122.51.58.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangzhou Haizhiguang Communication Technology Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan detected on ports: 65530[TCP], 65530[TCP], 65530[TCP]	2019-11-25 14:26:13

相同子网IP讨论:

IP	类型	评论内容	时间
122.51.58.42	attackbotsspam	Aug 29 18:31:41 vps46666688 sshd[6225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 Aug 29 18:31:42 vps46666688 sshd[6225]: Failed password for invalid user stu1 from 122.51.58.42 port 38362 ssh2 ...	2020-08-30 05:55:18
122.51.58.221	attackspambots	Invalid user caixa from 122.51.58.221 port 35118	2020-08-21 13:26:37
122.51.58.42	attack	SSH Brute Force	2020-08-19 16:48:32
122.51.58.42	attackbots	prod6 ...	2020-08-11 18:28:26
122.51.58.42	attack	Jul 28 07:31:07 buvik sshd[8483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 Jul 28 07:31:10 buvik sshd[8483]: Failed password for invalid user huzuyi from 122.51.58.42 port 55740 ssh2 Jul 28 07:33:48 buvik sshd[8792]: Invalid user peng from 122.51.58.42 ...	2020-07-28 15:27:40
122.51.58.42	attackspambots	Jul 19 03:59:19 *** sshd[16562]: Invalid user oracle from 122.51.58.42	2020-07-19 12:12:51
122.51.58.221	attackspam	(sshd) Failed SSH login from 122.51.58.221 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 12 18:14:16 amsweb01 sshd[11696]: Invalid user pp from 122.51.58.221 port 42504 Jul 12 18:14:18 amsweb01 sshd[11696]: Failed password for invalid user pp from 122.51.58.221 port 42504 ssh2 Jul 12 18:20:12 amsweb01 sshd[12626]: Invalid user alex from 122.51.58.221 port 36772 Jul 12 18:20:14 amsweb01 sshd[12626]: Failed password for invalid user alex from 122.51.58.221 port 36772 ssh2 Jul 12 18:22:15 amsweb01 sshd[12951]: Invalid user fmu from 122.51.58.221 port 55290	2020-07-13 01:11:20
122.51.58.42	attackspam	2020-07-04T07:52:30.577325dmca.cloudsearch.cf sshd[3121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 user=root 2020-07-04T07:52:32.660508dmca.cloudsearch.cf sshd[3121]: Failed password for root from 122.51.58.42 port 57364 ssh2 2020-07-04T07:56:37.620264dmca.cloudsearch.cf sshd[3223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 user=root 2020-07-04T07:56:39.277046dmca.cloudsearch.cf sshd[3223]: Failed password for root from 122.51.58.42 port 45550 ssh2 2020-07-04T08:00:49.687851dmca.cloudsearch.cf sshd[3304]: Invalid user teste from 122.51.58.42 port 33734 2020-07-04T08:00:49.693200dmca.cloudsearch.cf sshd[3304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.42 2020-07-04T08:00:49.687851dmca.cloudsearch.cf sshd[3304]: Invalid user teste from 122.51.58.42 port 33734 2020-07-04T08:00:51.946802dmca.cloudsearch.cf sshd[3304 ...	2020-07-04 16:50:36
122.51.58.42	attack	$f2bV_matches	2020-06-29 12:23:57
122.51.58.42	attackbots	Fail2Ban Ban Triggered (2)	2020-06-27 04:45:02
122.51.58.221	attack	Jun 24 06:28:02 PorscheCustomer sshd[4299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 Jun 24 06:28:04 PorscheCustomer sshd[4299]: Failed password for invalid user kubernetes from 122.51.58.221 port 50682 ssh2 Jun 24 06:31:10 PorscheCustomer sshd[4458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 ...	2020-06-24 12:32:20
122.51.58.221	attackspambots	Jun 21 19:20:29 sachi sshd\[12446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 user=root Jun 21 19:20:31 sachi sshd\[12446\]: Failed password for root from 122.51.58.221 port 44112 ssh2 Jun 21 19:25:00 sachi sshd\[13077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 user=root Jun 21 19:25:01 sachi sshd\[13077\]: Failed password for root from 122.51.58.221 port 37164 ssh2 Jun 21 19:29:26 sachi sshd\[13564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 user=root	2020-06-22 15:20:46
122.51.58.221	attackspam	2020-06-18T16:59:00.564833abusebot-2.cloudsearch.cf sshd[21416]: Invalid user gaetan from 122.51.58.221 port 56834 2020-06-18T16:59:00.569331abusebot-2.cloudsearch.cf sshd[21416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 2020-06-18T16:59:00.564833abusebot-2.cloudsearch.cf sshd[21416]: Invalid user gaetan from 122.51.58.221 port 56834 2020-06-18T16:59:03.038610abusebot-2.cloudsearch.cf sshd[21416]: Failed password for invalid user gaetan from 122.51.58.221 port 56834 ssh2 2020-06-18T17:02:31.689754abusebot-2.cloudsearch.cf sshd[21524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.58.221 user=root 2020-06-18T17:02:33.125270abusebot-2.cloudsearch.cf sshd[21524]: Failed password for root from 122.51.58.221 port 37996 ssh2 2020-06-18T17:05:53.153682abusebot-2.cloudsearch.cf sshd[21530]: Invalid user server1 from 122.51.58.221 port 47380 ...	2020-06-19 03:00:26
122.51.58.221	attackspam	Jun 18 12:21:01 mout sshd[20987]: Invalid user gaojie from 122.51.58.221 port 38840	2020-06-18 18:49:07
122.51.58.42	attackbots	$f2bV_matches	2020-06-17 06:55:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.51.58.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41241
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.51.58.55.			IN	A

