103.21.116.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai Anchnet Tec Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Oct 9 20:27:19 ip-172-31-42-142 sshd\[23606\]: Invalid user listd from 103.21.116.249\ Oct 9 20:27:22 ip-172-31-42-142 sshd\[23606\]: Failed password for invalid user listd from 103.21.116.249 port 47360 ssh2\ Oct 9 20:29:55 ip-172-31-42-142 sshd\[23637\]: Failed password for root from 103.21.116.249 port 60102 ssh2\ Oct 9 20:32:17 ip-172-31-42-142 sshd\[23697\]: Failed password for root from 103.21.116.249 port 44346 ssh2\ Oct 9 20:34:49 ip-172-31-42-142 sshd\[23709\]: Invalid user testing from 103.21.116.249\	2020-10-10 05:13:12
attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-09 21:14:49
attackspam	Oct 9 10:30:08 mx sshd[1281988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Oct 9 10:30:09 mx sshd[1281988]: Failed password for root from 103.21.116.249 port 60416 ssh2 Oct 9 10:31:20 mx sshd[1282021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Oct 9 10:31:22 mx sshd[1282021]: Failed password for root from 103.21.116.249 port 47632 ssh2 Oct 9 10:32:28 mx sshd[1282046]: Invalid user test2001 from 103.21.116.249 port 34734 ...	2020-10-09 13:03:10
attackbots	Sep 24 21:21:10 hcbbdb sshd\[26262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Sep 24 21:21:12 hcbbdb sshd\[26262\]: Failed password for root from 103.21.116.249 port 55654 ssh2 Sep 24 21:24:49 hcbbdb sshd\[26585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Sep 24 21:24:51 hcbbdb sshd\[26585\]: Failed password for root from 103.21.116.249 port 54768 ssh2 Sep 24 21:28:27 hcbbdb sshd\[26928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root	2020-09-25 05:31:47
attack	Sep 20 15:31:54 srv-ubuntu-dev3 sshd[16426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Sep 20 15:31:56 srv-ubuntu-dev3 sshd[16426]: Failed password for root from 103.21.116.249 port 51958 ssh2 Sep 20 15:33:27 srv-ubuntu-dev3 sshd[16621]: Invalid user test from 103.21.116.249 Sep 20 15:33:27 srv-ubuntu-dev3 sshd[16621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 Sep 20 15:33:27 srv-ubuntu-dev3 sshd[16621]: Invalid user test from 103.21.116.249 Sep 20 15:33:29 srv-ubuntu-dev3 sshd[16621]: Failed password for invalid user test from 103.21.116.249 port 41410 ssh2 Sep 20 15:35:01 srv-ubuntu-dev3 sshd[16851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 user=root Sep 20 15:35:03 srv-ubuntu-dev3 sshd[16851]: Failed password for root from 103.21.116.249 port 59168 ssh2 Sep 20 15:36:29 srv-ubuntu-dev3 sshd[ ...	2020-09-20 22:03:26
attack	Sep 19 21:49:14 dignus sshd[14780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 Sep 19 21:49:16 dignus sshd[14780]: Failed password for invalid user teamspeak from 103.21.116.249 port 49218 ssh2 Sep 19 21:53:15 dignus sshd[15421]: Invalid user server from 103.21.116.249 port 47480 Sep 19 21:53:15 dignus sshd[15421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.116.249 Sep 19 21:53:18 dignus sshd[15421]: Failed password for invalid user server from 103.21.116.249 port 47480 ssh2 ...	2020-09-20 13:56:28
attackbots	Sep 19 19:23:15 ip-172-31-42-142 sshd\[24165\]: Failed password for root from 103.21.116.249 port 50574 ssh2\ Sep 19 19:25:28 ip-172-31-42-142 sshd\[24210\]: Failed password for ubuntu from 103.21.116.249 port 57808 ssh2\ Sep 19 19:27:39 ip-172-31-42-142 sshd\[24239\]: Invalid user sqladmin from 103.21.116.249\ Sep 19 19:27:41 ip-172-31-42-142 sshd\[24239\]: Failed password for invalid user sqladmin from 103.21.116.249 port 37472 ssh2\ Sep 19 19:30:01 ip-172-31-42-142 sshd\[24271\]: Failed password for root from 103.21.116.249 port 45270 ssh2\	2020-09-20 05:56:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.21.116.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37820
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.21.116.249.			IN	A

