117.51.142.192

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Xiaoju Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-06-21 13:50:17
attackbots	Failed password for root from 117.51.142.192 port 59358 ssh2	2020-06-14 21:30:18
attackbots	Jun 14 07:10:15 ns37 sshd[25435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-06-14 19:07:25
attackspam	Jun 12 14:05:49 mail sshd[30188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root Jun 12 14:05:50 mail sshd[30188]: Failed password for root from 117.51.142.192 port 48687 ssh2 ...	2020-06-12 23:39:40
attackspam	SSH Brute-Forcing (server2)	2020-06-04 18:41:37
attackbots	Invalid user stream from 117.51.142.192 port 40060	2020-05-31 19:45:19
attack	May 23 09:35:04 dhoomketu sshd[122209]: Invalid user gaop from 117.51.142.192 port 40656 May 23 09:35:04 dhoomketu sshd[122209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 May 23 09:35:04 dhoomketu sshd[122209]: Invalid user gaop from 117.51.142.192 port 40656 May 23 09:35:06 dhoomketu sshd[122209]: Failed password for invalid user gaop from 117.51.142.192 port 40656 ssh2 May 23 09:37:58 dhoomketu sshd[122258]: Invalid user quh from 117.51.142.192 port 54797 ...	2020-05-23 12:19:57
attack	prod11 ...	2020-05-20 05:00:20
attackspambots	Apr 20 13:31:39 sshgateway sshd\[15778\]: Invalid user ubuntu from 117.51.142.192 Apr 20 13:31:39 sshgateway sshd\[15778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Apr 20 13:31:41 sshgateway sshd\[15778\]: Failed password for invalid user ubuntu from 117.51.142.192 port 49724 ssh2	2020-04-21 01:54:18
attack	SSH Login Bruteforce	2020-04-07 20:28:25
attackbotsspam	Invalid user jboss from 117.51.142.192 port 44772	2020-04-02 08:33:15
attackbotsspam	$f2bV_matches	2020-03-23 06:11:02
attackbotsspam	2020-03-19T13:14:29.210245shield sshd\[14052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root 2020-03-19T13:14:31.094431shield sshd\[14052\]: Failed password for root from 117.51.142.192 port 37744 ssh2 2020-03-19T13:18:47.279556shield sshd\[15259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root 2020-03-19T13:18:48.924932shield sshd\[15259\]: Failed password for root from 117.51.142.192 port 53283 ssh2 2020-03-19T13:20:10.684500shield sshd\[15595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root	2020-03-19 21:30:31
attack	Mar 18 14:34:13 ewelt sshd[16269]: Invalid user lijiang from 117.51.142.192 port 45139 Mar 18 14:34:13 ewelt sshd[16269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Mar 18 14:34:13 ewelt sshd[16269]: Invalid user lijiang from 117.51.142.192 port 45139 Mar 18 14:34:15 ewelt sshd[16269]: Failed password for invalid user lijiang from 117.51.142.192 port 45139 ssh2 ...	2020-03-19 05:32:53
attackbots	2020-03-09T03:42:58.827155abusebot-4.cloudsearch.cf sshd[29766]: Invalid user user from 117.51.142.192 port 34539 2020-03-09T03:42:58.833205abusebot-4.cloudsearch.cf sshd[29766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 2020-03-09T03:42:58.827155abusebot-4.cloudsearch.cf sshd[29766]: Invalid user user from 117.51.142.192 port 34539 2020-03-09T03:43:00.674964abusebot-4.cloudsearch.cf sshd[29766]: Failed password for invalid user user from 117.51.142.192 port 34539 ssh2 2020-03-09T03:48:12.538939abusebot-4.cloudsearch.cf sshd[30031]: Invalid user gmodserver from 117.51.142.192 port 34152 2020-03-09T03:48:12.544492abusebot-4.cloudsearch.cf sshd[30031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 2020-03-09T03:48:12.538939abusebot-4.cloudsearch.cf sshd[30031]: Invalid user gmodserver from 117.51.142.192 port 34152 2020-03-09T03:48:14.493433abusebot-4.cloudsearch.cf sshd[ ...	2020-03-09 16:33:42
attackbotsspam	frenzy	2020-02-13 20:00:28
attackspam	Feb 10 23:58:51 markkoudstaal sshd[3690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Feb 10 23:58:53 markkoudstaal sshd[3690]: Failed password for invalid user cxi from 117.51.142.192 port 60825 ssh2 Feb 10 23:59:58 markkoudstaal sshd[3888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-02-11 07:07:13
attack	Jan 31 12:16:19 game-panel sshd[21685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 31 12:16:21 game-panel sshd[21685]: Failed password for invalid user prasuci from 117.51.142.192 port 41908 ssh2 Jan 31 12:24:02 game-panel sshd[22065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-01-31 21:13:05
attack	Jan 23 02:06:53 www sshd\[140588\]: Invalid user ak from 117.51.142.192 Jan 23 02:06:53 www sshd\[140588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 23 02:06:55 www sshd\[140588\]: Failed password for invalid user ak from 117.51.142.192 port 58992 ssh2 ...	2020-01-23 09:07:02
attackspam	Unauthorized connection attempt detected from IP address 117.51.142.192 to port 2220 [J]	2020-01-22 22:04:11
attackspambots	Jan 18 19:40:58 server sshd\[23605\]: Invalid user jeroen from 117.51.142.192 Jan 18 19:40:58 server sshd\[23605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 18 19:40:59 server sshd\[23605\]: Failed password for invalid user jeroen from 117.51.142.192 port 46766 ssh2 Jan 19 01:05:32 server sshd\[7452\]: Invalid user jitendra from 117.51.142.192 Jan 19 01:05:32 server sshd\[7452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 ...	2020-01-19 08:28:09
attack	SSH Brute-Force reported by Fail2Ban	2020-01-12 05:01:16
attackspam	Jan 4 06:41:29 plex sshd[32001]: Invalid user sk from 117.51.142.192 port 53808	2020-01-04 13:56:47

