103.139.44.216

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Trung Hieu Services Trading Investment Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	" "	2019-11-15 17:20:24

相同子网IP讨论:

IP	类型	评论内容	时间
103.139.44.90	attack	Auto Detect Rule! proto TCP (SYN), 103.139.44.90:48829->gjan.info:3389, len 40	2020-08-19 03:10:02
103.139.44.90	attackbotsspam	Unauthorized connection attempt from IP address 103.139.44.90 on Port 3389(RDP)	2020-08-06 01:12:29
103.139.44.210	attackspam	Jun 7 03:31:44 mail postfix/postscreen[31795]: DNSBL rank 3 for [103.139.44.210]:59910 ...	2020-06-29 05:17:47
103.139.44.210	attack	Jun 6 07:19:20 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:21 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:23 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-06-06 15:41:46
103.139.44.210	attackspam	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-05 14:56:40
103.139.44.210	attackbotsspam	2020-06-04T01:26:01.009692www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:09.230288www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:22.274870www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-04 07:43:22
103.139.44.210	attack	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-04 02:36:11
103.139.44.210	attack	2020-06-03T11:59:01+02:00 exim[4041]: fixed_login authenticator failed for (User) [103.139.44.210]: 535 Incorrect authentication data (set_id=jim@mail.sma.hu)	2020-06-03 18:50:58
103.139.44.159	attackbots	2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:12.997781vps773228.ovh.net sshd[12488]: error: Received disconnect from 103.139.44.159 port 65167:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-06-03 00:14:37
103.139.44.210	attackbots	May 29 07:09:25 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:32 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:35 mail postfix/smtpd\[5274\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-29 16:06:22
103.139.44.210	attack	May 26 02:06:05 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:06 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:07 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-05-26 11:41:45
103.139.44.210	attackspam	May 22 16:56:45 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:48 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:52 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-22 22:10:22
103.139.44.210	attack	May 16 04:41:40 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:43 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:44 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:45 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:47 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-16 22:02:32
103.139.44.55	attack	SMTP brute-force	2020-05-04 15:24:31
103.139.44.122	attack	Invalid user ubnt from 103.139.44.122 port 51170	2020-04-19 03:43:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.44.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53397
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.139.44.216.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111500 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 15 17:20:20 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 216.44.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 216.44.139.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.248.63.30	attackspam	Oct 5 10:03:02 marvibiene sshd[15873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.63.30 user=root Oct 5 10:03:04 marvibiene sshd[15873]: Failed password for root from 104.248.63.30 port 54160 ssh2 Oct 5 10:16:43 marvibiene sshd[16074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.63.30 user=root Oct 5 10:16:46 marvibiene sshd[16074]: Failed password for root from 104.248.63.30 port 53808 ssh2	2020-10-05 19:46:41
45.129.33.58	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 55123 proto: tcp cat: Misc Attackbytes: 60	2020-10-05 19:41:51
51.68.172.217	attack	$f2bV_matches	2020-10-05 19:18:51
117.144.189.69	attack	Oct 5 08:49:29 ajax sshd[14235]: Failed password for root from 117.144.189.69 port 30171 ssh2	2020-10-05 19:55:03
51.178.86.97	attackspambots	2020-10-05T04:06:02.2232481495-001 sshd[35045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-59ca4abe.vps.ovh.net user=root 2020-10-05T04:06:04.7924811495-001 sshd[35045]: Failed password for root from 51.178.86.97 port 34814 ssh2 2020-10-05T04:09:40.4411341495-001 sshd[35269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-59ca4abe.vps.ovh.net user=root 2020-10-05T04:09:42.6042521495-001 sshd[35269]: Failed password for root from 51.178.86.97 port 41098 ssh2 2020-10-05T04:13:16.6552881495-001 sshd[35596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-59ca4abe.vps.ovh.net user=root 2020-10-05T04:13:19.1387991495-001 sshd[35596]: Failed password for root from 51.178.86.97 port 47384 ssh2 ...	2020-10-05 19:35:37
52.154.74.252	attackspambots	Oct 5 05:26:17 server sshd[22504]: Failed password for root from 52.154.74.252 port 33288 ssh2 Oct 5 05:30:13 server sshd[23474]: Failed password for root from 52.154.74.252 port 41202 ssh2 Oct 5 05:34:08 server sshd[24396]: Failed password for root from 52.154.74.252 port 49108 ssh2	2020-10-05 19:20:52
212.58.120.232	attackspam	1601843601 - 10/04/2020 22:33:21 Host: 212.58.120.232/212.58.120.232 Port: 445 TCP Blocked	2020-10-05 19:52:16
61.227.88.28	attack	1601843638 - 10/04/2020 22:33:58 Host: 61.227.88.28/61.227.88.28 Port: 445 TCP Blocked	2020-10-05 19:21:53
51.91.111.10	attackbotsspam	Oct 5 12:57:32 lnxweb61 sshd[26628]: Failed password for root from 51.91.111.10 port 47040 ssh2 Oct 5 12:57:32 lnxweb61 sshd[26628]: Failed password for root from 51.91.111.10 port 47040 ssh2	2020-10-05 19:11:23
52.188.60.96	attackspam	2× attempts to log on to WP. However, we do not use WP. Last visit 2020-10-04 08:49:33	2020-10-05 19:33:40
183.224.38.56	attackbots	Port scan: Attack repeated for 24 hours	2020-10-05 19:13:54
152.136.34.52	attackspam	$f2bV_matches	2020-10-05 19:24:47
51.178.17.63	attackbots	2020-10-05T03:35:06.199707dreamphreak.com sshd[533933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.17.63 user=root 2020-10-05T03:35:08.191169dreamphreak.com sshd[533933]: Failed password for root from 51.178.17.63 port 43654 ssh2 ...	2020-10-05 19:44:12
139.162.114.154	attackbots	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=45266 . dstport=80 HTTP . (890)	2020-10-05 19:16:07
45.90.216.118	attack	Oct 5 13:21:00 hidden sshd[9417]: Failed password for hidden from 45.90.216.118 port 60392 ssh2 Oct 5 13:26:11 hidden sshd[14623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.90.216.118 user=root Oct 5 13:26:13 hidden sshd[14623]: Failed password for hidden from 45.90.216.118 port 35577 ssh2	2020-10-05 19:50:35

最近上报的IP列表

138.219.97.217	24.199.24.67	2.180.9.63	121.6.219.85
95.10.206.159	110.168.14.206	61.158.198.137	65.246.159.62
125.42.237.24	6.236.224.91	39.96.201.119	82.114.67.197
49.235.240.21	150.138.249.209	117.232.71.2	64.39.99.185
37.9.171.141	179.97.60.201	220.128.241.139	137.101.142.233