103.107.100.13

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Sigma Cipta Caraka

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user postgres from 103.107.100.13 port 34340	2020-01-10 23:47:40
attack	SSH auth scanning - multiple failed logins	2019-12-31 13:26:54
attackspam	2019-12-29T10:09:08.964355abusebot-3.cloudsearch.cf sshd[22343]: Invalid user obadiah from 103.107.100.13 port 51002 2019-12-29T10:09:08.971046abusebot-3.cloudsearch.cf sshd[22343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.13 2019-12-29T10:09:08.964355abusebot-3.cloudsearch.cf sshd[22343]: Invalid user obadiah from 103.107.100.13 port 51002 2019-12-29T10:09:11.372851abusebot-3.cloudsearch.cf sshd[22343]: Failed password for invalid user obadiah from 103.107.100.13 port 51002 ssh2 2019-12-29T10:11:41.039740abusebot-3.cloudsearch.cf sshd[22352]: Invalid user mysql from 103.107.100.13 port 48920 2019-12-29T10:11:41.045771abusebot-3.cloudsearch.cf sshd[22352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.13 2019-12-29T10:11:41.039740abusebot-3.cloudsearch.cf sshd[22352]: Invalid user mysql from 103.107.100.13 port 48920 2019-12-29T10:11:42.785395abusebot-3.cloudsearch.cf sshd[2 ...	2019-12-29 19:58:10
attackspam	Dec 28 05:52:22 ns382633 sshd\[29057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.13 user=root Dec 28 05:52:24 ns382633 sshd\[29057\]: Failed password for root from 103.107.100.13 port 43026 ssh2 Dec 28 05:58:59 ns382633 sshd\[30001\]: Invalid user ermelinda from 103.107.100.13 port 58562 Dec 28 05:58:59 ns382633 sshd\[30001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.13 Dec 28 05:59:01 ns382633 sshd\[30001\]: Failed password for invalid user ermelinda from 103.107.100.13 port 58562 ssh2	2019-12-28 13:00:44
attack	$f2bV_matches	2019-12-26 03:21:28

相同子网IP讨论:

IP	类型	评论内容	时间
103.107.100.217	attack	Feb 19 14:35:34 sd-53420 sshd\[15014\]: Invalid user zhcui from 103.107.100.217 Feb 19 14:35:34 sd-53420 sshd\[15014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.217 Feb 19 14:35:36 sd-53420 sshd\[15014\]: Failed password for invalid user zhcui from 103.107.100.217 port 35600 ssh2 Feb 19 14:38:04 sd-53420 sshd\[15197\]: Invalid user minecraft from 103.107.100.217 Feb 19 14:38:04 sd-53420 sshd\[15197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.217 ...	2020-02-19 21:48:31

类型

评论内容

时间

103.107.100.217

attack

Feb 19 14:35:34 sd-53420 sshd\[15014\]: Invalid user zhcui from 103.107.100.217
Feb 19 14:35:34 sd-53420 sshd\[15014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.217
Feb 19 14:35:36 sd-53420 sshd\[15014\]: Failed password for invalid user zhcui from 103.107.100.217 port 35600 ssh2
Feb 19 14:38:04 sd-53420 sshd\[15197\]: Invalid user minecraft from 103.107.100.217
Feb 19 14:38:04 sd-53420 sshd\[15197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.100.217
...

2020-02-19 21:48:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.107.100.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44359
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.107.100.13.			IN	A

