116.42.196.251

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): LG Powercomm

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	1581428338 - 02/11/2020 14:38:58 Host: 116.42.196.251/116.42.196.251 Port: 8080 TCP Blocked	2020-02-12 05:52:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.42.196.251
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.42.196.251.			IN	A

;; AUTHORITY SECTION:
.			467	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021103 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 05:52:32 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 251.196.42.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 251.196.42.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.3.214.45	attack	Sep 29 18:44:02 xtremcommunity sshd\[9868\]: Invalid user admin from 212.3.214.45 port 33082 Sep 29 18:44:02 xtremcommunity sshd\[9868\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.3.214.45 Sep 29 18:44:04 xtremcommunity sshd\[9868\]: Failed password for invalid user admin from 212.3.214.45 port 33082 ssh2 Sep 29 18:48:45 xtremcommunity sshd\[9983\]: Invalid user amssys from 212.3.214.45 port 45564 Sep 29 18:48:45 xtremcommunity sshd\[9983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.3.214.45 ...	2019-09-30 06:52:31
197.55.224.174	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/197.55.224.174/ EG - 1H : (71) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 197.55.224.174 CIDR : 197.55.224.0/19 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 3 3H - 8 6H - 18 12H - 29 24H - 53 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-30 06:42:50
119.84.8.43	attackspambots	Automated report - ssh fail2ban: Sep 29 22:47:47 authentication failure Sep 29 22:47:49 wrong password, user=test, port=45269, ssh2 Sep 29 22:50:59 authentication failure	2019-09-30 06:37:51
94.176.141.252	attack	(Sep 30) LEN=44 TTL=241 ID=47956 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=51611 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=39176 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=54217 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=61583 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=21947 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=53745 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=60438 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=15838 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=39372 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=52515 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=56223 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=23202 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=16544 DF TCP DPT=23 WINDOW=14600 SYN (Sep 29) LEN=44 TTL=241 ID=15289 DF TCP DPT=23 WINDOW=14600 ...	2019-09-30 06:47:20
138.197.179.111	attackspambots	Sep 29 23:51:17 eventyay sshd[31277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111 Sep 29 23:51:19 eventyay sshd[31277]: Failed password for invalid user NetLinx from 138.197.179.111 port 41920 ssh2 Sep 29 23:55:22 eventyay sshd[31386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111 ...	2019-09-30 06:33:52
148.163.149.102	attack	Brute force SMTP login attempts.	2019-09-30 06:55:45
124.205.103.66	attackbotsspam	Sep 30 00:52:11 MK-Soft-VM4 sshd[23035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.205.103.66 Sep 30 00:52:13 MK-Soft-VM4 sshd[23035]: Failed password for invalid user Damin from 124.205.103.66 port 45846 ssh2 ...	2019-09-30 06:55:10
36.6.57.212	attackspambots	SSH invalid-user multiple login try	2019-09-30 06:59:02
221.146.233.140	attack	Sep 29 18:17:05 TORMINT sshd\[4018\]: Invalid user 1 from 221.146.233.140 Sep 29 18:17:05 TORMINT sshd\[4018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.146.233.140 Sep 29 18:17:06 TORMINT sshd\[4018\]: Failed password for invalid user 1 from 221.146.233.140 port 48693 ssh2 ...	2019-09-30 06:32:02
49.88.112.111	attack	Sep 30 00:21:00 vps647732 sshd[20627]: Failed password for root from 49.88.112.111 port 58972 ssh2 Sep 30 00:21:02 vps647732 sshd[20627]: Failed password for root from 49.88.112.111 port 58972 ssh2 ...	2019-09-30 06:29:53
95.217.13.119	attack	Port scan on 18 port(s): 200 800 3333 4012 4014 5003 5801 7004 7777 8084 8106 8580 8778 8881 9999 34567 50030 51510	2019-09-30 07:06:24
5.239.68.243	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-30 06:45:14
189.254.175.195	attackbotsspam	firewall-block, port(s): 445/tcp	2019-09-30 06:59:31
123.31.31.68	attackbotsspam	Sep 29 23:52:14 jane sshd[30777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 Sep 29 23:52:15 jane sshd[30777]: Failed password for invalid user agata from 123.31.31.68 port 48490 ssh2 ...	2019-09-30 06:47:47
202.169.46.82	attack	Sep 29 18:31:06 xtremcommunity sshd\[9533\]: Invalid user lt from 202.169.46.82 port 48426 Sep 29 18:31:06 xtremcommunity sshd\[9533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.46.82 Sep 29 18:31:08 xtremcommunity sshd\[9533\]: Failed password for invalid user lt from 202.169.46.82 port 48426 ssh2 Sep 29 18:36:58 xtremcommunity sshd\[9630\]: Invalid user foobar from 202.169.46.82 port 40377 Sep 29 18:36:58 xtremcommunity sshd\[9630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.46.82 ...	2019-09-30 06:42:30

最近上报的IP列表

190.150.75.226	0.197.63.53	247.167.222.0	191.147.183.116
192.81.253.218	161.9.58.74	82.13.199.171	149.139.140.147
151.191.45.108	178.213.58.181	156.222.151.213	103.37.230.23
111.46.134.226	82.154.195.89	199.88.126.202	29.34.140.86
129.119.143.245	203.134.193.195	72.54.177.184	177.95.93.118