119.50.142.5 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.50.142.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41809
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.50.142.5.			IN	A

;; AUTHORITY SECTION:
.			298	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 03:43:33 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

5.142.50.119.in-addr.arpa domain name pointer 5.142.50.119.adsl-pool.jlccptt.net.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.142.50.119.in-addr.arpa	name = 5.142.50.119.adsl-pool.jlccptt.net.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
77.247.110.176	attack	\[2019-06-29 23:25:34\] NOTICE\[4808\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '"8000" \' failed for '77.247.110.176:5343' \(callid: 3928490572\) - Failed to authenticate \[2019-06-29 23:25:34\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-06-29T23:25:34.100+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="3928490572",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.110.176/5343",Challenge="1561843534/5b48900da33fd9cde4154c4dc059d06b",Response="a3b1d3e8beee135f801c18e160d7ee16",ExpectedResponse="" \[2019-06-29 23:25:34\] NOTICE\[9010\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '"8000" \' failed for '77.247.110.176:5343' \(callid: 2284815442\) - No matching endpoint found after 5 tries in 1.645 ms \[2019-06-29 23:25:34\] SECURITY\[3671\] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2019-06-	2019-06-30 05:32:05
139.59.35.148	attackspambots	Invalid user fake from 139.59.35.148 port 35620	2019-06-30 05:53:23
51.77.203.64	attackbots	2019-06-29T21:04:56.464219abusebot-4.cloudsearch.cf sshd\[22512\]: Invalid user lt from 51.77.203.64 port 42456	2019-06-30 05:45:12
188.11.67.165	attack	Automatic report - Web App Attack	2019-06-30 05:51:34
94.198.176.93	attack	FTP brute force ...	2019-06-30 05:58:57
181.126.99.7	attackspam	Port scan and direct access per IP instead of hostname	2019-06-30 05:39:21
178.128.107.61	attackbots	Invalid user himanshu from 178.128.107.61 port 40948	2019-06-30 05:57:08
51.77.222.140	attackspambots	Jun 29 21:59:18 srv-4 sshd\[28530\]: Invalid user node from 51.77.222.140 Jun 29 21:59:18 srv-4 sshd\[28530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.222.140 Jun 29 21:59:20 srv-4 sshd\[28530\]: Failed password for invalid user node from 51.77.222.140 port 53374 ssh2 ...	2019-06-30 06:03:32
54.36.221.51	attack	Automatic report generated by Wazuh	2019-06-30 05:46:51
66.70.145.172	attackspam	These are people / users who try to send programs for data capture (spy), see examples below, there are no limits: From rbnf-@ceprow.com.br Fri Jun 28 02:11:50 2019 Received: from elenin-45.reverseonweb.we.bs ([66.70.145.172]:40997) (envelope-from ) Subject: =?UTF-8?B?YmFuY29kb2NvbmhlY2ltZW50b0BiYW5jb2RvY29uaGVjaW1lbnRvLmNvbS5iciwgQ29uaGXDp2EgbyBQbGFubyBTbWFydFZpdm8gQ29ycG9yYXRpdm8gIEZhbGFyIElsaW1pdGFkbyBjb20gSW50ZXJuZXQgZGUgU29icmE=?= Message-ID: <8f63cdf7bd3e6959eaa5655d1946323d@8.galema.com.br> From: "Vivo Empresas - Parceiros" 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] ahref="https://8.galema.com.br/ame/link.php?M=12113923&N=2858&L=51&F=H">link	2019-06-30 05:32:22
171.244.49.72	attackbots	Automatic report - Web App Attack	2019-06-30 06:07:15
23.88.228.161	attackbots	Unauthorised access (Jun 29) SRC=23.88.228.161 LEN=40 TTL=242 ID=13130 TCP DPT=445 WINDOW=1024 SYN	2019-06-30 05:31:01
94.102.51.30	attackspam	19/6/29@15:01:22: FAIL: Alarm-Intrusion address from=94.102.51.30 ...	2019-06-30 05:26:19
185.234.217.42	attackbotsspam	185.234.217.42 - - [29/Jun/2019:21:48:55 +0200] "GET /wallet.dat HTTP/1.1" 403 3130 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 185.234.217.42 - - [29/Jun/2019:21:48:55 +0200] "GET /node/wallet.dat HTTP/1.1" 403 3130 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 185.234.217.42 - - [29/Jun/2019:21:48:55 +0200] "GET /wallet/wallet.dat HTTP/1.1" 403 3130 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 185.234.217.42 - - [29/Jun/2019:21:48:55 +0200] "GET /coin/wallet.dat HTTP/1.1" 403 3130 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 185.234.217.42 - - [29/Jun/2019:21:48:55 +0200] "GET /bitcoin/wallet.dat HTTP/1.1" 403 3130 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" ...	2019-06-30 05:36:03
79.125.192.222	attack	Jun 30 01:41:38 tanzim-HP-Z238-Microtower-Workstation sshd\[19775\]: Invalid user oracle from 79.125.192.222 Jun 30 01:41:38 tanzim-HP-Z238-Microtower-Workstation sshd\[19775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.125.192.222 Jun 30 01:41:40 tanzim-HP-Z238-Microtower-Workstation sshd\[19775\]: Failed password for invalid user oracle from 79.125.192.222 port 43126 ssh2 ...	2019-06-30 05:27:29

最近上报的IP列表

105.70.2.140	204.85.149.80	31.205.22.41	222.207.38.38
152.56.61.183	244.37.73.252	224.81.127.72	45.67.93.236
168.154.61.106	195.106.132.99	117.51.101.109	208.178.127.96
52.210.30.171	55.117.53.178	120.66.132.91	53.233.187.251
103.207.9.67	121.77.109.193	106.216.158.51	22.214.105.219