40.54.111.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.54.111.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39085
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;40.54.111.196.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 17:24:53 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 196.111.54.40.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 196.111.54.40.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.42.155	attack	Apr 7 21:02:51 server2 sshd\[28213\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:02:59 server2 sshd\[28215\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:05:44 server2 sshd\[28533\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:05:50 server2 sshd\[28535\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:10:24 server2 sshd\[28889\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers Apr 7 21:10:24 server2 sshd\[28887\]: User root from 222.186.42.155 not allowed because not listed in AllowUsers	2020-04-08 02:12:48
106.13.48.122	attackbots	Apr 7 17:39:50 ns392434 sshd[27922]: Invalid user work from 106.13.48.122 port 11852 Apr 7 17:39:50 ns392434 sshd[27922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.122 Apr 7 17:39:50 ns392434 sshd[27922]: Invalid user work from 106.13.48.122 port 11852 Apr 7 17:39:52 ns392434 sshd[27922]: Failed password for invalid user work from 106.13.48.122 port 11852 ssh2 Apr 7 17:44:00 ns392434 sshd[28025]: Invalid user kiran from 106.13.48.122 port 50802 Apr 7 17:44:00 ns392434 sshd[28025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.122 Apr 7 17:44:00 ns392434 sshd[28025]: Invalid user kiran from 106.13.48.122 port 50802 Apr 7 17:44:02 ns392434 sshd[28025]: Failed password for invalid user kiran from 106.13.48.122 port 50802 ssh2 Apr 7 17:48:05 ns392434 sshd[28141]: Invalid user export from 106.13.48.122 port 32423	2020-04-08 02:16:00
143.204.190.71	attack	TCP Port: 443 invalid blocked zen-spamhaus also rbldns-ru Client xx.xx.6.14 (205)	2020-04-08 02:14:42
222.186.173.142	attackbots	Apr 8 01:56:08 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:11 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:15 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:15 bacztwo sshd[31936]: Failed keyboard-interactive/pam for root from 222.186.173.142 port 12938 ssh2 Apr 8 01:56:05 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:08 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:11 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:15 bacztwo sshd[31936]: error: PAM: Authentication failure for root from 222.186.173.142 Apr 8 01:56:15 bacztwo sshd[31936]: Failed keyboard-interactive/pam for root from 222.186.173.142 port 12938 ssh2 Apr 8 01:56:17 bacztwo sshd[31936]: error: PAM: Authent ...	2020-04-08 01:59:57
188.166.5.84	attack	Apr 7 15:24:57 haigwepa sshd[3263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 Apr 7 15:25:00 haigwepa sshd[3263]: Failed password for invalid user hadoop from 188.166.5.84 port 57460 ssh2 ...	2020-04-08 01:52:47
128.199.170.33	attackspambots	3x Failed Password	2020-04-08 01:55:59
134.209.250.204	attackspambots	Apr 7 19:41:12 h2779839 sshd[17064]: Invalid user gitolite from 134.209.250.204 port 44498 Apr 7 19:41:12 h2779839 sshd[17064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.250.204 Apr 7 19:41:12 h2779839 sshd[17064]: Invalid user gitolite from 134.209.250.204 port 44498 Apr 7 19:41:15 h2779839 sshd[17064]: Failed password for invalid user gitolite from 134.209.250.204 port 44498 ssh2 Apr 7 19:44:45 h2779839 sshd[17134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.250.204 user=root Apr 7 19:44:47 h2779839 sshd[17134]: Failed password for root from 134.209.250.204 port 54590 ssh2 Apr 7 19:48:11 h2779839 sshd[17167]: Invalid user tom from 134.209.250.204 port 36446 Apr 7 19:48:11 h2779839 sshd[17167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.250.204 Apr 7 19:48:11 h2779839 sshd[17167]: Invalid user tom from 134.209.250.204 ...	2020-04-08 01:59:14
162.62.29.51	attack	Apr 7 19:50:59 host sshd[10612]: Invalid user test from 162.62.29.51 port 41114 ...	2020-04-08 02:02:41
114.67.170.135	attack	(sshd) Failed SSH login from 114.67.170.135 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 7 16:34:10 andromeda sshd[25402]: Invalid user jaxson from 114.67.170.135 port 37312 Apr 7 16:34:12 andromeda sshd[25402]: Failed password for invalid user jaxson from 114.67.170.135 port 37312 ssh2 Apr 7 16:45:24 andromeda sshd[26201]: Did not receive identification string from 114.67.170.135 port 35267	2020-04-08 01:41:15
107.191.42.45	attackspam	[07/Apr/2020:14:47:23 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-08 02:15:00
179.222.178.234	attack	Draytek Vigor Remote Command Execution Vulnerability, PTR: b3deb2ea.virtua.com.br.	2020-04-08 02:01:15
118.98.121.194	attack	2020-04-07T17:08:34.588429upcloud.m0sh1x2.com sshd[7783]: Invalid user devuser from 118.98.121.194 port 47276	2020-04-08 02:23:42
36.92.132.98	attack	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: PTR record not found	2020-04-08 02:10:50
165.227.81.27	attack	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-08 02:02:09
185.98.114.69	attackbots	Apr 7 19:33:02 eventyay sshd[10569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.98.114.69 Apr 7 19:33:04 eventyay sshd[10569]: Failed password for invalid user user from 185.98.114.69 port 57018 ssh2 Apr 7 19:36:47 eventyay sshd[10659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.98.114.69 ...	2020-04-08 02:13:15

最近上报的IP列表

144.131.59.31	130.222.229.164	33.227.1.226	208.99.225.183
181.53.6.4	36.58.86.176	13.137.140.2	40.53.219.14
121.196.223.190	32.245.127.162	15.200.206.211	140.153.196.132
166.156.77.116	148.210.103.26	24.157.167.142	212.83.221.9
36.21.153.174	66.100.221.161	103.2.125.8	124.117.19.180