103.83.157.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Centerhop SG

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	445/tcp [2019-06-21]1pkt	2019-06-21 22:18:36

相同子网IP讨论:

IP	类型	评论内容	时间
103.83.157.86	attackbotsspam	2020-06-20T22:56:56.087389lavrinenko.info sshd[15781]: Failed password for invalid user server from 103.83.157.86 port 54826 ssh2 2020-06-20T23:00:35.916542lavrinenko.info sshd[15919]: Invalid user ts3user from 103.83.157.86 port 55094 2020-06-20T23:00:35.927887lavrinenko.info sshd[15919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.83.157.86 2020-06-20T23:00:35.916542lavrinenko.info sshd[15919]: Invalid user ts3user from 103.83.157.86 port 55094 2020-06-20T23:00:37.521560lavrinenko.info sshd[15919]: Failed password for invalid user ts3user from 103.83.157.86 port 55094 ssh2 ...	2020-06-21 04:09:19
103.83.157.108	attack	(sshd) Failed SSH login from 103.83.157.108 (SG/Singapore/-): 5 in the last 3600 secs	2020-06-20 18:04:36
103.83.157.86	attack	Jun 18 04:30:26 Server1 sshd[7606]: Invalid user pub from 103.83.157.86 port 46372 Jun 18 04:30:26 Server1 sshd[7606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.83.157.86 Jun 18 04:30:29 Server1 sshd[7606]: Failed password for invalid user pub from 103.83.157.86 port 46372 ssh2 Jun 18 04:30:29 Server1 sshd[7606]: Received disconnect from 103.83.157.86 port 46372:11: Bye Bye [preauth] Jun 18 04:30:29 Server1 sshd[7606]: Disconnected from invalid user pub 103.83.157.86 port 46372 [preauth] Jun 18 04:34:43 Server1 sshd[7656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.83.157.86 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.83.157.86	2020-06-19 18:21:26
103.83.157.39	attackbotsspam	TCP (SYN) 103.83.157.39:56143 -> port 11211, len 40	2020-06-01 03:38:08
103.83.157.161	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-04 22:19:53
103.83.157.212	attack	Invalid user ubuntu from 103.83.157.212 port 41952	2020-01-15 04:47:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.83.157.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40576
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.83.157.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 22:18:10 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 20.157.83.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.157.83.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.129.188.92	attackspam	Oct 21 06:57:01 MK-Soft-VM7 sshd[32411]: Failed password for root from 183.129.188.92 port 55546 ssh2 ...	2019-10-21 14:37:10
85.5.121.154	attackbotsspam	Automatic report - Port Scan	2019-10-21 14:52:33
182.122.185.43	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-10-21 14:42:40
186.170.28.46	attack	Oct 20 20:19:50 sachi sshd\[16149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 user=root Oct 20 20:19:52 sachi sshd\[16149\]: Failed password for root from 186.170.28.46 port 39436 ssh2 Oct 20 20:24:33 sachi sshd\[16535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 user=root Oct 20 20:24:35 sachi sshd\[16535\]: Failed password for root from 186.170.28.46 port 58869 ssh2 Oct 20 20:29:17 sachi sshd\[16918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 user=root	2019-10-21 14:36:25
113.236.161.192	attackbotsspam	Unauthorised access (Oct 21) SRC=113.236.161.192 LEN=40 TTL=49 ID=40990 TCP DPT=8080 WINDOW=34033 SYN Unauthorised access (Oct 20) SRC=113.236.161.192 LEN=40 TTL=49 ID=61653 TCP DPT=8080 WINDOW=37601 SYN	2019-10-21 14:43:11
66.70.189.209	attackbotsspam	Oct 21 07:09:33 www sshd\[62788\]: Failed password for root from 66.70.189.209 port 34251 ssh2Oct 21 07:13:07 www sshd\[62836\]: Invalid user team from 66.70.189.209Oct 21 07:13:08 www sshd\[62836\]: Failed password for invalid user team from 66.70.189.209 port 52835 ssh2 ...	2019-10-21 15:00:42
