103.124.138.61

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.124.138.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37374
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.124.138.61.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 22:45:15 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

61.138.124.103.in-addr.arpa domain name pointer host-103.124.138-61.gmdp.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
61.138.124.103.in-addr.arpa	name = host-103.124.138-61.gmdp.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
134.209.247.249	attack	$f2bV_matches	2019-06-28 15:29:00
193.112.216.20	attackspam	[FriJun2807:14:29.2303592019][:error][pid6263:tid47523387008768][client193.112.216.20:64595][client193.112.216.20]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected$DisableifyouwanttoallowMSIE6$"][severity"WARNING"][hostname"ledpiu.ch"][uri"/wp-content/plugins/woo-fiscalita-italiana/README.txt"][unique_id"XRWiNYbDkXlqCmmoBPL55gAAAQI"][FriJun2807:14:35.6120182019][:error][pid6262:tid47523389110016][client193.112.216.20:64878][client193.112.216.20]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][msg"	2019-06-28 15:31:57
211.151.95.139	attackbots	$f2bV_matches	2019-06-28 15:27:12
170.244.13.31	attackspam	Brute force attempt	2019-06-28 15:31:00
45.230.169.14	attackbotsspam	Invalid user stormtech from 45.230.169.14 port 51552 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.230.169.14 Failed password for invalid user stormtech from 45.230.169.14 port 51552 ssh2 Invalid user william from 45.230.169.14 port 14479 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.230.169.14	2019-06-28 15:53:31
62.234.77.136	attackspambots	Jun 26 11:01:35 srv1 sshd[10262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.77.136 user=r.r Jun 26 11:01:36 srv1 sshd[10262]: Failed password for r.r from 62.234.77.136 port 52712 ssh2 Jun 26 11:01:37 srv1 sshd[10262]: Received disconnect from 62.234.77.136: 11: Bye Bye [preauth] Jun 26 11:01:40 srv1 sshd[10283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.77.136 user=r.r Jun 26 11:01:42 srv1 sshd[10283]: Failed password for r.r from 62.234.77.136 port 57283 ssh2 Jun 26 11:01:42 srv1 sshd[10283]: Received disconnect from 62.234.77.136: 11: Bye Bye [preauth] Jun 26 11:01:44 srv1 sshd[10285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.77.136 user=r.r Jun 26 11:01:46 srv1 sshd[10285]: Failed password for r.r from 62.234.77.136 port 59484 ssh2 Jun 26 11:01:46 srv1 sshd[10285]: Received disconnect from 62.234.77.136: 1........ -------------------------------	2019-06-28 15:39:46
192.169.188.100	attack	[FriJun2807:13:51.3039382019][:error][pid6263:tid47523490191104][client192.169.188.100:53219][client192.169.188.100]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected$DisableifyouwanttoallowMSIE6$"][severity"WARNING"][hostname"ledpiu.ch"][uri"/wp-content/plugins/woo-fiscalita-italiana/license.txt"][unique_id"XRWiD4bDkXlqCmmoBPL53gAAARM"][FriJun2807:13:55.2270732019][:error][pid6261:tid47523490191104][client192.169.188.100:56812][client192.169.188.100]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx$MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com$"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][	2019-06-28 15:46:43
165.22.78.120	attack	Jun 28 07:36:47 OPSO sshd\[18019\]: Invalid user helen from 165.22.78.120 port 34532 Jun 28 07:36:47 OPSO sshd\[18019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.120 Jun 28 07:36:49 OPSO sshd\[18019\]: Failed password for invalid user helen from 165.22.78.120 port 34532 ssh2 Jun 28 07:38:20 OPSO sshd\[18101\]: Invalid user dc from 165.22.78.120 port 50916 Jun 28 07:38:20 OPSO sshd\[18101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.120	2019-06-28 15:36:11
82.41.77.242	attackbotsspam	proto=tcp . spt=30858 . dpt=25 . (listed on Blocklist de Jun 27) (433)	2019-06-28 15:45:23
74.82.47.37	attack	Unauthorised access (Jun 28) SRC=74.82.47.37 LEN=40 TTL=243 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2019-06-28 15:36:34
79.107.200.24	attack	28.06.2019 05:13:43 Command injection vulnerability attempt/scan (login.cgi)	2019-06-28 15:52:17
218.164.70.207	attackbotsspam	37215/tcp 37215/tcp 37215/tcp [2019-06-25/27]3pkt	2019-06-28 16:00:14
1.163.40.37	attackspam	37215/tcp 37215/tcp 37215/tcp [2019-06-26]3pkt	2019-06-28 15:58:07
94.191.28.110	attackbots	Jun 28 07:03:20 debian sshd\[6736\]: Invalid user gzuser from 94.191.28.110 port 46996 Jun 28 07:03:20 debian sshd\[6736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.28.110 ...	2019-06-28 15:51:09
123.249.76.227	attackbotsspam	Port Scan 3389	2019-06-28 15:29:16

最近上报的IP列表

58.213.235.252	103.25.44.34	54.198.119.19	43.129.27.213
5.200.88.218	213.27.18.22	222.67.18.158	41.59.51.115
200.233.254.230	60.190.196.66	103.242.104.244	190.238.108.166
125.25.153.3	115.227.156.156	198.23.251.27	102.64.123.159
121.153.103.58	124.227.31.50	43.154.22.78	143.198.233.92