119.42.102.59 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
119.42.102.173	attack	119.42.102.173 - - [22/Apr/2020:05:48:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 119.42.102.173 - - [22/Apr/2020:05:48:51 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 119.42.102.173 - - [22/Apr/2020:05:48:54 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 119.42.102.173 - - [22/Apr/2020:05:48:57 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 119.42.102.173 - - [22/Apr/2020:05:48:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Window ...	2020-04-22 18:26:11

类型

评论内容

时间

119.42.102.173

attack

119.42.102.173 - - [22/Apr/2020:05:48:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"
119.42.102.173 - - [22/Apr/2020:05:48:51 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"
119.42.102.173 - - [22/Apr/2020:05:48:54 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"
119.42.102.173 - - [22/Apr/2020:05:48:57 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"
119.42.102.173 - - [22/Apr/2020:05:48:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Window
...

2020-04-22 18:26:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.102.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.102.59.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030900 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 14:15:09 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 59.102.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 59.102.42.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
197.60.176.182	attack	23/tcp [2020-09-30]1pkt	2020-10-02 04:05:23
221.15.224.86	attackspam	1433/tcp [2020-09-30]1pkt	2020-10-02 04:16:24
157.230.93.183	attackbots	Oct 1 20:01:14 email sshd\[27691\]: Invalid user user from 157.230.93.183 Oct 1 20:01:14 email sshd\[27691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.93.183 Oct 1 20:01:16 email sshd\[27691\]: Failed password for invalid user user from 157.230.93.183 port 40576 ssh2 Oct 1 20:04:43 email sshd\[28296\]: Invalid user mcadmin from 157.230.93.183 Oct 1 20:04:43 email sshd\[28296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.93.183 ...	2020-10-02 04:14:09
175.24.81.207	attack	Oct 2 02:48:48 itv-usvr-01 sshd[13039]: Invalid user shiny from 175.24.81.207 Oct 2 02:48:48 itv-usvr-01 sshd[13039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.81.207 Oct 2 02:48:48 itv-usvr-01 sshd[13039]: Invalid user shiny from 175.24.81.207 Oct 2 02:48:50 itv-usvr-01 sshd[13039]: Failed password for invalid user shiny from 175.24.81.207 port 50076 ssh2 Oct 2 02:53:59 itv-usvr-01 sshd[13229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.81.207 user=root Oct 2 02:54:00 itv-usvr-01 sshd[13229]: Failed password for root from 175.24.81.207 port 48102 ssh2	2020-10-02 04:11:14
154.16.202.104	attack	2020-10-01T20:39:02.935634centos sshd[22040]: Invalid user cloud_user from 154.16.202.104 port 59068 2020-10-01T20:39:04.976041centos sshd[22040]: Failed password for invalid user cloud_user from 154.16.202.104 port 59068 ssh2 2020-10-01T20:42:36.243507centos sshd[22235]: Invalid user sandeep from 154.16.202.104 port 39218 ...	2020-10-02 04:33:53
45.143.221.41	attack	[2020-10-01 15:48:47] NOTICE[1182] chan_sip.c: Registration from '"4002" ' failed for '45.143.221.41:6928' - Wrong password [2020-10-01 15:48:47] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-01T15:48:47.318-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4002",SessionID="0x7f22f801fc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.221.41/6928",Challenge="00caa98a",ReceivedChallenge="00caa98a",ReceivedHash="8d31b2d227f2a0ec99f2d3c4c97c1939" [2020-10-01 15:48:47] NOTICE[1182] chan_sip.c: Registration from '"4002" ' failed for '45.143.221.41:6928' - Wrong password [2020-10-01 15:48:47] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-01T15:48:47.572-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4002",SessionID="0x7f22f8089de8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45 ...	2020-10-02 04:26:02
190.207.172.55	attackspam	445/tcp 445/tcp [2020-09-30]2pkt	2020-10-02 04:36:01
123.6.5.104	attack	SSH login attempts.	2020-10-02 04:23:33
23.254.226.200	attack	TCP (SYN) 23.254.226.200:57626 -> port 8080, len 40	2020-10-02 04:30:08
181.41.196.138	attackbots	bad	2020-10-02 04:06:11
91.134.242.199	attack	Oct 1 22:13:56 ns382633 sshd\[23502\]: Invalid user contact from 91.134.242.199 port 33846 Oct 1 22:13:56 ns382633 sshd\[23502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199 Oct 1 22:13:58 ns382633 sshd\[23502\]: Failed password for invalid user contact from 91.134.242.199 port 33846 ssh2 Oct 1 22:18:37 ns382633 sshd\[24087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.242.199 user=root Oct 1 22:18:39 ns382633 sshd\[24087\]: Failed password for root from 91.134.242.199 port 42082 ssh2	2020-10-02 04:22:51
180.76.242.204	attackbotsspam	Oct 1 19:58:37 ip-172-31-42-142 sshd\[1327\]: Invalid user servidor from 180.76.242.204\ Oct 1 19:58:39 ip-172-31-42-142 sshd\[1327\]: Failed password for invalid user servidor from 180.76.242.204 port 50320 ssh2\ Oct 1 20:02:56 ip-172-31-42-142 sshd\[1368\]: Invalid user stefano from 180.76.242.204\ Oct 1 20:02:59 ip-172-31-42-142 sshd\[1368\]: Failed password for invalid user stefano from 180.76.242.204 port 54006 ssh2\ Oct 1 20:07:09 ip-172-31-42-142 sshd\[1422\]: Failed password for root from 180.76.242.204 port 57692 ssh2\	2020-10-02 04:08:04
2001:e68:5429:1857:f409:b616:e7be:c1c5	attack	WordPress wp-login brute force :: 2001:e68:5429:1857:f409:b616:e7be:c1c5 0.072 BYPASS [30/Sep/2020:20:41:27 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2577 "https://[censored_2]/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"	2020-10-02 04:29:51
49.233.56.9	attackbotsspam	leo_www	2020-10-02 04:06:26
104.224.183.154	attackbotsspam	2020-10-01T19:07:16.009226hostname sshd[3262]: Failed password for invalid user music from 104.224.183.154 port 59106 ssh2 ...	2020-10-02 04:19:32

最近上报的IP列表

119.42.102.56	119.42.102.73	119.42.102.94	119.42.102.98
119.42.103.110	119.42.103.126	119.42.103.13	119.42.103.138
119.42.103.152	119.42.103.16	21.1.230.16	119.42.103.161
119.42.103.163	119.42.103.173	9.95.125.67	119.42.103.193
119.42.103.204	119.42.103.233	119.42.103.235	119.42.103.243