103.139.44.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Trung Hieu Services Trading Investment Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Port scan on 6 port(s): 3090 3375 3403 5389 8899 33894	2020-02-29 23:22:46

相同子网IP讨论:

IP	类型	评论内容	时间
103.139.44.90	attack	Auto Detect Rule! proto TCP (SYN), 103.139.44.90:48829->gjan.info:3389, len 40	2020-08-19 03:10:02
103.139.44.90	attackbotsspam	Unauthorized connection attempt from IP address 103.139.44.90 on Port 3389(RDP)	2020-08-06 01:12:29
103.139.44.210	attackspam	Jun 7 03:31:44 mail postfix/postscreen[31795]: DNSBL rank 3 for [103.139.44.210]:59910 ...	2020-06-29 05:17:47
103.139.44.210	attack	Jun 6 07:19:20 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:21 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:23 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-06-06 15:41:46
103.139.44.210	attackspam	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-05 14:56:40
103.139.44.210	attackbotsspam	2020-06-04T01:26:01.009692www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:09.230288www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:22.274870www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-04 07:43:22
103.139.44.210	attack	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-04 02:36:11
103.139.44.210	attack	2020-06-03T11:59:01+02:00 exim[4041]: fixed_login authenticator failed for (User) [103.139.44.210]: 535 Incorrect authentication data (set_id=jim@mail.sma.hu)	2020-06-03 18:50:58
103.139.44.159	attackbots	2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:12.997781vps773228.ovh.net sshd[12488]: error: Received disconnect from 103.139.44.159 port 65167:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-06-03 00:14:37
103.139.44.210	attackbots	May 29 07:09:25 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:32 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:35 mail postfix/smtpd\[5274\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-29 16:06:22
103.139.44.210	attack	May 26 02:06:05 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:06 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:07 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-05-26 11:41:45
103.139.44.210	attackspam	May 22 16:56:45 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:48 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:52 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-22 22:10:22
103.139.44.210	attack	May 16 04:41:40 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:43 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:44 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:45 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:47 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-16 22:02:32
103.139.44.55	attack	SMTP brute-force	2020-05-04 15:24:31
103.139.44.122	attack	Invalid user ubnt from 103.139.44.122 port 51170	2020-04-19 03:43:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.44.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28848
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.139.44.130.			IN	A

