103.139.1.156 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
103.139.102.110	attackspam	3x Failed Password	2020-10-07 06:37:52
103.139.102.110	attackspambots	(sshd) Failed SSH login from 103.139.102.110 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 6 05:44:17 optimus sshd[30470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 user=root Oct 6 05:44:19 optimus sshd[30470]: Failed password for root from 103.139.102.110 port 49499 ssh2 Oct 6 05:52:36 optimus sshd[1018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 user=root Oct 6 05:52:37 optimus sshd[1018]: Failed password for root from 103.139.102.110 port 60602 ssh2 Oct 6 05:56:33 optimus sshd[2259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 user=root	2020-10-06 22:56:00
103.139.102.110	attackbotsspam	Sep 15 15:37:59 ip106 sshd[14014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 Sep 15 15:38:01 ip106 sshd[14014]: Failed password for invalid user abcd.1234 from 103.139.102.110 port 36060 ssh2 ...	2020-09-15 23:42:04
103.139.102.110	attackbotsspam	$f2bV_matches	2020-09-15 15:34:08
103.139.190.15	attackspam	(smtpauth) Failed SMTP AUTH login from 103.139.190.15 (IN/India/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-27 08:25:12 plain authenticator failed for ([103.139.190.15]) [103.139.190.15]: 535 Incorrect authentication data (set_id=info)	2020-08-27 12:59:05
103.139.190.18	attackbotsspam	$f2bV_matches	2020-08-21 04:46:44
103.139.102.110	attackbotsspam	Aug 20 16:04:36 firewall sshd[28620]: Failed password for invalid user gas from 103.139.102.110 port 50922 ssh2 Aug 20 16:08:42 firewall sshd[28761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 user=root Aug 20 16:08:44 firewall sshd[28761]: Failed password for root from 103.139.102.110 port 50922 ssh2 ...	2020-08-21 03:29:40
103.139.120.233	attackbots	Automatic report - Port Scan Attack	2020-08-20 14:22:45
103.139.113.34	attackspambots	MYH,DEF GET /errors/adminer-4.6.5.php GET /errors/adminer-4.6.5.php GET /errors/adminer-4.6.5.php GET /errors/adminer-4.6.5.php GET /errors/adminer-4.6.5.php GET /errors/adminer-4.6.5.php	2020-08-20 03:04:50
103.139.102.110	attackspam	Aug 4 19:00:23 gospond sshd[10488]: Failed password for root from 103.139.102.110 port 39419 ssh2 Aug 4 19:00:21 gospond sshd[10488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.102.110 user=root Aug 4 19:00:23 gospond sshd[10488]: Failed password for root from 103.139.102.110 port 39419 ssh2 ...	2020-08-05 03:04:25
103.139.102.110	attack	Aug 2 07:31:37 webhost01 sshd[23659]: Failed password for root from 103.139.102.110 port 51934 ssh2 ...	2020-08-02 09:07:35
103.139.102.110	attack	Aug 1 14:34:32 ajax sshd[26032]: Failed password for root from 103.139.102.110 port 58154 ssh2	2020-08-01 21:42:14
103.139.171.220	attackspambots	port scan and connect, tcp 80 (http)	2020-07-26 06:20:27
103.139.113.34	attackbotsspam	MYH,DEF GET /js/adminer-3.7.1.php GET /js/adminer-3.7.1.php GET /js/adminer-3.7.1.php GET /js/adminer-3.7.1.php GET /js/adminer-3.7.1.php	2020-07-10 00:50:36
103.139.19.90	attackbotsspam	DATE:2020-06-20 05:54:27, IP:103.139.19.90, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-20 13:39:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.1.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50722
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.139.1.156.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:54:44 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 156.1.139.103.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 156.1.139.103.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
194.26.25.40	attack	[H1.VM7] Blocked by UFW	2020-09-11 03:09:12
106.13.147.89	attack	$f2bV_matches	2020-09-11 03:08:50
186.211.99.243	attackbotsspam	Honeypot attack, port: 445, PTR: 186-211-99-243.gegnet.com.br.	2020-09-11 03:02:58
155.93.106.99	attackspambots	Invalid user technicom from 155.93.106.99 port 35908	2020-09-11 02:57:24
49.51.251.227	attackspam	Sep 8 08:36:55 server6 sshd[14502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:36:57 server6 sshd[14502]: Failed password for r.r from 49.51.251.227 port 58070 ssh2 Sep 8 08:36:57 server6 sshd[14502]: Received disconnect from 49.51.251.227: 11: Bye Bye [preauth] Sep 8 08:49:14 server6 sshd[16405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:49:15 server6 sshd[16405]: Failed password for r.r from 49.51.251.227 port 43228 ssh2 Sep 8 08:49:16 server6 sshd[16405]: Received disconnect from 49.51.251.227: 11: Bye Bye [preauth] Sep 8 08:52:56 server6 sshd[4035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:52:58 server6 sshd[4035]: Failed password for r.r from 49.51.251.227 port 49256 ssh2 Sep 8 08:52:58 server6 sshd[4035]: Received disconne........ -------------------------------	2020-09-11 03:24:41
