122.51.204.51 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangzhou Haizhiguang Communication Technology Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Sep 11 07:27:30 mellenthin sshd[5138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Sep 11 07:27:32 mellenthin sshd[5138]: Failed password for invalid user root from 122.51.204.51 port 49964 ssh2	2020-09-12 03:27:06
attackbots	Sep 11 07:27:30 mellenthin sshd[5138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Sep 11 07:27:32 mellenthin sshd[5138]: Failed password for invalid user root from 122.51.204.51 port 49964 ssh2	2020-09-11 19:29:36
attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-09-01 02:19:11
attackbots	SSH invalid-user multiple login try	2020-08-09 13:08:41
attackbotsspam	Aug 8 06:59:35 lukav-desktop sshd\[25687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Aug 8 06:59:37 lukav-desktop sshd\[25687\]: Failed password for root from 122.51.204.51 port 54284 ssh2 Aug 8 07:04:26 lukav-desktop sshd\[4435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Aug 8 07:04:29 lukav-desktop sshd\[4435\]: Failed password for root from 122.51.204.51 port 57112 ssh2 Aug 8 07:09:05 lukav-desktop sshd\[19911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root	2020-08-08 12:13:19
attack	Aug 7 23:18:19 Ubuntu-1404-trusty-64-minimal sshd\[547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Aug 7 23:18:21 Ubuntu-1404-trusty-64-minimal sshd\[547\]: Failed password for root from 122.51.204.51 port 49770 ssh2 Aug 7 23:27:41 Ubuntu-1404-trusty-64-minimal sshd\[6347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root Aug 7 23:27:43 Ubuntu-1404-trusty-64-minimal sshd\[6347\]: Failed password for root from 122.51.204.51 port 38928 ssh2 Aug 7 23:30:38 Ubuntu-1404-trusty-64-minimal sshd\[11458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root	2020-08-08 06:42:17
attack	2020-08-06T21:23:56.788522amanda2.illicoweb.com sshd\[40482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root 2020-08-06T21:23:58.276295amanda2.illicoweb.com sshd\[40482\]: Failed password for root from 122.51.204.51 port 58122 ssh2 2020-08-06T21:31:52.177924amanda2.illicoweb.com sshd\[42588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root 2020-08-06T21:31:54.011943amanda2.illicoweb.com sshd\[42588\]: Failed password for root from 122.51.204.51 port 46492 ssh2 2020-08-06T21:33:53.684395amanda2.illicoweb.com sshd\[43173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 user=root ...	2020-08-07 04:23:56
attack	2020-07-29T12:28:02.651426sd-86998 sshd[34891]: Invalid user huanglu from 122.51.204.51 port 54494 2020-07-29T12:28:02.654933sd-86998 sshd[34891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 2020-07-29T12:28:02.651426sd-86998 sshd[34891]: Invalid user huanglu from 122.51.204.51 port 54494 2020-07-29T12:28:04.572397sd-86998 sshd[34891]: Failed password for invalid user huanglu from 122.51.204.51 port 54494 ssh2 2020-07-29T12:37:58.018783sd-86998 sshd[36117]: Invalid user zhangchunxu2 from 122.51.204.51 port 35148 ...	2020-07-29 19:40:19
attack	Jul 27 04:51:34 dignus sshd[5290]: Failed password for invalid user steven from 122.51.204.51 port 40910 ssh2 Jul 27 04:58:30 dignus sshd[6107]: Invalid user test4 from 122.51.204.51 port 51560 Jul 27 04:58:30 dignus sshd[6107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 Jul 27 04:58:32 dignus sshd[6107]: Failed password for invalid user test4 from 122.51.204.51 port 51560 ssh2 Jul 27 05:02:06 dignus sshd[6573]: Invalid user student from 122.51.204.51 port 34998 ...	2020-07-27 21:00:02
