117.51.142.192

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Xiaoju Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-06-21 13:50:17
attackbots	Failed password for root from 117.51.142.192 port 59358 ssh2	2020-06-14 21:30:18
attackbots	Jun 14 07:10:15 ns37 sshd[25435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-06-14 19:07:25
attackspam	Jun 12 14:05:49 mail sshd[30188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root Jun 12 14:05:50 mail sshd[30188]: Failed password for root from 117.51.142.192 port 48687 ssh2 ...	2020-06-12 23:39:40
attackspam	SSH Brute-Forcing (server2)	2020-06-04 18:41:37
attackbots	Invalid user stream from 117.51.142.192 port 40060	2020-05-31 19:45:19
attack	May 23 09:35:04 dhoomketu sshd[122209]: Invalid user gaop from 117.51.142.192 port 40656 May 23 09:35:04 dhoomketu sshd[122209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 May 23 09:35:04 dhoomketu sshd[122209]: Invalid user gaop from 117.51.142.192 port 40656 May 23 09:35:06 dhoomketu sshd[122209]: Failed password for invalid user gaop from 117.51.142.192 port 40656 ssh2 May 23 09:37:58 dhoomketu sshd[122258]: Invalid user quh from 117.51.142.192 port 54797 ...	2020-05-23 12:19:57
attack	prod11 ...	2020-05-20 05:00:20
attackspambots	Apr 20 13:31:39 sshgateway sshd\[15778\]: Invalid user ubuntu from 117.51.142.192 Apr 20 13:31:39 sshgateway sshd\[15778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Apr 20 13:31:41 sshgateway sshd\[15778\]: Failed password for invalid user ubuntu from 117.51.142.192 port 49724 ssh2	2020-04-21 01:54:18
attack	SSH Login Bruteforce	2020-04-07 20:28:25
attackbotsspam	Invalid user jboss from 117.51.142.192 port 44772	2020-04-02 08:33:15
attackbotsspam	$f2bV_matches	2020-03-23 06:11:02
attackbotsspam	2020-03-19T13:14:29.210245shield sshd\[14052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root 2020-03-19T13:14:31.094431shield sshd\[14052\]: Failed password for root from 117.51.142.192 port 37744 ssh2 2020-03-19T13:18:47.279556shield sshd\[15259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root 2020-03-19T13:18:48.924932shield sshd\[15259\]: Failed password for root from 117.51.142.192 port 53283 ssh2 2020-03-19T13:20:10.684500shield sshd\[15595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 user=root	2020-03-19 21:30:31
attack	Mar 18 14:34:13 ewelt sshd[16269]: Invalid user lijiang from 117.51.142.192 port 45139 Mar 18 14:34:13 ewelt sshd[16269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Mar 18 14:34:13 ewelt sshd[16269]: Invalid user lijiang from 117.51.142.192 port 45139 Mar 18 14:34:15 ewelt sshd[16269]: Failed password for invalid user lijiang from 117.51.142.192 port 45139 ssh2 ...	2020-03-19 05:32:53
attackbots	2020-03-09T03:42:58.827155abusebot-4.cloudsearch.cf sshd[29766]: Invalid user user from 117.51.142.192 port 34539 2020-03-09T03:42:58.833205abusebot-4.cloudsearch.cf sshd[29766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 2020-03-09T03:42:58.827155abusebot-4.cloudsearch.cf sshd[29766]: Invalid user user from 117.51.142.192 port 34539 2020-03-09T03:43:00.674964abusebot-4.cloudsearch.cf sshd[29766]: Failed password for invalid user user from 117.51.142.192 port 34539 ssh2 2020-03-09T03:48:12.538939abusebot-4.cloudsearch.cf sshd[30031]: Invalid user gmodserver from 117.51.142.192 port 34152 2020-03-09T03:48:12.544492abusebot-4.cloudsearch.cf sshd[30031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 2020-03-09T03:48:12.538939abusebot-4.cloudsearch.cf sshd[30031]: Invalid user gmodserver from 117.51.142.192 port 34152 2020-03-09T03:48:14.493433abusebot-4.cloudsearch.cf sshd[ ...	2020-03-09 16:33:42
attackbotsspam	frenzy	2020-02-13 20:00:28
attackspam	Feb 10 23:58:51 markkoudstaal sshd[3690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Feb 10 23:58:53 markkoudstaal sshd[3690]: Failed password for invalid user cxi from 117.51.142.192 port 60825 ssh2 Feb 10 23:59:58 markkoudstaal sshd[3888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-02-11 07:07:13
attack	Jan 31 12:16:19 game-panel sshd[21685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 31 12:16:21 game-panel sshd[21685]: Failed password for invalid user prasuci from 117.51.142.192 port 41908 ssh2 Jan 31 12:24:02 game-panel sshd[22065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192	2020-01-31 21:13:05
attack	Jan 23 02:06:53 www sshd\[140588\]: Invalid user ak from 117.51.142.192 Jan 23 02:06:53 www sshd\[140588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 23 02:06:55 www sshd\[140588\]: Failed password for invalid user ak from 117.51.142.192 port 58992 ssh2 ...	2020-01-23 09:07:02
attackspam	Unauthorized connection attempt detected from IP address 117.51.142.192 to port 2220 [J]	2020-01-22 22:04:11
attackspambots	Jan 18 19:40:58 server sshd\[23605\]: Invalid user jeroen from 117.51.142.192 Jan 18 19:40:58 server sshd\[23605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 Jan 18 19:40:59 server sshd\[23605\]: Failed password for invalid user jeroen from 117.51.142.192 port 46766 ssh2 Jan 19 01:05:32 server sshd\[7452\]: Invalid user jitendra from 117.51.142.192 Jan 19 01:05:32 server sshd\[7452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.192 ...	2020-01-19 08:28:09
attack	SSH Brute-Force reported by Fail2Ban	2020-01-12 05:01:16
attackspam	Jan 4 06:41:29 plex sshd[32001]: Invalid user sk from 117.51.142.192 port 53808	2020-01-04 13:56:47

