114.243.254.54

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): China Unicom Beijing Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	May 7 00:39:45 sip sshd[27541]: Failed password for root from 114.243.254.54 port 51488 ssh2 May 7 00:58:14 sip sshd[1953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.243.254.54 May 7 00:58:17 sip sshd[1953]: Failed password for invalid user bug from 114.243.254.54 port 32860 ssh2	2020-05-07 07:39:31

类型

评论内容

时间

attack

May  7 00:39:45 sip sshd[27541]: Failed password for root from 114.243.254.54 port 51488 ssh2
May  7 00:58:14 sip sshd[1953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.243.254.54
May  7 00:58:17 sip sshd[1953]: Failed password for invalid user bug from 114.243.254.54 port 32860 ssh2

2020-05-07 07:39:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.243.254.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1396
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.243.254.54.			IN	A

;; AUTHORITY SECTION:
.			181	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050602 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 07 07:39:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 54.254.243.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.254.243.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.75.248.251	attackbotsspam	Oct 6 11:47:08 nextcloud sshd\[23355\]: Invalid user 123456789 from 51.75.248.251 Oct 6 11:47:08 nextcloud sshd\[23355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.248.251 Oct 6 11:47:10 nextcloud sshd\[23355\]: Failed password for invalid user 123456789 from 51.75.248.251 port 45670 ssh2 ...	2019-10-06 18:28:54
144.217.79.233	attackbotsspam	2019-10-06T05:43:42.213492ns525875 sshd\[3462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns2.cablebox.co user=root 2019-10-06T05:43:44.045794ns525875 sshd\[3462\]: Failed password for root from 144.217.79.233 port 60060 ssh2 2019-10-06T05:48:14.740985ns525875 sshd\[8990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns2.cablebox.co user=root 2019-10-06T05:48:17.250063ns525875 sshd\[8990\]: Failed password for root from 144.217.79.233 port 45746 ssh2 ...	2019-10-06 18:09:51
212.83.191.184	attackbots	SIPVicious Scanner Detection	2019-10-06 18:21:24
69.65.3.168	attackspambots	WordPress XMLRPC scan :: 69.65.3.168 0.136 BYPASS [06/Oct/2019:14:45:23 1100] [censored_1] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-06 18:26:23
222.186.175.182	attack	Oct 6 12:11:54 fr01 sshd[30300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Oct 6 12:11:55 fr01 sshd[30300]: Failed password for root from 222.186.175.182 port 11542 ssh2 ...	2019-10-06 18:26:39
183.134.199.68	attackbotsspam	Oct 6 12:26:11 MK-Soft-VM3 sshd[26024]: Failed password for root from 183.134.199.68 port 39767 ssh2 ...	2019-10-06 18:32:10
51.68.138.143	attackspam	Oct 6 08:29:37 herz-der-gamer sshd[24128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.138.143 user=root Oct 6 08:29:40 herz-der-gamer sshd[24128]: Failed password for root from 51.68.138.143 port 35664 ssh2 Oct 6 08:35:48 herz-der-gamer sshd[24337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.138.143 user=root Oct 6 08:35:49 herz-der-gamer sshd[24337]: Failed password for root from 51.68.138.143 port 37739 ssh2 ...	2019-10-06 18:10:20
211.27.11.189	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 06-10-2019 04:45:34.	2019-10-06 18:18:25
144.168.61.178	attackspambots	2019-10-06T03:28:50.9247881495-001 sshd\[39697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.168.61.178.16clouds.com user=root 2019-10-06T03:28:52.8682141495-001 sshd\[39697\]: Failed password for root from 144.168.61.178 port 42504 ssh2 2019-10-06T03:32:11.4733631495-001 sshd\[39939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.168.61.178.16clouds.com user=root 2019-10-06T03:32:13.3421051495-001 sshd\[39939\]: Failed password for root from 144.168.61.178 port 48886 ssh2 2019-10-06T03:45:13.9684631495-001 sshd\[34992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.168.61.178.16clouds.com user=root 2019-10-06T03:45:16.1930291495-001 sshd\[34992\]: Failed password for root from 144.168.61.178 port 46182 ssh2 ...	2019-10-06 18:33:32
34.237.4.125	attackbots	Oct 6 05:25:56 ovpn sshd\[12264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.237.4.125 user=root Oct 6 05:25:58 ovpn sshd\[12264\]: Failed password for root from 34.237.4.125 port 55408 ssh2 Oct 6 05:38:16 ovpn sshd\[15385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.237.4.125 user=root Oct 6 05:38:18 ovpn sshd\[15385\]: Failed password for root from 34.237.4.125 port 35694 ssh2 Oct 6 05:45:55 ovpn sshd\[17335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.237.4.125 user=root	2019-10-06 18:07:28
134.209.108.106	attackspam	Oct 6 00:26:42 wbs sshd\[13364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.108.106 user=root Oct 6 00:26:44 wbs sshd\[13364\]: Failed password for root from 134.209.108.106 port 53672 ssh2 Oct 6 00:27:31 wbs sshd\[13439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.108.106 user=root Oct 6 00:27:33 wbs sshd\[13439\]: Failed password for root from 134.209.108.106 port 57868 ssh2 Oct 6 00:28:19 wbs sshd\[13517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.108.106 user=root	2019-10-06 18:34:04
23.129.64.201	attack	Oct 5 23:12:37 sachi sshd\[29435\]: Invalid user 2Wire from 23.129.64.201 Oct 5 23:12:37 sachi sshd\[29435\]: Failed none for invalid user 2Wire from 23.129.64.201 port 52432 ssh2 Oct 5 23:12:45 sachi sshd\[29447\]: Invalid user 3comcso from 23.129.64.201 Oct 5 23:12:45 sachi sshd\[29447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.201 Oct 5 23:12:48 sachi sshd\[29447\]: Failed password for invalid user 3comcso from 23.129.64.201 port 39892 ssh2	2019-10-06 18:06:44
103.210.48.1	attack	3389BruteforceFW21	2019-10-06 18:16:11
178.90.158.127	attackspam	Unauthorised access (Oct 6) SRC=178.90.158.127 LEN=40 TTL=56 ID=32348 TCP DPT=8080 WINDOW=47669 SYN Unauthorised access (Oct 6) SRC=178.90.158.127 LEN=40 TTL=55 ID=40180 TCP DPT=8080 WINDOW=26090 SYN Unauthorised access (Oct 6) SRC=178.90.158.127 LEN=40 TTL=56 ID=55550 TCP DPT=8080 WINDOW=47669 SYN	2019-10-06 18:24:44
132.255.248.73	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 06-10-2019 04:45:32.	2019-10-06 18:25:16

最近上报的IP列表

169.190.154.155	130.209.87.152	90.212.152.241	104.59.62.145
247.165.174.209	170.209.44.85	109.145.66.109	155.17.45.85
228.193.75.185	182.132.164.187	100.158.116.216	118.52.189.187
152.190.103.222	44.27.111.72	209.187.190.154	82.9.78.255
182.69.12.151	164.106.241.94	5.24.119.84	114.33.9.159