103.44.138.14 - IPInfo

基本信息:

城市(city): Karnal

省份(region): Haryana

国家(country): India

运营商(isp): KWIKZO.com Technology Private Limited

主机名(hostname): unknown

机构(organization): KWIKZO.Com Technology Private Limited

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	1576132051 - 12/12/2019 07:27:31 Host: 103.44.138.14/103.44.138.14 Port: 445 TCP Blocked	2019-12-12 16:29:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.44.138.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65317
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.44.138.14.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 18:44:35 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 14.138.44.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 14.138.44.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.0.200.166	attack	Dec 12 05:55:34 srv01 sshd[19845]: Invalid user admin from 61.0.200.166 port 35330 Dec 12 05:55:34 srv01 sshd[19845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.0.200.166 Dec 12 05:55:34 srv01 sshd[19845]: Invalid user admin from 61.0.200.166 port 35330 Dec 12 05:55:36 srv01 sshd[19845]: Failed password for invalid user admin from 61.0.200.166 port 35330 ssh2 Dec 12 05:55:34 srv01 sshd[19845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.0.200.166 Dec 12 05:55:34 srv01 sshd[19845]: Invalid user admin from 61.0.200.166 port 35330 Dec 12 05:55:36 srv01 sshd[19845]: Failed password for invalid user admin from 61.0.200.166 port 35330 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.0.200.166	2019-12-12 13:39:30
49.234.44.48	attackspambots	Dec 12 01:55:44 firewall sshd[14274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 Dec 12 01:55:44 firewall sshd[14274]: Invalid user squid from 49.234.44.48 Dec 12 01:55:46 firewall sshd[14274]: Failed password for invalid user squid from 49.234.44.48 port 43189 ssh2 ...	2019-12-12 13:30:08
196.27.127.61	attackspambots	Dec 12 00:35:18 plusreed sshd[29509]: Invalid user rachel from 196.27.127.61 ...	2019-12-12 13:53:21
129.28.180.174	attackbots	$f2bV_matches	2019-12-12 13:45:27
103.108.74.91	attack	Dec 12 05:36:54 zeus sshd[19316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91 Dec 12 05:36:56 zeus sshd[19316]: Failed password for invalid user hduser from 103.108.74.91 port 22776 ssh2 Dec 12 05:44:41 zeus sshd[19673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91 Dec 12 05:44:44 zeus sshd[19673]: Failed password for invalid user hickox from 103.108.74.91 port 53091 ssh2	2019-12-12 14:01:37
222.186.175.169	attack	Dec 12 06:30:10 MainVPS sshd[20374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:12 MainVPS sshd[20374]: Failed password for root from 222.186.175.169 port 30906 ssh2 Dec 12 06:30:25 MainVPS sshd[20374]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 30906 ssh2 [preauth] Dec 12 06:30:10 MainVPS sshd[20374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:12 MainVPS sshd[20374]: Failed password for root from 222.186.175.169 port 30906 ssh2 Dec 12 06:30:25 MainVPS sshd[20374]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 30906 ssh2 [preauth] Dec 12 06:30:30 MainVPS sshd[20513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:32 MainVPS sshd[20513]: Failed password for root from 222.186.175.169 port	2019-12-12 13:35:24
58.225.75.147	attack	Dec 12 05:55:32 debian-2gb-nbg1-2 kernel: \[24408072.847355\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=58.225.75.147 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=53770 PROTO=TCP SPT=32767 DPT=8545 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-12 13:43:11
222.186.173.180	attackspam	Dec 12 06:47:31 dcd-gentoo sshd[1312]: User root from 222.186.173.180 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:47:34 dcd-gentoo sshd[1312]: error: PAM: Authentication failure for illegal user root from 222.186.173.180 Dec 12 06:47:31 dcd-gentoo sshd[1312]: User root from 222.186.173.180 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:47:34 dcd-gentoo sshd[1312]: error: PAM: Authentication failure for illegal user root from 222.186.173.180 Dec 12 06:47:31 dcd-gentoo sshd[1312]: User root from 222.186.173.180 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:47:34 dcd-gentoo sshd[1312]: error: PAM: Authentication failure for illegal user root from 222.186.173.180 Dec 12 06:47:34 dcd-gentoo sshd[1312]: Failed keyboard-interactive/pam for invalid user root from 222.186.173.180 port 34252 ssh2 ...	2019-12-12 13:49:26
202.200.142.251	attack	Dec 12 06:34:39 OPSO sshd\[31904\]: Invalid user ips from 202.200.142.251 port 57514 Dec 12 06:34:39 OPSO sshd\[31904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.200.142.251 Dec 12 06:34:41 OPSO sshd\[31904\]: Failed password for invalid user ips from 202.200.142.251 port 57514 ssh2 Dec 12 06:42:35 OPSO sshd\[1883\]: Invalid user oracle from 202.200.142.251 port 59412 Dec 12 06:42:35 OPSO sshd\[1883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.200.142.251	2019-12-12 13:50:20
45.80.64.127	attackspambots	Dec 12 06:25:20 markkoudstaal sshd[27090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.127 Dec 12 06:25:21 markkoudstaal sshd[27090]: Failed password for invalid user gdm from 45.80.64.127 port 41254 ssh2 Dec 12 06:31:04 markkoudstaal sshd[27814]: Failed password for games from 45.80.64.127 port 44270 ssh2	2019-12-12 13:46:27
46.101.254.248	attackspam	Dec 12 05:22:51 web8 sshd\[28804\]: Invalid user rb from 46.101.254.248 Dec 12 05:22:51 web8 sshd\[28804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.254.248 Dec 12 05:22:53 web8 sshd\[28804\]: Failed password for invalid user rb from 46.101.254.248 port 40868 ssh2 Dec 12 05:28:13 web8 sshd\[31402\]: Invalid user maquilante from 46.101.254.248 Dec 12 05:28:13 web8 sshd\[31402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.254.248	2019-12-12 13:37:58
87.246.7.34	attackspam	Dec 12 06:18:37 andromeda postfix/smtpd\[20536\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: authentication failure Dec 12 06:18:43 andromeda postfix/smtpd\[19066\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: authentication failure Dec 12 06:18:50 andromeda postfix/smtpd\[33734\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: authentication failure Dec 12 06:19:05 andromeda postfix/smtpd\[30825\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: authentication failure Dec 12 06:19:12 andromeda postfix/smtpd\[19066\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: authentication failure	2019-12-12 13:28:31
113.22.159.222	attackspam	Dec 12 05:55:23 debian-2gb-nbg1-2 kernel: \[24408063.983298\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=113.22.159.222 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=58086 PROTO=TCP SPT=57956 DPT=23 WINDOW=61556 RES=0x00 SYN URGP=0	2019-12-12 13:48:59
178.128.156.159	attackspam	fail2ban	2019-12-12 13:32:40
124.251.110.148	attackspambots	Dec 12 01:55:04 firewall sshd[14257]: Failed password for invalid user admin from 124.251.110.148 port 36394 ssh2 Dec 12 02:02:12 firewall sshd[14437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.148 user=root Dec 12 02:02:14 firewall sshd[14437]: Failed password for root from 124.251.110.148 port 57442 ssh2 ...	2019-12-12 13:36:51

最近上报的IP列表

70.240.248.20	201.242.164.188	202.177.183.139	36.84.217.135
151.250.206.98	125.161.106.68	2.91.81.147	41.224.247.45
171.13.14.51	130.228.76.39	201.31.85.34	209.187.13.145
103.94.128.3	91.226.140.220	185.204.97.209	62.78.80.62
200.217.184.254	182.69.132.189	191.19.176.177	132.219.59.176