94.52.205.241 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): SC Nextgen Communications SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2020-05-27 05:52:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.52.205.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21910
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.52.205.241.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052602 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 27 05:52:01 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

241.205.52.94.in-addr.arpa domain name pointer 94-52-205-241.next-gen.ro.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
241.205.52.94.in-addr.arpa	name = 94-52-205-241.next-gen.ro.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.68.131.23	attackbots	37215/tcp 37215/tcp [2020-06-23/24]2pkt	2020-06-25 06:32:51
222.186.175.150	attack	2020-06-24T23:53:23.011532vps751288.ovh.net sshd\[23078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root 2020-06-24T23:53:25.595770vps751288.ovh.net sshd\[23078\]: Failed password for root from 222.186.175.150 port 65312 ssh2 2020-06-24T23:53:28.526123vps751288.ovh.net sshd\[23078\]: Failed password for root from 222.186.175.150 port 65312 ssh2 2020-06-24T23:53:31.539192vps751288.ovh.net sshd\[23078\]: Failed password for root from 222.186.175.150 port 65312 ssh2 2020-06-24T23:53:34.293691vps751288.ovh.net sshd\[23078\]: Failed password for root from 222.186.175.150 port 65312 ssh2	2020-06-25 06:03:59
103.104.119.66	attackbots	Invalid user bbq from 103.104.119.66 port 47270	2020-06-25 06:05:32
51.178.138.1	attack	2020-06-24T23:48:10.731036vps773228.ovh.net sshd[10497]: Failed password for invalid user sysadmin from 51.178.138.1 port 56422 ssh2 2020-06-24T23:51:43.950926vps773228.ovh.net sshd[10535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-fa71e64b.vps.ovh.net user=root 2020-06-24T23:51:45.481607vps773228.ovh.net sshd[10535]: Failed password for root from 51.178.138.1 port 56664 ssh2 2020-06-24T23:55:27.011910vps773228.ovh.net sshd[10620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-fa71e64b.vps.ovh.net user=root 2020-06-24T23:55:28.628113vps773228.ovh.net sshd[10620]: Failed password for root from 51.178.138.1 port 56922 ssh2 ...	2020-06-25 06:02:06
114.67.241.174	attackbots	2020-06-24T22:36:14.278632 sshd[22159]: Invalid user twintown from 114.67.241.174 port 6028 2020-06-24T22:36:14.292785 sshd[22159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.241.174 2020-06-24T22:36:14.278632 sshd[22159]: Invalid user twintown from 114.67.241.174 port 6028 2020-06-24T22:36:16.060030 sshd[22159]: Failed password for invalid user twintown from 114.67.241.174 port 6028 ssh2 ...	2020-06-25 06:09:25
46.38.150.37	attack	Jun 24 22:47:07 blackbee postfix/smtpd\[22978\]: warning: unknown\[46.38.150.37\]: SASL LOGIN authentication failed: authentication failure Jun 24 22:48:00 blackbee postfix/smtpd\[23005\]: warning: unknown\[46.38.150.37\]: SASL LOGIN authentication failed: authentication failure Jun 24 22:48:51 blackbee postfix/smtpd\[22978\]: warning: unknown\[46.38.150.37\]: SASL LOGIN authentication failed: authentication failure Jun 24 22:49:46 blackbee postfix/smtpd\[23005\]: warning: unknown\[46.38.150.37\]: SASL LOGIN authentication failed: authentication failure Jun 24 22:50:39 blackbee postfix/smtpd\[23005\]: warning: unknown\[46.38.150.37\]: SASL LOGIN authentication failed: authentication failure ...	2020-06-25 05:59:02
114.47.96.154	attackbotsspam	2323/tcp 2323/tcp [2020-06-22/24]2pkt	2020-06-25 06:07:56
149.202.56.228	attackspambots	SSH Invalid Login	2020-06-25 06:31:49
218.92.0.250	attackspambots	Jun 25 00:20:47 sshgateway sshd\[11213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.250 user=root Jun 25 00:20:48 sshgateway sshd\[11213\]: Failed password for root from 218.92.0.250 port 47919 ssh2 Jun 25 00:21:01 sshgateway sshd\[11213\]: error: maximum authentication attempts exceeded for root from 218.92.0.250 port 47919 ssh2 \[preauth\]	2020-06-25 06:22:06
77.42.88.180	attackspam	37215/tcp 37215/tcp [2020-06-22/23]2pkt	2020-06-25 06:17:03
51.77.148.7	attack	2020-06-24T21:43:14+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-25 05:55:22
119.28.152.128	attackspam	Unauthorized connection attempt detected from IP address 119.28.152.128 to port 7144	2020-06-25 06:03:25
79.114.51.53	attack	20 attempts against mh-ssh on flow	2020-06-25 06:25:42
142.93.66.165	attackbotsspam	142.93.66.165 - - [24/Jun/2020:21:36:24 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [24/Jun/2020:21:36:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [24/Jun/2020:21:36:28 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-25 05:54:44
91.192.10.130	attack	37215/tcp 37215/tcp [2020-06-21/24]2pkt	2020-06-25 06:14:09

最近上报的IP列表

183.49.198.87	223.101.142.93	118.159.142.190	86.84.3.113
20.50.245.143	14.0.86.0	62.171.166.144	10.243.4.187
106.181.101.45	8.70.11.68	101.115.236.169	91.16.90.203
146.68.236.57	13.51.227.111	81.60.88.26	131.68.31.77
51.178.169.200	181.139.74.85	90.33.166.43	103.239.6.198