103.46.12.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Hangzhou Zhiyu Network Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-05-11 08:26:43

相同子网IP讨论:

IP	类型	评论内容	时间
103.46.12.211	attackbots	Port Scan ...	2020-08-17 02:51:23
103.46.128.61	attackspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-06-13 12:31:14
103.46.12.157	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-08 16:29:34
103.46.12.65	attackspambots	Port Scan: TCP/445	2019-08-05 11:24:24
103.46.12.65	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-05 02:37:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.46.12.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53842
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.46.12.14.			IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051001 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 08:26:40 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 14.12.46.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.12.46.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
203.73.93.26	attackbotsspam	Jun 2 22:20:47 home sshd[12799]: Failed password for root from 203.73.93.26 port 46982 ssh2 Jun 2 22:24:41 home sshd[13190]: Failed password for root from 203.73.93.26 port 46650 ssh2 ...	2020-06-03 04:43:14
210.97.40.44	attackbots	Jun 2 22:16:22 nas sshd[13308]: Failed password for root from 210.97.40.44 port 59288 ssh2 Jun 2 22:25:11 nas sshd[14149]: Failed password for root from 210.97.40.44 port 59246 ssh2 ...	2020-06-03 04:42:22
222.186.190.2	attackspam	Jun 2 22:36:29 vps sshd[747561]: Failed password for root from 222.186.190.2 port 19276 ssh2 Jun 2 22:36:32 vps sshd[747561]: Failed password for root from 222.186.190.2 port 19276 ssh2 Jun 2 22:36:35 vps sshd[747561]: Failed password for root from 222.186.190.2 port 19276 ssh2 Jun 2 22:36:38 vps sshd[747561]: Failed password for root from 222.186.190.2 port 19276 ssh2 Jun 2 22:36:42 vps sshd[747561]: Failed password for root from 222.186.190.2 port 19276 ssh2 ...	2020-06-03 04:47:23
220.194.140.105	attackspam	Jun 2 22:28:32 10.23.102.36 sshd[24250]: Connection closed by 220.194.140.105 port 48833 [preauth] ...	2020-06-03 04:52:28
120.71.146.45	attackbots	Jun 2 22:51:11 sso sshd[17116]: Failed password for root from 120.71.146.45 port 48632 ssh2 ...	2020-06-03 05:03:42
103.66.16.18	attackbotsspam	Failed password for root from 103.66.16.18 port 51096 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root Failed password for root from 103.66.16.18 port 46578 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.66.16.18 user=root Failed password for root from 103.66.16.18 port 42048 ssh2	2020-06-03 04:38:59
152.136.213.72	attackspambots	Jun 2 22:20:18 icinga sshd[21440]: Failed password for root from 152.136.213.72 port 40934 ssh2 Jun 2 22:24:55 icinga sshd[28717]: Failed password for root from 152.136.213.72 port 34320 ssh2 ...	2020-06-03 05:02:51
125.143.221.20	attackbotsspam	Jun 2 22:20:15 PorscheCustomer sshd[5941]: Failed password for root from 125.143.221.20 port 40590 ssh2 Jun 2 22:24:24 PorscheCustomer sshd[6102]: Failed password for root from 125.143.221.20 port 43130 ssh2 ...	2020-06-03 04:47:05
198.27.80.123	attack	198.27.80.123 - - [02/Jun/2020:22:25:59 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [02/Jun/2020:22:26:11 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [02/Jun/2020:22:26:44 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [02/Jun/2020:22:27:19 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [02/Jun/2020:22:27:54 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar ...	2020-06-03 04:55:53
222.186.173.183	attackspambots	2020-06-02T20:28:40.092213abusebot-6.cloudsearch.cf sshd[20014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root 2020-06-02T20:28:42.132388abusebot-6.cloudsearch.cf sshd[20014]: Failed password for root from 222.186.173.183 port 27418 ssh2 2020-06-02T20:28:45.467814abusebot-6.cloudsearch.cf sshd[20014]: Failed password for root from 222.186.173.183 port 27418 ssh2 2020-06-02T20:28:40.092213abusebot-6.cloudsearch.cf sshd[20014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root 2020-06-02T20:28:42.132388abusebot-6.cloudsearch.cf sshd[20014]: Failed password for root from 222.186.173.183 port 27418 ssh2 2020-06-02T20:28:45.467814abusebot-6.cloudsearch.cf sshd[20014]: Failed password for root from 222.186.173.183 port 27418 ssh2 2020-06-02T20:28:40.092213abusebot-6.cloudsearch.cf sshd[20014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-06-03 04:40:06
112.65.127.154	attackspam	Jun 2 17:25:57 firewall sshd[12690]: Failed password for root from 112.65.127.154 port 29469 ssh2 Jun 2 17:28:35 firewall sshd[12800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.65.127.154 user=root Jun 2 17:28:37 firewall sshd[12800]: Failed password for root from 112.65.127.154 port 38952 ssh2 ...	2020-06-03 04:48:55
88.226.226.251	attackbots	Brute forcing RDP port 3389	2020-06-03 04:31:33
58.213.198.74	attack	Jun 2 22:24:41 sip sshd[512331]: Failed password for root from 58.213.198.74 port 7676 ssh2 Jun 2 22:28:24 sip sshd[512397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.198.74 user=root Jun 2 22:28:26 sip sshd[512397]: Failed password for root from 58.213.198.74 port 7677 ssh2 ...	2020-06-03 04:55:32
112.85.42.181	attackbots	Jun 2 21:28:30 combo sshd[15285]: Failed password for root from 112.85.42.181 port 13679 ssh2 Jun 2 21:28:33 combo sshd[15285]: Failed password for root from 112.85.42.181 port 13679 ssh2 Jun 2 21:28:36 combo sshd[15285]: Failed password for root from 112.85.42.181 port 13679 ssh2 ...	2020-06-03 04:49:46
176.100.76.208	attackbotsspam	port scan and connect, tcp 80 (http)	2020-06-03 04:29:08

最近上报的IP列表

218.143.133.42	90.88.97.197	81.30.173.91	83.195.199.42
91.243.204.190	65.55.34.14	173.15.43.51	93.48.148.0
76.86.217.250	182.174.65.161	72.179.247.145	87.251.74.50
24.46.9.92	220.255.242.55	82.212.103.42	115.75.5.111
151.40.104.103	123.139.120.68	151.22.59.40	138.0.80.200