103.6.199.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): Sarawak

国家(country): Malaysia

运营商(isp): Exa Bytes Network Sdn.Bhd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Web Server Attack	2020-01-20 04:32:58

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.6.199.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20245
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.6.199.134.			IN	A

;; AUTHORITY SECTION:
.			180	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011901 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 20 04:32:55 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 134.199.6.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.199.6.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.188.84.119	attackbotsspam	0,30-01/02 [bc01/m12] PostRequest-Spammer scoring: Lusaka01	2020-09-15 06:45:26
194.168.212.81	attack	Sep 15 00:24:11 web01.agentur-b-2.de postfix/smtpd[3966081]: NOQUEUE: reject: RCPT from smtp.st-ambrosecollege.org.uk[194.168.212.81]: 450 4.7.1 : Helo command rejected: Host not found; from=<14ByrneKieron@st-ambrosecollege.org.uk> to= proto=ESMTP helo= Sep 15 00:25:17 web01.agentur-b-2.de postfix/smtpd[3968804]: NOQUEUE: reject: RCPT from smtp.st-ambrosecollege.org.uk[194.168.212.81]: 450 4.7.1 : Helo command rejected: Host not found; from=<14ByrneKieron@st-ambrosecollege.org.uk> to= proto=ESMTP helo= Sep 15 00:26:23 web01.agentur-b-2.de postfix/smtpd[3966115]: NOQUEUE: reject: RCPT from smtp.st-ambrosecollege.org.uk[194.168.212.81]: 450 4.7.1 : Helo command rejected: Host not found; from=<14ByrneKieron@st-ambrosecollege.org.uk> to= proto=ESMTP helo=	2020-09-15 07:01:22
177.44.17.44	attackbots	Sep 14 18:47:19 mail.srvfarm.net postfix/smtps/smtpd[2079372]: warning: unknown[177.44.17.44]: SASL PLAIN authentication failed: Sep 14 18:47:19 mail.srvfarm.net postfix/smtps/smtpd[2079372]: lost connection after AUTH from unknown[177.44.17.44] Sep 14 18:50:45 mail.srvfarm.net postfix/smtpd[2078259]: warning: unknown[177.44.17.44]: SASL PLAIN authentication failed: Sep 14 18:50:46 mail.srvfarm.net postfix/smtpd[2078259]: lost connection after AUTH from unknown[177.44.17.44] Sep 14 18:51:08 mail.srvfarm.net postfix/smtps/smtpd[2075149]: warning: unknown[177.44.17.44]: SASL PLAIN authentication failed:	2020-09-15 07:03:51
95.163.196.191	attackspambots	Invalid user testuser from 95.163.196.191 port 55726	2020-09-15 06:58:19
154.127.36.199	attack	Sep 14 18:42:18 mail.srvfarm.net postfix/smtps/smtpd[2075240]: warning: unknown[154.127.36.199]: SASL PLAIN authentication failed: Sep 14 18:42:19 mail.srvfarm.net postfix/smtps/smtpd[2075240]: lost connection after AUTH from unknown[154.127.36.199] Sep 14 18:43:35 mail.srvfarm.net postfix/smtps/smtpd[2072918]: warning: unknown[154.127.36.199]: SASL PLAIN authentication failed: Sep 14 18:43:36 mail.srvfarm.net postfix/smtps/smtpd[2072918]: lost connection after AUTH from unknown[154.127.36.199] Sep 14 18:46:36 mail.srvfarm.net postfix/smtps/smtpd[2078676]: warning: unknown[154.127.36.199]: SASL PLAIN authentication failed:	2020-09-15 07:06:09
150.95.148.208	attackbotsspam	2020-09-14 17:41:18.076655-0500 localhost sshd[25953]: Failed password for root from 150.95.148.208 port 47342 ssh2	2020-09-15 06:57:14
91.132.147.168	attackbotsspam	Sep 14 23:37:09 vpn01 sshd[13400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.132.147.168 Sep 14 23:37:12 vpn01 sshd[13400]: Failed password for invalid user admin from 91.132.147.168 port 64563 ssh2 ...	2020-09-15 06:58:37
