103.221.254.54

基本信息:

城市(city): Dhaka

省份(region): Dhaka Division

国家(country): Bangladesh

运营商(isp): University of Dhaka

主机名(hostname): unknown

机构(organization): university of dhaka

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	spam	2020-04-15 16:09:14
attack	spam	2020-01-24 14:57:25
attackbots	Brute force attack stopped by firewall	2019-12-12 09:28:49
attack	Autoban 103.221.254.54 AUTH/CONNECT	2019-11-18 19:19:17
attackbots	IP: 103.221.254.54 ASN: AS135524 university of dhaka Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 14/09/2019 6:20:54 PM UTC	2019-09-15 04:33:53

相同子网IP讨论:

IP	类型	评论内容	时间
103.221.254.2	attackbotsspam	Aug 26 04:41:19 shivevps sshd[25517]: Bad protocol version identification '\024' from 103.221.254.2 port 41324 Aug 26 04:42:26 shivevps sshd[27031]: Bad protocol version identification '\024' from 103.221.254.2 port 42971 Aug 26 04:44:17 shivevps sshd[30935]: Bad protocol version identification '\024' from 103.221.254.2 port 45328 Aug 26 04:45:52 shivevps sshd[32400]: Bad protocol version identification '\024' from 103.221.254.2 port 47721 ...	2020-08-26 15:01:38
103.221.254.12	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-19 22:05:41
103.221.254.102	attackbots	Unauthorized access detected from black listed ip!	2020-05-29 19:50:26
103.221.254.125	attackspam	Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/103.221.254.125; from= to=<2c.thomssen@rhythm-and-arts.de> proto=ESMTP helo= Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/103.221.254.125; from= to=<3c.thomssen@rhythm-and-arts.de> proto=ESMTP helo= Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spa	2020-04-25 13:45:54
103.221.254.73	attackspam	spam	2020-04-06 13:30:40
103.221.254.125	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-22 08:07:12
103.221.254.125	attackbots	spam	2020-03-01 19:47:19
103.221.254.4	attackbotsspam	Feb 13 05:45:44 MK-Soft-Root1 sshd[24429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.254.4 Feb 13 05:45:46 MK-Soft-Root1 sshd[24429]: Failed password for invalid user supervisor from 103.221.254.4 port 57353 ssh2 ...	2020-02-13 20:58:53
103.221.254.70	attack	" "	2020-02-13 00:14:53
103.221.254.73	attackbots	B: f2b postfix aggressive 3x	2020-02-01 10:50:32
103.221.254.24	attackbots	Unauthorized connection attempt detected from IP address 103.221.254.24 to port 8080 [T]	2020-01-17 09:03:57
103.221.254.12	attack	email spam	2019-12-19 20:18:36
103.221.254.125	attack	email spam	2019-12-19 17:09:36
103.221.254.12	attackbotsspam	Autoban 103.221.254.12 AUTH/CONNECT	2019-11-18 19:21:47
103.221.254.125	attack	Autoban 103.221.254.125 AUTH/CONNECT	2019-11-18 19:20:29

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.221.254.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3193
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.221.254.54.			IN	A