attackbots	SSH Brute Force	2020-07-24 19:10:38
attack	Jul 4 18:24:49 server sshd[1776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 Jul 4 18:24:50 server sshd[1776]: Failed password for invalid user yjl from 122.51.204.51 port 56942 ssh2 Jul 4 18:44:29 server sshd[2921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.51 Jul 4 18:44:30 server sshd[2921]: Failed password for invalid user isis from 122.51.204.51 port 52814 ssh2	2020-07-05 02:58:32
attack	$f2bV_matches	2020-06-30 15:35:17

相同子网IP讨论:

IP	类型	评论内容	时间
122.51.204.45	attackspam	Invalid user esbuser from 122.51.204.45 port 64508	2020-10-01 08:11:19
122.51.204.45	attack	Invalid user abning19 from 122.51.204.45 port 7038	2020-09-13 01:07:27
122.51.204.45	attackspambots	Sep 10 17:46:18 kim5 sshd[15262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 Sep 10 17:46:20 kim5 sshd[15262]: Failed password for invalid user webpop from 122.51.204.45 port 39484 ssh2 Sep 10 17:48:38 kim5 sshd[15335]: Failed password for root from 122.51.204.45 port 3082 ssh2 ...	2020-09-11 01:18:20
122.51.204.45	attackspam	$f2bV_matches	2020-09-10 16:37:51
122.51.204.45	attackspam	(sshd) Failed SSH login from 122.51.204.45 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 19:35:34 srv sshd[15506]: Invalid user dan from 122.51.204.45 port 23606 Sep 9 19:35:36 srv sshd[15506]: Failed password for invalid user dan from 122.51.204.45 port 23606 ssh2 Sep 9 19:47:44 srv sshd[15763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 user=root Sep 9 19:47:46 srv sshd[15763]: Failed password for root from 122.51.204.45 port 11036 ssh2 Sep 9 19:51:02 srv sshd[15874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 user=root	2020-09-10 07:14:20
122.51.204.45	attackspambots	Time: Sun Sep 6 13:17:04 2020 +0200 IP: 122.51.204.45 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 6 13:04:06 mail-01 sshd[18302]: Invalid user keywan from 122.51.204.45 port 17868 Sep 6 13:04:08 mail-01 sshd[18302]: Failed password for invalid user keywan from 122.51.204.45 port 17868 ssh2 Sep 6 13:09:14 mail-01 sshd[18531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 user=root Sep 6 13:09:16 mail-01 sshd[18531]: Failed password for root from 122.51.204.45 port 39118 ssh2 Sep 6 13:17:00 mail-01 sshd[18843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 user=root	2020-09-07 03:29:30
122.51.204.45	attackbots	Sep 6 01:21:52 l03 sshd[6768]: Invalid user cacti from 122.51.204.45 port 42140 ...	2020-09-06 18:58:17
122.51.204.47	attackspam	Aug 31 15:31:42 journals sshd\[17687\]: Invalid user postgres from 122.51.204.47 Aug 31 15:31:42 journals sshd\[17687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.47 Aug 31 15:31:45 journals sshd\[17687\]: Failed password for invalid user postgres from 122.51.204.47 port 54570 ssh2 Aug 31 15:35:07 journals sshd\[17996\]: Invalid user liuhao from 122.51.204.47 Aug 31 15:35:07 journals sshd\[17996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.47 ...	2020-08-31 23:09:46
122.51.204.45	attackbots	Aug 27 22:35:36 instance-2 sshd[19691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 Aug 27 22:35:37 instance-2 sshd[19691]: Failed password for invalid user xls from 122.51.204.45 port 32910 ssh2 Aug 27 22:42:42 instance-2 sshd[19858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45	2020-08-28 06:53:43
122.51.204.45	attack	Aug 27 17:24:46 scw-tender-jepsen sshd[27492]: Failed password for root from 122.51.204.45 port 19624 ssh2 Aug 27 17:26:08 scw-tender-jepsen sshd[27528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45	2020-08-28 01:42:27
