103.133.106.80

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): NOCIX Trading and Service Limited Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
103.133.106.150	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-10 06:39:00
103.133.106.150	attackspambots	Oct 9 15:50:14 proxy sshd[27807]: error: Received disconnect from 103.133.106.150 port 60428:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-10-09 22:51:22
103.133.106.150	attackspambots	Oct 9 08:31:54 server sshd[59975]: Failed password for invalid user admin from 103.133.106.150 port 51637 ssh2 Oct 9 08:32:02 server sshd[59997]: Failed password for invalid user admin from 103.133.106.150 port 52015 ssh2 Oct 9 08:32:13 server sshd[60133]: Failed password for invalid user admin from 103.133.106.150 port 52248 ssh2	2020-10-09 14:42:31
103.133.106.150	attack	Sep 29 12:15:50 * sshd[21744]: Invalid user admin from 103.133.106.150 port 50417 Sep 29 12:15:50 * sshd[21744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.133.106.150 Sep 29 12:15:53 * sshd[21744]: Failed password for invalid user admin from 103.133.106.150 port 50417 ssh2 Sep 29 12:15:53 * sshd[21744]: error: Received disconnect from 103.133.106.150 port 50417:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Sep 29 12:15:53 * sshd[21744]: Disconnected from 103.133.106.150 port 50417 [preauth] Sep 29 12:16:17 * sshd[21746]: Invalid user admin from 103.133.106.150 port 51002 Sep 29 12:16:18 * sshd[21746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.133.106.150 Sep 29 12:16:20 * sshd[21746]: Failed password for invalid user admin from 103.133.106.150 port 51002 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.133.106.150	2020-09-29 22:54:11
103.133.106.150	attackbotsspam	SSH Login Bruteforce	2020-09-29 15:12:05
103.133.106.164	attack	33389/tcp 33389/tcp 33389/tcp [2020-09-26]3pkt	2020-09-28 06:04:19
103.133.106.164	attackspambots	33389/tcp 33389/tcp 33389/tcp [2020-09-26]3pkt	2020-09-27 22:26:18
103.133.106.164	attack	33389/tcp 33389/tcp 33389/tcp [2020-09-26]3pkt	2020-09-27 14:17:43
103.133.106.246	attackspambots		2020-08-17 16:25:58
103.133.106.244	attackbotsspam	$f2bV_matches	2020-05-10 18:25:23
103.133.106.243	attackbotsspam	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-10-31 19:47:25
103.133.106.243	attack	2019-10-16 14:22:34 dovecot_login authenticator failed for (aYoRGm3kIF) [103.133.106.243]:64731 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-16 14:22:42 dovecot_login authenticator failed for (GZ68ITquE) [103.133.106.243]:54423 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-16 14:22:54 dovecot_login authenticator failed for (uKaVLr5) [103.133.106.243]:58950 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-10-17 07:33:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.133.106.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34377
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.133.106.80.			IN	A

