103.44.138.14 - IPInfo

基本信息:

城市(city): Karnal

省份(region): Haryana

国家(country): India

运营商(isp): KWIKZO.com Technology Private Limited

主机名(hostname): unknown

机构(organization): KWIKZO.Com Technology Private Limited

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	1576132051 - 12/12/2019 07:27:31 Host: 103.44.138.14/103.44.138.14 Port: 445 TCP Blocked	2019-12-12 16:29:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.44.138.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65317
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.44.138.14.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 18:44:35 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 14.138.44.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 14.138.44.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.76.172.178	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-27T21:15:49Z and 2020-08-27T21:24:59Z	2020-08-28 07:45:48
149.72.34.79	attackbots	Aug 27 23:16:51 web01.agentur-b-2.de postfix/smtpd[2704863]: NOQUEUE: reject: RCPT from unknown[149.72.34.79]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Aug 27 23:16:51 web01.agentur-b-2.de postfix/smtpd[2704863]: lost connection after RCPT from unknown[149.72.34.79] Aug 27 23:19:30 web01.agentur-b-2.de postfix/smtpd[2704863]: NOQUEUE: reject: RCPT from unknown[149.72.34.79]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Aug 27 23:20:54 web01.agentur-b-2.de postfix/smtpd[2704861]: NOQUEUE: reject: RCPT from unknown[149.72.34.79]: 450 4.7.1 : Helo command rejected: Host not fou	2020-08-28 08:14:20
185.129.193.221	attackspambots	Aug 27 05:27:24 mail.srvfarm.net postfix/smtpd[1347716]: warning: unknown[185.129.193.221]: SASL PLAIN authentication failed: Aug 27 05:27:24 mail.srvfarm.net postfix/smtpd[1347716]: lost connection after AUTH from unknown[185.129.193.221] Aug 27 05:32:01 mail.srvfarm.net postfix/smtpd[1347878]: warning: unknown[185.129.193.221]: SASL PLAIN authentication failed: Aug 27 05:32:01 mail.srvfarm.net postfix/smtpd[1347878]: lost connection after AUTH from unknown[185.129.193.221] Aug 27 05:32:30 mail.srvfarm.net postfix/smtps/smtpd[1355001]: warning: unknown[185.129.193.221]: SASL PLAIN authentication failed:	2020-08-28 08:04:59
84.17.48.247	attack	Malicious Traffic/Form Submission	2020-08-28 07:50:06
14.29.239.215	attack	Aug 27 23:34:30 PorscheCustomer sshd[1106]: Failed password for root from 14.29.239.215 port 36576 ssh2 Aug 27 23:38:27 PorscheCustomer sshd[1204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.239.215 Aug 27 23:38:29 PorscheCustomer sshd[1204]: Failed password for invalid user gv from 14.29.239.215 port 41158 ssh2 ...	2020-08-28 08:01:37
94.102.59.107	attackbots	Aug 27 22:54:26 mail.srvfarm.net postfix/submission/smtpd[1774192]: lost connection after EHLO from unknown[94.102.59.107] Aug 27 22:55:35 mail.srvfarm.net postfix/submission/smtpd[1774315]: lost connection after EHLO from unknown[94.102.59.107] Aug 27 22:55:48 mail.srvfarm.net postfix/submission/smtpd[1772264]: lost connection after EHLO from unknown[94.102.59.107] Aug 27 22:57:52 mail.srvfarm.net postfix/submission/smtpd[1774678]: lost connection after EHLO from unknown[94.102.59.107] Aug 27 23:01:13 mail.srvfarm.net postfix/submission/smtpd[1773409]: lost connection after EHLO from unknown[94.102.59.107]	2020-08-28 08:15:40
222.186.173.226	attackspambots	Aug 27 23:48:08 rush sshd[7283]: Failed password for root from 222.186.173.226 port 61598 ssh2 Aug 27 23:48:20 rush sshd[7283]: Failed password for root from 222.186.173.226 port 61598 ssh2 Aug 27 23:48:20 rush sshd[7283]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 61598 ssh2 [preauth] ...	2020-08-28 07:52:38