122.51.204.45	attackspambots	Aug 21 17:28:18 NPSTNNYC01T sshd[25108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 Aug 21 17:28:20 NPSTNNYC01T sshd[25108]: Failed password for invalid user guest3 from 122.51.204.45 port 39832 ssh2 Aug 21 17:32:27 NPSTNNYC01T sshd[25388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 ...	2020-08-22 05:49:37
122.51.204.45	attackbots	Aug 20 13:57:31 inter-technics sshd[25520]: Invalid user appadmin from 122.51.204.45 port 18172 Aug 20 13:57:31 inter-technics sshd[25520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 Aug 20 13:57:31 inter-technics sshd[25520]: Invalid user appadmin from 122.51.204.45 port 18172 Aug 20 13:57:33 inter-technics sshd[25520]: Failed password for invalid user appadmin from 122.51.204.45 port 18172 ssh2 Aug 20 14:01:03 inter-technics sshd[25712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.45 user=root Aug 20 14:01:06 inter-technics sshd[25712]: Failed password for root from 122.51.204.45 port 60942 ssh2 ...	2020-08-21 02:38:54
122.51.204.45	attackspam	Aug 14 05:28:12 icinga sshd[32447]: Failed password for root from 122.51.204.45 port 20368 ssh2 Aug 14 05:36:31 icinga sshd[45823]: Failed password for root from 122.51.204.45 port 25174 ssh2 ...	2020-08-14 12:51:25
122.51.204.47	attackspam	Aug 12 22:40:46 localhost sshd[3400914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.47 user=root Aug 12 22:40:49 localhost sshd[3400914]: Failed password for root from 122.51.204.47 port 59978 ssh2 ...	2020-08-13 00:00:41
122.51.204.47	attackspambots	Aug 10 10:58:22 vm0 sshd[13144]: Failed password for root from 122.51.204.47 port 36294 ssh2 ...	2020-08-10 19:06:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.51.204.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.51.204.51.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020063000 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 30 15:35:01 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 51.204.51.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 51.204.51.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
93.117.4.254	attackbots	DATE:2019-06-24_06:46:23, IP:93.117.4.254, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-06-24 18:17:54
67.205.133.171	attack	Jun 24 08:30:52 server2 sshd\[21478\]: User root from 67.205.133.171 not allowed because not listed in AllowUsers Jun 24 08:30:53 server2 sshd\[21480\]: Invalid user admin from 67.205.133.171 Jun 24 08:30:57 server2 sshd\[21482\]: User root from 67.205.133.171 not allowed because not listed in AllowUsers Jun 24 08:31:02 server2 sshd\[21488\]: Invalid user admin from 67.205.133.171 Jun 24 08:31:04 server2 sshd\[21511\]: Invalid user user from 67.205.133.171 Jun 24 08:31:06 server2 sshd\[21513\]: Invalid user user from 67.205.133.171	2019-06-24 19:04:19
198.1.76.160	attack	Jun 24 06:27:29 mxgate1 postfix/postscreen[17882]: CONNECT from [198.1.76.160]:40390 to [176.31.12.44]:25 Jun 24 06:27:29 mxgate1 postfix/dnsblog[18155]: addr 198.1.76.160 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 24 06:27:29 mxgate1 postfix/dnsblog[18158]: addr 198.1.76.160 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 24 06:27:29 mxgate1 postfix/dnsblog[18155]: addr 198.1.76.160 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 24 06:27:31 mxgate1 postfix/dnsblog[18157]: addr 198.1.76.160 listed by domain bl.spamcop.net as 127.0.0.2 Jun 24 06:27:35 mxgate1 postfix/postscreen[17882]: DNSBL rank 5 for [198.1.76.160]:40390 Jun x@x Jun 24 06:27:36 mxgate1 postfix/postscreen[17882]: HANGUP after 0.86 from [198.1.76.160]:40390 in tests after SMTP handshake Jun 24 06:27:36 mxgate1 postfix/postscreen[17882]: DISCONNECT [198.1.76.160]:40390 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.1.76.160	2019-06-24 19:22:27
