195.54.14.116 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): Chelyabinsk State University

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-10-27 06:42:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.54.14.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41682
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.54.14.116.			IN	A

;; AUTHORITY SECTION:
.			382	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102601 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 06:42:48 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 116.14.54.195.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 116.14.54.195.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.214.241.18	attack	Nov 24 14:45:58 web8 sshd\[31277\]: Invalid user webadmin from 1.214.241.18 Nov 24 14:45:58 web8 sshd\[31277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.241.18 Nov 24 14:46:00 web8 sshd\[31277\]: Failed password for invalid user webadmin from 1.214.241.18 port 57678 ssh2 Nov 24 14:55:18 web8 sshd\[3804\]: Invalid user ident from 1.214.241.18 Nov 24 14:55:18 web8 sshd\[3804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.241.18	2019-11-25 00:10:02
177.220.135.10	attack	SSH Brute Force, server-1 sshd[25410]: Failed password for invalid user lukacs from 177.220.135.10 port 22273 ssh2	2019-11-25 00:26:30
118.32.181.96	attackbotsspam	Nov 24 15:55:33 arianus sshd\[9315\]: Unable to negotiate with 118.32.181.96 port 52608: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ...	2019-11-25 00:01:50
125.43.68.83	attackspam	Nov 24 11:50:57 firewall sshd[25661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.43.68.83 user=root Nov 24 11:50:59 firewall sshd[25661]: Failed password for root from 125.43.68.83 port 45664 ssh2 Nov 24 11:55:15 firewall sshd[25768]: Invalid user server from 125.43.68.83 ...	2019-11-25 00:11:11
188.131.216.109	attack	2019-11-24T15:55:26.729599stark.klein-stark.info sshd\[22893\]: Invalid user bettini from 188.131.216.109 port 59634 2019-11-24T15:55:26.738303stark.klein-stark.info sshd\[22893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.216.109 2019-11-24T15:55:29.182477stark.klein-stark.info sshd\[22893\]: Failed password for invalid user bettini from 188.131.216.109 port 59634 ssh2 ...	2019-11-24 23:58:24
89.144.47.4	attack	191124 17:14:46 \[Warning\] Access denied for user 'mysqlbackups'@'89.144.47.4' \(using password: YES\) 191124 17:24:08 \[Warning\] Access denied for user 'mysqlbackups'@'89.144.47.4' \(using password: YES\) 191124 17:24:18 \[Warning\] Access denied for user 'mysqlbackups'@'89.144.47.4' \(using password: YES\) ...	2019-11-25 00:12:22
91.191.223.207	attackspambots	2019-11-24T16:08:04.792814abusebot.cloudsearch.cf sshd\[4066\]: Invalid user nobody3333 from 91.191.223.207 port 46320	2019-11-25 00:19:53
213.182.101.187	attack	Nov 24 16:37:50 ns41 sshd[17167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.101.187	2019-11-25 00:02:54
45.136.108.14	attack	3389BruteforceFW22	2019-11-25 00:25:45
81.244.5.141	attackbotsspam	2019-11-24T15:54:52.432703centos sshd\[18663\]: Invalid user ktanabe from 81.244.5.141 port 51073 2019-11-24T15:54:52.440075centos sshd\[18663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.5-244-81.adsl-dyn.isp.belgacom.be 2019-11-24T15:54:54.941591centos sshd\[18663\]: Failed password for invalid user ktanabe from 81.244.5.141 port 51073 ssh2	2019-11-25 00:20:38
206.72.197.90	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-24 23:53:10
81.171.85.139	attack	\[2019-11-24 11:19:23\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.171.85.139:54856' - Wrong password \[2019-11-24 11:19:23\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-24T11:19:23.400-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="608",SessionID="0x7f26c452fc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.139/54856",Challenge="3c3e14d0",ReceivedChallenge="3c3e14d0",ReceivedHash="b50ae21db0b448ee65545cf6ebdb3712" \[2019-11-24 11:19:46\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.171.85.139:52134' - Wrong password \[2019-11-24 11:19:46\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-24T11:19:46.476-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="609",SessionID="0x7f26c4b7dbd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.139	2019-11-25 00:22:36
188.147.43.211	attackbots	Autoban 188.147.43.211 AUTH/CONNECT	2019-11-25 00:26:07
178.73.215.171	attack	Port scan: Attack repeated for 24 hours	2019-11-24 23:59:13
168.61.42.67	attackbotsspam	SSH Brute Force	2019-11-25 00:06:05

最近上报的IP列表

159.203.201.210	140.224.183.122	115.213.63.216	110.80.135.23
96.23.178.190	94.69.100.183	78.29.32.111	61.244.206.38
60.8.180.8	58.49.59.139	45.143.221.9	45.113.70.213
43.241.66.56	5.39.221.61	5.39.221.55	219.101.183.4
217.68.217.60	210.140.10.53	190.75.7.223	171.217.95.130