180.254.0.116 - IPInfo

基本信息:

城市(city): Semarang

省份(region): Central Java

国家(country): Indonesia

运营商(isp): Esia

主机名(hostname): unknown

机构(organization): PT Telekomunikasi Indonesia

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
180.254.0.255	attack	Unauthorized connection attempt from IP address 180.254.0.255 on Port 445(SMB)	2020-04-18 22:15:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.254.0.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1019
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.254.0.116.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 23:43:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 116.0.254.180.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 116.0.254.180.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.104.230	attackspambots	2019-09-05T19:41:42.366290abusebot-6.cloudsearch.cf sshd\[20035\]: Invalid user rstudio from 68.183.104.230 port 53160	2019-09-06 03:48:58
183.142.154.251	attackbotsspam	Sep 5 03:30:56 localhost kernel: [1406472.798792] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.142.154.251 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=44 ID=1182 PROTO=TCP SPT=26476 DPT=52869 WINDOW=44476 RES=0x00 SYN URGP=0 Sep 5 03:30:56 localhost kernel: [1406472.798818] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.142.154.251 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=44 ID=1182 PROTO=TCP SPT=26476 DPT=52869 SEQ=758669438 ACK=0 WINDOW=44476 RES=0x00 SYN URGP=0 Sep 5 15:11:34 localhost kernel: [1448510.836094] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.142.154.251 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=45 ID=52517 PROTO=TCP SPT=26476 DPT=52869 WINDOW=44476 RES=0x00 SYN URGP=0 Sep 5 15:11:34 localhost kernel: [1448510.836101] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.142.154.251 DST=[mungedIP2] LEN=40 TOS=0	2019-09-06 03:32:09
144.217.4.14	attackspam	Sep 5 09:06:00 php2 sshd\[20320\]: Invalid user odroid from 144.217.4.14 Sep 5 09:06:00 php2 sshd\[20320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.ip-144-217-4.net Sep 5 09:06:02 php2 sshd\[20320\]: Failed password for invalid user odroid from 144.217.4.14 port 43227 ssh2 Sep 5 09:10:58 php2 sshd\[21283\]: Invalid user fachbereich from 144.217.4.14 Sep 5 09:10:58 php2 sshd\[21283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.ip-144-217-4.net	2019-09-06 03:57:38
42.157.129.158	attackspambots	Sep 5 09:42:29 hanapaa sshd\[7672\]: Invalid user 1 from 42.157.129.158 Sep 5 09:42:29 hanapaa sshd\[7672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.129.158 Sep 5 09:42:31 hanapaa sshd\[7672\]: Failed password for invalid user 1 from 42.157.129.158 port 51342 ssh2 Sep 5 09:47:45 hanapaa sshd\[8106\]: Invalid user q1w2e3 from 42.157.129.158 Sep 5 09:47:45 hanapaa sshd\[8106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.129.158	2019-09-06 03:50:16
188.162.199.39	attackbotsspam	Brute force attempt	2019-09-06 03:55:50
92.242.240.17	attackbots	Sep 5 14:52:36 shadeyouvpn sshd[12205]: Invalid user ubuntu from 92.242.240.17 Sep 5 14:52:36 shadeyouvpn sshd[12205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92-242-240-17.broadband.mtnet.hr Sep 5 14:52:39 shadeyouvpn sshd[12205]: Failed password for invalid user ubuntu from 92.242.240.17 port 57848 ssh2 Sep 5 14:52:39 shadeyouvpn sshd[12205]: Received disconnect from 92.242.240.17: 11: Bye Bye [preauth] Sep 5 14:58:56 shadeyouvpn sshd[16296]: Invalid user steam from 92.242.240.17 Sep 5 14:58:56 shadeyouvpn sshd[16296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92-242-240-17.broadband.mtnet.hr Sep 5 14:58:58 shadeyouvpn sshd[16296]: Failed password for invalid user steam from 92.242.240.17 port 36124 ssh2 Sep 5 14:58:58 shadeyouvpn sshd[16296]: Received disconnect from 92.242.240.17: 11: Bye Bye [preauth] Sep 5 15:02:54 shadeyouvpn sshd[18822]: pam_unix(sshd:auth): ........ -------------------------------	2019-09-06 03:52:44
185.176.27.34	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-06 04:08:46
35.194.4.128	attackbots	RDP Bruteforce	2019-09-06 04:13:30
125.43.68.83	attackspam	Sep 5 21:42:57 markkoudstaal sshd[392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.43.68.83 Sep 5 21:42:59 markkoudstaal sshd[392]: Failed password for invalid user ftpadmin from 125.43.68.83 port 19036 ssh2 Sep 5 21:47:35 markkoudstaal sshd[791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.43.68.83	2019-09-06 04:07:34
84.176.170.61	attackspam	Automatic report - Port Scan Attack	2019-09-06 03:53:18
104.140.188.18	attackspam	Automatic report - Port Scan Attack	2019-09-06 04:17:57
218.98.40.146	attackspambots	Sep 5 10:04:31 lcdev sshd\[1639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.146 user=root Sep 5 10:04:32 lcdev sshd\[1639\]: Failed password for root from 218.98.40.146 port 63578 ssh2 Sep 5 10:04:40 lcdev sshd\[1650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.146 user=root Sep 5 10:04:42 lcdev sshd\[1650\]: Failed password for root from 218.98.40.146 port 27665 ssh2 Sep 5 10:04:50 lcdev sshd\[1696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.146 user=root	2019-09-06 04:06:47
137.116.138.221	attackbots	Sep 5 09:23:10 aiointranet sshd\[2853\]: Invalid user tom from 137.116.138.221 Sep 5 09:23:10 aiointranet sshd\[2853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.116.138.221 Sep 5 09:23:12 aiointranet sshd\[2853\]: Failed password for invalid user tom from 137.116.138.221 port 14927 ssh2 Sep 5 09:28:48 aiointranet sshd\[3330\]: Invalid user dspace from 137.116.138.221 Sep 5 09:28:48 aiointranet sshd\[3330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.116.138.221	2019-09-06 03:36:04
192.227.210.138	attackspambots	Sep 5 21:10:35 MK-Soft-Root2 sshd\[21827\]: Invalid user student from 192.227.210.138 port 44478 Sep 5 21:10:35 MK-Soft-Root2 sshd\[21827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.210.138 Sep 5 21:10:37 MK-Soft-Root2 sshd\[21827\]: Failed password for invalid user student from 192.227.210.138 port 44478 ssh2 ...	2019-09-06 04:11:38
68.183.136.244	attackbots	Sep 5 09:40:35 hiderm sshd\[26724\]: Invalid user admin from 68.183.136.244 Sep 5 09:40:35 hiderm sshd\[26724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.136.244 Sep 5 09:40:38 hiderm sshd\[26724\]: Failed password for invalid user admin from 68.183.136.244 port 50386 ssh2 Sep 5 09:44:53 hiderm sshd\[27064\]: Invalid user arma3server from 68.183.136.244 Sep 5 09:44:53 hiderm sshd\[27064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.136.244	2019-09-06 03:53:49

最近上报的IP列表

52.165.37.155	2003:e0:1715:cd00:6965:ce4d:f6fb:8899	212.190.3.197	103.3.222.128
168.100.8.164	185.161.252.33	77.94.96.105	167.63.115.244
213.15.89.93	96.209.55.204	27.18.254.71	2001:da8:d800:199:a3:52f:9471:c79b
49.88.112.68	149.165.109.189	114.214.182.239	158.108.236.99
114.233.159.128	111.58.224.230	108.61.189.23	99.207.219.218