103.104.17.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Level 6 Crown 7 Building

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH Brute Force	2020-04-29 14:03:42
attackbots	Dec 8 04:21:56 ws12vmsma01 sshd[44378]: Invalid user jens from 103.104.17.139 Dec 8 04:21:58 ws12vmsma01 sshd[44378]: Failed password for invalid user jens from 103.104.17.139 port 35404 ssh2 Dec 8 04:28:15 ws12vmsma01 sshd[45293]: Invalid user prashant from 103.104.17.139 ...	2019-12-08 16:57:42
attack	Nov 9 22:41:24 hanapaa sshd\[27120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 user=root Nov 9 22:41:26 hanapaa sshd\[27120\]: Failed password for root from 103.104.17.139 port 49054 ssh2 Nov 9 22:45:54 hanapaa sshd\[27464\]: Invalid user fstab from 103.104.17.139 Nov 9 22:45:54 hanapaa sshd\[27464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Nov 9 22:45:55 hanapaa sshd\[27464\]: Failed password for invalid user fstab from 103.104.17.139 port 59996 ssh2	2019-11-10 22:02:17
attackbotsspam	Nov 6 22:30:43 lnxmysql61 sshd[24223]: Failed password for root from 103.104.17.139 port 55994 ssh2 Nov 6 22:30:43 lnxmysql61 sshd[24223]: Failed password for root from 103.104.17.139 port 55994 ssh2	2019-11-07 05:32:19
attack	SSH Brute Force	2019-11-01 12:24:10
attackspam	Oct 12 07:55:29 vtv3 sshd\[26546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 user=root Oct 12 07:55:31 vtv3 sshd\[26546\]: Failed password for root from 103.104.17.139 port 42136 ssh2 Oct 12 07:59:47 vtv3 sshd\[28664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 user=root Oct 12 07:59:49 vtv3 sshd\[28664\]: Failed password for root from 103.104.17.139 port 53766 ssh2 Oct 12 08:04:09 vtv3 sshd\[31338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 user=root Oct 12 08:17:11 vtv3 sshd\[6964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 user=root Oct 12 08:17:13 vtv3 sshd\[6964\]: Failed password for root from 103.104.17.139 port 43780 ssh2 Oct 12 08:21:45 vtv3 sshd\[9753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rho	2019-10-12 16:12:23
attack	Oct 10 00:53:57 icinga sshd[2151]: Failed password for root from 103.104.17.139 port 43108 ssh2 ...	2019-10-10 07:17:01
attackbotsspam	Sep 30 18:53:06 webhost01 sshd[11802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 30 18:53:08 webhost01 sshd[11802]: Failed password for invalid user spamers from 103.104.17.139 port 54390 ssh2 ...	2019-09-30 20:06:20
attackspambots	Sep 27 23:51:27 hcbbdb sshd\[14956\]: Invalid user arkserver from 103.104.17.139 Sep 27 23:51:27 hcbbdb sshd\[14956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 27 23:51:29 hcbbdb sshd\[14956\]: Failed password for invalid user arkserver from 103.104.17.139 port 52464 ssh2 Sep 27 23:56:08 hcbbdb sshd\[15519\]: Invalid user webadmin from 103.104.17.139 Sep 27 23:56:08 hcbbdb sshd\[15519\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139	2019-09-28 08:03:19
attackspam	Sep 27 09:57:23 tux-35-217 sshd\[31439\]: Invalid user uw from 103.104.17.139 port 56658 Sep 27 09:57:23 tux-35-217 sshd\[31439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 27 09:57:25 tux-35-217 sshd\[31439\]: Failed password for invalid user uw from 103.104.17.139 port 56658 ssh2 Sep 27 10:02:12 tux-35-217 sshd\[31441\]: Invalid user emmanuel from 103.104.17.139 port 41214 Sep 27 10:02:12 tux-35-217 sshd\[31441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 ...	2019-09-27 16:09:39
