121.42.52.27 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Banned IP Access	2019-11-27 15:57:02
attack	MYH,DEF GET /wp-login.php	2019-09-26 14:58:21
attack	Hit on /wp-login.php	2019-08-09 06:29:16
attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-21 05:16:06
attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-06-23 14:05:29

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.42.52.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10734
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.42.52.27.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 16:21:37 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

27.52.42.121.in-addr.arpa domain name pointer mx1.brassknuckless.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
27.52.42.121.in-addr.arpa	name = mx1.brassknuckless.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.148.144.253	attackbotsspam	Attack to wordpress xmlrpc	2019-07-17 13:57:49
37.59.110.165	attackspam	2019-07-17T11:21:01.873981enmeeting.mahidol.ac.th sshd\[5335\]: Invalid user team2 from 37.59.110.165 port 46906 2019-07-17T11:21:01.889357enmeeting.mahidol.ac.th sshd\[5335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.ip-37-59-110.eu 2019-07-17T11:21:04.296698enmeeting.mahidol.ac.th sshd\[5335\]: Failed password for invalid user team2 from 37.59.110.165 port 46906 ssh2 ...	2019-07-17 12:46:26
81.22.45.90	attackspam	16.07.2019 22:25:35 Connection to port 3390 blocked by firewall	2019-07-17 13:00:21
103.237.135.226	attack	Brute force SMTP login attempted. ...	2019-07-17 13:22:38
78.45.197.51	attack	2019-07-17T11:55:25.509866enmeeting.mahidol.ac.th sshd\[5704\]: Invalid user demo from 78.45.197.51 port 34090 2019-07-17T11:55:25.524473enmeeting.mahidol.ac.th sshd\[5704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-78-45-197-51.net.upcbroadband.cz 2019-07-17T11:55:27.978504enmeeting.mahidol.ac.th sshd\[5704\]: Failed password for invalid user demo from 78.45.197.51 port 34090 ssh2 ...	2019-07-17 13:47:04
89.159.141.31	attack	Invalid user test from 89.159.141.31 port 37610	2019-07-17 13:46:36
85.51.149.32	attackspam	85.51.149.32 - - [16/Jul/2019:03:21:10 +0500] "POST /App.php?_=1562673d243c2 HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 85.51.149.32 - - [16/Jul/2019:03:21:10 +0500] "GET /help.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0" 85.51.149.32 - - [16/Jul/2019:03:21:10 +0500] "GET /java.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0" 85.51.149.32 - - [16/Jul/2019:03:21:10 +0500] "GET /_query.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0" 85.51.149.32 - - [16/Jul/2019:03:21:10 +0500] "GET /test.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0" 85.51.149.32 - - [16/Jul/2019:03:21:11 +0500] "GET /db_cts.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0" 85.51.149.32 - - [16/Jul/2019:03	2019-07-17 12:44:04
141.98.81.37	attackspambots	Reported by AbuseIPDB proxy server.	2019-07-17 13:26:48
54.38.226.197	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-17 13:49:33
190.186.26.192	attackbotsspam	" "	2019-07-17 13:04:17
177.125.164.225	attackbots	Jul 17 01:38:04 vps200512 sshd\[22275\]: Invalid user admin from 177.125.164.225 Jul 17 01:38:04 vps200512 sshd\[22275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225 Jul 17 01:38:06 vps200512 sshd\[22275\]: Failed password for invalid user admin from 177.125.164.225 port 57608 ssh2 Jul 17 01:44:15 vps200512 sshd\[22449\]: Invalid user zc from 177.125.164.225 Jul 17 01:44:15 vps200512 sshd\[22449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.125.164.225	2019-07-17 13:56:56
36.89.209.22	attack	Invalid user sex from 36.89.209.22 port 44574	2019-07-17 13:50:54
51.75.36.33	attackspambots	Jul 11 15:33:48 server sshd\[82166\]: Invalid user black from 51.75.36.33 Jul 11 15:33:48 server sshd\[82166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.36.33 Jul 11 15:33:51 server sshd\[82166\]: Failed password for invalid user black from 51.75.36.33 port 60880 ssh2 ...	2019-07-17 12:51:35
123.128.23.222	attackspambots	TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-16 22:59:29]	2019-07-17 13:16:33
104.236.122.193	attack	2019-07-17T03:11:15.773696abusebot-7.cloudsearch.cf sshd\[13749\]: Invalid user 1111 from 104.236.122.193 port 52575	2019-07-17 13:44:51

最近上报的IP列表

113.162.54.110	14.160.26.57	185.129.148.189	16.252.134.134
177.185.26.11	117.48.206.156	192.82.66.172	177.47.247.34
118.70.171.3	188.162.43.196	177.75.65.18	185.134.99.66
200.252.7.238	180.183.245.217	49.248.67.110	59.48.244.148
180.245.255.27	84.22.2.26	212.250.152.68	164.77.201.218