必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.20.204.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 762
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.20.204.114.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031100 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 11 17:00:32 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 114.204.20.103.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.204.20.103.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
213.102.85.36 attackbotsspam
Sep 10 18:55:51 andromeda sshd\[5788\]: Invalid user cablecom from 213.102.85.36 port 58489
Sep 10 18:55:53 andromeda sshd\[5788\]: Failed password for invalid user cablecom from 213.102.85.36 port 58489 ssh2
Sep 10 18:55:56 andromeda sshd\[5829\]: Failed password for root from 213.102.85.36 port 58198 ssh2
2020-09-11 23:08:00
51.77.230.49 attackspambots
Sep 11 02:41:21 Tower sshd[25221]: Connection from 51.77.230.49 port 54136 on 192.168.10.220 port 22 rdomain ""
Sep 11 02:41:22 Tower sshd[25221]: Failed password for root from 51.77.230.49 port 54136 ssh2
Sep 11 02:41:22 Tower sshd[25221]: Received disconnect from 51.77.230.49 port 54136:11: Bye Bye [preauth]
Sep 11 02:41:22 Tower sshd[25221]: Disconnected from authenticating user root 51.77.230.49 port 54136 [preauth]
2020-09-11 23:23:24
181.46.164.9 attackbots
(cxs) cxs mod_security triggered by 181.46.164.9 (AR/Argentina/cpe-181-46-164-9.telecentro-reversos.com.ar): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_CXS; Logs: [Thu Sep 10 18:55:20.401814 2020] [:error] [pid 3943566:tid 47466712020736] [client 181.46.164.9:17461] [client 181.46.164.9] ModSecurity: Access denied with code 403 (phase 2). File "/tmp/20200910-185518-X1padp1cg7rkBOBCfBdcDgAAAA0-file-JRUfUL" rejected by the approver script "/etc/cxs/cxscgi.sh": 0 [file "/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"] [line "7"] [id "1010101"] [msg "ConfigServer Exploit Scanner (cxs) triggered"] [severity "CRITICAL"] [hostname "gastro-ptuj.si"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "X1padp1cg7rkBOBCfBdcDgAAAA0"], referer: http://gastro-ptuj.si/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php
2020-09-11 23:34:52
176.124.121.131 attackspam
Sep 10 18:55:11 andromeda sshd\[5221\]: Invalid user guest from 176.124.121.131 port 40424
Sep 10 18:55:11 andromeda sshd\[5221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.124.121.131
Sep 10 18:55:13 andromeda sshd\[5221\]: Failed password for invalid user guest from 176.124.121.131 port 40424 ssh2
2020-09-11 23:42:41
145.239.82.87 attackspambots
$f2bV_matches
2020-09-11 23:28:00
183.108.88.186 attackspam
Sep 11 10:02:12 root sshd[1174]: Invalid user ubnt from 183.108.88.186
...
2020-09-11 23:39:29
175.144.1.119 attackbotsspam
Sep 10 18:55:21 db sshd[26655]: User root from 175.144.1.119 not allowed because none of user's groups are listed in AllowGroups
...
2020-09-11 23:37:53
200.89.154.99 attackbotsspam
fail2ban -- 200.89.154.99
...
2020-09-11 23:13:20
130.105.68.165 attackbotsspam
Sep 11 14:19:43  sshd\[20057\]: User root from 130.105.68.165 not allowed because not listed in AllowUsersSep 11 14:19:45  sshd\[20057\]: Failed password for invalid user root from 130.105.68.165 port 54456 ssh2
...
2020-09-11 23:10:15
142.93.151.3 attackspambots
Sep 11 17:27:17 abendstille sshd\[2037\]: Invalid user admin from 142.93.151.3
Sep 11 17:27:17 abendstille sshd\[2037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.151.3
Sep 11 17:27:19 abendstille sshd\[2037\]: Failed password for invalid user admin from 142.93.151.3 port 56400 ssh2
Sep 11 17:34:53 abendstille sshd\[8871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.151.3  user=root
Sep 11 17:34:55 abendstille sshd\[8871\]: Failed password for root from 142.93.151.3 port 41762 ssh2
...
2020-09-11 23:43:01
37.57.82.137 attackbotsspam
Lines containing failures of 37.57.82.137 (max 1000)
Sep 10 15:54:16 UTC__SANYALnet-Labs__cac1 sshd[27968]: Connection from 37.57.82.137 port 44422 on 64.137.179.160 port 22
Sep 10 15:54:16 UTC__SANYALnet-Labs__cac1 sshd[27970]: Connection from 37.57.82.137 port 44616 on 64.137.179.160 port 22
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: Address 37.57.82.137 maps to 137.82.57.37.triolan.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: User r.r from 37.57.82.137 not allowed because not listed in AllowUsers
Sep 10 15:54:19 UTC__SANYALnet-Labs__cac1 sshd[27970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.82.137  user=r.r
Sep 10 15:54:21 UTC__SANYALnet-Labs__cac1 sshd[27970]: Failed password for invalid user r.r from 37.57.82.137 port 44616 ssh2
Sep 10 15:54:21 UTC__SANYALnet-Labs__cac1 sshd[27970]: Connection closed by 37.57.82.137 p........
------------------------------
2020-09-11 23:38:56
115.99.72.185 attackbotsspam
/HNAP1/
2020-09-11 23:29:07
92.62.246.21 attack
SSH Bruteforce Attempt on Honeypot
2020-09-11 23:04:22
104.248.22.27 attackbots
(sshd) Failed SSH login from 104.248.22.27 (DE/Germany/noma.baby): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 09:50:34 server sshd[31156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.22.27  user=root
Sep 11 09:50:36 server sshd[31156]: Failed password for root from 104.248.22.27 port 35032 ssh2
Sep 11 09:57:41 server sshd[650]: Invalid user cftest from 104.248.22.27 port 55088
Sep 11 09:57:43 server sshd[650]: Failed password for invalid user cftest from 104.248.22.27 port 55088 ssh2
Sep 11 10:01:49 server sshd[1587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.22.27  user=root
2020-09-11 23:14:23
201.240.28.169 attackbotsspam
SMTP brute force
2020-09-11 23:11:26

最近上报的IP列表

103.20.202.254 103.20.212.147 103.20.212.180 103.20.213.41
103.20.215.128 103.20.215.193 103.20.215.59 103.20.234.144
103.20.234.198 103.20.3.85 103.20.60.203 167.71.192.180
103.200.114.253 103.200.133.5 103.200.21.57 103.200.22.100
103.200.22.202 103.200.22.89 103.200.23.15 103.210.35.119