相同子网IP讨论:

IP	类型	评论内容	时间
117.51.142.196	attackbotsspam	Apr 1 13:36:36 mail sshd[3377]: Invalid user xx from 117.51.142.196 Apr 1 13:36:36 mail sshd[3377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.196 Apr 1 13:36:36 mail sshd[3377]: Invalid user xx from 117.51.142.196 Apr 1 13:36:37 mail sshd[3377]: Failed password for invalid user xx from 117.51.142.196 port 39404 ssh2 ...	2020-04-01 20:32:15
117.51.142.196	attackspambots	Mar 12 04:53:25 [munged] sshd[32216]: Failed password for root from 117.51.142.196 port 36726 ssh2	2020-03-12 14:52:59
117.51.142.196	attack	Feb 12 21:20:07 vps46666688 sshd[12037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.196 Feb 12 21:20:09 vps46666688 sshd[12037]: Failed password for invalid user hummer from 117.51.142.196 port 40608 ssh2 ...	2020-02-13 08:42:22
117.51.142.196	attackbots	SSH brutforce	2020-02-12 15:03:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.51.142.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51250
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.51.142.192.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 13:56:43 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 192.142.51.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 192.142.51.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.190.88.188	attack	Jul 6 05:08:17 mail.srvfarm.net postfix/smtps/smtpd[1467450]: warning: 177-190-88-188.adsnet-telecom.net.br[177.190.88.188]: SASL PLAIN authentication failed: Jul 6 05:08:17 mail.srvfarm.net postfix/smtps/smtpd[1467450]: lost connection after AUTH from 177-190-88-188.adsnet-telecom.net.br[177.190.88.188] Jul 6 05:10:06 mail.srvfarm.net postfix/smtpd[1462959]: warning: 177-190-88-188.adsnet-telecom.net.br[177.190.88.188]: SASL PLAIN authentication failed: Jul 6 05:10:06 mail.srvfarm.net postfix/smtpd[1462959]: lost connection after AUTH from 177-190-88-188.adsnet-telecom.net.br[177.190.88.188] Jul 6 05:13:37 mail.srvfarm.net postfix/smtps/smtpd[1466718]: warning: 177-190-88-188.adsnet-telecom.net.br[177.190.88.188]: SASL PLAIN authentication failed:	2020-07-06 14:43:59
106.12.110.157	attackspam	Jul 5 23:49:49 NPSTNNYC01T sshd[23445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.157 Jul 5 23:49:51 NPSTNNYC01T sshd[23445]: Failed password for invalid user arkserver from 106.12.110.157 port 23501 ssh2 Jul 5 23:52:40 NPSTNNYC01T sshd[23616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.157 ...	2020-07-06 14:34:56
186.18.102.39	attackspambots	Attempts against non-existent wp-login	2020-07-06 15:07:24
222.186.169.194	attackspam	Jul 6 11:47:44 gw1 sshd[7883]: Failed password for root from 222.186.169.194 port 25020 ssh2 Jul 6 11:47:59 gw1 sshd[7883]: error: maximum authentication attempts exceeded for root from 222.186.169.194 port 25020 ssh2 [preauth] ...	2020-07-06 14:51:38
118.24.238.132	attack	Jul 6 06:25:28 buvik sshd[32631]: Invalid user debian from 118.24.238.132 Jul 6 06:25:28 buvik sshd[32631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.238.132 Jul 6 06:25:31 buvik sshd[32631]: Failed password for invalid user debian from 118.24.238.132 port 34748 ssh2 ...	2020-07-06 14:55:42
