131.196.14.51 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ecuador

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
131.196.146.126	attackspam	Apr 2 14:38:04 debian-2gb-nbg1-2 kernel: \[8090128.172011\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=131.196.146.126 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=62378 PROTO=TCP SPT=22273 DPT=26 WINDOW=17681 RES=0x00 SYN URGP=0	2020-04-03 05:53:18
131.196.146.23	attack	Automatic report - Port Scan Attack	2019-11-23 22:02:46
131.196.144.128	attack	Automatic report - Port Scan Attack	2019-08-12 04:46:31

类型

评论内容

时间

131.196.146.126

attackspam

Apr  2 14:38:04 debian-2gb-nbg1-2 kernel: \[8090128.172011\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=131.196.146.126 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=62378 PROTO=TCP SPT=22273 DPT=26 WINDOW=17681 RES=0x00 SYN URGP=0

2020-04-03 05:53:18

131.196.146.23

attack

Automatic report - Port Scan Attack

2019-11-23 22:02:46

131.196.144.128

attack

Automatic report - Port Scan Attack

2019-08-12 04:46:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.14.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.14.51.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061102 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 08:00:33 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

51.14.196.131.in-addr.arpa domain name pointer host-131-196-14-51.nedetel.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
51.14.196.131.in-addr.arpa	name = host-131-196-14-51.nedetel.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
151.41.171.160	attackbotsspam	Unauthorised access (Oct 5) SRC=151.41.171.160 LEN=44 TTL=51 ID=58275 TCP DPT=8080 WINDOW=4129 SYN Unauthorised access (Oct 4) SRC=151.41.171.160 LEN=44 TTL=51 ID=10602 TCP DPT=8080 WINDOW=4129 SYN Unauthorised access (Oct 3) SRC=151.41.171.160 LEN=44 TTL=51 ID=64072 TCP DPT=8080 WINDOW=4129 SYN Unauthorised access (Oct 2) SRC=151.41.171.160 LEN=44 TTL=51 ID=28230 TCP DPT=8080 WINDOW=4129 SYN Unauthorised access (Oct 2) SRC=151.41.171.160 LEN=44 TTL=51 ID=61040 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Oct 1) SRC=151.41.171.160 LEN=44 TTL=51 ID=29986 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Oct 1) SRC=151.41.171.160 LEN=44 TTL=51 ID=5924 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Sep 30) SRC=151.41.171.160 LEN=44 TTL=53 ID=60483 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Sep 30) SRC=151.41.171.160 LEN=44 TTL=51 ID=19843 TCP DPT=8080 WINDOW=4129 SYN	2019-10-05 19:13:26
114.242.245.251	attack	Oct 5 10:35:08 km20725 sshd\[19584\]: Failed password for root from 114.242.245.251 port 35220 ssh2Oct 5 10:38:27 km20725 sshd\[19796\]: Invalid user 123 from 114.242.245.251Oct 5 10:38:30 km20725 sshd\[19796\]: Failed password for invalid user 123 from 114.242.245.251 port 37546 ssh2Oct 5 10:41:53 km20725 sshd\[20115\]: Invalid user 123Senior from 114.242.245.251 ...	2019-10-05 19:00:31
36.85.1.68	attackspam	Automatic report - Port Scan Attack	2019-10-05 18:48:51
118.70.190.188	attack	Automatic report - Banned IP Access	2019-10-05 18:54:20
