152.103.20.7 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): HKT Limited

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.103.20.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12204
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;152.103.20.7.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 02:08:14 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 7.20.103.152.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 7.20.103.152.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
177.246.211.58	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 06:54:20
190.121.146.178	attackbotsspam	Unauthorized connection attempt from IP address 190.121.146.178 on Port 445(SMB)	2020-09-02 07:12:35
45.142.120.192	attackspam	Brute force attack stopped by firewall	2020-09-02 07:02:19
124.199.133.231	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-09-02 06:49:12
5.188.206.34	attack	Sep 2 00:30:45 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=59472 PROTO=TCP SPT=53707 DPT=55216 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 2 00:32:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=63762 PROTO=TCP SPT=53707 DPT=47208 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 2 00:36:06 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=29961 PROTO=TCP SPT=53707 DPT=50634 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 2 00:41:19 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=5.188.206.34 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=62751 PROTO=TCP SPT=53707 DPT=34099 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 2 00:42:25 hidden kernel: ...	2020-09-02 06:45:40
103.130.215.146	attackspam	20/9/1@12:46:56: FAIL: Alarm-Intrusion address from=103.130.215.146 ...	2020-09-02 06:53:09
92.63.197.97	attackspam	firewall-block, port(s): 5950/tcp	2020-09-02 06:57:16
117.102.82.43	attackspam	Invalid user coin from 117.102.82.43 port 60992	2020-09-02 07:08:05
145.239.78.59	attackbots	Invalid user courier from 145.239.78.59 port 54370	2020-09-02 07:15:13
178.128.45.173	attackspam	SSH Invalid Login	2020-09-02 06:50:24
51.38.236.221	attack	Invalid user fernanda from 51.38.236.221 port 40490	2020-09-02 07:06:12
189.204.140.49	attackspam	Unauthorized connection attempt from IP address 189.204.140.49 on Port 445(SMB)	2020-09-02 06:55:53
51.161.107.124	attack	[ssh] SSH attack	2020-09-02 06:44:25
31.13.115.3	attack	[Tue Sep 01 23:46:32.212886 2020] [:error] [pid 19950:tid 140264043071232] [client 31.13.115.3:43116] [client 31.13.115.3] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "X0566C9Xc5-xLXtRxShTZQABxAM"] ...	2020-09-02 07:17:04
107.189.11.160	attackbots	SSH Invalid Login	2020-09-02 07:03:44

最近上报的IP列表

45.116.32.200	77.192.236.193	181.99.185.128	222.233.87.253
166.166.58.99	5.104.143.177	113.134.79.156	55.241.59.24
165.244.19.197	61.231.5.42	77.220.70.15	213.95.124.39
186.139.89.58	75.38.2.39	89.193.23.243	98.208.236.195
213.236.154.114	36.160.161.10	142.190.168.16	220.176.152.54