103.111.149.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Global Sarana Telematika

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Automatic report - Port Scan Attack	2019-09-24 07:07:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.111.149.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47453
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.111.149.2.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092301 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 24 07:07:43 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 2.149.111.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.149.111.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.79.142.79	attackbots	Port Scan ...	2020-10-01 03:19:00
36.133.87.7	attackbotsspam	$f2bV_matches	2020-10-01 02:55:15
190.246.152.221	attackbotsspam	Sep 29 22:23:17 kunden sshd[7789]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:23:17 kunden sshd[7789]: Invalid user lisa1 from 190.246.152.221 Sep 29 22:23:17 kunden sshd[7789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 Sep 29 22:23:19 kunden sshd[7789]: Failed password for invalid user lisa1 from 190.246.152.221 port 57462 ssh2 Sep 29 22:23:19 kunden sshd[7789]: Received disconnect from 190.246.152.221: 11: Bye Bye [preauth] Sep 29 22:30:33 kunden sshd[14968]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:30:33 kunden sshd[14968]: Invalid user han from 190.246.152.221 Sep 29 22:30:33 kunden sshd[14968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 S........ -------------------------------	2020-10-01 02:54:52
35.176.212.208	attackbots	Fail2Ban Ban Triggered	2020-10-01 03:10:09
5.187.237.56	attackspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-01 02:53:42
106.13.206.183	attack	5x Failed Password	2020-10-01 03:20:08
109.237.97.132	attackspambots	SpamScore above: 10.0	2020-10-01 03:09:16
192.40.59.239	attackspambots	VoIP Server hacking to commit international toll fraud	2020-10-01 03:03:36
54.240.48.101	attackspambots	SpamScore above: 10.0	2020-10-01 03:12:25
39.65.200.100	attack	TCP (SYN) 39.65.200.100:28344 -> port 23, len 44	2020-10-01 03:12:59
240e:390:1040:22c3:246:5d8f:c000:189c	attackbotsspam	Attempted Email Sync. Password Hacking/Probing.	2020-10-01 03:02:54
104.248.66.115	attackspambots	Sep 30 19:10:26 ip-172-31-42-142 sshd\[18859\]: Invalid user hdfs from 104.248.66.115\ Sep 30 19:10:27 ip-172-31-42-142 sshd\[18859\]: Failed password for invalid user hdfs from 104.248.66.115 port 50870 ssh2\ Sep 30 19:13:28 ip-172-31-42-142 sshd\[18872\]: Failed password for root from 104.248.66.115 port 50370 ssh2\ Sep 30 19:16:28 ip-172-31-42-142 sshd\[18885\]: Invalid user server from 104.248.66.115\ Sep 30 19:16:30 ip-172-31-42-142 sshd\[18885\]: Failed password for invalid user server from 104.248.66.115 port 49866 ssh2\	2020-10-01 03:20:26
34.102.136.180	attackbotsspam	spam	2020-10-01 03:02:14
209.141.61.78	attackspam	Unauthorised access (Sep 30) SRC=209.141.61.78 LEN=40 TOS=0x08 PREC=0x20 TTL=236 ID=48568 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Sep 29) SRC=209.141.61.78 LEN=40 TOS=0x08 PREC=0x20 TTL=236 ID=17978 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Sep 29) SRC=209.141.61.78 LEN=40 TOS=0x08 PREC=0x20 TTL=236 ID=50654 TCP DPT=3389 WINDOW=1024 SYN	2020-10-01 03:17:23
176.59.115.90	attack	Attempted Email Sync. Password Hacking/Probing.	2020-10-01 03:04:35

最近上报的IP列表

78.73.16.229	30.13.38.134	205.129.163.187	172.247.55.86
129.49.165.56	61.156.162.129	133.167.4.91	184.18.169.168
212.149.234.225	125.214.77.1	201.230.112.121	34.199.181.97
85.85.108.60	30.198.49.94	100.61.147.131	85.187.10.174
219.180.241.158	134.148.18.60	174.206.233.114	22.232.221.253