120.38.158.103	attackspam	Lines containing failures of 120.38.158.103 Jun 24 06:29:27 ariston sshd[30574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.38.158.103 user=r.r Jun 24 06:29:28 ariston sshd[30574]: Failed password for r.r from 120.38.158.103 port 48006 ssh2 Jun 24 06:29:31 ariston sshd[30574]: Failed password for r.r from 120.38.158.103 port 48006 ssh2 Jun 24 06:29:34 ariston sshd[30574]: Failed password for r.r from 120.38.158.103 port 48006 ssh2 Jun 24 06:29:38 ariston sshd[30574]: Failed password for r.r from 120.38.158.103 port 48006 ssh2 Jun 24 06:29:41 ariston sshd[30574]: Failed password for r.r from 120.38.158.103 port 48006 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.38.158.103	2019-06-24 19:24:43
159.203.189.255	attackbots	Jun 24 11:22:22 mout sshd[10075]: Invalid user swsoft from 159.203.189.255 port 50208	2019-06-24 19:42:52
125.161.138.102	attackspam	20 attempts against mh-ssh on dawn.magehost.pro	2019-06-24 18:07:03
185.53.91.50	attackspambots	24.06.2019 07:10:26 Connection to port 5038 blocked by firewall	2019-06-24 19:42:17
222.188.98.43	attackbotsspam	20 attempts against mh-ssh on hill.magehost.pro	2019-06-24 19:45:08
191.53.222.162	attack	Brute force attempt	2019-06-24 19:41:34
191.53.195.18	attack	Brute force attempt	2019-06-24 19:39:27
69.55.54.42	attack	Jun 24 06:31:16 mxgate1 postfix/postscreen[17882]: CONNECT from [69.55.54.42]:41220 to [176.31.12.44]:25 Jun 24 06:31:16 mxgate1 postfix/dnsblog[18156]: addr 69.55.54.42 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 24 06:31:16 mxgate1 postfix/dnsblog[18158]: addr 69.55.54.42 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 24 06:31:16 mxgate1 postfix/dnsblog[18158]: addr 69.55.54.42 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 24 06:31:16 mxgate1 postfix/dnsblog[18157]: addr 69.55.54.42 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 24 06:31:16 mxgate1 postfix/dnsblog[18159]: addr 69.55.54.42 listed by domain bl.spamcop.net as 127.0.0.2 Jun 24 06:31:22 mxgate1 postfix/postscreen[17882]: DNSBL rank 5 for [69.55.54.42]:41220 Jun 24 06:31:23 mxgate1 postfix/postscreen[17882]: NOQUEUE: reject: RCPT from [69.55.54.42]:41220: 550 5.7.1 Service unavailable; client [69.55.54.42] blocked using zen.spamhaus.org; from=x@x helo= Jun 24 06:31:23 mxgate........ -------------------------------	2019-06-24 18:11:40
49.67.164.167	attack	2019-06-24T04:31:01.439895 X postfix/smtpd[48285]: warning: unknown[49.67.164.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-24T05:16:44.129243 X postfix/smtpd[55757]: warning: unknown[49.67.164.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-24T06:46:54.077919 X postfix/smtpd[1722]: warning: unknown[49.67.164.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-24 18:03:45
79.121.26.162	attackbotsspam	NAME : VIDANET CIDR : 79.121.0.0/18 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack Hungary - block certain countries :) IP: 79.121.26.162 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 18:48:22
191.53.199.150	attackspambots	failed_logins	2019-06-24 19:32:38
191.53.196.198	attack	Brute force attempt	2019-06-24 19:34:01

最近上报的IP列表

143.0.142.13	212.47.233.79	152.32.146.184	89.187.168.162
138.68.249.19	200.81.53.0	103.10.228.167	192.241.217.150
93.41.137.255	113.249.240.249	125.161.15.9	95.103.239.119
5.135.177.5	183.89.237.175	55.147.254.13	14.183.73.4
115.76.84.156	125.24.200.89	168.197.51.94	101.51.39.199