3.106.104.19 - IPInfo

基本信息:

城市(city): Sydney

省份(region): New South Wales

国家(country): Australia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.106.104.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24051
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;3.106.104.19.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024112401 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 25 02:50:38 CST 2024
;; MSG SIZE  rcvd: 105

HOST信息:

19.104.106.3.in-addr.arpa domain name pointer ec2-3-106-104-19.ap-southeast-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.104.106.3.in-addr.arpa	name = ec2-3-106-104-19.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.12.205.227	attack	2019-10-30T08:19:57.564720lon01.zurich-datacenter.net sshd\[10830\]: Invalid user cougar from 106.12.205.227 port 43114 2019-10-30T08:19:57.570133lon01.zurich-datacenter.net sshd\[10830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.205.227 2019-10-30T08:19:59.502746lon01.zurich-datacenter.net sshd\[10830\]: Failed password for invalid user cougar from 106.12.205.227 port 43114 ssh2 2019-10-30T08:25:05.578733lon01.zurich-datacenter.net sshd\[10953\]: Invalid user student!@\# from 106.12.205.227 port 51288 2019-10-30T08:25:05.585783lon01.zurich-datacenter.net sshd\[10953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.205.227 ...	2019-10-30 18:28:46
81.198.116.14	attackspam	port scan and connect, tcp 23 (telnet)	2019-10-30 18:49:14
185.176.27.254	attack	ET DROP Dshield Block Listed Source group 1 - port: 49900 proto: TCP cat: Misc Attack	2019-10-30 18:42:17
51.158.145.221	attackbots	Oct 30 10:34:29 vmanager6029 sshd\[13958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.145.221 user=root Oct 30 10:34:31 vmanager6029 sshd\[13958\]: Failed password for root from 51.158.145.221 port 56611 ssh2 Oct 30 10:38:04 vmanager6029 sshd\[14035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.145.221 user=root	2019-10-30 18:37:03
51.254.131.137	attack	Oct 30 07:01:15 server sshd\[11709\]: Invalid user gt56yhju7 from 51.254.131.137 port 40474 Oct 30 07:01:15 server sshd\[11709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.131.137 Oct 30 07:01:17 server sshd\[11709\]: Failed password for invalid user gt56yhju7 from 51.254.131.137 port 40474 ssh2 Oct 30 07:05:15 server sshd\[17153\]: Invalid user yxp0902651 from 51.254.131.137 port 51224 Oct 30 07:05:15 server sshd\[17153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.131.137	2019-10-30 18:40:32
60.255.230.202	attackbots	(sshd) Failed SSH login from 60.255.230.202 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Oct 30 02:34:38 host sshd[94180]: Invalid user kb from 60.255.230.202 port 38038	2019-10-30 18:37:51
180.168.76.222	attackspam	frenzy	2019-10-30 18:17:12
124.74.110.230	attackbots	Unauthorized connection attempt from IP address 124.74.110.230 on Port 445(SMB)	2019-10-30 18:39:39
54.37.232.108	attackspam	Oct 30 10:33:40 hcbbdb sshd\[12198\]: Invalid user andreyd from 54.37.232.108 Oct 30 10:33:40 hcbbdb sshd\[12198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.ip-54-37-232.eu Oct 30 10:33:41 hcbbdb sshd\[12198\]: Failed password for invalid user andreyd from 54.37.232.108 port 34672 ssh2 Oct 30 10:37:33 hcbbdb sshd\[12583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.ip-54-37-232.eu user=root Oct 30 10:37:35 hcbbdb sshd\[12583\]: Failed password for root from 54.37.232.108 port 46212 ssh2	2019-10-30 18:38:08
14.111.93.116	attackbots	Oct 29 03:38:56 fwweb01 sshd[28216]: Invalid user zy from 14.111.93.116 Oct 29 03:38:56 fwweb01 sshd[28216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.116 Oct 29 03:38:58 fwweb01 sshd[28216]: Failed password for invalid user zy from 14.111.93.116 port 46638 ssh2 Oct 29 03:38:58 fwweb01 sshd[28216]: Received disconnect from 14.111.93.116: 11: Bye Bye [preauth] Oct 29 03:43:40 fwweb01 sshd[28465]: Invalid user smhostnameh from 14.111.93.116 Oct 29 03:43:40 fwweb01 sshd[28465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.116 Oct 29 03:43:41 fwweb01 sshd[28465]: Failed password for invalid user smhostnameh from 14.111.93.116 port 55066 ssh2 Oct 29 03:43:42 fwweb01 sshd[28465]: Received disconnect from 14.111.93.116: 11: Bye Bye [preauth] Oct 29 03:54:27 fwweb01 sshd[29050]: Invalid user fangyuan from 14.111.93.116 Oct 29 03:54:27 fwweb01 sshd[29050]: pam_unix(sshd........ -------------------------------	2019-10-30 18:15:33
103.76.253.218	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2019-10-30 18:48:11
222.186.180.9	attack	$f2bV_matches	2019-10-30 18:23:52
114.5.221.142	attackbots	[Wed Oct 30 10:48:27.264476 2019] [:error] [pid 7559:tid 140145034290944] [client 114.5.221.142:6521] [client 114.5.221.142] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 503 found within RESPONSE_STATUS: 503"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/peta-instrumentasi"] [unique_id "XbkIC48ZrE8Gf@6lZT6dTQAAAAE"], referer: https://karangploso.jatim.bmkg.go.id/ ...	2019-10-30 18:28:28
83.7.17.140	attack	SSH bruteforce (Triggered fail2ban)	2019-10-30 18:31:09
112.91.254.2	attackspam	Oct 30 04:48:17 ks10 sshd[1785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.254.2 Oct 30 04:48:20 ks10 sshd[1785]: Failed password for invalid user testuser from 112.91.254.2 port 60014 ssh2 ...	2019-10-30 18:33:29

最近上报的IP列表

192.168.33.1	43.24.101.202	116.133.65.12	163.109.233.253
2.224.70.152	253.48.165.173	114.17.230.200	139.173.109.254
157.240.7.20	29.137.145.99	208.44.38.0	188.95.51.97
128.161.203.17	190.238.252.118	242.250.204.63	139.160.158.140
92.110.177.122	174.12.43.188	142.250.230.207	162.0.220.203