;; AUTHORITY SECTION:
.			534	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 23:22:43 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.44.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.44.139.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.133.73.161	attackspam	Jul 22 15:13:50 marvibiene sshd[1923]: Invalid user raghu from 81.133.73.161 port 34981 Jul 22 15:13:50 marvibiene sshd[1923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.133.73.161 Jul 22 15:13:50 marvibiene sshd[1923]: Invalid user raghu from 81.133.73.161 port 34981 Jul 22 15:13:52 marvibiene sshd[1923]: Failed password for invalid user raghu from 81.133.73.161 port 34981 ssh2 ...	2019-07-23 03:10:57
185.178.211.146	attackspambots	russian scam vladimir_mzc25 22 июля 2019 \| 16:38 Алексей, да я уже как месяца 3 не хожу на работу и имею с интернета на платных опросах по 50-70 тыс. рублей в неделю. Не напрягаясь так сказать, и тебе советую! Если хочешь и тебе помогу, смотри на сайте -- http://promoscash.com -- сможешь так же ) Redirect chain http://promoscash.com http://brintan.com/go9921 https://brintan.com:443/go9921 http://rhatimed.com/go9741 https://rhatimed.com:443/go9741 https://marymu.thareadis.com/?of=hntcpS89H8lUJVcL&subid=47586257:887:17:9741	2019-07-23 03:28:46
173.167.200.227	attackbotsspam	Jul 22 19:07:35 areeb-Workstation sshd\[4990\]: Invalid user victoria from 173.167.200.227 Jul 22 19:07:35 areeb-Workstation sshd\[4990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.167.200.227 Jul 22 19:07:37 areeb-Workstation sshd\[4990\]: Failed password for invalid user victoria from 173.167.200.227 port 41822 ssh2 ...	2019-07-23 02:41:29
103.129.221.62	attackbots	Jul 22 16:02:45 srv206 sshd[6452]: Invalid user age from 103.129.221.62 Jul 22 16:02:45 srv206 sshd[6452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.221.62 Jul 22 16:02:45 srv206 sshd[6452]: Invalid user age from 103.129.221.62 Jul 22 16:02:47 srv206 sshd[6452]: Failed password for invalid user age from 103.129.221.62 port 42942 ssh2 ...	2019-07-23 03:02:44
138.197.143.221	attack	Jul 22 15:41:35 mail sshd\[22574\]: Failed password for invalid user test from 138.197.143.221 port 57266 ssh2 Jul 22 15:46:06 mail sshd\[23288\]: Invalid user csmith from 138.197.143.221 port 52908 Jul 22 15:46:06 mail sshd\[23288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Jul 22 15:46:08 mail sshd\[23288\]: Failed password for invalid user csmith from 138.197.143.221 port 52908 ssh2 Jul 22 15:50:35 mail sshd\[23870\]: Invalid user oracle from 138.197.143.221 port 48554	2019-07-23 03:08:53
221.0.232.118	attack	Exceeded maximum number of incorrect SMTP login attempts	2019-07-23 03:20:11
140.213.24.14	attackbotsspam	SSH invalid-user multiple login try	2019-07-23 03:21:06
94.236.119.5	attackspam	Unsubscribe results in error 404	2019-07-23 03:04:34
137.74.44.216	attack	2019-07-23T01:23:48.003397enmeeting.mahidol.ac.th sshd\[29382\]: Invalid user lin from 137.74.44.216 port 40056 2019-07-23T01:23:48.023692enmeeting.mahidol.ac.th sshd\[29382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.ip-137-74-44.eu 2019-07-23T01:23:50.122727enmeeting.mahidol.ac.th sshd\[29382\]: Failed password for invalid user lin from 137.74.44.216 port 40056 ssh2 ...	2019-07-23 02:52:43
92.222.71.125	attackspambots	Jul 22 16:00:34 srv206 sshd[6430]: Invalid user max from 92.222.71.125 Jul 22 16:00:34 srv206 sshd[6430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-92-222-71.eu Jul 22 16:00:34 srv206 sshd[6430]: Invalid user max from 92.222.71.125 Jul 22 16:00:35 srv206 sshd[6430]: Failed password for invalid user max from 92.222.71.125 port 47908 ssh2 ...	2019-07-23 03:06:40
154.13.96.149	attackbots	Spam	2019-07-23 03:14:10
167.99.76.71	attackspambots	Jul 22 19:10:34 lnxded64 sshd[8431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71	2019-07-23 03:07:09
178.128.108.22	attack	Jul 22 15:59:57 meumeu sshd[15064]: Failed password for root from 178.128.108.22 port 47176 ssh2 Jul 22 16:05:20 meumeu sshd[16409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.108.22 Jul 22 16:05:22 meumeu sshd[16409]: Failed password for invalid user wp from 178.128.108.22 port 43504 ssh2 ...	2019-07-23 02:53:36
91.61.40.224	attackspam	Jul 22 15:47:35 XXXXXX sshd[45086]: Invalid user farah from 91.61.40.224 port 38209	2019-07-23 02:45:53
77.81.164.193	attackbotsspam	fail2ban honeypot	2019-07-23 03:05:25

最近上报的IP列表

87.166.58.219	122.116.58.35	91.199.118.136	172.81.224.233
193.29.15.107	79.56.21.170	207.148.85.151	193.164.133.20
109.185.181.156	168.195.253.57	177.86.172.203	122.116.242.8
190.8.52.93	203.228.51.2	122.116.225.237	106.3.44.235
85.99.96.209	91.192.244.66	201.111.126.137	223.167.32.245