167.172.98.198	attackbotsspam	167.172.98.198 (DE/Germany/-), 3 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 14 12:59:11 honeypot sshd[73571]: Failed password for root from 167.172.98.198 port 45780 ssh2 Sep 14 12:58:10 honeypot sshd[73525]: Failed password for root from 213.136.92.103 port 51496 ssh2 Sep 14 12:59:10 honeypot sshd[73571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.98.198 user=root IP Addresses Blocked:	2020-09-15 07:05:23
45.160.138.182	attack	Sep 14 18:54:56 mail.srvfarm.net postfix/smtpd[2076883]: warning: unknown[45.160.138.182]: SASL PLAIN authentication failed: Sep 14 18:54:57 mail.srvfarm.net postfix/smtpd[2076883]: lost connection after AUTH from unknown[45.160.138.182] Sep 14 18:56:18 mail.srvfarm.net postfix/smtpd[2076883]: warning: unknown[45.160.138.182]: SASL PLAIN authentication failed: Sep 14 18:56:18 mail.srvfarm.net postfix/smtpd[2076883]: lost connection after AUTH from unknown[45.160.138.182] Sep 14 18:57:07 mail.srvfarm.net postfix/smtps/smtpd[2079600]: warning: unknown[45.160.138.182]: SASL PLAIN authentication failed:	2020-09-15 07:12:17
91.121.145.227	attackspam	Sep 14 22:14:18 datenbank sshd[82189]: Failed password for root from 91.121.145.227 port 41006 ssh2 Sep 14 22:17:52 datenbank sshd[82633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.145.227 user=root Sep 14 22:17:54 datenbank sshd[82633]: Failed password for root from 91.121.145.227 port 57202 ssh2 ...	2020-09-15 06:58:54
51.77.200.139	attackbotsspam	Sep 14 21:19:20 PorscheCustomer sshd[12712]: Failed password for root from 51.77.200.139 port 41122 ssh2 Sep 14 21:23:11 PorscheCustomer sshd[12939]: Failed password for root from 51.77.200.139 port 54402 ssh2 ...	2020-09-15 06:38:08
210.211.116.204	attackspam	Sep 14 16:51:32 vlre-nyc-1 sshd\[21931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.116.204 user=root Sep 14 16:51:35 vlre-nyc-1 sshd\[21931\]: Failed password for root from 210.211.116.204 port 50942 ssh2 Sep 14 16:55:26 vlre-nyc-1 sshd\[22071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.116.204 user=root Sep 14 16:55:28 vlre-nyc-1 sshd\[22071\]: Failed password for root from 210.211.116.204 port 47343 ssh2 Sep 14 16:59:23 vlre-nyc-1 sshd\[22216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.116.204 user=root ...	2020-09-15 06:48:08
177.38.5.108	attack	Sep 14 18:52:49 mail.srvfarm.net postfix/smtps/smtpd[2075184]: warning: unknown[177.38.5.108]: SASL PLAIN authentication failed: Sep 14 18:52:49 mail.srvfarm.net postfix/smtps/smtpd[2075184]: lost connection after AUTH from unknown[177.38.5.108] Sep 14 18:54:54 mail.srvfarm.net postfix/smtps/smtpd[2075766]: warning: unknown[177.38.5.108]: SASL PLAIN authentication failed: Sep 14 18:54:55 mail.srvfarm.net postfix/smtps/smtpd[2075766]: lost connection after AUTH from unknown[177.38.5.108] Sep 14 18:55:10 mail.srvfarm.net postfix/smtps/smtpd[2077859]: warning: unknown[177.38.5.108]: SASL PLAIN authentication failed:	2020-09-15 07:04:21
207.46.13.249	attack	arw-Joomla User : try to access forms...	2020-09-15 06:36:01
103.10.23.8	attackbotsspam	Port probing on unauthorized port 445	2020-09-15 06:57:29

最近上报的IP列表

163.206.222.177	145.37.191.124	196.75.21.190	88.238.79.80
86.90.122.179	144.180.116.208	37.57.17.226	221.23.117.122
59.102.244.131	176.226.247.2	107.70.192.212	111.223.157.254
90.238.3.7	79.233.78.41	4.249.238.229	75.235.166.170
79.247.157.139	82.40.248.82	13.209.182.184	52.45.30.251