111.42.103.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	TCP (SYN) 111.42.103.6:39245 -> port 2323, len 40	2020-05-20 05:45:18

相同子网IP讨论:

IP	类型	评论内容	时间
111.42.103.78	attack	Automatic report - Port Scan Attack	2020-01-29 16:06:39
111.42.103.37	attackspam	Unauthorized connection attempt detected from IP address 111.42.103.37 to port 23 [T]	2020-01-17 07:08:55
111.42.103.19	attackspam	Mirai and Reaper Exploitation Traffic	2019-12-10 01:51:06

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.42.103.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.42.103.6.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 05:51:40 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

6.103.42.111.in-addr.arpa has no PTR record

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 6.103.42.111.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
82.112.51.108	attack	Unauthorized connection attempt from IP address 82.112.51.108 on Port 445(SMB)	2019-11-29 15:06:42
166.62.85.53	attackspambots	C1,WP GET /suche/wp-login.php	2019-11-29 14:45:47
60.26.200.193	attackspam	Nov 29 08:02:02 www4 sshd\[54724\]: Invalid user chowfla from 60.26.200.193 Nov 29 08:02:02 www4 sshd\[54724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.26.200.193 Nov 29 08:02:04 www4 sshd\[54724\]: Failed password for invalid user chowfla from 60.26.200.193 port 35914 ssh2 ...	2019-11-29 14:22:34
106.12.94.65	attackspambots	Nov 29 07:26:49 nextcloud sshd\[14702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.65 user=news Nov 29 07:26:51 nextcloud sshd\[14702\]: Failed password for news from 106.12.94.65 port 47676 ssh2 Nov 29 07:30:15 nextcloud sshd\[18936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.65 user=backup ...	2019-11-29 14:58:09
167.114.3.105	attackbots	"Fail2Ban detected SSH brute force attempt"	2019-11-29 14:52:02
94.21.243.204	attackspambots	Nov 29 07:44:55 MK-Soft-VM5 sshd[1502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.243.204 Nov 29 07:44:57 MK-Soft-VM5 sshd[1502]: Failed password for invalid user web from 94.21.243.204 port 52093 ssh2 ...	2019-11-29 14:46:26
176.31.250.160	attackspambots	Nov 29 01:30:21 TORMINT sshd\[29725\]: Invalid user user from 176.31.250.160 Nov 29 01:30:21 TORMINT sshd\[29725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.250.160 Nov 29 01:30:23 TORMINT sshd\[29725\]: Failed password for invalid user user from 176.31.250.160 port 33752 ssh2 ...	2019-11-29 14:51:42
138.68.92.121	attackspambots	2019-11-29T06:53:58.636419tmaserv sshd\[26025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 2019-11-29T06:54:00.900738tmaserv sshd\[26025\]: Failed password for invalid user swantek from 138.68.92.121 port 49392 ssh2 2019-11-29T08:00:03.560814tmaserv sshd\[29077\]: Invalid user http from 138.68.92.121 port 32988 2019-11-29T08:00:03.565336tmaserv sshd\[29077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 2019-11-29T08:00:04.821304tmaserv sshd\[29077\]: Failed password for invalid user http from 138.68.92.121 port 32988 ssh2 2019-11-29T08:05:16.709201tmaserv sshd\[29313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 user=root ...	2019-11-29 14:28:12
49.235.38.225	attackbots	Brute force SMTP login attempted. ...	2019-11-29 14:48:16
51.77.156.223	attackspam	Nov 29 07:55:40 vps647732 sshd[30810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.156.223 Nov 29 07:55:41 vps647732 sshd[30810]: Failed password for invalid user dahi from 51.77.156.223 port 56482 ssh2 ...	2019-11-29 15:02:38
176.109.231.237	attackbots	" "	2019-11-29 14:27:16
51.15.65.170	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-29 14:47:51
116.196.93.89	attackbotsspam	Nov 29 09:30:12 debian sshd\[30474\]: Invalid user mat from 116.196.93.89 port 44740 Nov 29 09:30:12 debian sshd\[30474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.93.89 Nov 29 09:30:14 debian sshd\[30474\]: Failed password for invalid user mat from 116.196.93.89 port 44740 ssh2 ...	2019-11-29 14:56:44
49.88.112.70	attackspambots	Nov 29 07:28:00 eventyay sshd[664]: Failed password for root from 49.88.112.70 port 23499 ssh2 Nov 29 07:29:31 eventyay sshd[695]: Failed password for root from 49.88.112.70 port 24413 ssh2 ...	2019-11-29 15:03:21
94.185.30.223	attack	SSH bruteforce (Triggered fail2ban)	2019-11-29 14:59:09

最近上报的IP列表

12.153.200.198	182.253.70.146	36.42.163.55	183.185.207.55
179.151.33.103	162.71.250.98	108.149.217.168	94.107.106.23
87.180.244.135	114.32.77.46	189.56.139.230	31.193.91.27
14.43.228.186	114.34.184.134	92.88.87.43	41.120.237.24
112.37.107.211	177.36.201.248	129.99.152.140	188.220.108.153