203.130.1.162 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Pakistan

运营商(isp): Supernet PDS Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-03-29 03:03:24
attackspam	Unauthorized connection attempt detected from IP address 203.130.1.162 to port 1433 [J]	2020-01-19 07:12:32
attack	Port 1433 Scan	2020-01-08 00:34:52

相同子网IP讨论:

IP	类型	评论内容	时间
203.130.130.40	attackspam	Unauthorized IMAP connection attempt	2020-08-25 00:51:06
203.130.1.18	attackspam	Unauthorized connection attempt from IP address 203.130.1.18 on Port 445(SMB)	2020-08-19 15:55:07
203.130.1.50	attackbots	Icarus honeypot on github	2020-07-07 14:28:48
203.130.1.203	attackbots	Honeypot attack, port: 445, PTR: super1-line-203.super.net.pk.	2020-06-24 03:26:31
203.130.192.242	attack	May 28 04:56:14 mockhub sshd[19164]: Failed password for root from 203.130.192.242 port 45813 ssh2 May 28 05:04:14 mockhub sshd[19501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 ...	2020-05-28 20:11:57
203.130.152.114	attackspambots	Invalid user ubnt from 203.130.152.114 port 56934	2020-05-24 00:11:40
203.130.152.114	attackbotsspam	Invalid user ubnt from 203.130.152.114 port 56934	2020-05-22 02:55:55
203.130.192.242	attackbots	$f2bV_matches	2020-05-11 14:18:36
203.130.192.242	attackbotsspam	Apr 27 07:55:07 OPSO sshd\[20962\]: Invalid user laura from 203.130.192.242 port 41484 Apr 27 07:55:07 OPSO sshd\[20962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 Apr 27 07:55:10 OPSO sshd\[20962\]: Failed password for invalid user laura from 203.130.192.242 port 41484 ssh2 Apr 27 07:57:10 OPSO sshd\[21146\]: Invalid user sshuser from 203.130.192.242 port 59054 Apr 27 07:57:10 OPSO sshd\[21146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242	2020-04-27 16:42:35
203.130.130.40	attackspam	spam	2020-04-06 13:36:39
203.130.192.242	attackbots	Brute-force attempt banned	2020-04-04 23:02:31
203.130.192.242	attackspam	5x Failed Password	2020-04-03 02:57:15
203.130.192.242	attackspam	Mar 31 20:25:53 lukav-desktop sshd\[22589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 user=root Mar 31 20:25:55 lukav-desktop sshd\[22589\]: Failed password for root from 203.130.192.242 port 32918 ssh2 Mar 31 20:33:44 lukav-desktop sshd\[22686\]: Invalid user dv from 203.130.192.242 Mar 31 20:33:44 lukav-desktop sshd\[22686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 Mar 31 20:33:46 lukav-desktop sshd\[22686\]: Failed password for invalid user dv from 203.130.192.242 port 44748 ssh2	2020-04-01 02:03:15
203.130.192.242	attackbots	Mar 28 00:28:58 v22018086721571380 sshd[27089]: Failed password for invalid user qka from 203.130.192.242 port 51478 ssh2	2020-03-28 07:58:52
203.130.192.242	attackspam	$f2bV_matches	2020-03-25 12:49:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.130.1.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.130.1.162.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010700 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 00:34:46 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

162.1.130.203.in-addr.arpa domain name pointer super1-line-162.super.net.pk.