222.239.124.19	attackspam	2020-09-10T18:55:28.841768abusebot-5.cloudsearch.cf sshd[7519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.124.19 user=root 2020-09-10T18:55:30.385649abusebot-5.cloudsearch.cf sshd[7519]: Failed password for root from 222.239.124.19 port 36502 ssh2 2020-09-10T18:58:35.735520abusebot-5.cloudsearch.cf sshd[7531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.124.19 user=root 2020-09-10T18:58:37.951726abusebot-5.cloudsearch.cf sshd[7531]: Failed password for root from 222.239.124.19 port 34374 ssh2 2020-09-10T19:01:45.855841abusebot-5.cloudsearch.cf sshd[7598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.124.19 user=root 2020-09-10T19:01:47.821221abusebot-5.cloudsearch.cf sshd[7598]: Failed password for root from 222.239.124.19 port 60540 ssh2 2020-09-10T19:04:48.352506abusebot-5.cloudsearch.cf sshd[7613]: pam_unix(sshd:auth): authen ...	2020-09-11 03:06:10
175.24.68.241	attackbots	Invalid user web from 175.24.68.241 port 39848	2020-09-11 02:40:31
185.65.206.171	attack	[2020-09-09 13:15:46] NOTICE[1239] chan_sip.c: Registration from '"1031"' failed for '185.65.206.171:6419' - Wrong password [2020-09-09 13:15:46] SECURITY[1264] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-09T13:15:46.990-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1031",SessionID="0x7f4d4804ac88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.65.206.171/6419",Challenge="63935be3",ReceivedChallenge="63935be3",ReceivedHash="7ee0a1d146383146856e0d52e07d3142" [2020-09-09 13:16:35] NOTICE[1239] chan_sip.c: Registration from '"1037"' failed for '185.65.206.171:9838' - Wrong password [2020-09-09 13:16:35] SECURITY[1264] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-09T13:16:35.140-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1037",SessionID="0x7f4d480d6c18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1 ...	2020-09-11 03:13:19
59.10.1.159	attack	Dovecot Invalid User Login Attempt.	2020-09-11 02:42:52
111.229.93.104	attackbots	Sep 10 20:33:09 sshd\[11523\]: Invalid user x2 from 111.229.93.104Sep 10 20:33:11 sshd\[11523\]: Failed password for invalid user x2 from 111.229.93.104 port 35158 ssh2 ...	2020-09-11 02:34:18
185.216.140.250	attackspambots	TCP ports : 28099 / 60001; UDP ports : 123 / 389 / 1900	2020-09-11 03:17:25
14.152.49.218	attack	SSH Brute Force	2020-09-11 03:23:59
111.72.196.161	attackspam	Sep 9 19:56:04 srv01 postfix/smtpd\[18735\]: warning: unknown\[111.72.196.161\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:02:57 srv01 postfix/smtpd\[22943\]: warning: unknown\[111.72.196.161\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:06:23 srv01 postfix/smtpd\[15508\]: warning: unknown\[111.72.196.161\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:06:35 srv01 postfix/smtpd\[15508\]: warning: unknown\[111.72.196.161\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:06:51 srv01 postfix/smtpd\[15508\]: warning: unknown\[111.72.196.161\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-11 03:04:44
165.22.54.75	attackspam	2020-09-10T11:20:09.764421yoshi.linuxbox.ninja sshd[366091]: Failed password for invalid user rsync from 165.22.54.75 port 51476 ssh2 2020-09-10T11:24:11.289952yoshi.linuxbox.ninja sshd[368847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.54.75 user=root 2020-09-10T11:24:13.049838yoshi.linuxbox.ninja sshd[368847]: Failed password for root from 165.22.54.75 port 53748 ssh2 ...	2020-09-11 02:44:30
114.104.134.25	attackbotsspam	Sep 9 20:24:29 srv01 postfix/smtpd\[29206\]: warning: unknown\[114.104.134.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:27:55 srv01 postfix/smtpd\[29206\]: warning: unknown\[114.104.134.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:28:07 srv01 postfix/smtpd\[29206\]: warning: unknown\[114.104.134.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:28:23 srv01 postfix/smtpd\[29206\]: warning: unknown\[114.104.134.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 20:28:41 srv01 postfix/smtpd\[29206\]: warning: unknown\[114.104.134.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-11 03:08:32

最近上报的IP列表

103.139.0.40	103.138.88.58	103.139.0.52	103.138.88.59
103.139.102.142	103.139.102.175	103.139.102.39	103.139.102.102
103.139.102.209	103.139.155.81	103.139.171.234	103.139.154.78
104.21.17.74	103.139.186.70	103.139.102.70	103.139.2.112
103.139.202.15	103.139.202.134	103.139.202.125	103.139.2.102

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表