211.103.193.66

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Teletron Telecom Engineering Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 14 13:51:47 : SSH login attempts with invalid user	2020-01-15 07:13:46

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.103.193.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62173
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.103.193.66.			IN	A

;; AUTHORITY SECTION:
.			183	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011402 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 15 07:13:43 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 66.193.103.211.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.193.103.211.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.172.104.55	attack	[munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:09 +0200] "POST /[munged]: HTTP/1.1" 200 9039 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:09 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:10 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:11 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:12 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 85.172.104.55 - - [02/Sep/2019:15:16:13	2019-09-02 22:10:50
213.141.51.211	attack	5555/tcp [2019-09-02]1pkt	2019-09-02 22:56:21
190.49.212.247	attackspam	Port Scan: TCP/34567	2019-09-02 23:18:45
132.148.134.246	attack	[Mon Sep 02 14:16:01.435005 2019] [access_compat:error] [pid 32604] [client 132.148.134.246:52266] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php ...	2019-09-02 22:28:58
117.50.5.83	attack	Sep 2 13:16:14 MK-Soft-VM7 sshd\[25405\]: Invalid user ridley from 117.50.5.83 port 42416 Sep 2 13:16:14 MK-Soft-VM7 sshd\[25405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.5.83 Sep 2 13:16:16 MK-Soft-VM7 sshd\[25405\]: Failed password for invalid user ridley from 117.50.5.83 port 42416 ssh2 ...	2019-09-02 22:11:50
209.64.14.98	attackspambots	Port Scan: UDP/137	2019-09-02 23:37:40
49.234.120.114	attackbots	Sep 2 16:02:07 plex sshd[27317]: Invalid user python from 49.234.120.114 port 39056	2019-09-02 22:17:45
128.199.177.224	attackbots	Sep 2 10:01:19 xtremcommunity sshd\[23111\]: Invalid user sysbackup from 128.199.177.224 port 49416 Sep 2 10:01:19 xtremcommunity sshd\[23111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.177.224 Sep 2 10:01:21 xtremcommunity sshd\[23111\]: Failed password for invalid user sysbackup from 128.199.177.224 port 49416 ssh2 Sep 2 10:05:24 xtremcommunity sshd\[23276\]: Invalid user neh from 128.199.177.224 port 60676 Sep 2 10:05:24 xtremcommunity sshd\[23276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.177.224 ...	2019-09-02 22:14:12
195.239.178.110	attackbots	195.239.178.110 - - [02/Sep/2019:14:16:22 +0100] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Linux; Android 8.0; TA-1000 Build/OPR1.170623.026; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/57.0.2987.132 MQQBrowser/6.2 TBS/043908 Mobile Safari/537.36 V1_AND_SQ_7.1.0_0_TIM_D TIM2.0/2.0.0.1696 QQ/6.5.5 NetType/WIFI WebP/0.3.0 Pixel/1080 IMEI/null"	2019-09-02 22:05:30
222.186.15.110	attackspam	Sep 2 21:29:15 webhost01 sshd[815]: Failed password for root from 222.186.15.110 port 52326 ssh2 ...	2019-09-02 22:30:58
45.117.81.84	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-09-02 22:35:35
40.142.171.76	attackspam	445/tcp [2019-09-02]1pkt	2019-09-02 22:19:04
78.130.243.120	attack	2019-09-02T14:17:01.624860abusebot-8.cloudsearch.cf sshd\[5705\]: Invalid user pptpd from 78.130.243.120 port 42402	2019-09-02 22:40:51
210.176.62.116	attack	Sep 2 17:02:26 vps647732 sshd[16413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.176.62.116 Sep 2 17:02:28 vps647732 sshd[16413]: Failed password for invalid user marketing from 210.176.62.116 port 58344 ssh2 ...	2019-09-02 23:05:06
50.63.165.245	attackspam	www noscript ...	2019-09-02 22:33:30

最近上报的IP列表

158.132.53.38	113.160.173.37	21.163.155.165	70.82.3.81
117.239.205.129	150.2.209.180	226.196.124.39	205.162.193.34
214.24.243.232	182.75.80.10	122.67.215.203	179.104.20.196
178.128.25.84	27.133.149.232	220.124.72.13	219.20.135.86
47.89.28.169	222.218.62.95	79.160.88.231	84.1.159.121