NSLOOKUP信息:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
162.1.130.203.in-addr.arpa	name = super1-line-162.super.net.pk.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
210.18.156.75	attackbotsspam	Reported by AbuseIPDB proxy server.	2019-09-22 20:54:56
159.203.198.34	attack	Sep 22 15:12:27 plex sshd[8420]: Invalid user admin from 159.203.198.34 port 33284	2019-09-22 21:29:40
176.236.34.54	attackbotsspam	Sep 22 12:42:37 hcbbdb sshd\[20433\]: Invalid user antonio from 176.236.34.54 Sep 22 12:42:37 hcbbdb sshd\[20433\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.236.34.54 Sep 22 12:42:40 hcbbdb sshd\[20433\]: Failed password for invalid user antonio from 176.236.34.54 port 52540 ssh2 Sep 22 12:47:32 hcbbdb sshd\[21074\]: Invalid user bo from 176.236.34.54 Sep 22 12:47:32 hcbbdb sshd\[21074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.236.34.54	2019-09-22 21:06:02
46.38.144.146	attackbotsspam	Sep 22 15:09:44 mail postfix/smtpd\[28341\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 22 15:11:01 mail postfix/smtpd\[29108\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 22 15:12:18 mail postfix/smtpd\[29108\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-22 21:24:23
129.204.42.62	attackspam	(sshd) Failed SSH login from 129.204.42.62 (-): 5 in the last 3600 secs	2019-09-22 20:57:29
122.70.153.230	attackbots	Sep 22 14:47:38 fr01 sshd[30883]: Invalid user stortora from 122.70.153.230 Sep 22 14:47:38 fr01 sshd[30883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.70.153.230 Sep 22 14:47:38 fr01 sshd[30883]: Invalid user stortora from 122.70.153.230 Sep 22 14:47:40 fr01 sshd[30883]: Failed password for invalid user stortora from 122.70.153.230 port 60494 ssh2 ...	2019-09-22 21:00:55
157.230.7.0	attackbotsspam	Sep 22 12:43:37 web8 sshd\[13991\]: Invalid user briana from 157.230.7.0 Sep 22 12:43:37 web8 sshd\[13991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.7.0 Sep 22 12:43:39 web8 sshd\[13991\]: Failed password for invalid user briana from 157.230.7.0 port 37032 ssh2 Sep 22 12:47:20 web8 sshd\[15602\]: Invalid user eddie123 from 157.230.7.0 Sep 22 12:47:20 web8 sshd\[15602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.7.0	2019-09-22 21:16:23
77.81.234.139	attackbotsspam	2019-09-22T15:44:09.109321tmaserv sshd\[23733\]: Invalid user user from 77.81.234.139 port 57012 2019-09-22T15:44:09.115133tmaserv sshd\[23733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.234.139 2019-09-22T15:44:11.292865tmaserv sshd\[23733\]: Failed password for invalid user user from 77.81.234.139 port 57012 ssh2 2019-09-22T15:47:30.641152tmaserv sshd\[23937\]: Invalid user smmsp from 77.81.234.139 port 36622 2019-09-22T15:47:30.644979tmaserv sshd\[23937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.234.139 2019-09-22T15:47:32.748832tmaserv sshd\[23937\]: Failed password for invalid user smmsp from 77.81.234.139 port 36622 ssh2 ...	2019-09-22 20:56:34
101.228.82.239	attackbots	Sep 22 02:58:37 auw2 sshd\[16235\]: Invalid user uitlander from 101.228.82.239 Sep 22 02:58:37 auw2 sshd\[16235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.228.82.239 Sep 22 02:58:39 auw2 sshd\[16235\]: Failed password for invalid user uitlander from 101.228.82.239 port 33010 ssh2 Sep 22 03:04:06 auw2 sshd\[16779\]: Invalid user support from 101.228.82.239 Sep 22 03:04:06 auw2 sshd\[16779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.228.82.239	2019-09-22 21:18:38
103.253.42.44	attackspam	Sep 22 10:57:33 marvibiene postfix/smtpd[35374]: warning: unknown[103.253.42.44]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 22 12:47:30 marvibiene postfix/smtpd[36479]: warning: unknown[103.253.42.44]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-22 21:08:28
37.187.181.182	attackbots	Sep 22 03:00:20 hiderm sshd\[1987\]: Invalid user 123456 from 37.187.181.182 Sep 22 03:00:20 hiderm sshd\[1987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.ip-37-187-181.eu Sep 22 03:00:21 hiderm sshd\[1987\]: Failed password for invalid user 123456 from 37.187.181.182 port 52954 ssh2 Sep 22 03:04:21 hiderm sshd\[2355\]: Invalid user ew@123 from 37.187.181.182 Sep 22 03:04:21 hiderm sshd\[2355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.ip-37-187-181.eu	2019-09-22 21:20:23
83.30.131.6	attackspam	scan z	2019-09-22 21:23:01
104.236.224.69	attackbotsspam	Sep 22 14:37:13 fr01 sshd[28991]: Invalid user purple from 104.236.224.69 Sep 22 14:37:13 fr01 sshd[28991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.224.69 Sep 22 14:37:13 fr01 sshd[28991]: Invalid user purple from 104.236.224.69 Sep 22 14:37:15 fr01 sshd[28991]: Failed password for invalid user purple from 104.236.224.69 port 33713 ssh2 Sep 22 14:46:55 fr01 sshd[30749]: Invalid user chandru from 104.236.224.69 ...	2019-09-22 21:35:59
196.20.229.59	attackbotsspam	Sep 21 00:30:04 cp1server sshd[3049]: Invalid user vmuser from 196.20.229.59 Sep 21 00:30:04 cp1server sshd[3049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.20.229.59 Sep 21 00:30:05 cp1server sshd[3049]: Failed password for invalid user vmuser from 196.20.229.59 port 45800 ssh2 Sep 21 00:30:06 cp1server sshd[3052]: Received disconnect from 196.20.229.59: 11: Bye Bye Sep 21 00:46:36 cp1server sshd[5680]: Invalid user user1 from 196.20.229.59 Sep 21 00:46:36 cp1server sshd[5680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.20.229.59 Sep 21 00:46:38 cp1server sshd[5680]: Failed password for invalid user user1 from 196.20.229.59 port 41780 ssh2 Sep 21 00:46:38 cp1server sshd[5681]: Received disconnect from 196.20.229.59: 11: Bye Bye Sep 21 00:52:08 cp1server sshd[6255]: Invalid user postgres from 196.20.229.59 Sep 21 00:52:08 cp1server sshd[6255]: pam_unix(sshd:auth): authen........ -------------------------------	2019-09-22 21:16:59
54.39.51.31	attack	Sep 22 09:22:07 debian sshd\[8141\]: Invalid user mc2 from 54.39.51.31 port 49662 Sep 22 09:22:07 debian sshd\[8141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Sep 22 09:22:09 debian sshd\[8141\]: Failed password for invalid user mc2 from 54.39.51.31 port 49662 ssh2 ...	2019-09-22 21:31:18

最近上报的IP列表

14.232.131.227	168.90.91.249	39.42.74.52	5.126.15.225
49.230.64.171	91.77.165.152	45.242.123.87	212.237.46.69
118.70.177.52	14.183.25.160	180.121.172.200	41.32.145.210
23.101.137.224	95.37.97.230	162.158.74.53	71.162.131.20
124.109.62.34	119.23.32.254	187.252.200.28	117.200.73.7