;; AUTHORITY SECTION:
.			184	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112401 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 25 14:26:09 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 55.58.51.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.58.51.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.173.215	attack	$f2bV_matches	2020-05-03 12:26:39
222.186.180.130	attack	May 3 06:10:38 markkoudstaal sshd[19096]: Failed password for root from 222.186.180.130 port 57525 ssh2 May 3 06:10:42 markkoudstaal sshd[19096]: Failed password for root from 222.186.180.130 port 57525 ssh2 May 3 06:10:45 markkoudstaal sshd[19096]: Failed password for root from 222.186.180.130 port 57525 ssh2	2020-05-03 12:14:52
31.210.210.57	attackbots	Port probing on unauthorized port 88	2020-05-03 12:20:45
106.246.250.202	attackspambots	2020-05-03T03:52:11.326767abusebot-6.cloudsearch.cf sshd[10168]: Invalid user syed from 106.246.250.202 port 49594 2020-05-03T03:52:11.335620abusebot-6.cloudsearch.cf sshd[10168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202 2020-05-03T03:52:11.326767abusebot-6.cloudsearch.cf sshd[10168]: Invalid user syed from 106.246.250.202 port 49594 2020-05-03T03:52:13.264204abusebot-6.cloudsearch.cf sshd[10168]: Failed password for invalid user syed from 106.246.250.202 port 49594 ssh2 2020-05-03T03:57:29.316260abusebot-6.cloudsearch.cf sshd[10750]: Invalid user test from 106.246.250.202 port 10262 2020-05-03T03:57:29.322892abusebot-6.cloudsearch.cf sshd[10750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202 2020-05-03T03:57:29.316260abusebot-6.cloudsearch.cf sshd[10750]: Invalid user test from 106.246.250.202 port 10262 2020-05-03T03:57:31.241313abusebot-6.cloudsearch.cf sshd[10750 ...	2020-05-03 12:01:21
222.186.42.137	attack	May 3 06:31:08 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 May 3 06:31:10 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 May 3 06:31:12 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 ...	2020-05-03 12:31:27
54.37.224.163	attackbotsspam	May 2 22:04:47 server1 sshd\[28291\]: Failed password for invalid user anything from 54.37.224.163 port 42820 ssh2 May 2 22:08:38 server1 sshd\[29494\]: Invalid user pablo from 54.37.224.163 May 2 22:08:38 server1 sshd\[29494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.224.163 May 2 22:08:40 server1 sshd\[29494\]: Failed password for invalid user pablo from 54.37.224.163 port 53884 ssh2 May 2 22:12:37 server1 sshd\[30903\]: Invalid user adrian from 54.37.224.163 ...	2020-05-03 12:25:16
104.248.92.124	attack	May 3 05:53:26 legacy sshd[3931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.92.124 May 3 05:53:27 legacy sshd[3931]: Failed password for invalid user navi from 104.248.92.124 port 52358 ssh2 May 3 05:57:16 legacy sshd[4103]: Failed password for root from 104.248.92.124 port 34294 ssh2 ...	2020-05-03 12:11:12
164.132.41.67	attackbots	May 3 05:49:04 server sshd[12032]: Failed password for invalid user guest from 164.132.41.67 port 43631 ssh2 May 3 05:52:48 server sshd[12187]: Failed password for invalid user lip from 164.132.41.67 port 48843 ssh2 May 3 05:56:39 server sshd[12385]: Failed password for root from 164.132.41.67 port 54065 ssh2	2020-05-03 12:38:45
77.75.151.8	attackbots	Port probing on unauthorized port 88	2020-05-03 12:12:03
91.108.155.43	attackspambots	Invalid user maneesh from 91.108.155.43 port 55384	2020-05-03 12:16:45
157.230.147.252	attackspam	157.230.147.252 - - [03/May/2020:06:12:56 +0200] "GET /wp-login.php HTTP/1.1" 200 5863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.147.252 - - [03/May/2020:06:12:57 +0200] "POST /wp-login.php HTTP/1.1" 200 6114 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.147.252 - - [03/May/2020:06:12:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-03 12:29:59
138.68.21.125	attackbots	3x Failed Password	2020-05-03 12:28:41
47.94.155.233	attack	47.94.155.233 - - [03/May/2020:05:57:11 +0200] "GET /wp-login.php HTTP/1.1" 200 6435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.94.155.233 - - [03/May/2020:05:57:20 +0200] "POST /wp-login.php HTTP/1.1" 200 6686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.94.155.233 - - [03/May/2020:05:57:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-03 12:06:39
197.39.132.135	attack	Brute forcing RDP port 3389	2020-05-03 12:24:10
110.49.142.46	attack	Unauthorized SSH login attempts	2020-05-03 12:26:14

最近上报的IP列表

49.204.227.245	220.80.7.209	16.170.223.82	35.205.100.92
68.179.63.177	2.187.251.25	56.98.210.133	213.91.237.97
198.46.81.40	3.2.161.192	136.129.86.129	48.255.105.223
144.165.154.130	44.126.102.103	164.189.115.12	23.81.111.2
42.204.150.188	106.7.57.212	108.0.161.242	4.17.10.87