103.244.234.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Capitalonline Data Service Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 103.244.234.138 to port 12238	2020-07-22 15:06:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.244.234.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46051
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.244.234.138.		IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062901 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 30 12:28:59 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 138.234.244.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.234.244.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.32.218.77	attack	[ssh] SSH attack	2019-09-06 02:52:08
211.157.189.54	attack	Sep 5 14:57:31 km20725 sshd\[8189\]: Invalid user abc123 from 211.157.189.54Sep 5 14:57:33 km20725 sshd\[8189\]: Failed password for invalid user abc123 from 211.157.189.54 port 42105 ssh2Sep 5 15:00:38 km20725 sshd\[8415\]: Invalid user 123456 from 211.157.189.54Sep 5 15:00:40 km20725 sshd\[8415\]: Failed password for invalid user 123456 from 211.157.189.54 port 51869 ssh2 ...	2019-09-06 02:50:45
91.197.57.196	attackspambots	[portscan] Port scan	2019-09-06 02:48:22
159.65.145.6	attackbotsspam	Sep 5 17:28:40 s64-1 sshd[1268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.145.6 Sep 5 17:28:41 s64-1 sshd[1268]: Failed password for invalid user postgres from 159.65.145.6 port 49934 ssh2 Sep 5 17:33:55 s64-1 sshd[1361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.145.6 ...	2019-09-06 02:28:48
176.159.245.147	attack	Sep 5 21:07:47 site3 sshd\[107394\]: Invalid user steam from 176.159.245.147 Sep 5 21:07:47 site3 sshd\[107394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.159.245.147 Sep 5 21:07:49 site3 sshd\[107394\]: Failed password for invalid user steam from 176.159.245.147 port 48084 ssh2 Sep 5 21:12:17 site3 sshd\[107476\]: Invalid user postgres from 176.159.245.147 Sep 5 21:12:17 site3 sshd\[107476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.159.245.147 ...	2019-09-06 02:26:59
139.59.92.117	attack	Sep 5 15:10:57 s64-1 sshd[30592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.92.117 Sep 5 15:11:00 s64-1 sshd[30592]: Failed password for invalid user 12345 from 139.59.92.117 port 46738 ssh2 Sep 5 15:16:08 s64-1 sshd[30740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.92.117 ...	2019-09-06 02:46:15
139.59.18.205	attack	Sep 4 22:20:42 php1 sshd\[865\]: Invalid user test from 139.59.18.205 Sep 4 22:20:42 php1 sshd\[865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.18.205 Sep 4 22:20:44 php1 sshd\[865\]: Failed password for invalid user test from 139.59.18.205 port 38878 ssh2 Sep 4 22:25:59 php1 sshd\[1302\]: Invalid user 123123 from 139.59.18.205 Sep 4 22:25:59 php1 sshd\[1302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.18.205	2019-09-06 02:46:50
68.183.88.59	attack	$f2bV_matches	2019-09-06 02:15:55
151.33.237.20	attackbotsspam	Sep 5 03:27:26 oldtbh2 sshd[22356]: Failed unknown for root from 151.33.237.20 port 56563 ssh2 Sep 5 03:27:26 oldtbh2 sshd[22356]: Failed unknown for root from 151.33.237.20 port 56563 ssh2 Sep 5 03:27:26 oldtbh2 sshd[22356]: Failed unknown for root from 151.33.237.20 port 56563 ssh2 ...	2019-09-06 02:11:32
129.226.65.20	attackspambots	Line 24: [LAN access from remote] from 129.226.65.20:33198 to 192.168.2.17:6379, Thursday, Sep 05,2019 08:52:09 Line 25: [LAN access from remote] from 129.226.65.20:45780 to 192.168.2.17:7001, Thursday, Sep 05,2019 08:52:05 Line 26: [LAN access from remote] from 129.226.65.20:46502 to 192.168.2.17:7002, Thursday, Sep 05,2019 08:52:11 Line 27: [LAN access from remote] from 129.226.65.20:48008 to 192.168.2.17:6380, Thursday, Sep 05,2019 08:52:10 Line 28: [LAN access from remote] from 129.226.65.20:52436 to 192.168.2.17:1433, Thursday, Sep 05,2019 08:52:08	2019-09-06 02:31:01
92.222.66.27	attackbotsspam	Sep 5 08:00:45 lcdev sshd\[23367\]: Invalid user christian from 92.222.66.27 Sep 5 08:00:45 lcdev sshd\[23367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.ip-92-222-66.eu Sep 5 08:00:48 lcdev sshd\[23367\]: Failed password for invalid user christian from 92.222.66.27 port 34154 ssh2 Sep 5 08:04:56 lcdev sshd\[23734\]: Invalid user demo from 92.222.66.27 Sep 5 08:04:56 lcdev sshd\[23734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.ip-92-222-66.eu	2019-09-06 02:14:54
221.231.95.238	attack	v+ssh-bruteforce	2019-09-06 02:42:38
46.105.122.127	attackbots	Sep 5 02:36:27 lcdev sshd\[26390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns384346.ip-46-105-122.eu user=www-data Sep 5 02:36:29 lcdev sshd\[26390\]: Failed password for www-data from 46.105.122.127 port 52942 ssh2 Sep 5 02:40:46 lcdev sshd\[26912\]: Invalid user gituser from 46.105.122.127 Sep 5 02:40:46 lcdev sshd\[26912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns384346.ip-46-105-122.eu Sep 5 02:40:48 lcdev sshd\[26912\]: Failed password for invalid user gituser from 46.105.122.127 port 39782 ssh2	2019-09-06 02:39:26
139.59.95.216	attackspambots	Sep 5 08:15:40 tdfoods sshd\[11814\]: Invalid user ftptest from 139.59.95.216 Sep 5 08:15:40 tdfoods sshd\[11814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216 Sep 5 08:15:43 tdfoods sshd\[11814\]: Failed password for invalid user ftptest from 139.59.95.216 port 49262 ssh2 Sep 5 08:20:56 tdfoods sshd\[12232\]: Invalid user admin from 139.59.95.216 Sep 5 08:20:56 tdfoods sshd\[12232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216	2019-09-06 02:29:38
203.121.116.11	attackspam	Sep 4 22:37:42 hiderm sshd\[28959\]: Invalid user gmod from 203.121.116.11 Sep 4 22:37:42 hiderm sshd\[28959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.121.116.11 Sep 4 22:37:45 hiderm sshd\[28959\]: Failed password for invalid user gmod from 203.121.116.11 port 49804 ssh2 Sep 4 22:42:56 hiderm sshd\[29541\]: Invalid user tester from 203.121.116.11 Sep 4 22:42:56 hiderm sshd\[29541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.121.116.11	2019-09-06 02:17:11

最近上报的IP列表

180.254.239.188	107.174.239.238	189.213.143.195	182.38.244.112
114.130.132.57	123.24.46.70	49.234.32.15	107.174.239.203
61.178.222.83	117.2.133.130	88.10.148.45	81.10.148.45
150.129.8.24	243.31.172.115	11.91.122.119	84.86.141.76
65.66.226.220	121.121.86.141	96.43.71.182	249.148.45.15