103.221.254.54

基本信息:

城市(city): Dhaka

省份(region): Dhaka Division

国家(country): Bangladesh

运营商(isp): University of Dhaka

主机名(hostname): unknown

机构(organization): university of dhaka

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	spam	2020-04-15 16:09:14
attack	spam	2020-01-24 14:57:25
attackbots	Brute force attack stopped by firewall	2019-12-12 09:28:49
attack	Autoban 103.221.254.54 AUTH/CONNECT	2019-11-18 19:19:17
attackbots	IP: 103.221.254.54 ASN: AS135524 university of dhaka Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 14/09/2019 6:20:54 PM UTC	2019-09-15 04:33:53

相同子网IP讨论:

IP	类型	评论内容	时间
103.221.254.2	attackbotsspam	Aug 26 04:41:19 shivevps sshd[25517]: Bad protocol version identification '\024' from 103.221.254.2 port 41324 Aug 26 04:42:26 shivevps sshd[27031]: Bad protocol version identification '\024' from 103.221.254.2 port 42971 Aug 26 04:44:17 shivevps sshd[30935]: Bad protocol version identification '\024' from 103.221.254.2 port 45328 Aug 26 04:45:52 shivevps sshd[32400]: Bad protocol version identification '\024' from 103.221.254.2 port 47721 ...	2020-08-26 15:01:38
103.221.254.12	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-19 22:05:41
103.221.254.102	attackbots	Unauthorized access detected from black listed ip!	2020-05-29 19:50:26
103.221.254.125	attackspam	Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/103.221.254.125; from= to=<2c.thomssen@rhythm-and-arts.de> proto=ESMTP helo= Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/103.221.254.125; from= to=<3c.thomssen@rhythm-and-arts.de> proto=ESMTP helo= Apr 25 05:57:02 web01.agentur-b-2.de postfix/smtpd[923801]: NOQUEUE: reject: RCPT from unknown[103.221.254.125]: 554 5.7.1 Service unavailable; Client host [103.221.254.125] blocked using zen.spamhaus.org; https://www.spa	2020-04-25 13:45:54
103.221.254.73	attackspam	spam	2020-04-06 13:30:40
103.221.254.125	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-22 08:07:12
103.221.254.125	attackbots	spam	2020-03-01 19:47:19
103.221.254.4	attackbotsspam	Feb 13 05:45:44 MK-Soft-Root1 sshd[24429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.254.4 Feb 13 05:45:46 MK-Soft-Root1 sshd[24429]: Failed password for invalid user supervisor from 103.221.254.4 port 57353 ssh2 ...	2020-02-13 20:58:53
103.221.254.70	attack	" "	2020-02-13 00:14:53
103.221.254.73	attackbots	B: f2b postfix aggressive 3x	2020-02-01 10:50:32
103.221.254.24	attackbots	Unauthorized connection attempt detected from IP address 103.221.254.24 to port 8080 [T]	2020-01-17 09:03:57
103.221.254.12	attack	email spam	2019-12-19 20:18:36
103.221.254.125	attack	email spam	2019-12-19 17:09:36
103.221.254.12	attackbotsspam	Autoban 103.221.254.12 AUTH/CONNECT	2019-11-18 19:21:47
103.221.254.125	attack	Autoban 103.221.254.125 AUTH/CONNECT	2019-11-18 19:20:29

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.221.254.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3193
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.221.254.54.			IN	A

;; AUTHORITY SECTION:
.			2743	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 20:28:00 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 54.254.221.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 54.254.221.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
72.210.252.135	attackbotsspam	(imapd) Failed IMAP login from 72.210.252.135 (US/United States/-): 1 in the last 3600 secs	2020-09-06 17:27:22
187.115.177.164	attackspambots	1599332383 - 09/05/2020 20:59:43 Host: 187.115.177.164/187.115.177.164 Port: 445 TCP Blocked	2020-09-06 17:32:09
34.90.154.181	attack	Attempted connection to port 27017.	2020-09-06 17:15:15
89.234.157.254	attackbotsspam	Unauthorized access detected from black listed ip!	2020-09-06 17:42:04
52.173.28.92	attack	(sshd) Failed SSH login from 52.173.28.92 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 05:28:11 optimus sshd[26268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.173.28.92 user=root Sep 6 05:28:13 optimus sshd[26268]: Failed password for root from 52.173.28.92 port 45618 ssh2 Sep 6 05:31:47 optimus sshd[27194]: Invalid user murakami from 52.173.28.92 Sep 6 05:31:47 optimus sshd[27194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.173.28.92 Sep 6 05:31:50 optimus sshd[27194]: Failed password for invalid user murakami from 52.173.28.92 port 59550 ssh2	2020-09-06 17:54:26
87.190.16.229	attack	...	2020-09-06 17:38:25
103.141.47.195	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-06 17:39:04
185.153.196.126	attack	2020-09-05 09:00:39 Reject access to port(s):3389 2 times a day	2020-09-06 17:53:31
114.118.30.134	attack	[portscan] tcp/25 [smtp] [scan/connect: 6 time(s)] in blocklist.de:'listed [sasl]' *(RWIN=29200)(09060936)	2020-09-06 17:32:40
51.83.139.55	attackspambots	Brute forcing email accounts	2020-09-06 17:29:35
179.178.174.245	attackspam	Attempted connection to port 445.	2020-09-06 17:17:51
122.228.19.80	attackbots	Port Scan: TCP/1026	2020-09-06 17:34:20
110.67.91.131	attack	Unauthorized connection attempt from IP address 110.67.91.131 on Port 445(SMB)	2020-09-06 17:26:37
106.12.252.212	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-06 17:24:33
222.186.175.154	attackbots	Sep 6 09:42:55 ip-172-31-61-156 sshd[1639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 6 09:42:57 ip-172-31-61-156 sshd[1639]: Failed password for root from 222.186.175.154 port 63584 ssh2 ...	2020-09-06 17:44:16

最近上报的IP列表

69.90.33.15	222.94.212.209	196.81.36.239	93.119.104.66
93.153.122.55	1.6.21.106	134.209.248.205	56.235.142.189
211.72.180.2	180.124.213.187	169.1.16.214	107.29.38.227
81.22.45.201	215.63.210.253	5.94.66.38	129.150.68.200
178.239.208.32	168.227.56.130	211.167.71.195	99.180.82.27