103.140.131.20

基本信息:

城市(city): Serang

省份(region): Banten

国家(country): Indonesia

运营商(isp): PT Mitra Media Data

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	sshd login attampt	2020-04-26 20:09:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.140.131.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.140.131.20.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 181 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 05:26:50 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 20.131.140.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.131.140.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.77.182	attack	SSH brute-force: detected 15 distinct usernames within a 24-hour window.	2020-03-28 17:49:00
95.56.248.107	attackbots	port scan and connect, tcp 23 (telnet)	2020-03-28 17:51:12
180.76.173.75	attack	Mar 27 19:22:38 kapalua sshd\[21987\]: Invalid user user from 180.76.173.75 Mar 27 19:22:38 kapalua sshd\[21987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.75 Mar 27 19:22:39 kapalua sshd\[21987\]: Failed password for invalid user user from 180.76.173.75 port 46692 ssh2 Mar 27 19:26:45 kapalua sshd\[22339\]: Invalid user zuo from 180.76.173.75 Mar 27 19:26:45 kapalua sshd\[22339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.75	2020-03-28 17:44:06
175.24.1.5	attackbotsspam	Mar 28 07:24:26 sd1 sshd[5407]: Invalid user cjg from 175.24.1.5 Mar 28 07:24:26 sd1 sshd[5407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.1.5 Mar 28 07:24:27 sd1 sshd[5407]: Failed password for invalid user cjg from 175.24.1.5 port 45446 ssh2 Mar 28 07:43:43 sd1 sshd[5900]: Invalid user ydx from 175.24.1.5 Mar 28 07:43:43 sd1 sshd[5900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.1.5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.24.1.5	2020-03-28 17:45:33
192.241.235.11	attackbotsspam	SSH brute-force attempt	2020-03-28 18:24:48
189.130.173.217	attackspambots	Unauthorized connection attempt detected from IP address 189.130.173.217 to port 8000	2020-03-28 18:16:39
159.192.143.249	attackbots	Invalid user nox from 159.192.143.249 port 35500	2020-03-28 18:12:35
185.175.93.6	attackbots	152 packets to ports 3350 3354 3355 3356 3357 3359 3360 3361 3362 3363 3364 3365 3366 3368 3369 3370 3371 3372 3373 3374 3376 3377 3378 3379 3380 3381 3382 3383 3384 3385 3386 3387 3388 3390 3391 3392 3394 3395 3397 3400 3403 3404 3405 3406 3407 3409 3410 3411, etc.	2020-03-28 18:27:15
106.12.179.56	attack	2020-03-28T06:00:44.050022vps773228.ovh.net sshd[21567]: Invalid user zuo from 106.12.179.56 port 51570 2020-03-28T06:00:44.062273vps773228.ovh.net sshd[21567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.56 2020-03-28T06:00:44.050022vps773228.ovh.net sshd[21567]: Invalid user zuo from 106.12.179.56 port 51570 2020-03-28T06:00:46.220395vps773228.ovh.net sshd[21567]: Failed password for invalid user zuo from 106.12.179.56 port 51570 ssh2 2020-03-28T06:03:53.781100vps773228.ovh.net sshd[22736]: Invalid user zud from 106.12.179.56 port 38118 ...	2020-03-28 18:01:29
200.29.100.5	attackspam	Mar 28 02:55:57 firewall sshd[30703]: Invalid user sw from 200.29.100.5 Mar 28 02:56:00 firewall sshd[30703]: Failed password for invalid user sw from 200.29.100.5 port 45636 ssh2 Mar 28 03:00:10 firewall sshd[30840]: Invalid user pahomova from 200.29.100.5 ...	2020-03-28 18:14:07
31.18.253.199	attack	Brute force VPN server	2020-03-28 18:05:19
192.241.237.188	attackbotsspam	135/tcp 623/udp 50070/tcp... [2020-03-15/27]13pkt,11pt.(tcp),2pt.(udp)	2020-03-28 18:23:33
187.202.60.152	attackbotsspam	$f2bV_matches	2020-03-28 17:48:23
171.67.70.85	attackspam	IP: 171.67.70.85 Ports affected World Wide Web HTTP (80) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS32 STANFORD United States (US) CIDR 171.64.0.0/14 Log Date: 28/03/2020 9:36:16 AM UTC	2020-03-28 18:31:44
185.98.87.158	attackspambots	32 packets to ports 2222 3310 3340 3350 3397 4444 5050 5589 6666 8000 10002 11000 50000 55555	2020-03-28 18:28:36

最近上报的IP列表

97.9.49.137	94.177.225.152	121.122.66.4	132.184.61.242
222.20.64.242	72.142.57.17	4.14.27.4	221.66.123.73
107.133.183.95	220.200.226.115	3.223.219.165	60.155.178.5
77.76.193.222	146.185.182.192	216.182.253.199	139.20.214.246
218.133.161.138	179.135.113.174	71.250.72.115	112.83.167.39