;; AUTHORITY SECTION:
.			2743	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 20:28:00 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 54.254.221.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 54.254.221.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
191.7.1.58	attackbots	Automatic report - Port Scan Attack	2019-12-09 07:33:05
139.59.77.237	attack	Dec 8 23:53:41 meumeu sshd[12259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.237 Dec 8 23:53:43 meumeu sshd[12259]: Failed password for invalid user cvsuser from 139.59.77.237 port 52959 ssh2 Dec 8 23:59:56 meumeu sshd[13295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.237 ...	2019-12-09 07:08:16
49.88.112.114	attack	Dec 8 13:15:32 auw2 sshd\[17582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Dec 8 13:15:34 auw2 sshd\[17582\]: Failed password for root from 49.88.112.114 port 61578 ssh2 Dec 8 13:15:36 auw2 sshd\[17582\]: Failed password for root from 49.88.112.114 port 61578 ssh2 Dec 8 13:15:38 auw2 sshd\[17582\]: Failed password for root from 49.88.112.114 port 61578 ssh2 Dec 8 13:16:24 auw2 sshd\[17695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-12-09 07:24:10
118.25.125.189	attack	Dec 8 13:29:48 php1 sshd\[17271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.125.189 user=root Dec 8 13:29:50 php1 sshd\[17271\]: Failed password for root from 118.25.125.189 port 49586 ssh2 Dec 8 13:35:11 php1 sshd\[17784\]: Invalid user bitnami from 118.25.125.189 Dec 8 13:35:11 php1 sshd\[17784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.125.189 Dec 8 13:35:14 php1 sshd\[17784\]: Failed password for invalid user bitnami from 118.25.125.189 port 51002 ssh2	2019-12-09 07:36:34
222.186.175.147	attack	2019-12-08T23:13:07.200875abusebot-6.cloudsearch.cf sshd\[5282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.147 user=root	2019-12-09 07:13:54
223.247.194.119	attackbots	Dec 8 13:12:06 wbs sshd\[14849\]: Invalid user buscarino from 223.247.194.119 Dec 8 13:12:06 wbs sshd\[14849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.119 Dec 8 13:12:08 wbs sshd\[14849\]: Failed password for invalid user buscarino from 223.247.194.119 port 50620 ssh2 Dec 8 13:18:14 wbs sshd\[15519\]: Invalid user centsq from 223.247.194.119 Dec 8 13:18:14 wbs sshd\[15519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.119	2019-12-09 07:21:23
177.184.159.84	attackbotsspam	" "	2019-12-09 07:10:08
54.39.44.47	attackbotsspam	Dec 8 13:14:32 web1 sshd\[3584\]: Invalid user guest from 54.39.44.47 Dec 8 13:14:32 web1 sshd\[3584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.44.47 Dec 8 13:14:34 web1 sshd\[3584\]: Failed password for invalid user guest from 54.39.44.47 port 56544 ssh2 Dec 8 13:19:44 web1 sshd\[4241\]: Invalid user newcombe from 54.39.44.47 Dec 8 13:19:44 web1 sshd\[4241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.44.47	2019-12-09 07:28:20
216.75.58.86	attackspam	Fail2Ban Ban Triggered	2019-12-09 07:11:58
49.88.112.113	attackspambots	$f2bV_matches	2019-12-09 07:11:06
134.209.97.228	attack	Dec 9 00:11:50 meumeu sshd[15712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.97.228 Dec 9 00:11:51 meumeu sshd[15712]: Failed password for invalid user siegurd from 134.209.97.228 port 53432 ssh2 Dec 9 00:17:51 meumeu sshd[19936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.97.228 ...	2019-12-09 07:31:33
117.119.83.56	attack	Dec 9 00:00:11 nextcloud sshd\[26212\]: Invalid user genichi from 117.119.83.56 Dec 9 00:00:11 nextcloud sshd\[26212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.119.83.56 Dec 9 00:00:13 nextcloud sshd\[26212\]: Failed password for invalid user genichi from 117.119.83.56 port 34156 ssh2 ...	2019-12-09 07:33:50
218.92.0.154	attackbots	Dec 8 23:59:45 host sshd[42293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.154 user=root Dec 8 23:59:46 host sshd[42293]: Failed password for root from 218.92.0.154 port 33385 ssh2 ...	2019-12-09 07:23:18
51.68.44.158	attackbotsspam	Dec 9 00:14:24 sd-53420 sshd\[10431\]: User gdm from 51.68.44.158 not allowed because none of user's groups are listed in AllowGroups Dec 9 00:14:24 sd-53420 sshd\[10431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.158 user=gdm Dec 9 00:14:26 sd-53420 sshd\[10431\]: Failed password for invalid user gdm from 51.68.44.158 port 40864 ssh2 Dec 9 00:19:33 sd-53420 sshd\[11340\]: Invalid user blakeley from 51.68.44.158 Dec 9 00:19:33 sd-53420 sshd\[11340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.158 ...	2019-12-09 07:32:28
36.22.187.34	attack	Dec 9 00:24:31 eventyay sshd[4419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.22.187.34 Dec 9 00:24:33 eventyay sshd[4419]: Failed password for invalid user ketsler from 36.22.187.34 port 45192 ssh2 Dec 9 00:30:56 eventyay sshd[4611]: Failed password for root from 36.22.187.34 port 46144 ssh2 ...	2019-12-09 07:43:04

最近上报的IP列表

69.90.33.15	222.94.212.209	196.81.36.239	93.119.104.66
93.153.122.55	1.6.21.106	134.209.248.205	56.235.142.189
211.72.180.2	180.124.213.187	169.1.16.214	107.29.38.227
81.22.45.201	215.63.210.253	5.94.66.38	129.150.68.200
178.239.208.32	168.227.56.130	211.167.71.195	99.180.82.27