160.124.103.55

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): Posix Systems (Pty) Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Banned IP Access	2020-10-13 23:12:48
attack	Automatic report - Banned IP Access	2020-10-13 14:30:35
attack	2020-10-12T09:14:24.595560correo.[domain] sshd[39340]: Invalid user vern from 160.124.103.55 port 35742 2020-10-12T09:14:27.041629correo.[domain] sshd[39340]: Failed password for invalid user vern from 160.124.103.55 port 35742 ssh2 2020-10-12T09:30:52.227128correo.[domain] sshd[11811]: Invalid user com from 160.124.103.55 port 50920 ...	2020-10-13 07:11:26
attackbots	(sshd) Failed SSH login from 160.124.103.55 (HK/Hong Kong/-): 5 in the last 3600 secs	2020-10-04 04:31:39
attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-03 20:38:18
attack	Oct 3 05:28:26 abendstille sshd\[29296\]: Invalid user service from 160.124.103.55 Oct 3 05:28:26 abendstille sshd\[29296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 3 05:28:29 abendstille sshd\[29296\]: Failed password for invalid user service from 160.124.103.55 port 36864 ssh2 Oct 3 05:31:38 abendstille sshd\[32475\]: Invalid user josh from 160.124.103.55 Oct 3 05:31:38 abendstille sshd\[32475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 ...	2020-10-03 12:03:43
attackbotsspam	Oct 2 22:34:24 h1745522 sshd[17980]: Invalid user dev from 160.124.103.55 port 56864 Oct 2 22:34:24 h1745522 sshd[17980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 2 22:34:24 h1745522 sshd[17980]: Invalid user dev from 160.124.103.55 port 56864 Oct 2 22:34:27 h1745522 sshd[17980]: Failed password for invalid user dev from 160.124.103.55 port 56864 ssh2 Oct 2 22:38:05 h1745522 sshd[18348]: Invalid user william from 160.124.103.55 port 35818 Oct 2 22:38:05 h1745522 sshd[18348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 2 22:38:05 h1745522 sshd[18348]: Invalid user william from 160.124.103.55 port 35818 Oct 2 22:38:06 h1745522 sshd[18348]: Failed password for invalid user william from 160.124.103.55 port 35818 ssh2 Oct 2 22:41:55 h1745522 sshd[18809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 ...	2020-10-03 06:45:58
attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-22 21:19:34
attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 22:11:41
attackbots	$f2bV_matches	2020-09-21 13:58:27
attack	Invalid user dodsserver from 160.124.103.55 port 57004	2020-09-21 05:47:36
attackspam	Lines containing failures of 160.124.103.55 Sep 15 18:44:10 cdb sshd[18235]: Invalid user cooperrider from 160.124.103.55 port 36666 Sep 15 18:44:10 cdb sshd[18235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Sep 15 18:44:12 cdb sshd[18235]: Failed password for invalid user cooperrider from 160.124.103.55 port 36666 ssh2 Sep 15 18:44:13 cdb sshd[18235]: Received disconnect from 160.124.103.55 port 36666:11: Bye Bye [preauth] Sep 15 18:44:13 cdb sshd[18235]: Disconnected from invalid user cooperrider 160.124.103.55 port 36666 [preauth] Sep 15 18:49:09 cdb sshd[18670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 user=r.r Sep 15 18:49:11 cdb sshd[18670]: Failed password for r.r from 160.124.103.55 port 59576 ssh2 Sep 15 18:49:11 cdb sshd[18670]: Received disconnect from 160.124.103.55 port 59576:11: Bye Bye [preauth] Sep 15 18:49:11 cdb sshd[18670]: Discon........ ------------------------------	2020-09-17 01:38:21
attack	DATE:2020-09-16 10:44:03, IP:160.124.103.55, PORT:ssh SSH brute force auth (docker-dc)	2020-09-16 17:55:11

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 160.124.103.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22319
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;160.124.103.55.			IN	A

;; AUTHORITY SECTION:
.			319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091600 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 16 17:55:04 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

