122.51.5.69 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangzhou Haizhiguang Communication Technology Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Mar 31 02:31:48 webhost01 sshd[15722]: Failed password for root from 122.51.5.69 port 58872 ssh2 Mar 31 02:35:02 webhost01 sshd[15838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.5.69 ...	2020-03-31 05:54:42
attackbots	Feb 8 15:28:36 lnxmysql61 sshd[21684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.5.69	2020-02-09 00:58:47
attack	Unauthorized connection attempt detected from IP address 122.51.5.69 to port 2220 [J]	2020-02-05 08:35:02

类型

评论内容

时间

attack

Mar 31 02:31:48 webhost01 sshd[15722]: Failed password for root from 122.51.5.69 port 58872 ssh2
Mar 31 02:35:02 webhost01 sshd[15838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.5.69
...

2020-03-31 05:54:42

attackbots

Feb  8 15:28:36 lnxmysql61 sshd[21684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.5.69

2020-02-09 00:58:47

attack

Unauthorized connection attempt detected from IP address 122.51.5.69 to port 2220 [J]

2020-02-05 08:35:02

相同子网IP讨论:

IP	类型	评论内容	时间
122.51.51.244	attackbotsspam	Oct 14 02:16:28 host1 sshd[161437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.51.244 Oct 14 02:16:28 host1 sshd[161437]: Invalid user web from 122.51.51.244 port 40186 Oct 14 02:16:31 host1 sshd[161437]: Failed password for invalid user web from 122.51.51.244 port 40186 ssh2 Oct 14 02:20:52 host1 sshd[161819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.51.244 user=root Oct 14 02:20:54 host1 sshd[161819]: Failed password for root from 122.51.51.244 port 34066 ssh2 ...	2020-10-14 08:29:38
122.51.52.154	attackbotsspam	2020-10-13T09:28:11.409794afi-git.jinr.ru sshd[8762]: Failed password for invalid user cynthia from 122.51.52.154 port 45242 ssh2 2020-10-13T09:32:46.972909afi-git.jinr.ru sshd[10121]: Invalid user anita from 122.51.52.154 port 39950 2020-10-13T09:32:46.976115afi-git.jinr.ru sshd[10121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.52.154 2020-10-13T09:32:46.972909afi-git.jinr.ru sshd[10121]: Invalid user anita from 122.51.52.154 port 39950 2020-10-13T09:32:49.701416afi-git.jinr.ru sshd[10121]: Failed password for invalid user anita from 122.51.52.154 port 39950 ssh2 ...	2020-10-14 00:56:42
122.51.52.154	attackspam	2020-10-13T09:28:11.409794afi-git.jinr.ru sshd[8762]: Failed password for invalid user cynthia from 122.51.52.154 port 45242 ssh2 2020-10-13T09:32:46.972909afi-git.jinr.ru sshd[10121]: Invalid user anita from 122.51.52.154 port 39950 2020-10-13T09:32:46.976115afi-git.jinr.ru sshd[10121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.52.154 2020-10-13T09:32:46.972909afi-git.jinr.ru sshd[10121]: Invalid user anita from 122.51.52.154 port 39950 2020-10-13T09:32:49.701416afi-git.jinr.ru sshd[10121]: Failed password for invalid user anita from 122.51.52.154 port 39950 ssh2 ...	2020-10-13 16:07:14
122.51.52.154	attackbotsspam	2020-10-12T23:47:46.015202news0 sshd[31679]: Invalid user newsmagazine from 122.51.52.154 port 59580 2020-10-12T23:47:47.676094news0 sshd[31679]: Failed password for invalid user newsmagazine from 122.51.52.154 port 59580 ssh2 2020-10-12T23:50:33.214636news0 sshd[32145]: User root from 122.51.52.154 not allowed because not listed in AllowUsers ...	2020-10-13 08:42:19
122.51.51.244	attackspam	Oct 10 09:00:11 NPSTNNYC01T sshd[13910]: Failed password for root from 122.51.51.244 port 41014 ssh2 Oct 10 09:04:10 NPSTNNYC01T sshd[14133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.51.244 Oct 10 09:04:12 NPSTNNYC01T sshd[14133]: Failed password for invalid user deploy from 122.51.51.244 port 56290 ssh2 ...	2020-10-10 23:01:05
122.51.51.244	attackbotsspam	Bruteforce detected by fail2ban	2020-10-10 14:51:50
122.51.59.95	attackbots	Oct 8 21:27:33 host1 sshd[1602367]: Failed password for root from 122.51.59.95 port 41282 ssh2 Oct 8 21:31:51 host1 sshd[1602559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.95 user=root Oct 8 21:31:53 host1 sshd[1602559]: Failed password for root from 122.51.59.95 port 34508 ssh2 Oct 8 21:31:51 host1 sshd[1602559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.95 user=root Oct 8 21:31:53 host1 sshd[1602559]: Failed password for root from 122.51.59.95 port 34508 ssh2 ...	2020-10-09 04:41:23
122.51.56.205	attackbotsspam	$f2bV_matches	2020-10-09 01:39:45
122.51.59.95	attack	Oct 8 12:34:46 *** sshd[32594]: User root from 122.51.59.95 not allowed because not listed in AllowUsers	2020-10-08 20:51:26
122.51.56.205	attack	sshd: Failed password for .... from 122.51.56.205 port 49640 ssh2 (10 attempts)	2020-10-08 17:36:13
