103.85.175.18 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '103.85.172.0 - 103.85.175.255'

% Abuse contact for '103.85.172.0 - 103.85.175.255' is '86999449@qq.com'

inetnum:        103.85.172.0 - 103.85.175.255
netname:        BEIKUAN
descr:          Beijing Beikuan Network Co,Ltd
descr:          Huilongguan Longxing Park West Area 29-2-5-3
descr:          Changping District, Beijing
country:        CN
admin-c:        ZM1396-AP
tech-c:         ZM1396-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-BEIKUAN-CN
mnt-lower:      MAINT-CNNIC-AP
last-modified:  2023-11-28T00:56:46Z
source:         APNIC

irt:            IRT-BEIKUAN-CN
address:        Huilongguan Longxing Park West Area 29-2-5-3 Changping District, Beijing
e-mail:         86999449@qq.com
abuse-mailbox:  86999449@qq.com
admin-c:        ZM1396-AP
tech-c:         ZM1396-AP
auth:           # Filtered
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-11-18T00:35:05Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         Xiangqin Hong
address:        Huilongguan Longxing Park West Area 29-2-5-3
address:        Changping District, Beijing
country:        CN
phone:          +86-13370180077
e-mail:         86999449@qq.com
nic-hdl:        ZM1396-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2015-10-20T05:20:01Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.85.175.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19416
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.85.175.18.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062101 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 15:42:37 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 18.175.85.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 18.175.85.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
54.39.145.31	attackspambots	9 failed attempt(s) in the last 24h	2019-12-12 09:54:39
123.160.246.55	attackspam	SSH bruteforce (Triggered fail2ban)	2019-12-12 09:33:58
103.224.251.102	attackbotsspam	Dec 12 02:18:14 DAAP sshd[11267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.224.251.102 user=games Dec 12 02:18:16 DAAP sshd[11267]: Failed password for games from 103.224.251.102 port 37090 ssh2 Dec 12 02:25:03 DAAP sshd[11374]: Invalid user admin from 103.224.251.102 port 44004 ...	2019-12-12 09:38:42
109.101.139.106	attackbotsspam	Brute force attack stopped by firewall	2019-12-12 09:23:59
209.61.151.224	attack	Brute force attack stopped by firewall	2019-12-12 09:57:59
157.230.55.177	attack	fail2ban honeypot	2019-12-12 09:51:47
167.172.19.51	attack	Dec 12 00:16:14 ihdb003 sshd[2528]: Connection from 167.172.19.51 port 52094 on 178.128.173.140 port 22 Dec 12 00:16:14 ihdb003 sshd[2528]: Did not receive identification string from 167.172.19.51 port 52094 Dec 12 00:17:04 ihdb003 sshd[2534]: Connection from 167.172.19.51 port 41282 on 178.128.173.140 port 22 Dec 12 00:17:04 ihdb003 sshd[2534]: Did not receive identification string from 167.172.19.51 port 41282 Dec 12 00:18:50 ihdb003 sshd[2539]: Connection from 167.172.19.51 port 44754 on 178.128.173.140 port 22 Dec 12 00:18:51 ihdb003 sshd[2539]: Invalid user ts3 from 167.172.19.51 port 44754 Dec 12 00:18:51 ihdb003 sshd[2539]: Received disconnect from 167.172.19.51 port 44754:11: Normal Shutdown, Thank you for playing [preauth] Dec 12 00:18:51 ihdb003 sshd[2539]: Disconnected from 167.172.19.51 port 44754 [preauth] Dec 12 00:20:35 ihdb003 sshd[2547]: Connection from 167.172.19.51 port 48098 on 178.128.173.140 port 22 Dec 12 00:20:36 ihdb003 sshd[2547]: Invalid user ........ -------------------------------	2019-12-12 09:32:36
123.30.181.204	attackbotsspam	Dec 12 02:53:19 lnxmysql61 sshd[549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.181.204	2019-12-12 09:57:29
110.185.171.149	attack	Dec 12 02:47:31 debian-2gb-vpn-nbg1-1 kernel: [486432.886210] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=110.185.171.149 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=14815 PROTO=TCP SPT=1939 DPT=23 WINDOW=7307 RES=0x00 SYN URGP=0	2019-12-12 09:33:00
118.27.29.74	attackspambots	Dec 11 14:43:04 php1 sshd\[4381\]: Invalid user dst from 118.27.29.74 Dec 11 14:43:04 php1 sshd\[4381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v118-27-29-74.tnts.static.cnode.io Dec 11 14:43:05 php1 sshd\[4381\]: Failed password for invalid user dst from 118.27.29.74 port 50206 ssh2 Dec 11 14:49:24 php1 sshd\[5190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v118-27-29-74.tnts.static.cnode.io user=root Dec 11 14:49:26 php1 sshd\[5190\]: Failed password for root from 118.27.29.74 port 60372 ssh2	2019-12-12 09:28:10
82.102.172.138	attackbotsspam	Dec 11 15:32:16 web9 sshd\[3583\]: Invalid user oracle from 82.102.172.138 Dec 11 15:32:16 web9 sshd\[3583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.102.172.138 Dec 11 15:32:18 web9 sshd\[3583\]: Failed password for invalid user oracle from 82.102.172.138 port 39454 ssh2 Dec 11 15:38:36 web9 sshd\[4610\]: Invalid user mes from 82.102.172.138 Dec 11 15:38:36 web9 sshd\[4610\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.102.172.138	2019-12-12 09:49:36
103.194.90.34	attack	Brute force attack stopped by firewall	2019-12-12 09:21:16
49.234.13.235	attack	$f2bV_matches	2019-12-12 09:56:29
51.75.66.11	attackbots	Dec 11 20:28:25 ny01 sshd[27522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.11 Dec 11 20:28:28 ny01 sshd[27522]: Failed password for invalid user vahle from 51.75.66.11 port 39720 ssh2 Dec 11 20:33:49 ny01 sshd[28078]: Failed password for root from 51.75.66.11 port 48344 ssh2	2019-12-12 09:39:09
106.12.131.5	attack	Dec 12 01:00:16 thevastnessof sshd[32424]: Failed password for root from 106.12.131.5 port 37510 ssh2 ...	2019-12-12 09:25:56

最近上报的IP列表

47.84.54.27	47.84.49.40	8.219.140.33	115.146.214.110
192.168.31.21	2606:4700:10::ac43:2614	2606:4700:10::ac43:1060	2606:4700:10::6816:4175
2606:4700:10::6814:9456	2606:4700:10::6816:4287	20.65.195.28	112.124.56.100
47.95.198.91	35.247.201.145	43.153.88.239	106.75.87.29
20.220.166.196	104.196.201.132	223.123.43.0	36.111.88.33