55.103.124.160.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 55.103.124.160.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
117.121.97.115	attackspam	$f2bV_matches	2020-03-05 05:10:33
36.238.97.111	attackbots	1583328724 - 03/04/2020 14:32:04 Host: 36.238.97.111/36.238.97.111 Port: 445 TCP Blocked	2020-03-05 05:05:28
5.157.96.66	attackbotsspam	Port Scan detected from 5.157.96.66 (IT/Italy/5-157-96-66.v4.ngi.it). 4 hits in the last 270 seconds	2020-03-05 05:04:40
2.92.41.161	attackbots	Unauthorized connection attempt from IP address 2.92.41.161 on Port 445(SMB)	2020-03-05 05:08:21
62.128.217.111	attackspam	(From media.1@monemail.com) Hi, Just a quick moment to let you know we are having a one day sale. Would you like people interested in coming to your website from major online publications in your niche? We are the only company that we know of that does this. Today get 6,000 interested visitors to your site in 7 days for $54.99. (not segmented by city or state) Larger packages are available. For more info or to get started please visit us at https://traffic-stampede.com We hope to see you on our site. Best, Mindy G. TS	2020-03-05 05:01:34
106.13.41.116	attackbotsspam	Mar 4 14:22:03 srv01 sshd[26980]: Invalid user sara from 106.13.41.116 port 33650 Mar 4 14:22:03 srv01 sshd[26980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.116 Mar 4 14:22:03 srv01 sshd[26980]: Invalid user sara from 106.13.41.116 port 33650 Mar 4 14:22:05 srv01 sshd[26980]: Failed password for invalid user sara from 106.13.41.116 port 33650 ssh2 Mar 4 14:31:46 srv01 sshd[27468]: Invalid user minecraft from 106.13.41.116 port 60612 ...	2020-03-05 05:26:24
125.16.137.243	attack	Unauthorized connection attempt from IP address 125.16.137.243 on Port 445(SMB)	2020-03-05 05:28:08
218.92.0.132	attackspambots	$f2bV_matches	2020-03-05 05:16:24
190.159.40.222	attackbotsspam	Honeypot attack, port: 81, PTR: dynamic-ip-19015940222.cable.net.co.	2020-03-05 04:57:33
218.76.52.78	attackspambots	$f2bV_matches	2020-03-05 05:35:08
159.89.169.125	attackspam	Mar 4 17:21:10 ns381471 sshd[3502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.125 Mar 4 17:21:11 ns381471 sshd[3502]: Failed password for invalid user zll from 159.89.169.125 port 53122 ssh2	2020-03-05 05:29:33
35.224.204.56	attackbots	Mar 4 04:17:17 hpm sshd\[7593\]: Invalid user informix from 35.224.204.56 Mar 4 04:17:17 hpm sshd\[7593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.204.224.35.bc.googleusercontent.com Mar 4 04:17:19 hpm sshd\[7593\]: Failed password for invalid user informix from 35.224.204.56 port 53302 ssh2 Mar 4 04:20:43 hpm sshd\[7870\]: Invalid user superman from 35.224.204.56 Mar 4 04:20:43 hpm sshd\[7870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.204.224.35.bc.googleusercontent.com	2020-03-05 05:32:14
51.38.57.78	attackbots	(sshd) Failed SSH login from 51.38.57.78 (FR/France/ns3118043.ip-51-38-57.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 4 20:29:10 amsweb01 sshd[13448]: Failed password for root from 51.38.57.78 port 35910 ssh2 Mar 4 20:29:10 amsweb01 sshd[13447]: Failed password for root from 51.38.57.78 port 37358 ssh2 Mar 4 20:56:38 amsweb01 sshd[16726]: Failed password for root from 51.38.57.78 port 46810 ssh2 Mar 4 20:56:38 amsweb01 sshd[16725]: Failed password for root from 51.38.57.78 port 48258 ssh2 Mar 4 21:23:57 amsweb01 sshd[20098]: Failed password for root from 51.38.57.78 port 57428 ssh2	2020-03-05 05:03:04
157.245.233.164	attackspam	157.245.233.164 - - [04/Mar/2020:19:41:50 +0300] "POST /wp-login.php HTTP/1.1" 200 2790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-05 05:27:53
49.151.47.152	attack	Unauthorized connection attempt from IP address 49.151.47.152 on Port 445(SMB)	2020-03-05 05:37:57

最近上报的IP列表

186.154.32.104	185.195.24.145	162.241.65.44	202.47.37.153
78.1.91.130	192.154.227.254	125.30.113.183	194.87.138.143
140.143.25.149	111.227.233.75	211.104.20.145	155.94.196.193
110.191.211.25	45.95.119.232	90.53.13.147	194.206.202.63
60.254.49.72	27.7.129.27	189.113.140.205	56.124.64.203