;; AUTHORITY SECTION:
.			493	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091901 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 20 05:56:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 249.116.21.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.116.21.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.211.36.177	attackbots	SSH Brute Force	2020-08-09 01:37:09
98.246.134.147	attack	Aug 8 18:49:50 andromeda sshd\[7402\]: Invalid user pi from 98.246.134.147 port 51704 Aug 8 18:49:50 andromeda sshd\[7403\]: Invalid user pi from 98.246.134.147 port 51706 Aug 8 18:49:52 andromeda sshd\[7402\]: Failed password for invalid user pi from 98.246.134.147 port 51704 ssh2 Aug 8 18:49:52 andromeda sshd\[7403\]: Failed password for invalid user pi from 98.246.134.147 port 51706 ssh2	2020-08-09 01:34:51
121.121.91.109	attackspambots	Aug 8 14:00:44 ns382633 sshd\[30429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.121.91.109 user=root Aug 8 14:00:46 ns382633 sshd\[30429\]: Failed password for root from 121.121.91.109 port 50026 ssh2 Aug 8 14:03:56 ns382633 sshd\[30651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.121.91.109 user=root Aug 8 14:03:59 ns382633 sshd\[30651\]: Failed password for root from 121.121.91.109 port 34976 ssh2 Aug 8 14:11:50 ns382633 sshd\[32369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.121.91.109 user=root	2020-08-09 01:56:59
87.251.74.24	attackbots	Aug 8 19:45:05 debian-2gb-nbg1-2 kernel: \[19167150.344894\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.24 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=8902 PROTO=TCP SPT=48722 DPT=331 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-09 02:07:11
185.175.93.14	attackspambots	Aug 8 18:52:27 debian-2gb-nbg1-2 kernel: \[19163992.371921\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=48876 PROTO=TCP SPT=52049 DPT=56358 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-09 01:29:48
162.243.129.34	attackbots	Port scan: Attack repeated for 24 hours	2020-08-09 01:30:12
210.86.239.186	attackbots	Aug 8 15:59:08 [host] sshd[29408]: pam_unix(sshd: Aug 8 15:59:10 [host] sshd[29408]: Failed passwor Aug 8 16:04:01 [host] sshd[29581]: pam_unix(sshd:	2020-08-09 01:37:51
124.92.57.149	attackbots	Aug 8 14:11:50 host proftpd[29169]: 0.0.0.0 (124.92.57.149[124.92.57.149]) - USER anonymous: no such user found from 124.92.57.149 [124.92.57.149] to 163.172.107.87:21 ...	2020-08-09 01:56:27
216.155.93.77	attackbotsspam	SSH Brute Force	2020-08-09 01:42:40
165.227.210.71	attack	2020-08-08T19:33:50.463032amanda2.illicoweb.com sshd\[12850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71 user=root 2020-08-08T19:33:52.160989amanda2.illicoweb.com sshd\[12850\]: Failed password for root from 165.227.210.71 port 58752 ssh2 2020-08-08T19:37:26.564313amanda2.illicoweb.com sshd\[13318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71 user=root 2020-08-08T19:37:28.245964amanda2.illicoweb.com sshd\[13318\]: Failed password for root from 165.227.210.71 port 40284 ssh2 2020-08-08T19:41:01.724595amanda2.illicoweb.com sshd\[13511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71 user=root ...	2020-08-09 01:51:20
1.43.11.229	attack	TCP (SYN) 1.43.11.229:40690 -> port 23, len 44	2020-08-09 02:00:20
37.49.224.192	attack	Aug 8 19:33:18 OPSO sshd\[3112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.224.192 user=root Aug 8 19:33:21 OPSO sshd\[3112\]: Failed password for root from 37.49.224.192 port 59184 ssh2 Aug 8 19:33:37 OPSO sshd\[3148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.224.192 user=root Aug 8 19:33:39 OPSO sshd\[3148\]: Failed password for root from 37.49.224.192 port 51642 ssh2 Aug 8 19:33:56 OPSO sshd\[3150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.224.192 user=root	2020-08-09 01:35:55
159.89.237.235	attackbotsspam	159.89.237.235 - - \[08/Aug/2020:19:15:39 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 159.89.237.235 - - \[08/Aug/2020:19:15:41 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 159.89.237.235 - - \[08/Aug/2020:19:15:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-08-09 01:32:33
111.229.167.91	attack	Aug 8 16:33:15 Ubuntu-1404-trusty-64-minimal sshd\[2952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.167.91 user=root Aug 8 16:33:16 Ubuntu-1404-trusty-64-minimal sshd\[2952\]: Failed password for root from 111.229.167.91 port 54652 ssh2 Aug 8 16:48:07 Ubuntu-1404-trusty-64-minimal sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.167.91 user=root Aug 8 16:48:09 Ubuntu-1404-trusty-64-minimal sshd\[11039\]: Failed password for root from 111.229.167.91 port 54684 ssh2 Aug 8 16:51:29 Ubuntu-1404-trusty-64-minimal sshd\[13085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.167.91 user=root	2020-08-09 01:58:44
207.46.13.142	attack	Automatic report - Banned IP Access	2020-08-09 01:52:14

最近上报的IP列表

205.8.242.106	205.245.66.183	202.236.37.121	31.114.192.194
235.112.4.252	64.122.74.99	30.104.52.95	27.73.198.209
117.213.208.132	78.85.5.132	187.209.242.83	164.90.202.27
5.79.241.105	183.230.248.227	247.189.233.27	84.38.129.149
78.100.6.36	177.10.251.98	151.135.129.164	218.150.41.183