attackspam	2019-09-25T02:42:06.2198911495-001 sshd\[32615\]: Failed password for invalid user yuanwd from 103.104.17.139 port 53262 ssh2 2019-09-25T02:56:35.3201651495-001 sshd\[33599\]: Invalid user admin from 103.104.17.139 port 34794 2019-09-25T02:56:35.3275691495-001 sshd\[33599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 2019-09-25T02:56:37.5929701495-001 sshd\[33599\]: Failed password for invalid user admin from 103.104.17.139 port 34794 ssh2 2019-09-25T03:01:21.0306131495-001 sshd\[33926\]: Invalid user samba from 103.104.17.139 port 47348 2019-09-25T03:01:21.0390841495-001 sshd\[33926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 ...	2019-09-25 15:15:58
attackbotsspam	Sep 24 06:57:54 taivassalofi sshd[103653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 24 06:57:56 taivassalofi sshd[103653]: Failed password for invalid user ubnt from 103.104.17.139 port 48232 ssh2 ...	2019-09-24 12:52:57
attack	Sep 21 12:27:44 eddieflores sshd\[26572\]: Invalid user ubuntu from 103.104.17.139 Sep 21 12:27:44 eddieflores sshd\[26572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 21 12:27:46 eddieflores sshd\[26572\]: Failed password for invalid user ubuntu from 103.104.17.139 port 49450 ssh2 Sep 21 12:32:36 eddieflores sshd\[27106\]: Invalid user afaq from 103.104.17.139 Sep 21 12:32:36 eddieflores sshd\[27106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139	2019-09-22 06:38:20
attackbots	Sep 11 10:39:52 aat-srv002 sshd[20488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 11 10:39:54 aat-srv002 sshd[20488]: Failed password for invalid user chris from 103.104.17.139 port 52222 ssh2 Sep 11 10:47:40 aat-srv002 sshd[20762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Sep 11 10:47:42 aat-srv002 sshd[20762]: Failed password for invalid user ftpusr from 103.104.17.139 port 34836 ssh2 ...	2019-09-11 23:52:37
attack	Aug 26 03:52:37 tdfoods sshd\[945\]: Invalid user anamaria from 103.104.17.139 Aug 26 03:52:37 tdfoods sshd\[945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Aug 26 03:52:39 tdfoods sshd\[945\]: Failed password for invalid user anamaria from 103.104.17.139 port 42288 ssh2 Aug 26 03:57:33 tdfoods sshd\[1557\]: Invalid user muh from 103.104.17.139 Aug 26 03:57:33 tdfoods sshd\[1557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139	2019-08-26 22:08:05
attackbotsspam	Aug 18 14:53:27 server sshd[4974]: Failed password for invalid user manuela from 103.104.17.139 port 43932 ssh2 Aug 18 14:58:52 server sshd[5465]: Failed password for invalid user game from 103.104.17.139 port 39138 ssh2 Aug 18 15:03:36 server sshd[5889]: Failed password for invalid user petra from 103.104.17.139 port 57740 ssh2	2019-08-18 22:08:30
attackspambots	Aug 16 04:02:17 MK-Soft-VM7 sshd\[8155\]: Invalid user temp1 from 103.104.17.139 port 39968 Aug 16 04:02:17 MK-Soft-VM7 sshd\[8155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Aug 16 04:02:19 MK-Soft-VM7 sshd\[8155\]: Failed password for invalid user temp1 from 103.104.17.139 port 39968 ssh2 ...	2019-08-16 12:07:06
attack	Aug 13 14:47:22 XXX sshd[53545]: Invalid user master from 103.104.17.139 port 42464	2019-08-13 22:35:38
attack	Aug 11 02:03:31 MK-Soft-Root1 sshd\[19890\]: Invalid user ci from 103.104.17.139 port 45276 Aug 11 02:03:31 MK-Soft-Root1 sshd\[19890\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Aug 11 02:03:33 MK-Soft-Root1 sshd\[19890\]: Failed password for invalid user ci from 103.104.17.139 port 45276 ssh2 ...	2019-08-11 13:14:34
attackbotsspam	Aug 9 01:45:21 lnxded64 sshd[15180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139	2019-08-09 13:13:36
attackspam	Aug 7 19:45:53 debian sshd\[5608\]: Invalid user jenkins from 103.104.17.139 port 47856 Aug 7 19:45:53 debian sshd\[5608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.17.139 Aug 7 19:45:55 debian sshd\[5608\]: Failed password for invalid user jenkins from 103.104.17.139 port 47856 ssh2 ...	2019-08-08 08:22:53
attackspambots	SSH/22 MH Probe, BF, Hack -	2019-08-07 17:03:12

