203.148.84.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Indotrans Data

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 203.148.84.6 on Port 445(SMB)	2020-06-23 02:17:48

相同子网IP讨论:

IP	类型	评论内容	时间
203.148.84.118	attack	Scanning random ports - tries to find possible vulnerable services	2020-02-21 08:29:20
203.148.84.118	attackspam	Unauthorized connection attempt from IP address 203.148.84.118 on Port 445(SMB)	2019-11-19 05:37:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.148.84.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.148.84.6.			IN	A

;; AUTHORITY SECTION:
.			238	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062201 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 02:17:44 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

6.84.148.203.in-addr.arpa domain name pointer dist-cmg.indotrans.net.id.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.84.148.203.in-addr.arpa	name = dist-cmg.indotrans.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
180.160.68.195	spamattack	SPAM	2019-08-04 05:17:11
58.136.151.23	attack	Scanning random ports - tries to find possible vulnerable services	2019-08-04 05:10:01
177.154.72.180	attack	dovecot jail - smtp auth [ma]	2019-08-04 04:41:09
165.227.0.162	attack	Aug 3 22:44:04 SilenceServices sshd[9104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.0.162 Aug 3 22:44:06 SilenceServices sshd[9104]: Failed password for invalid user ca from 165.227.0.162 port 52218 ssh2 Aug 3 22:48:39 SilenceServices sshd[12239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.0.162	2019-08-04 04:49:37
178.62.64.107	attackbotsspam	2019-08-03T19:02:48.527169abusebot-5.cloudsearch.cf sshd\[24901\]: Invalid user dodsserver from 178.62.64.107 port 36914	2019-08-04 04:43:54
47.26.248.30	attackspambots	Aug 3 16:59:57 Serveur sshd[1857]: Bad protocol version identification '' from 47.26.248.30 port 57503 Aug 3 16:59:59 Serveur sshd[1858]: Invalid user netscreen from 47.26.248.30 port 57532 Aug 3 17:00:00 Serveur sshd[1858]: Failed password for invalid user netscreen from 47.26.248.30 port 57532 ssh2 Aug 3 17:00:00 Serveur sshd[1858]: Connection closed by invalid user netscreen 47.26.248.30 port 57532 [preauth] Aug 3 17:00:02 Serveur sshd[1877]: Invalid user nexthink from 47.26.248.30 port 57692 Aug 3 17:00:02 Serveur sshd[1877]: Failed password for invalid user nexthink from 47.26.248.30 port 57692 ssh2 Aug 3 17:00:02 Serveur sshd[1877]: Connection closed by invalid user nexthink 47.26.248.30 port 57692 [preauth] Aug 3 17:00:04 Serveur sshd[2088]: Invalid user misp from 47.26.248.30 port 57814 Aug 3 17:00:04 Serveur sshd[2088]: Failed password for invalid user misp from 47.26.248.30 port 57814 ssh2 Aug 3 17:00:05 Serveur sshd[2088]: Connection closed by inval........ -------------------------------	2019-08-04 04:39:13
104.248.4.117	attackbots	2019-08-03T15:18:32.074689mizuno.rwx.ovh sshd[20214]: Connection from 104.248.4.117 port 35506 on 78.46.61.178 port 22 2019-08-03T15:18:32.673754mizuno.rwx.ovh sshd[20214]: Invalid user mmroot from 104.248.4.117 port 35506 2019-08-03T15:18:32.676867mizuno.rwx.ovh sshd[20214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.4.117 2019-08-03T15:18:32.074689mizuno.rwx.ovh sshd[20214]: Connection from 104.248.4.117 port 35506 on 78.46.61.178 port 22 2019-08-03T15:18:32.673754mizuno.rwx.ovh sshd[20214]: Invalid user mmroot from 104.248.4.117 port 35506 2019-08-03T15:18:34.393972mizuno.rwx.ovh sshd[20214]: Failed password for invalid user mmroot from 104.248.4.117 port 35506 ssh2 ...	2019-08-04 05:01:54
103.243.252.244	attackbotsspam	Feb 26 23:22:20 motanud sshd\[30319\]: Invalid user bkp from 103.243.252.244 port 55578 Feb 26 23:22:20 motanud sshd\[30319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.252.244 Feb 26 23:22:22 motanud sshd\[30319\]: Failed password for invalid user bkp from 103.243.252.244 port 55578 ssh2	2019-08-04 05:05:40
23.129.64.152	attackbots	Aug 3 06:00:57 vpn01 sshd\[29480\]: Invalid user default from 23.129.64.152 Aug 3 06:00:57 vpn01 sshd\[29480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.152 Aug 3 06:00:58 vpn01 sshd\[29480\]: Failed password for invalid user default from 23.129.64.152 port 29490 ssh2 Aug 3 06:01:03 vpn01 sshd\[29485\]: Invalid user ftp from 23.129.64.152 Aug 3 06:01:03 vpn01 sshd\[29485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.152 Aug 3 06:01:04 vpn01 sshd\[29485\]: Failed password for invalid user ftp from 23.129.64.152 port 42806 ssh2	2019-08-04 04:57:13
80.82.70.194	attack	scan z	2019-08-04 05:02:47
49.83.33.122	attackspam	Automatic report - Port Scan Attack	2019-08-04 05:15:52
177.43.76.36	attackbots	Aug 3 21:51:42 localhost sshd\[10921\]: Invalid user quentin from 177.43.76.36 port 46594 Aug 3 21:51:42 localhost sshd\[10921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.76.36 ...	2019-08-04 04:54:56
45.116.232.14	attackbotsspam	Chat Spam	2019-08-04 04:37:19
165.227.10.163	attackbotsspam	2019-08-03T17:08:01.856929stark.klein-stark.info sshd\[12700\]: Invalid user k from 165.227.10.163 port 42622 2019-08-03T17:08:01.861301stark.klein-stark.info sshd\[12700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.10.163 2019-08-03T17:08:03.964856stark.klein-stark.info sshd\[12700\]: Failed password for invalid user k from 165.227.10.163 port 42622 ssh2 ...	2019-08-04 05:16:12
183.82.3.248	attackspam	Aug 3 14:28:11 vtv3 sshd\[8477\]: Invalid user hamlet from 183.82.3.248 port 44046 Aug 3 14:28:11 vtv3 sshd\[8477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.3.248 Aug 3 14:28:13 vtv3 sshd\[8477\]: Failed password for invalid user hamlet from 183.82.3.248 port 44046 ssh2 Aug 3 14:33:15 vtv3 sshd\[10994\]: Invalid user service from 183.82.3.248 port 37776 Aug 3 14:33:15 vtv3 sshd\[10994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.3.248 Aug 3 14:47:31 vtv3 sshd\[18146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.3.248 user=games Aug 3 14:47:33 vtv3 sshd\[18146\]: Failed password for games from 183.82.3.248 port 47752 ssh2 Aug 3 14:52:27 vtv3 sshd\[20500\]: Invalid user zimbra from 183.82.3.248 port 41780 Aug 3 14:52:27 vtv3 sshd\[20500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82	2019-08-04 05:08:17

最近上报的IP列表

216.104.200.22	213.145.136.20	13.232.61.181	125.212.148.51
16.134.237.78	91.124.80.9	82.114.124.210	178.90.218.29
114.232.110.193	109.166.89.3	110.25.88.123	52.142.55.36
123.125.115.229	179.232.159.158	117.240.182.194	196.43.147.212
195.16.97.243	42.84.77.235	202.21.113.210	36.112.108.195