SSH Attack	2019-11-01 15:54:19
171.100.23.253	attackbotsspam	Fail2Ban Ban Triggered	2019-11-01 16:19:06
92.118.38.38	attack	Nov 1 09:02:58 webserver postfix/smtpd\[23437\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 09:03:34 webserver postfix/smtpd\[23733\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 09:04:11 webserver postfix/smtpd\[23437\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 09:04:47 webserver postfix/smtpd\[23733\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 09:05:23 webserver postfix/smtpd\[23437\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-01 16:08:02
37.79.38.86	attackspam	Unauthorized IMAP connection attempt	2019-11-01 15:59:34

最近上报的IP列表

62.234.6.145	73.125.188.240	181.97.139.107	80.82.69.129
2.228.87.82	73.0.44.68	183.56.218.161	77.232.138.105
23.94.136.105	49.233.151.126	5.79.70.123	206.81.5.154
54.197.187.73	47.103.144.250	119.6.228.17	185.242.6.29
79.251.185.67	176.99.130.10	104.131.118.34	109.197.153.126