45.224.70.57	attackbots	Aug 27 05:13:24 mail.srvfarm.net postfix/smtps/smtpd[1355752]: warning: unknown[45.224.70.57]: SASL PLAIN authentication failed: Aug 27 05:13:24 mail.srvfarm.net postfix/smtps/smtpd[1355752]: lost connection after AUTH from unknown[45.224.70.57] Aug 27 05:16:55 mail.srvfarm.net postfix/smtps/smtpd[1355004]: warning: unknown[45.224.70.57]: SASL PLAIN authentication failed: Aug 27 05:16:56 mail.srvfarm.net postfix/smtps/smtpd[1355004]: lost connection after AUTH from unknown[45.224.70.57] Aug 27 05:20:11 mail.srvfarm.net postfix/smtps/smtpd[1357934]: warning: unknown[45.224.70.57]: SASL PLAIN authentication failed:	2020-08-28 08:20:44
51.103.129.9	attackbotsspam	Aug 27 14:12:43 web02.agentur-b-2.de postfix/smtps/smtpd[306243]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:14:30 web02.agentur-b-2.de postfix/smtps/smtpd[306489]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:16:19 web02.agentur-b-2.de postfix/smtps/smtpd[306718]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:18:08 web02.agentur-b-2.de postfix/smtps/smtpd[306958]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:19:55 web02.agentur-b-2.de postfix/smtps/smtpd[307080]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 08:19:53
35.223.168.231	attack	Aug 27 09:22:14 hostnameproxy sshd[5556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.223.168.231 user=r.r Aug 27 09:22:16 hostnameproxy sshd[5556]: Failed password for r.r from 35.223.168.231 port 42118 ssh2 Aug 27 09:25:14 hostnameproxy sshd[5627]: Invalid user dis from 35.223.168.231 port 44974 Aug 27 09:25:14 hostnameproxy sshd[5627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.223.168.231 Aug 27 09:25:16 hostnameproxy sshd[5627]: Failed password for invalid user dis from 35.223.168.231 port 44974 ssh2 Aug 27 09:28:22 hostnameproxy sshd[5745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.223.168.231 user=r.r Aug 27 09:28:25 hostnameproxy sshd[5745]: Failed password for r.r from 35.223.168.231 port 47828 ssh2 Aug 27 09:31:33 hostnameproxy sshd[5838]: Invalid user winston from 35.223.168.231 port 50688 Aug 27 09:31:33 hostnamepro........ ------------------------------	2020-08-28 08:24:14
62.234.94.65	attack	REQUESTED PAGE: /index.phpTP/public/index.php	2020-08-28 08:01:54
182.151.58.230	attackbots	Time: Thu Aug 27 23:12:03 2020 +0200 IP: 182.151.58.230 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 27 22:44:59 mail-01 sshd[14776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.151.58.230 user=root Aug 27 22:45:01 mail-01 sshd[14776]: Failed password for root from 182.151.58.230 port 38608 ssh2 Aug 27 23:08:20 mail-01 sshd[20812]: Invalid user helpdesk from 182.151.58.230 port 34160 Aug 27 23:08:22 mail-01 sshd[20812]: Failed password for invalid user helpdesk from 182.151.58.230 port 34160 ssh2 Aug 27 23:11:57 mail-01 sshd[21001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.151.58.230 user=root	2020-08-28 07:49:15
5.188.84.115	attackspambots	fell into ViewStateTrap:brussels	2020-08-28 07:53:41
187.109.39.60	attackbots	Aug 27 22:41:21 mail.srvfarm.net postfix/smtps/smtpd[1766877]: warning: unknown[187.109.39.60]: SASL PLAIN authentication failed: Aug 27 22:41:21 mail.srvfarm.net postfix/smtps/smtpd[1766877]: lost connection after AUTH from unknown[187.109.39.60] Aug 27 22:43:23 mail.srvfarm.net postfix/smtpd[1769667]: warning: unknown[187.109.39.60]: SASL PLAIN authentication failed: Aug 27 22:43:24 mail.srvfarm.net postfix/smtpd[1769667]: lost connection after AUTH from unknown[187.109.39.60] Aug 27 22:47:55 mail.srvfarm.net postfix/smtpd[1769662]: warning: unknown[187.109.39.60]: SASL PLAIN authentication failed:	2020-08-28 08:10:36
167.249.11.57	attack	SSH invalid-user multiple login try	2020-08-28 07:46:10

最近上报的IP列表

70.240.248.20	201.242.164.188	202.177.183.139	36.84.217.135
151.250.206.98	125.161.106.68	2.91.81.147	41.224.247.45
171.13.14.51	130.228.76.39	201.31.85.34	209.187.13.145
103.94.128.3	91.226.140.220	185.204.97.209	62.78.80.62
200.217.184.254	182.69.132.189	191.19.176.177	132.219.59.176