119.42.101.5 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): CAT Telecom Public Company Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	unauthorized connection attempt	2020-01-12 16:24:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.101.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16325
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.42.101.5.			IN	A

;; AUTHORITY SECTION:
.			333	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011200 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 12 16:24:30 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 5.101.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.101.42.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.72.14.132	attack	Jul 27 03:55:54 localhost sshd\[28804\]: Invalid user admin from 187.72.14.132 port 51017 Jul 27 03:55:54 localhost sshd\[28804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.14.132 Jul 27 03:55:56 localhost sshd\[28804\]: Failed password for invalid user admin from 187.72.14.132 port 51017 ssh2 ...	2020-07-27 13:05:26
210.2.136.211	attack	Unauthorised access (Jul 27) SRC=210.2.136.211 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=13334 TCP DPT=23 WINDOW=1256 SYN	2020-07-27 13:10:11
59.125.160.248	attackbots	Jul 27 05:51:58 hidden sshd[50683]: Failed password for invalid user laurie from 59.125.160.248 port 53247 ssh2 Jul 27 05:54:46 hidden sshd[57930]: Invalid user becker from 59.125.160.248 port 43723 Jul 27 05:54:46 hidden sshd[57930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.125.160.248 Jul 27 05:54:48 hidden sshd[57930]: Failed password for invalid user becker from 59.125.160.248 port 43723 ssh2 Jul 27 05:56:16 hidden sshd[61162]: Invalid user jelena from 59.125.160.248 port 55446	2020-07-27 12:44:44
222.186.42.137	attack	Unauthorized connection attempt detected from IP address 222.186.42.137 to port 22	2020-07-27 12:32:39
115.146.121.79	attackbots	Jul 26 22:10:42 server1 sshd\[2036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.121.79 user=mysql Jul 26 22:10:44 server1 sshd\[2036\]: Failed password for mysql from 115.146.121.79 port 43918 ssh2 Jul 26 22:15:41 server1 sshd\[3507\]: Invalid user user from 115.146.121.79 Jul 26 22:15:41 server1 sshd\[3507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.121.79 Jul 26 22:15:44 server1 sshd\[3507\]: Failed password for invalid user user from 115.146.121.79 port 56502 ssh2 ...	2020-07-27 12:44:32
222.186.169.192	attackbotsspam	Jul 27 00:25:31 NPSTNNYC01T sshd[28708]: Failed password for root from 222.186.169.192 port 55558 ssh2 Jul 27 00:25:44 NPSTNNYC01T sshd[28708]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 55558 ssh2 [preauth] Jul 27 00:25:50 NPSTNNYC01T sshd[28723]: Failed password for root from 222.186.169.192 port 62778 ssh2 ...	2020-07-27 12:33:46
38.95.167.16	attackbots	Invalid user shree from 38.95.167.16 port 39372	2020-07-27 13:02:57
61.177.172.102	attackbots	Jul 27 06:39:28 piServer sshd[8930]: Failed password for root from 61.177.172.102 port 45553 ssh2 Jul 27 06:39:32 piServer sshd[8930]: Failed password for root from 61.177.172.102 port 45553 ssh2 Jul 27 06:39:35 piServer sshd[8930]: Failed password for root from 61.177.172.102 port 45553 ssh2 ...	2020-07-27 12:42:17
49.235.244.115	attackbotsspam	Jul 27 06:41:20 vps sshd[26909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.244.115 Jul 27 06:41:21 vps sshd[26909]: Failed password for invalid user Hanna from 49.235.244.115 port 59008 ssh2 Jul 27 06:46:28 vps sshd[49725]: Invalid user ftpusr from 49.235.244.115 port 54642 Jul 27 06:46:28 vps sshd[49725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.244.115 Jul 27 06:46:30 vps sshd[49725]: Failed password for invalid user ftpusr from 49.235.244.115 port 54642 ssh2 ...	2020-07-27 12:51:11
2403:6200:8000:a8:98c9:b624:102a:56bf	attack	xmlrpc attack	2020-07-27 12:35:01
151.242.76.237	attackbots	(pop3d) Failed POP3 login from 151.242.76.237 (IR/Iran/151-242-76-237.shatel.ir): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 27 08:26:23 ir1 dovecot[3110802]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=151.242.76.237, lip=5.63.12.44, session=	2020-07-27 12:36:59
49.88.112.68	attack	Bruteforce detected by fail2ban	2020-07-27 12:52:03
167.172.32.130	attackbotsspam	167.172.32.130 - - [27/Jul/2020:08:37:42 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-07-27 12:48:29
209.59.182.84	attackspam	2020-07-27T06:57:11.194897sd-86998 sshd[18921]: Invalid user train from 209.59.182.84 port 44284 2020-07-27T06:57:11.200056sd-86998 sshd[18921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host2.serouslabs.com 2020-07-27T06:57:11.194897sd-86998 sshd[18921]: Invalid user train from 209.59.182.84 port 44284 2020-07-27T06:57:13.156861sd-86998 sshd[18921]: Failed password for invalid user train from 209.59.182.84 port 44284 ssh2 2020-07-27T07:00:58.846503sd-86998 sshd[19464]: Invalid user rkb from 209.59.182.84 port 46454 ...	2020-07-27 13:01:32
3.6.220.103	attackbots	3.6.220.103 has been banned for [WebApp Attack] ...	2020-07-27 12:43:41

最近上报的IP列表

134.160.4.130	95.210.2.89	14.243.229.138	86.108.11.50
85.44.49.241	62.86.190.255	47.139.55.62	46.118.23.202
185.2.102.139	143.255.229.5	91.139.119.132	1.172.52.29
136.56.52.204	79.173.193.93	65.34.64.236	59.152.190.135
58.153.191.185	45.34.79.108	5.44.93.64	79.202.188.135