;; AUTHORITY SECTION:
.			132	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122501 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 03:21:25 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 13.100.107.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.100.107.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.97.178.174	attackspambots	Mar 13 08:33:20 markkoudstaal sshd[11472]: Failed password for root from 209.97.178.174 port 46654 ssh2 Mar 13 08:40:30 markkoudstaal sshd[12634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.178.174 Mar 13 08:40:32 markkoudstaal sshd[12634]: Failed password for invalid user ts3server from 209.97.178.174 port 35174 ssh2	2020-03-13 15:59:17
167.114.131.19	attackbotsspam	Mar 11 16:20:51 kmh-wmh-003-nbg03 sshd[2576]: Invalid user cymtv from 167.114.131.19 port 9622 Mar 11 16:20:51 kmh-wmh-003-nbg03 sshd[2576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.131.19 Mar 11 16:20:52 kmh-wmh-003-nbg03 sshd[2576]: Failed password for invalid user cymtv from 167.114.131.19 port 9622 ssh2 Mar 11 16:20:52 kmh-wmh-003-nbg03 sshd[2576]: Received disconnect from 167.114.131.19 port 9622:11: Bye Bye [preauth] Mar 11 16:20:52 kmh-wmh-003-nbg03 sshd[2576]: Disconnected from 167.114.131.19 port 9622 [preauth] Mar 11 16:22:32 kmh-wmh-003-nbg03 sshd[2703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.131.19 user=r.r Mar 11 16:22:34 kmh-wmh-003-nbg03 sshd[2703]: Failed password for r.r from 167.114.131.19 port 25406 ssh2 Mar 11 16:22:34 kmh-wmh-003-nbg03 sshd[2703]: Received disconnect from 167.114.131.19 port 25406:11: Bye Bye [preauth] Mar 11 16:22:34 kmh........ -------------------------------	2020-03-13 15:22:11
122.51.73.73	attack	Invalid user cdr from 122.51.73.73 port 59268	2020-03-13 16:00:55
222.186.173.215	attack	Mar 12 21:17:32 web9 sshd\[5329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Mar 12 21:17:33 web9 sshd\[5329\]: Failed password for root from 222.186.173.215 port 32876 ssh2 Mar 12 21:17:50 web9 sshd\[5395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Mar 12 21:17:52 web9 sshd\[5395\]: Failed password for root from 222.186.173.215 port 5658 ssh2 Mar 12 21:17:55 web9 sshd\[5395\]: Failed password for root from 222.186.173.215 port 5658 ssh2	2020-03-13 15:30:12
179.210.153.201	attackspambots	trying to access non-authorized port	2020-03-13 15:37:10
83.12.107.106	attackspambots	Multiple SSH login attempts.	2020-03-13 15:30:33
92.209.199.70	attack	Automatic report - Port Scan Attack	2020-03-13 15:37:42
167.114.4.204	attack	Invalid user a from 167.114.4.204 port 37922	2020-03-13 15:26:45
98.152.155.210	attackspam	TCP port 3389: Scan and connection	2020-03-13 15:48:56
158.69.223.91	attack	(sshd) Failed SSH login from 158.69.223.91 (CA/Canada/91.ip-158-69-223.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 13 07:56:22 ubnt-55d23 sshd[17895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.223.91 user=root Mar 13 07:56:24 ubnt-55d23 sshd[17895]: Failed password for root from 158.69.223.91 port 44796 ssh2	2020-03-13 15:17:53
180.76.174.197	attack	(sshd) Failed SSH login from 180.76.174.197 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 13 06:48:14 amsweb01 sshd[13203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.174.197 user=root Mar 13 06:48:16 amsweb01 sshd[13203]: Failed password for root from 180.76.174.197 port 59682 ssh2 Mar 13 07:01:14 amsweb01 sshd[14730]: User apache from 180.76.174.197 not allowed because not listed in AllowUsers Mar 13 07:01:14 amsweb01 sshd[14730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.174.197 user=apache Mar 13 07:01:16 amsweb01 sshd[14730]: Failed password for invalid user apache from 180.76.174.197 port 37492 ssh2	2020-03-13 15:51:18
222.186.175.182	attack	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Failed password for root from 222.186.175.182 port 9526 ssh2 Failed password for root from 222.186.175.182 port 9526 ssh2 Failed password for root from 222.186.175.182 port 9526 ssh2 Failed password for root from 222.186.175.182 port 9526 ssh2	2020-03-13 15:43:49
119.86.183.88	attack	2020-03-13 01:45:57 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/119.86.183.88) 2020-03-13 01:45:58 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2020-03-13 01:45:58 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2020-03-13 15:58:11
104.207.151.55	attackbots	$f2bV_matches	2020-03-13 15:27:51
218.4.234.74	attack	Mar 13 12:34:07 areeb-Workstation sshd[2207]: Failed password for root from 218.4.234.74 port 2217 ssh2 ...	2020-03-13 15:12:32

最近上报的IP列表

216.189.156.101	108.135.73.44	204.140.251.76	165.22.125.248
181.43.212.94	103.75.164.250	56.158.15.102	171.239.201.180
45.203.219.102	118.148.228.84	114.25.216.185	114.249.128.194
157.230.41.141	81.251.12.186	156.216.182.249	32.205.201.216
101.91.219.207	125.188.211.44	118.97.248.171	156.215.117.166