122.51.59.95	attack	Oct 8 10:50:46 itv-usvr-02 sshd[8136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.95 user=root Oct 8 10:55:10 itv-usvr-02 sshd[8330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.95 user=root Oct 8 10:59:26 itv-usvr-02 sshd[8488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.95 user=root	2020-10-08 12:48:11
122.51.59.95	attackspambots	$f2bV_matches	2020-10-08 08:08:27
122.51.57.14	attackbots	SSH brute force	2020-09-20 02:10:16
122.51.57.14	attackbots	SSH brute force	2020-09-19 18:03:07
122.51.55.171	attackspam	IP blocked	2020-09-17 18:58:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.51.5.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.51.5.69.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 08:34:59 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 69.5.51.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 69.5.51.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
184.82.205.127	attack	$f2bV_matches	2020-01-02 18:00:46
117.211.43.137	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2020-01-02 17:41:17
222.252.16.140	attackbots	Triggered by Fail2Ban at Vostok web server	2020-01-02 18:10:11
200.52.80.34	attackspambots	Jan 2 09:13:47 zeus sshd[32622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34 Jan 2 09:13:48 zeus sshd[32622]: Failed password for invalid user lisa from 200.52.80.34 port 52338 ssh2 Jan 2 09:17:52 zeus sshd[32757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34 Jan 2 09:17:54 zeus sshd[32757]: Failed password for invalid user mx from 200.52.80.34 port 35264 ssh2	2020-01-02 17:55:33
40.115.41.17	attackbots	Dec 29 23:39:18 cumulus sshd[17531]: Invalid user ondi from 40.115.41.17 port 45650 Dec 29 23:39:18 cumulus sshd[17531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.115.41.17 Dec 29 23:39:20 cumulus sshd[17531]: Failed password for invalid user ondi from 40.115.41.17 port 45650 ssh2 Dec 29 23:39:23 cumulus sshd[17531]: Received disconnect from 40.115.41.17 port 45650:11: Bye Bye [preauth] Dec 29 23:39:23 cumulus sshd[17531]: Disconnected from 40.115.41.17 port 45650 [preauth] Dec 29 23:55:58 cumulus sshd[18222]: Connection closed by 40.115.41.17 port 35652 [preauth] Dec 30 00:04:04 cumulus sshd[18481]: Connection closed by 40.115.41.17 port 51168 [preauth] Dec 30 00:12:31 cumulus sshd[18887]: Connection closed by 40.115.41.17 port 38352 [preauth] Dec 30 00:20:11 cumulus sshd[19156]: Connection closed by 40.115.41.17 port 53996 [preauth] Dec 30 00:29:07 cumulus sshd[19479]: Invalid user lundh from 40.115.41.17 port 41694 Dec........ -------------------------------	2020-01-02 17:52:01
59.90.145.188	attackspambots	1577946387 - 01/02/2020 07:26:27 Host: 59.90.145.188/59.90.145.188 Port: 445 TCP Blocked	2020-01-02 18:05:24
183.89.45.192	attack	Unauthorized connection attempt detected from IP address 183.89.45.192 to port 1433	2020-01-02 17:40:52
218.92.0.148	attackspambots	Jan 2 10:34:00 MK-Soft-VM7 sshd[6070]: Failed password for root from 218.92.0.148 port 6186 ssh2 Jan 2 10:34:05 MK-Soft-VM7 sshd[6070]: Failed password for root from 218.92.0.148 port 6186 ssh2 ...	2020-01-02 17:42:14
212.112.98.146	attackbotsspam	Jan 2 07:26:46 tuxlinux sshd[36715]: Invalid user yangmin from 212.112.98.146 port 8341 Jan 2 07:26:46 tuxlinux sshd[36715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.98.146 Jan 2 07:26:46 tuxlinux sshd[36715]: Invalid user yangmin from 212.112.98.146 port 8341 Jan 2 07:26:46 tuxlinux sshd[36715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.98.146 ...	2020-01-02 17:51:34
117.184.114.140	attackbots	$f2bV_matches	2020-01-02 17:54:41
59.72.112.21	attack	2020-01-02T07:26:22.0670971240 sshd\[11634\]: Invalid user ubnt from 59.72.112.21 port 51255 2020-01-02T07:26:22.0698821240 sshd\[11634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.112.21 2020-01-02T07:26:23.4124001240 sshd\[11634\]: Failed password for invalid user ubnt from 59.72.112.21 port 51255 ssh2 ...	2020-01-02 18:07:56
89.19.199.179	attack	[portscan] Port scan	2020-01-02 17:33:34
194.36.190.150	attack	Jan 2 10:31:50 silence02 sshd[26792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.36.190.150 Jan 2 10:31:52 silence02 sshd[26792]: Failed password for invalid user wwwrun from 194.36.190.150 port 39800 ssh2 Jan 2 10:33:35 silence02 sshd[26858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.36.190.150	2020-01-02 17:49:29
222.186.180.142	attackbots	Jan 2 09:41:08 *** sshd[13850]: User root from 222.186.180.142 not allowed because not listed in AllowUsers	2020-01-02 17:43:07
113.22.242.77	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-02 18:12:44

最近上报的IP列表

219.78.17.216	203.197.214.231	203.170.134.152	189.86.254.38
175.24.107.201	171.224.18.192	161.129.49.170	122.117.112.137
121.183.190.45	119.236.246.232	104.217.128.57	119.183.79.100
250.37.95.243	31.133.188.156	19.17.126.251	165.60.72.254
75.38.148.122	114.35.252.61	160.211.132.252	113.106.201.158