103.204.128.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.204.128.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.204.128.12.			IN	A

;; AUTHORITY SECTION:
.			277	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 10:08:47 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

12.128.204.103.in-addr.arpa domain name pointer server.huitnet.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.128.204.103.in-addr.arpa	name = server.huitnet.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.59.190.69	attackspambots	Oct 4 08:26:28 vps691689 sshd[17346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 Oct 4 08:26:29 vps691689 sshd[17346]: Failed password for invalid user Sensation@2017 from 139.59.190.69 port 59583 ssh2 Oct 4 08:30:22 vps691689 sshd[17428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.190.69 ...	2019-10-04 15:46:08
115.238.236.74	attack	Oct 4 09:28:40 SilenceServices sshd[28156]: Failed password for root from 115.238.236.74 port 36845 ssh2 Oct 4 09:33:36 SilenceServices sshd[29419]: Failed password for root from 115.238.236.74 port 31134 ssh2	2019-10-04 15:47:54
182.18.188.132	attackbotsspam	Oct 3 21:31:47 hpm sshd\[12893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.18.188.132 user=root Oct 3 21:31:49 hpm sshd\[12893\]: Failed password for root from 182.18.188.132 port 44930 ssh2 Oct 3 21:35:59 hpm sshd\[13220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.18.188.132 user=root Oct 3 21:36:00 hpm sshd\[13220\]: Failed password for root from 182.18.188.132 port 58908 ssh2 Oct 3 21:40:17 hpm sshd\[13725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.18.188.132 user=root	2019-10-04 15:41:37
203.110.179.26	attack	Oct 4 09:18:31 SilenceServices sshd[25426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26 Oct 4 09:18:33 SilenceServices sshd[25426]: Failed password for invalid user Doll2017 from 203.110.179.26 port 18259 ssh2 Oct 4 09:22:50 SilenceServices sshd[26590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26	2019-10-04 15:37:45
103.85.16.34	attack	Oct 1 21:00:54 our-server-hostname postfix/smtpd[22438]: connect from unknown[103.85.16.34] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.85.16.34	2019-10-04 15:58:11
181.177.231.27	attackspambots	Sep 30 08:49:51 scivo sshd[14712]: Did not receive identification string from 181.177.231.27 Sep 30 08:55:36 scivo sshd[15048]: Connection closed by 181.177.231.27 [preauth] Sep 30 09:32:46 scivo sshd[16895]: Failed password for r.r from 181.177.231.27 port 52156 ssh2 Sep 30 09:32:46 scivo sshd[16897]: Failed password for r.r from 181.177.231.27 port 52155 ssh2 Sep 30 09:32:46 scivo sshd[16896]: Failed password for r.r from 181.177.231.27 port 52153 ssh2 Sep 30 09:32:46 scivo sshd[16898]: Failed password for r.r from 181.177.231.27 port 52154 ssh2 Sep 30 09:32:46 scivo sshd[16895]: Received disconnect from 181.177.231.27: 11: Bye Bye [preauth] Sep 30 09:32:46 scivo sshd[16896]: Received disconnect from 181.177.231.27: 11: Bye Bye [preauth] Sep 30 09:32:46 scivo sshd[16897]: Received disconnect from 181.177.231.27: 11: Bye Bye [preauth] Sep 30 09:32:46 scivo sshd[16898]: Received disconnect from 181.177.231.27: 11: Bye Bye [preauth] Sep 30 09:32:56 scivo sshd[16903]: Fai........ -------------------------------	2019-10-04 15:44:35
49.234.107.238	attackspam	2019-10-04T02:52:33.6337281495-001 sshd\[38463\]: Failed password for root from 49.234.107.238 port 45444 ssh2 2019-10-04T03:02:52.4181111495-001 sshd\[39012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.107.238 user=root 2019-10-04T03:02:54.0409631495-001 sshd\[39012\]: Failed password for root from 49.234.107.238 port 37466 ssh2 2019-10-04T03:07:38.7636681495-001 sshd\[39473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.107.238 user=root 2019-10-04T03:07:40.9835601495-001 sshd\[39473\]: Failed password for root from 49.234.107.238 port 47558 ssh2 2019-10-04T03:12:34.8551481495-001 sshd\[10526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.107.238 user=root ...	2019-10-04 15:45:36
201.245.38.250	attack	Sep 30 19:28:17 ns4 sshd[17650]: Invalid user test from 201.245.38.250 Sep 30 19:28:17 ns4 sshd[17650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-201-245-38-250.static.etb.net.co Sep 30 19:28:19 ns4 sshd[17650]: Failed password for invalid user test from 201.245.38.250 port 30929 ssh2 Sep 30 19:36:05 ns4 sshd[18597]: Invalid user owncloud from 201.245.38.250 Sep 30 19:36:05 ns4 sshd[18597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-201-245-38-250.static.etb.net.co Sep 30 19:36:08 ns4 sshd[18597]: Failed password for invalid user owncloud from 201.245.38.250 port 38085 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.245.38.250	2019-10-04 15:52:01