相同子网IP讨论:

IP	类型	评论内容	时间
103.104.17.4	attackbots	Unauthorized connection attempt from IP address 103.104.17.4 on Port 445(SMB)	2020-01-14 05:03:18
103.104.17.4	attack	unauthorized connection attempt	2020-01-12 16:04:32
103.104.17.4	attackbots	Unauthorized connection attempt from IP address 103.104.17.4 on Port 445(SMB)	2019-10-31 04:24:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.104.17.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25284
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.104.17.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 17:03:04 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

139.17.104.103.in-addr.arpa domain name pointer 103-104-17-139.static.rise.as.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.17.104.103.in-addr.arpa	name = 103-104-17-139.static.rise.as.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
41.93.32.88	attack	2020-08-26T09:19:44.2259751495-001 sshd[4528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=meeting.ternet.or.tz user=root 2020-08-26T09:19:46.4537801495-001 sshd[4528]: Failed password for root from 41.93.32.88 port 34248 ssh2 2020-08-26T09:24:10.6258651495-001 sshd[4841]: Invalid user hadoop from 41.93.32.88 port 37998 2020-08-26T09:24:10.6290671495-001 sshd[4841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=meeting.ternet.or.tz 2020-08-26T09:24:10.6258651495-001 sshd[4841]: Invalid user hadoop from 41.93.32.88 port 37998 2020-08-26T09:24:12.7060221495-001 sshd[4841]: Failed password for invalid user hadoop from 41.93.32.88 port 37998 ssh2 ...	2020-08-26 22:42:34
180.164.176.50	attackspam	Aug 26 13:30:46 scw-6657dc sshd[9820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.176.50 Aug 26 13:30:46 scw-6657dc sshd[9820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.176.50 Aug 26 13:30:48 scw-6657dc sshd[9820]: Failed password for invalid user log from 180.164.176.50 port 43286 ssh2 ...	2020-08-26 21:41:42
208.109.8.97	attackbotsspam	Aug 26 09:34:09 firewall sshd[6211]: Invalid user docker from 208.109.8.97 Aug 26 09:34:11 firewall sshd[6211]: Failed password for invalid user docker from 208.109.8.97 port 42188 ssh2 Aug 26 09:37:28 firewall sshd[6312]: Invalid user geobox from 208.109.8.97 ...	2020-08-26 21:25:02
193.95.247.90	attackspam	Aug 26 13:28:14 rush sshd[607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.95.247.90 Aug 26 13:28:17 rush sshd[607]: Failed password for invalid user rs from 193.95.247.90 port 56888 ssh2 Aug 26 13:31:32 rush sshd[682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.95.247.90 ...	2020-08-26 21:32:24
115.29.246.243	attackbots	2020-08-26T17:18:14.098073paragon sshd[358793]: Invalid user michael from 115.29.246.243 port 43447 2020-08-26T17:18:14.100569paragon sshd[358793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.246.243 2020-08-26T17:18:14.098073paragon sshd[358793]: Invalid user michael from 115.29.246.243 port 43447 2020-08-26T17:18:15.972316paragon sshd[358793]: Failed password for invalid user michael from 115.29.246.243 port 43447 ssh2 2020-08-26T17:20:56.956275paragon sshd[359021]: Invalid user luat from 115.29.246.243 port 58539 ...	2020-08-26 22:44:46
72.167.226.88	attack	72.167.226.88 - - \[26/Aug/2020:15:49:09 +0200\] "POST /wp-login.php HTTP/1.1" 200 12822 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 72.167.226.88 - - \[26/Aug/2020:15:49:09 +0200\] "POST /wp-login.php HTTP/1.1" 200 12657 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2020-08-26 22:39:47
211.22.154.223	attackspam	Failed password for invalid user nginx from 211.22.154.223 port 48564 ssh2 Invalid user webadmin from 211.22.154.223 port 42324 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-22-154-223.hinet-ip.hinet.net Invalid user webadmin from 211.22.154.223 port 42324 Failed password for invalid user webadmin from 211.22.154.223 port 42324 ssh2	2020-08-26 21:33:52
197.51.236.207	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-26 21:32:59
119.29.169.136	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-26T12:37:28Z and 2020-08-26T12:37:30Z	2020-08-26 21:24:37
39.104.64.146	attackbots	39.104.64.146 - - [26/Aug/2020:14:11:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 39.104.64.146 - - [26/Aug/2020:14:11:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 39.104.64.146 - - [26/Aug/2020:14:11:15 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-26 21:39:19
124.95.171.244	attack	Aug 26 16:35:30 santamaria sshd\[4772\]: Invalid user ubuntu from 124.95.171.244 Aug 26 16:35:30 santamaria sshd\[4772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.95.171.244 Aug 26 16:35:32 santamaria sshd\[4772\]: Failed password for invalid user ubuntu from 124.95.171.244 port 57224 ssh2 ...	2020-08-26 22:37:43
167.172.57.1	attackbotsspam	167.172.57.1 - - [26/Aug/2020:14:36:01 +0200] "GET /wp-login.php HTTP/1.1" 200 9163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.57.1 - - [26/Aug/2020:14:36:02 +0200] "POST /wp-login.php HTTP/1.1" 200 9414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.57.1 - - [26/Aug/2020:14:36:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-26 22:48:52
217.111.239.37	attack	Aug 26 15:23:53 vps647732 sshd[19902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37 Aug 26 15:23:55 vps647732 sshd[19902]: Failed password for invalid user gangadhar from 217.111.239.37 port 53424 ssh2 ...	2020-08-26 21:44:32
31.215.215.216	attackbots	Attempts against non-existent wp-login	2020-08-26 22:40:38
51.75.66.142	attackbots	Aug 26 13:16:49 vps-51d81928 sshd[2266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.142 Aug 26 13:16:49 vps-51d81928 sshd[2266]: Invalid user rogerio from 51.75.66.142 port 35302 Aug 26 13:16:51 vps-51d81928 sshd[2266]: Failed password for invalid user rogerio from 51.75.66.142 port 35302 ssh2 Aug 26 13:20:40 vps-51d81928 sshd[2406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.142 user=root Aug 26 13:20:42 vps-51d81928 sshd[2406]: Failed password for root from 51.75.66.142 port 43822 ssh2 ...	2020-08-26 21:24:16

最近上报的IP列表

202.0.59.168	22.104.101.95	132.226.126.160	248.172.70.201
220.76.81.190	225.87.248.25	72.188.108.186	49.33.73.59
32.156.243.65	79.45.51.105	41.236.63.109	72.89.234.162
230.58.79.95	182.148.253.174	217.139.119.29	181.247.110.64
177.27.20.251	203.1.214.24	154.85.16.56	134.76.55.16

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表