209.105.243.145	attackspam	Jul 6 12:15:06 dhoomketu sshd[1321372]: Invalid user ves from 209.105.243.145 port 37281 Jul 6 12:15:06 dhoomketu sshd[1321372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 Jul 6 12:15:06 dhoomketu sshd[1321372]: Invalid user ves from 209.105.243.145 port 37281 Jul 6 12:15:09 dhoomketu sshd[1321372]: Failed password for invalid user ves from 209.105.243.145 port 37281 ssh2 Jul 6 12:18:14 dhoomketu sshd[1321463]: Invalid user noreply from 209.105.243.145 port 35194 ...	2020-07-06 15:02:43
60.135.100.22	attack	1594007568 - 07/06/2020 10:52:48 Host: softbank060135100022.bbtec.net/60.135.100.22 Port: 23 TCP Blocked ...	2020-07-06 14:29:56
168.228.188.2	attackbots	TCP (SYN) 168.228.188.2:52054 -> port 8671, len 44	2020-07-06 15:00:23
159.203.30.208	attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-06 14:28:38
198.245.53.163	attack	Jul 6 08:52:53 * sshd[20081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.53.163 Jul 6 08:52:55 * sshd[20081]: Failed password for invalid user hadoop from 198.245.53.163 port 32862 ssh2	2020-07-06 14:53:11
222.186.15.246	attackspam	Jul 6 10:04:01 www4 sshd\[16654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root Jul 6 10:04:02 www4 sshd\[16654\]: Failed password for root from 222.186.15.246 port 49851 ssh2 Jul 6 10:06:05 www4 sshd\[17074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root ...	2020-07-06 15:06:51
106.13.9.153	attackbots	2020-07-06T06:30:51.769154shield sshd\[29962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 user=root 2020-07-06T06:30:53.399854shield sshd\[29962\]: Failed password for root from 106.13.9.153 port 33670 ssh2 2020-07-06T06:32:45.899080shield sshd\[30725\]: Invalid user howard from 106.13.9.153 port 54320 2020-07-06T06:32:45.902521shield sshd\[30725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.153 2020-07-06T06:32:47.849874shield sshd\[30725\]: Failed password for invalid user howard from 106.13.9.153 port 54320 ssh2	2020-07-06 14:36:25
118.167.74.87	attackspam	20/7/5@23:52:34: FAIL: Alarm-Network address from=118.167.74.87 ...	2020-07-06 14:42:57
61.43.242.88	attack	Jul 6 06:42:43 h2779839 sshd[25339]: Invalid user rabbitmq from 61.43.242.88 port 34142 Jul 6 06:42:43 h2779839 sshd[25339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.43.242.88 Jul 6 06:42:43 h2779839 sshd[25339]: Invalid user rabbitmq from 61.43.242.88 port 34142 Jul 6 06:42:46 h2779839 sshd[25339]: Failed password for invalid user rabbitmq from 61.43.242.88 port 34142 ssh2 Jul 6 06:44:42 h2779839 sshd[25345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.43.242.88 user=root Jul 6 06:44:44 h2779839 sshd[25345]: Failed password for root from 61.43.242.88 port 56798 ssh2 Jul 6 06:48:21 h2779839 sshd[25414]: Invalid user oracle from 61.43.242.88 port 51598 Jul 6 06:48:21 h2779839 sshd[25414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.43.242.88 Jul 6 06:48:21 h2779839 sshd[25414]: Invalid user oracle from 61.43.242.88 port 51598 Jul 6 06 ...	2020-07-06 14:59:55
151.80.176.191	attack	Jul 6 07:57:10 nextcloud sshd\[6585\]: Invalid user joomla from 151.80.176.191 Jul 6 07:57:10 nextcloud sshd\[6585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.176.191 Jul 6 07:57:12 nextcloud sshd\[6585\]: Failed password for invalid user joomla from 151.80.176.191 port 47106 ssh2	2020-07-06 14:29:20

最近上报的IP列表

208.85.239.88	107.255.50.172	205.216.29.196	100.238.120.209
110.253.30.223	43.143.110.4	219.240.16.61	54.13.228.21
245.188.110.242	106.53.70.159	220.127.213.86	97.231.7.91
178.247.207.44	152.25.4.52	88.146.92.111	84.27.71.120
138.41.166.49	204.146.246.66	113.164.246.58	75.127.213.69