103.39.231.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shenzhen Qianhai bird cloud computing Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	detected by Fail2Ban	2020-06-26 02:02:50
attack	Invalid user ricardo from 103.39.231.54 port 57768	2020-06-16 07:45:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.39.231.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9774
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.39.231.54.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061503 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 07:45:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 54.231.39.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.231.39.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.69.200.201	attack	Aug 24 10:45:14 dedicated sshd[17987]: Invalid user 123456 from 201.69.200.201 port 20768	2019-08-24 17:18:21
106.52.18.180	attack	$f2bV_matches	2019-08-24 17:59:45
180.179.174.247	attackbots	Aug 23 23:08:57 web1 sshd\[30123\]: Invalid user I2KPwdI5 from 180.179.174.247 Aug 23 23:08:57 web1 sshd\[30123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.179.174.247 Aug 23 23:08:59 web1 sshd\[30123\]: Failed password for invalid user I2KPwdI5 from 180.179.174.247 port 36802 ssh2 Aug 23 23:15:27 web1 sshd\[30803\]: Invalid user 123456 from 180.179.174.247 Aug 23 23:15:27 web1 sshd\[30803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.179.174.247	2019-08-24 17:34:13
50.126.95.22	attackbots	Aug 23 21:24:20 lcdev sshd\[5650\]: Invalid user miteq from 50.126.95.22 Aug 23 21:24:20 lcdev sshd\[5650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-50-126-95-22.frr01.wivl.or.frontiernet.net Aug 23 21:24:21 lcdev sshd\[5650\]: Failed password for invalid user miteq from 50.126.95.22 port 45944 ssh2 Aug 23 21:28:28 lcdev sshd\[6038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-50-126-95-22.frr01.wivl.or.frontiernet.net user=root Aug 23 21:28:30 lcdev sshd\[6038\]: Failed password for root from 50.126.95.22 port 34902 ssh2	2019-08-24 17:06:12
1.71.129.210	attackbots	Aug 24 05:15:43 plex sshd[19908]: Invalid user abhijit from 1.71.129.210 port 45766	2019-08-24 17:49:38
97.102.95.40	attackspambots	Aug 24 07:57:45 legacy sshd[22606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=97.102.95.40 Aug 24 07:57:47 legacy sshd[22606]: Failed password for invalid user visvanat from 97.102.95.40 port 55391 ssh2 Aug 24 08:02:50 legacy sshd[22686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=97.102.95.40 ...	2019-08-24 18:00:26
45.178.128.41	attack	Aug 23 18:48:23 wbs sshd\[32089\]: Invalid user contact from 45.178.128.41 Aug 23 18:48:23 wbs sshd\[32089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.178.128.41 Aug 23 18:48:25 wbs sshd\[32089\]: Failed password for invalid user contact from 45.178.128.41 port 37010 ssh2 Aug 23 18:53:34 wbs sshd\[32496\]: Invalid user g from 45.178.128.41 Aug 23 18:53:34 wbs sshd\[32496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.178.128.41	2019-08-24 17:10:55
165.22.241.148	attackbotsspam	Aug 23 20:49:16 lcdev sshd\[2328\]: Invalid user ubuntu from 165.22.241.148 Aug 23 20:49:16 lcdev sshd\[2328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.241.148 Aug 23 20:49:18 lcdev sshd\[2328\]: Failed password for invalid user ubuntu from 165.22.241.148 port 55496 ssh2 Aug 23 20:54:33 lcdev sshd\[2818\]: Invalid user robinson from 165.22.241.148 Aug 23 20:54:33 lcdev sshd\[2818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.241.148 Aug 23 20:54:35 lcdev sshd\[2818\]: Failed password for invalid user robinson from 165.22.241.148 port 48328 ssh2	2019-08-24 18:01:59
177.184.133.41	attackspambots	Invalid user zw from 177.184.133.41 port 49508	2019-08-24 18:20:30
89.187.177.135	spamattack	a scammer with Ip address contacted me. I've already been to the police. I wanted to ask if you can help me find the scammer's identity?	2019-08-24 18:14:09
111.230.73.133	attack	Aug 24 10:04:50 yabzik sshd[24096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133 Aug 24 10:04:52 yabzik sshd[24096]: Failed password for invalid user bitbucket from 111.230.73.133 port 35136 ssh2 Aug 24 10:10:30 yabzik sshd[26552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133	2019-08-24 17:13:34
167.99.66.166	attackspam	Aug 24 11:10:36 v22018053744266470 sshd[20527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166 Aug 24 11:10:38 v22018053744266470 sshd[20527]: Failed password for invalid user kernel from 167.99.66.166 port 59086 ssh2 Aug 24 11:16:17 v22018053744266470 sshd[20886]: Failed password for root from 167.99.66.166 port 46156 ssh2 ...	2019-08-24 17:20:00
118.24.246.193	attack	Invalid user eb from 118.24.246.193 port 54924	2019-08-24 18:07:03
129.28.198.198	attackbots	Aug 23 17:28:16 lcdev sshd\[14603\]: Invalid user fax from 129.28.198.198 Aug 23 17:28:16 lcdev sshd\[14603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.198.198 Aug 23 17:28:18 lcdev sshd\[14603\]: Failed password for invalid user fax from 129.28.198.198 port 34148 ssh2 Aug 23 17:33:38 lcdev sshd\[15121\]: Invalid user marketing from 129.28.198.198 Aug 23 17:33:38 lcdev sshd\[15121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.198.198	2019-08-24 17:56:52
148.70.201.162	attackspam	SSH Brute-Force reported by Fail2Ban	2019-08-24 17:41:11

最近上报的IP列表

231.109.157.136	200.221.100.148	150.44.87.135	121.187.61.181
225.202.4.190	101.4.43.179	44.73.153.105	92.63.87.57
74.232.8.79	204.83.94.206	91.48.17.165	166.218.90.134
3.96.220.73	145.101.28.110	183.254.121.159	146.20.187.39
202.29.214.179	150.165.147.150	82.241.174.198	1.77.104.200