14.254.17.103 - IPInfo

基本信息:

城市(city): Huế

省份(region): Tinh Thua Thien-Hue

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	1587327200 - 04/19/2020 22:13:20 Host: 14.254.17.103/14.254.17.103 Port: 445 TCP Blocked	2020-04-20 07:28:05

相同子网IP讨论:

IP	类型	评论内容	时间
14.254.179.37	attackspambots	Icarus honeypot on github	2020-09-11 01:38:01
14.254.179.37	attack	Icarus honeypot on github	2020-09-10 16:58:18
14.254.179.37	attack	Icarus honeypot on github	2020-09-10 07:32:37
14.254.17.131	attackbotsspam	1585885590 - 04/03/2020 05:46:30 Host: 14.254.17.131/14.254.17.131 Port: 445 TCP Blocked	2020-04-03 19:55:43
14.254.177.108	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-01-13 17:00:07
14.254.177.87	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:37.	2019-11-26 18:15:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.254.17.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4069
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.254.17.103.			IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041901 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 07:28:02 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

103.17.254.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.17.254.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.162.204.214	attack	[portscan] Port scan	2019-08-19 15:37:53
164.77.214.130	attack	Unauthorized connection attempt from IP address 164.77.214.130 on Port 445(SMB)	2019-08-19 15:29:09
134.175.36.138	attackspam	Aug 18 21:36:46 auw2 sshd\[24655\]: Invalid user nine from 134.175.36.138 Aug 18 21:36:46 auw2 sshd\[24655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.36.138 Aug 18 21:36:48 auw2 sshd\[24655\]: Failed password for invalid user nine from 134.175.36.138 port 53480 ssh2 Aug 18 21:41:55 auw2 sshd\[25203\]: Invalid user blaze from 134.175.36.138 Aug 18 21:41:55 auw2 sshd\[25203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.36.138	2019-08-19 15:49:50
77.42.74.82	attackspam	Automatic report - Port Scan Attack	2019-08-19 15:23:11
123.231.61.180	attackbots	Aug 19 06:17:05 XXX sshd[32449]: Invalid user kb from 123.231.61.180 port 10279	2019-08-19 15:19:42
94.176.5.253	attackspam	(Aug 19) LEN=44 TTL=244 ID=65190 DF TCP DPT=23 WINDOW=14600 SYN (Aug 19) LEN=44 TTL=244 ID=9886 DF TCP DPT=23 WINDOW=14600 SYN (Aug 19) LEN=44 TTL=244 ID=56875 DF TCP DPT=23 WINDOW=14600 SYN (Aug 19) LEN=44 TTL=244 ID=57209 DF TCP DPT=23 WINDOW=14600 SYN (Aug 19) LEN=44 TTL=244 ID=10102 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=9596 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=15818 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=14930 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=15924 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=15232 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=23762 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=60677 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=65404 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=48713 DF TCP DPT=23 WINDOW=14600 SYN (Aug 18) LEN=44 TTL=244 ID=9265 DF TCP DPT=23 WINDOW=14600 SYN	2019-08-19 15:31:42
185.175.93.19	attackspambots	08/19/2019-03:41:50.474498 185.175.93.19 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-19 15:58:49
109.251.68.112	attack	Aug 19 06:15:28 xeon sshd[8022]: Failed password for invalid user prey from 109.251.68.112 port 36692 ssh2	2019-08-19 15:18:38
190.103.28.154	attack	Unauthorized connection attempt from IP address 190.103.28.154 on Port 445(SMB)	2019-08-19 15:25:50
134.209.40.67	attackspambots	2019-08-18T23:17:57.408780hub.schaetter.us sshd\[32076\]: Invalid user ruser from 134.209.40.67 2019-08-18T23:17:57.444043hub.schaetter.us sshd\[32076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.40.67 2019-08-18T23:17:59.672706hub.schaetter.us sshd\[32076\]: Failed password for invalid user ruser from 134.209.40.67 port 37572 ssh2 2019-08-18T23:22:01.204662hub.schaetter.us sshd\[32122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.40.67 user=root 2019-08-18T23:22:03.262839hub.schaetter.us sshd\[32122\]: Failed password for root from 134.209.40.67 port 55690 ssh2 ...	2019-08-19 15:36:03
190.180.49.85	attack	Unauthorized connection attempt from IP address 190.180.49.85 on Port 445(SMB)	2019-08-19 15:35:25
179.180.195.65	attackspam	Honeypot attack, port: 23, PTR: 179.180.195.65.dynamic.adsl.gvt.net.br.	2019-08-19 15:46:22
149.28.135.47	attackbotsspam	Aug 18 21:36:50 sachi sshd\[21549\]: Invalid user skkb from 149.28.135.47 Aug 18 21:36:50 sachi sshd\[21549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.135.47 Aug 18 21:36:53 sachi sshd\[21549\]: Failed password for invalid user skkb from 149.28.135.47 port 38068 ssh2 Aug 18 21:41:52 sachi sshd\[22102\]: Invalid user bugraerguven from 149.28.135.47 Aug 18 21:41:52 sachi sshd\[22102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.135.47	2019-08-19 15:55:54
58.47.177.160	attackspambots	Aug 18 21:07:51 web1 sshd\[6138\]: Invalid user letmein from 58.47.177.160 Aug 18 21:07:51 web1 sshd\[6138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.47.177.160 Aug 18 21:07:53 web1 sshd\[6138\]: Failed password for invalid user letmein from 58.47.177.160 port 53325 ssh2 Aug 18 21:14:53 web1 sshd\[6967\]: Invalid user aster from 58.47.177.160 Aug 18 21:14:53 web1 sshd\[6967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.47.177.160	2019-08-19 15:17:29
222.127.99.45	attackbotsspam	Aug 19 06:11:14 web8 sshd\[5007\]: Invalid user ph from 222.127.99.45 Aug 19 06:11:14 web8 sshd\[5007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.99.45 Aug 19 06:11:16 web8 sshd\[5007\]: Failed password for invalid user ph from 222.127.99.45 port 53229 ssh2 Aug 19 06:16:27 web8 sshd\[7748\]: Invalid user ksg from 222.127.99.45 Aug 19 06:16:27 web8 sshd\[7748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.99.45	2019-08-19 14:58:24

最近上报的IP列表

190.16.110.53	66.204.25.35	106.13.161.132	144.13.11.129
209.206.193.77	151.96.6.137	81.238.66.186	94.101.218.95
5.153.129.86	123.188.45.82	189.152.155.22	219.169.76.15
213.129.128.222	104.198.75.54	105.231.241.129	89.94.67.228
41.1.103.60	195.182.199.152	46.98.66.60	97.250.11.203