170.0.125.2	attackspambots	Lines containing failures of 170.0.125.2 Oct 1 04:31:52 shared03 postfix/smtpd[18834]: connect from 2-125-0-170.castelecom.com.br[170.0.125.2] Oct x@x Oct 1 04:31:55 shared03 postfix/smtpd[18834]: lost connection after RCPT from 2-125-0-170.castelecom.com.br[170.0.125.2] Oct 1 04:31:55 shared03 postfix/smtpd[18834]: disconnect from 2-125-0-170.castelecom.com.br[170.0.125.2] ehlo=1 mail=1 rcpt=0/1 commands=2/3 Oct 1 06:24:09 shared03 postfix/smtpd[27297]: connect from 2-125-0-170.castelecom.com.br[170.0.125.2] Oct x@x Oct 1 06:24:10 shared03 postfix/smtpd[27297]: lost connection after RCPT from 2-125-0-170.castelecom.com.br[170.0.125.2] Oct 1 06:24:10 shared03 postfix/smtpd[27297]: disconnect from 2-125-0-170.castelecom.com.br[170.0.125.2] ehlo=1 mail=1 rcpt=0/1 commands=2/3 Oct 1 06:29:29 shared03 postfix/smtpd[23881]: connect from 2-125-0-170.castelecom.com.br[170.0.125.2] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.d	2019-10-04 15:45:50
112.48.132.198	attack	Time: Fri Oct 4 04:25:42 2019 -0300 IP: 112.48.132.198 (CN/China/-) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-10-04 15:55:27
35.189.237.181	attack	Oct 4 03:49:34 TORMINT sshd\[31332\]: Invalid user Light@123 from 35.189.237.181 Oct 4 03:49:34 TORMINT sshd\[31332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.189.237.181 Oct 4 03:49:36 TORMINT sshd\[31332\]: Failed password for invalid user Light@123 from 35.189.237.181 port 42252 ssh2 ...	2019-10-04 15:54:21
136.232.17.174	attack	Oct 4 08:52:38 eventyay sshd[17975]: Failed password for root from 136.232.17.174 port 39393 ssh2 Oct 4 08:57:48 eventyay sshd[18014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.232.17.174 Oct 4 08:57:50 eventyay sshd[18014]: Failed password for invalid user stan from 136.232.17.174 port 24289 ssh2 ...	2019-10-04 15:25:21
190.14.39.127	attackbotsspam	Oct 3 23:49:47 localhost kernel: [3898806.760227] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.127 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=59 ID=21893 DF PROTO=TCP SPT=52279 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:49:47 localhost kernel: [3898806.760263] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.127 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=59 ID=21893 DF PROTO=TCP SPT=52279 DPT=22 SEQ=1101840692 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:54:30 localhost kernel: [3899089.064211] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.127 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=65384 DF PROTO=TCP SPT=62614 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:54:30 localhost kernel: [3899089.064237] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.127 DST=[mungedIP2] LEN=40 TOS=0x08 P	2019-10-04 15:56:52
103.103.29.12	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 04-10-2019 04:55:15.	2019-10-04 15:24:43
190.14.39.93	attackbots	Oct 3 15:41:12 localhost kernel: [3869491.782311] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.39.93 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=44683 DF PROTO=TCP SPT=64618 DPT=22 SEQ=3376790456 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 17:26:38 localhost kernel: [3875817.221175] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.93 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=7752 DF PROTO=TCP SPT=51697 DPT=22 SEQ=392830835 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:55:03 localhost kernel: [3899122.632243] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.93 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=63 ID=29726 DF PROTO=TCP SPT=57604 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:55:03 localhost kernel: [3899122.632274] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.39.93 DST=[mungedIP2] LE	2019-10-04 15:34:49

最近上报的IP列表

103.204.106.71	103.204.128.159	103.204.130.64	103.204.130.93
103.204.163.135	103.204.163.153	103.204.54.118	103.204.55.139
103.204.7.18	103.205.252.11	103.205.252.86	103.205.6.66
103.205.64.87	103.206.102.150	103.206.104.36	103.206.105.80
103.217.220.164	103.217.220.249	103.217.220.250	103.217.220.8