193.106.192.149	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/193.106.192.149/ PL - 1H : (81) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN196901 IP : 193.106.192.149 CIDR : 193.106.192.0/22 PREFIX COUNT : 1 UNIQUE IP COUNT : 1024 ATTACKS DETECTED ASN196901 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-21 05:51:38 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-21 14:58:04
202.109.132.200	attackbotsspam	Oct 21 04:10:56 www_kotimaassa_fi sshd[24714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.109.132.200 Oct 21 04:10:59 www_kotimaassa_fi sshd[24714]: Failed password for invalid user ws from 202.109.132.200 port 38214 ssh2 ...	2019-10-21 14:23:47
49.234.207.171	attackspambots	Oct 21 08:01:48 server sshd\[19827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.207.171 user=root Oct 21 08:01:50 server sshd\[19827\]: Failed password for root from 49.234.207.171 port 43272 ssh2 Oct 21 08:17:22 server sshd\[23510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.207.171 user=root Oct 21 08:17:24 server sshd\[23510\]: Failed password for root from 49.234.207.171 port 45996 ssh2 Oct 21 08:21:43 server sshd\[24574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.207.171 user=root ...	2019-10-21 14:50:17
114.88.162.126	attackspam	Oct 21 11:53:49 webhost01 sshd[19952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.88.162.126 Oct 21 11:53:51 webhost01 sshd[19952]: Failed password for invalid user abc@!QAZ@WSX from 114.88.162.126 port 50250 ssh2 ...	2019-10-21 14:52:11
195.154.189.69	attackbots	\[2019-10-21 02:36:43\] NOTICE\[2038\] chan_sip.c: Registration from '\' failed for '195.154.189.69:53048' - Wrong password \[2019-10-21 02:36:43\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-21T02:36:43.831-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1331",SessionID="0x7f6130477218",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.189.69/53048",Challenge="12e9c6ef",ReceivedChallenge="12e9c6ef",ReceivedHash="019e71fe57c535f5795dd7a25c94a625" \[2019-10-21 02:41:36\] NOTICE\[2038\] chan_sip.c: Registration from '\' failed for '195.154.189.69:55939' - Wrong password \[2019-10-21 02:41:36\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-21T02:41:36.293-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="14",SessionID="0x7f6130477218",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.18	2019-10-21 14:47:47
106.12.181.184	attack	Oct 21 08:13:20 ns381471 sshd[29665]: Failed password for proxy from 106.12.181.184 port 36060 ssh2 Oct 21 08:17:45 ns381471 sshd[29836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.181.184 Oct 21 08:17:46 ns381471 sshd[29836]: Failed password for invalid user pos from 106.12.181.184 port 42650 ssh2	2019-10-21 14:37:35
49.88.112.114	attack	Oct 20 20:50:05 web9 sshd\[2196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 20 20:50:08 web9 sshd\[2196\]: Failed password for root from 49.88.112.114 port 24865 ssh2 Oct 20 20:51:17 web9 sshd\[2419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 20 20:51:19 web9 sshd\[2419\]: Failed password for root from 49.88.112.114 port 45900 ssh2 Oct 20 20:52:23 web9 sshd\[2579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-10-21 14:55:37
140.249.192.87	attackbotsspam	ssh failed login	2019-10-21 14:39:31
173.56.119.71	attack	Honeypot attack, port: 23, PTR: static-173-56-119-71.nycmny.fios.verizon.net.	2019-10-21 14:24:30

最近上报的IP列表

37.224.14.39	171.229.250.132	109.245.159.186	103.41.24.226
178.110.255.216	196.54.65.192	170.0.128.249	84.243.9.39
119.53.245.68	177.66.79.201	103.82.80.52	14.235.176.252
68.183.167.159	202.158.29.162	180.244.232.146	217.111.227.178
103.48.35.204	23.250.125.234	61.168.138.24	218.87.168.228