;; AUTHORITY SECTION:
.			502	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 13:48:10 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 80.106.133.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.106.133.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.234.100.242	attackbots	Apr 10 01:39:01 meumeu sshd[11544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.100.242 Apr 10 01:39:03 meumeu sshd[11544]: Failed password for invalid user clara from 62.234.100.242 port 59650 ssh2 Apr 10 01:43:56 meumeu sshd[12399]: Failed password for root from 62.234.100.242 port 58608 ssh2 ...	2020-04-10 10:06:30
142.93.218.236	attack	Apr 10 05:54:17 silence02 sshd[22146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.218.236 Apr 10 05:54:18 silence02 sshd[22146]: Failed password for invalid user webmin from 142.93.218.236 port 34488 ssh2 Apr 10 05:59:13 silence02 sshd[22589]: Failed password for root from 142.93.218.236 port 53726 ssh2	2020-04-10 12:02:13
189.8.108.161	attackspam	Apr 10 04:42:25 ift sshd\[41487\]: Failed password for root from 189.8.108.161 port 43614 ssh2Apr 10 04:46:53 ift sshd\[42375\]: Invalid user pgadmin from 189.8.108.161Apr 10 04:46:55 ift sshd\[42375\]: Failed password for invalid user pgadmin from 189.8.108.161 port 51350 ssh2Apr 10 04:51:18 ift sshd\[43151\]: Invalid user test from 189.8.108.161Apr 10 04:51:20 ift sshd\[43151\]: Failed password for invalid user test from 189.8.108.161 port 59082 ssh2 ...	2020-04-10 10:16:05
62.110.66.66	attackspam	Apr 10 03:59:17 work-partkepr sshd\[24404\]: Invalid user azure from 62.110.66.66 port 36300 Apr 10 03:59:17 work-partkepr sshd\[24404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.110.66.66 ...	2020-04-10 12:01:32
114.67.110.88	attack	2020-04-09T23:37:20.680725shield sshd\[12755\]: Invalid user deploy from 114.67.110.88 port 41646 2020-04-09T23:37:20.684955shield sshd\[12755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.88 2020-04-09T23:37:23.144606shield sshd\[12755\]: Failed password for invalid user deploy from 114.67.110.88 port 41646 ssh2 2020-04-09T23:38:43.807590shield sshd\[12934\]: Invalid user samuel from 114.67.110.88 port 32824 2020-04-09T23:38:43.811354shield sshd\[12934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.88	2020-04-10 10:16:44
111.229.212.132	attackbots	Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:13:12 srv-ubuntu-dev3 sshd[26660]: Invalid user postgres from 111.229.212.132 Apr 10 06:13:14 srv-ubuntu-dev3 sshd[26660]: Failed password for invalid user postgres from 111.229.212.132 port 32800 ssh2 Apr 10 06:18:08 srv-ubuntu-dev3 sshd[27618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 user=root Apr 10 06:18:10 srv-ubuntu-dev3 sshd[27618]: Failed password for root from 111.229.212.132 port 54926 ssh2 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid user svn from 111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.212.132 Apr 10 06:22:50 srv-ubuntu-dev3 sshd[28365]: Invalid ...	2020-04-10 12:25:42
34.95.175.89	attack	34.95.175.89 - - [10/Apr/2020:05:58:56 +0200] "GET /wp-login.php HTTP/1.1" 200 6136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.95.175.89 - - [10/Apr/2020:05:58:59 +0200] "POST /wp-login.php HTTP/1.1" 200 7014 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.95.175.89 - - [10/Apr/2020:05:59:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-10 12:14:00
218.56.160.82	attack	2020-04-10T01:37:09.720843struts4.enskede.local sshd\[4194\]: Invalid user admin from 218.56.160.82 port 43770 2020-04-10T01:37:09.726947struts4.enskede.local sshd\[4194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.160.82 2020-04-10T01:37:13.648708struts4.enskede.local sshd\[4194\]: Failed password for invalid user admin from 218.56.160.82 port 43770 ssh2 2020-04-10T01:40:56.945217struts4.enskede.local sshd\[4251\]: Invalid user ut2k4server from 218.56.160.82 port 33431 2020-04-10T01:40:56.951294struts4.enskede.local sshd\[4251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.160.82 ...	2020-04-10 10:17:57
122.14.228.229	attackbotsspam	SSH Brute-Forcing (server1)	2020-04-10 10:16:27
211.219.114.39	attack	2020-04-10T03:51:05.052060abusebot-6.cloudsearch.cf sshd[10762]: Invalid user ec2-user from 211.219.114.39 port 43071 2020-04-10T03:51:05.067436abusebot-6.cloudsearch.cf sshd[10762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.219.114.39 2020-04-10T03:51:05.052060abusebot-6.cloudsearch.cf sshd[10762]: Invalid user ec2-user from 211.219.114.39 port 43071 2020-04-10T03:51:07.320110abusebot-6.cloudsearch.cf sshd[10762]: Failed password for invalid user ec2-user from 211.219.114.39 port 43071 ssh2 2020-04-10T03:55:04.184818abusebot-6.cloudsearch.cf sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.219.114.39 user=root 2020-04-10T03:55:05.579427abusebot-6.cloudsearch.cf sshd[11001]: Failed password for root from 211.219.114.39 port 48409 ssh2 2020-04-10T03:58:54.844843abusebot-6.cloudsearch.cf sshd[11284]: Invalid user test from 211.219.114.39 port 53754 ...	2020-04-10 12:17:06
212.95.137.207	attackbots	2020-04-10T02:25:51.284706ns386461 sshd\[10638\]: Invalid user ubuntu from 212.95.137.207 port 41992 2020-04-10T02:25:51.289437ns386461 sshd\[10638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.207 2020-04-10T02:25:53.376353ns386461 sshd\[10638\]: Failed password for invalid user ubuntu from 212.95.137.207 port 41992 ssh2 2020-04-10T02:29:51.974444ns386461 sshd\[14257\]: Invalid user clara from 212.95.137.207 port 47778 2020-04-10T02:29:51.979513ns386461 sshd\[14257\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.207 ...	2020-04-10 10:12:07
117.50.93.66	attack	Apr 10 00:12:16 NPSTNNYC01T sshd[22828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.93.66 Apr 10 00:12:18 NPSTNNYC01T sshd[22828]: Failed password for invalid user martin from 117.50.93.66 port 45218 ssh2 Apr 10 00:16:44 NPSTNNYC01T sshd[23035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.93.66 ...	2020-04-10 12:24:48
77.42.72.140	attack	Unauthorised access (Apr 10) SRC=77.42.72.140 LEN=44 TTL=47 ID=43515 TCP DPT=23 WINDOW=35342 SYN	2020-04-10 12:18:36
39.41.242.110	attackspambots	Email rejected due to spam filtering	2020-04-10 10:17:15
218.92.0.195	attack	04/10/2020-00:14:56.319513 218.92.0.195 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-10 12:16:14

最近上报的IP列表

62.58.149.58	163.117.142.186	31.197.134.190	78.223.199.179
207.166.201.5	74.98.153.83	219.54.100.224	34.80.246.150
200.247.68.58	202.169.235.17	34.36.125.17	116.229.237.99
15.35.120.124	174.49.11.127	40.244.146.63	99.166.189.123
75.134.241.64	70.40.31.214	198.50.200.80	61.247.135.159