221.0.232.118	attackspambots	2019-10-05 dovecot_login authenticator failed for $REMOVED$ \[221.0.232.118\]: 535 Incorrect authentication data $set_id=nologin@REMOVED$ 2019-10-05 dovecot_login authenticator failed for $REMOVED$ \[221.0.232.118\]: 535 Incorrect authentication data $set_id=webmaster@REMOVED$ 2019-10-05 dovecot_login authenticator failed for $REMOVED$ \[221.0.232.118\]: 535 Incorrect authentication data $set_id=admin@REMOVED$	2019-10-05 19:07:21
2604:6600:0:30:a138:91:eb74:122f	attack	xmlrpc attack	2019-10-05 18:52:06
42.117.228.5	attack	(Oct 5) LEN=40 TTL=47 ID=35175 TCP DPT=8080 WINDOW=35358 SYN (Oct 5) LEN=40 TTL=46 ID=60673 TCP DPT=8080 WINDOW=17829 SYN (Oct 4) LEN=40 TTL=46 ID=36584 TCP DPT=8080 WINDOW=26003 SYN (Oct 4) LEN=40 TTL=47 ID=7481 TCP DPT=8080 WINDOW=35358 SYN (Oct 4) LEN=40 TTL=46 ID=56957 TCP DPT=8080 WINDOW=26003 SYN (Oct 3) LEN=40 TTL=46 ID=43044 TCP DPT=8080 WINDOW=17829 SYN (Oct 3) LEN=40 TTL=46 ID=49026 TCP DPT=8080 WINDOW=17829 SYN (Oct 3) LEN=40 TTL=46 ID=3598 TCP DPT=8080 WINDOW=26003 SYN (Oct 2) LEN=40 TTL=46 ID=21057 TCP DPT=8080 WINDOW=26003 SYN (Oct 2) LEN=40 TTL=46 ID=6321 TCP DPT=8080 WINDOW=26003 SYN (Oct 2) LEN=40 TTL=47 ID=4849 TCP DPT=8080 WINDOW=35358 SYN (Oct 2) LEN=40 TTL=46 ID=6959 TCP DPT=8080 WINDOW=17829 SYN (Oct 2) LEN=40 TTL=46 ID=59640 TCP DPT=8080 WINDOW=26003 SYN (Oct 1) LEN=40 TTL=47 ID=52655 TCP DPT=8080 WINDOW=35358 SYN (Oct 1) LEN=40 TTL=47 ID=15654 TCP DPT=8080 WINDOW=35358 SYN (Oct 1) LEN=40 TTL=46 ID=40...	2019-10-05 19:18:06
185.176.27.122	attackbots	10/05/2019-06:38:25.764629 185.176.27.122 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-05 19:20:17
106.12.128.24	attackbots	Oct 5 12:46:45 SilenceServices sshd[22363]: Failed password for root from 106.12.128.24 port 49910 ssh2 Oct 5 12:50:50 SilenceServices sshd[23450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.128.24 Oct 5 12:50:52 SilenceServices sshd[23450]: Failed password for invalid user 123 from 106.12.128.24 port 53992 ssh2	2019-10-05 18:52:40
109.72.102.247	attackspambots	port scan and connect, tcp 23 (telnet)	2019-10-05 19:14:00
181.40.66.179	attack	Oct 5 04:00:11 www_kotimaassa_fi sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.66.179 Oct 5 04:00:13 www_kotimaassa_fi sshd[29648]: Failed password for invalid user Pa$$2018 from 181.40.66.179 port 59546 ssh2 ...	2019-10-05 18:57:58
129.213.105.207	attackbotsspam	2019-10-05T10:54:21.633914abusebot-3.cloudsearch.cf sshd\[24334\]: Invalid user Nicolas123 from 129.213.105.207 port 45268	2019-10-05 19:03:18
185.143.221.55	attackbotsspam	Multiport scan : 6 ports scanned 80 2019 8080 10000 33333 33389	2019-10-05 19:00:06
118.24.102.248	attackspambots	Oct 5 07:01:09 www sshd\[242236\]: Invalid user yao from 118.24.102.248 Oct 5 07:01:09 www sshd\[242236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.102.248 Oct 5 07:01:11 www sshd\[242236\]: Failed password for invalid user yao from 118.24.102.248 port 58474 ssh2 ...	2019-10-05 18:56:13
138.197.188.101	attackspambots	$f2bV_matches	2019-10-05 18:56:56

最近上报的IP列表

203.252.147.199	2400:8100:ffff::117:120:13:52	5.167.70.173	5.167.70.136
5.167.70.147	137.226.6.91	43.156.127.39	245.139.25.251
45.9.149.155	5.167.68.210	194.34.133.202	180.76.154.28
193.233.141.216	5.167.69.78	137.226.5.134	231.253.232.203
137.226.5.142	5.167.69.116	101.71.250.156	137.226.5.163