14.54.195.47 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	unauthorized connection attempt	2020-02-07 16:25:56

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.54.195.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28024
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.54.195.47.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 16:25:52 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 47.195.54.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 47.195.54.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
195.122.226.164	attackbotsspam	2020-05-31T01:33:39.171624sd-86998 sshd[2382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.122.226.164 user=root 2020-05-31T01:33:41.267024sd-86998 sshd[2382]: Failed password for root from 195.122.226.164 port 36759 ssh2 2020-05-31T01:37:24.806165sd-86998 sshd[3023]: Invalid user bailey from 195.122.226.164 port 39671 2020-05-31T01:37:24.808578sd-86998 sshd[3023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.122.226.164 2020-05-31T01:37:24.806165sd-86998 sshd[3023]: Invalid user bailey from 195.122.226.164 port 39671 2020-05-31T01:37:27.124767sd-86998 sshd[3023]: Failed password for invalid user bailey from 195.122.226.164 port 39671 ssh2 ...	2020-05-31 07:55:38
27.221.97.4	attackbots	May 30 23:29:29 vmi345603 sshd[27278]: Failed password for root from 27.221.97.4 port 35075 ssh2 ...	2020-05-31 07:24:46
153.101.29.178	attackbotsspam	Invalid user alias from 153.101.29.178 port 50244	2020-05-31 07:34:31
200.133.39.71	attack	May 30 17:28:54 ny01 sshd[8996]: Failed password for root from 200.133.39.71 port 49104 ssh2 May 30 17:32:40 ny01 sshd[9423]: Failed password for root from 200.133.39.71 port 52644 ssh2	2020-05-31 07:43:27
129.211.37.91	attackspam	May 31 00:48:44 mail sshd[19565]: Invalid user skinny from 129.211.37.91 May 31 00:48:44 mail sshd[19565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.37.91 May 31 00:48:44 mail sshd[19565]: Invalid user skinny from 129.211.37.91 May 31 00:48:46 mail sshd[19565]: Failed password for invalid user skinny from 129.211.37.91 port 13457 ssh2 May 31 00:52:25 mail sshd[20046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.37.91 user=root May 31 00:52:26 mail sshd[20046]: Failed password for root from 129.211.37.91 port 3948 ssh2 ...	2020-05-31 07:50:55
209.85.166.50	attackspam	They are group of scammers	2020-05-31 07:48:42
183.108.45.106	attackspam	Port Scan detected! ...	2020-05-31 07:26:01
54.38.242.233	attackbots	$f2bV_matches	2020-05-31 07:34:19
129.28.191.55	attackspambots	2020-05-30T21:11:26.635375shield sshd\[6636\]: Invalid user ching from 129.28.191.55 port 40844 2020-05-30T21:11:26.638916shield sshd\[6636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.55 2020-05-30T21:11:28.634907shield sshd\[6636\]: Failed password for invalid user ching from 129.28.191.55 port 40844 ssh2 2020-05-30T21:15:08.333494shield sshd\[7282\]: Invalid user cesar from 129.28.191.55 port 53454 2020-05-30T21:15:08.336961shield sshd\[7282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.55	2020-05-31 07:36:21
112.85.42.89	attackspambots	May 31 02:51:27 ift sshd\[13875\]: Failed password for root from 112.85.42.89 port 24882 ssh2May 31 02:52:27 ift sshd\[13886\]: Failed password for root from 112.85.42.89 port 58594 ssh2May 31 02:52:29 ift sshd\[13886\]: Failed password for root from 112.85.42.89 port 58594 ssh2May 31 02:52:32 ift sshd\[13886\]: Failed password for root from 112.85.42.89 port 58594 ssh2May 31 02:53:23 ift sshd\[13971\]: Failed password for root from 112.85.42.89 port 64776 ssh2 ...	2020-05-31 07:55:13
220.71.235.120	attackspam	Automatic report - Port Scan Attack	2020-05-31 07:39:35
106.12.84.29	attack	May 27 20:04:46 ntop sshd[10477]: Invalid user megan from 106.12.84.29 port 55568 May 27 20:04:46 ntop sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.29 May 27 20:04:48 ntop sshd[10477]: Failed password for invalid user megan from 106.12.84.29 port 55568 ssh2 May 27 20:04:49 ntop sshd[10477]: Received disconnect from 106.12.84.29 port 55568:11: Bye Bye [preauth] May 27 20:04:49 ntop sshd[10477]: Disconnected from invalid user megan 106.12.84.29 port 55568 [preauth] May 27 20:09:25 ntop sshd[11613]: User r.r from 106.12.84.29 not allowed because not listed in AllowUsers May 27 20:09:25 ntop sshd[11613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.29 user=r.r May 27 20:09:27 ntop sshd[11613]: Failed password for invalid user r.r from 106.12.84.29 port 59626 ssh2 May 27 20:09:28 ntop sshd[11613]: Received disconnect from 106.12.84.29 port 59626:11: Bye By........ -------------------------------	2020-05-31 07:54:29
116.203.41.67	attackbots	116.203.41.67 - - \[30/May/2020:22:28:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 5932 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 116.203.41.67 - - \[30/May/2020:22:28:11 +0200\] "POST /wp-login.php HTTP/1.0" 200 5745 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 116.203.41.67 - - \[30/May/2020:22:28:11 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-31 07:45:14
185.143.74.144	attackbots	2020-05-30T17:39:55.515660linuxbox-skyline auth[33785]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=exportImages rhost=185.143.74.144 ...	2020-05-31 07:44:22
200.90.190.22	attackspambots	Icarus honeypot on github	2020-05-31 07:45:43

最近上报的IP列表

158.148.87.18	208.145.32.130	180.254.136.170	103.180.241.7
37.150.188.68	86.252.102.16	150.22.173.95	177.80.211.77
120.31.205.203	95.241.196.61	94.247.180.243	59.126.174.200
49.112.136.45	210.201.111.39	190.79.151.112	189.235.240.139
179.221.49.148	131.196.8.251	116.102.221.151	113.72.204.248