103.139.44.216

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Trung Hieu Services Trading Investment Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	" "	2019-11-15 17:20:24

相同子网IP讨论:

IP	类型	评论内容	时间
103.139.44.90	attack	Auto Detect Rule! proto TCP (SYN), 103.139.44.90:48829->gjan.info:3389, len 40	2020-08-19 03:10:02
103.139.44.90	attackbotsspam	Unauthorized connection attempt from IP address 103.139.44.90 on Port 3389(RDP)	2020-08-06 01:12:29
103.139.44.210	attackspam	Jun 7 03:31:44 mail postfix/postscreen[31795]: DNSBL rank 3 for [103.139.44.210]:59910 ...	2020-06-29 05:17:47
103.139.44.210	attack	Jun 6 07:19:20 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:21 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure Jun 6 07:19:23 mail postfix/smtpd[73955]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-06-06 15:41:46
103.139.44.210	attackspam	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-05 14:56:40
103.139.44.210	attackbotsspam	2020-06-04T01:26:01.009692www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:09.230288www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-04T01:26:22.274870www postfix/smtpd[16129]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-04 07:43:22
103.139.44.210	attack	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-04 02:36:11
103.139.44.210	attack	2020-06-03T11:59:01+02:00 exim[4041]: fixed_login authenticator failed for (User) [103.139.44.210]: 535 Incorrect authentication data (set_id=jim@mail.sma.hu)	2020-06-03 18:50:58
103.139.44.159	attackbots	2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:10.428004vps773228.ovh.net sshd[12488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.44.159 user=root 2020-06-02T15:19:12.696979vps773228.ovh.net sshd[12488]: Failed password for root from 103.139.44.159 port 65167 ssh2 2020-06-02T15:19:12.997781vps773228.ovh.net sshd[12488]: error: Received disconnect from 103.139.44.159 port 65167:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-06-03 00:14:37
103.139.44.210	attackbots	May 29 07:09:25 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:32 mail postfix/smtpd\[5149\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 07:09:35 mail postfix/smtpd\[5274\]: warning: unknown\[103.139.44.210\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-29 16:06:22
103.139.44.210	attack	May 26 02:06:05 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:06 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure May 26 02:06:07 mail postfix/smtpd[57254]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: generic failure ...	2020-05-26 11:41:45
103.139.44.210	attackspam	May 22 16:56:45 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:48 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 22 16:56:52 localhost postfix/smtpd[52743]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-22 22:10:22
103.139.44.210	attack	May 16 04:41:40 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:43 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:44 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:45 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure May 16 04:41:47 h2779839 postfix/smtpd[18519]: warning: unknown[103.139.44.210]: SASL LOGIN authentication failed: authentication failure ...	2020-05-16 22:02:32
103.139.44.55	attack	SMTP brute-force	2020-05-04 15:24:31
103.139.44.122	attack	Invalid user ubnt from 103.139.44.122 port 51170	2020-04-19 03:43:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.44.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53397
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.139.44.216.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111500 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 15 17:20:20 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 216.44.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 216.44.139.103.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
38.64.102.46	attackbotsspam	20 attempts against mh-misbehave-ban on leaf	2020-04-07 00:35:59
139.59.27.226	attack	139.59.27.226 - - [06/Apr/2020:17:36:39 +0200] "POST /wp-login.php HTTP/1.0" 200 2195 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.27.226 - - [06/Apr/2020:17:36:42 +0200] "POST /wp-login.php HTTP/1.0" 200 2184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-04-07 00:35:33
79.132.234.162	attackbots	5555/tcp [2020-04-06]1pkt	2020-04-07 00:21:49
94.102.49.159	attack	Apr 6 17:52:22 debian-2gb-nbg1-2 kernel: \[8447367.813535\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.49.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54665 PROTO=TCP SPT=49302 DPT=4992 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-06 23:55:00
111.231.69.222	attackspambots	Apr 6 12:31:59 ws24vmsma01 sshd[26352]: Failed password for root from 111.231.69.222 port 58562 ssh2 ...	2020-04-07 00:37:18
171.241.118.149	attackspambots	445/tcp [2020-04-06]1pkt	2020-04-07 00:11:50
222.186.42.137	attackspam	Apr 6 17:39:39 plex sshd[20814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 17:39:41 plex sshd[20814]: Failed password for root from 222.186.42.137 port 37911 ssh2	2020-04-06 23:46:30
177.23.191.191	attackbotsspam	SMB Server BruteForce Attack	2020-04-07 00:27:10
94.102.56.215	attackbotsspam	94.102.56.215 was recorded 21 times by 12 hosts attempting to connect to the following ports: 40954,41007,40947. Incident counter (4h, 24h, all-time): 21, 118, 10159	2020-04-07 00:33:13
51.38.188.101	attack	$f2bV_matches	2020-04-07 00:14:56
186.67.248.5	attackspambots	Apr 6 20:49:12 gw1 sshd[983]: Failed password for root from 186.67.248.5 port 36893 ssh2 ...	2020-04-06 23:53:25
114.67.70.94	attackspambots	SSH brute-force attempt	2020-04-06 23:40:07
5.255.38.218	attack	1433/tcp [2020-04-06]1pkt	2020-04-07 00:31:18
118.24.116.78	attackbots	Apr 6 22:52:04 webhost01 sshd[31156]: Failed password for root from 118.24.116.78 port 47404 ssh2 ...	2020-04-06 23:57:54
91.236.253.77	attack	8080/tcp [2020-04-06]1pkt	2020-04-07 00:44:02

最近上报的IP列表

138.219.97.217	24.199.24.67	2.180.9.63	121.6.219.85
95.10.206.159	110.168.14.206	61.158.198.137	65.246.159.62
125.42.237.24	6.236.224.91	39.96.201.119	82.114.67.197
49.235.240.21	150.138.249.209	117.232.71.2	64.39.99.185
37.9.171.141	179.97.60.201	220.128.241.139	137.101.142.233