相同子网IP讨论:

IP	类型	评论内容	时间
117.51.142.196	attackbotsspam	Apr 1 13:36:36 mail sshd[3377]: Invalid user xx from 117.51.142.196 Apr 1 13:36:36 mail sshd[3377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.196 Apr 1 13:36:36 mail sshd[3377]: Invalid user xx from 117.51.142.196 Apr 1 13:36:37 mail sshd[3377]: Failed password for invalid user xx from 117.51.142.196 port 39404 ssh2 ...	2020-04-01 20:32:15
117.51.142.196	attackspambots	Mar 12 04:53:25 [munged] sshd[32216]: Failed password for root from 117.51.142.196 port 36726 ssh2	2020-03-12 14:52:59
117.51.142.196	attack	Feb 12 21:20:07 vps46666688 sshd[12037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.51.142.196 Feb 12 21:20:09 vps46666688 sshd[12037]: Failed password for invalid user hummer from 117.51.142.196 port 40608 ssh2 ...	2020-02-13 08:42:22
117.51.142.196	attackbots	SSH brutforce	2020-02-12 15:03:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.51.142.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51250
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.51.142.192.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 13:56:43 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 192.142.51.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 192.142.51.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
125.82.183.19	attackbots	Telnet Server BruteForce Attack	2020-10-05 04:09:21
45.125.65.33	attack	RDP Brute-Force (Grieskirchen RZ2)	2020-10-05 03:56:01
82.148.19.60	attackbotsspam	Oct 4 19:17:20 marvibiene sshd[4981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.19.60 user=root Oct 4 19:17:22 marvibiene sshd[4981]: Failed password for root from 82.148.19.60 port 38202 ssh2 Oct 4 19:32:55 marvibiene sshd[5248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.19.60 user=root Oct 4 19:32:57 marvibiene sshd[5248]: Failed password for root from 82.148.19.60 port 49626 ssh2	2020-10-05 03:50:02
91.231.83.67	attackbots	Bruteforce detected by fail2ban	2020-10-05 03:51:22
190.151.5.4	attack	SMB Server BruteForce Attack	2020-10-05 04:17:53
211.80.102.189	attackbotsspam	$f2bV_matches	2020-10-05 04:10:25
185.202.1.104	attack	Repeated RDP login failures. Last user: Administrator	2020-10-05 04:01:58
213.108.134.121	attackbotsspam	Repeated RDP login failures. Last user: Test	2020-10-05 04:00:27
195.14.114.159	attackspambots	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: PTR record not found	2020-10-05 03:50:49
134.175.230.209	attackbots	Oct 4 21:18:29 itv-usvr-01 sshd[27701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.230.209 user=root Oct 4 21:18:31 itv-usvr-01 sshd[27701]: Failed password for root from 134.175.230.209 port 35062 ssh2 Oct 4 21:21:43 itv-usvr-01 sshd[27856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.230.209 user=root Oct 4 21:21:46 itv-usvr-01 sshd[27856]: Failed password for root from 134.175.230.209 port 37130 ssh2 Oct 4 21:23:30 itv-usvr-01 sshd[27933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.230.209 user=root Oct 4 21:23:32 itv-usvr-01 sshd[27933]: Failed password for root from 134.175.230.209 port 55906 ssh2	2020-10-05 04:16:29
52.251.39.67	attackspambots	\[Oct 5 06:34:55\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed for '52.251.39.67:5346' - Wrong password \[Oct 5 06:34:56\] NOTICE\[31025\] chan_sip.c: Registration from '"3" \' failed ...	2020-10-05 03:48:09
103.206.231.206	attackspambots	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: PTR record not found	2020-10-05 04:07:30
116.121.119.103	attackspambots	Oct 4 18:35:24 web-main sshd[1889149]: Failed password for root from 116.121.119.103 port 39596 ssh2 Oct 4 18:42:52 web-main sshd[1890132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.121.119.103 user=root Oct 4 18:42:54 web-main sshd[1890132]: Failed password for root from 116.121.119.103 port 39052 ssh2	2020-10-05 04:15:28
195.54.161.31	attack	Repeated RDP login failures. Last user: SERVER01	2020-10-05 03:56:49
181.199.61.233	attackspam	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: host-181-199-61-233.ecua.net.ec.	2020-10-05 04:05:30

最近上报的IP列表

208.85.239.88	107.255.50.172	205.216.29.196	100.238.120.209
110.253.30.223	43.143.110.4	219.240.16.61	54.13.228.21
245.188.110.242	106.53.70.159	220.127.213.86	97.231.7.91
178.247.207.44	152.25.4.52	88.146.92.111	84.27.71.120
138.41.166.49	204.146.246.66	113.164.246.58	75.127.213.69