122.51.80.104 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangzhou Haizhiguang Communication Technology Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH invalid-user multiple login attempts	2020-04-17 20:54:21

相同子网IP讨论:

IP	类型	评论内容	时间
122.51.80.81	attackspambots	Oct 13 15:12:52 onepixel sshd[2740060]: Failed password for invalid user gregory from 122.51.80.81 port 44814 ssh2 Oct 13 15:16:03 onepixel sshd[2740722]: Invalid user hirata from 122.51.80.81 port 50270 Oct 13 15:16:03 onepixel sshd[2740722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 Oct 13 15:16:03 onepixel sshd[2740722]: Invalid user hirata from 122.51.80.81 port 50270 Oct 13 15:16:05 onepixel sshd[2740722]: Failed password for invalid user hirata from 122.51.80.81 port 50270 ssh2	2020-10-14 04:07:43
122.51.80.81	attackbotsspam	Oct 13 12:56:28 rancher-0 sshd[383270]: Invalid user dj from 122.51.80.81 port 56162 ...	2020-10-13 19:30:26
122.51.80.81	attackbots	Oct 4 17:45:59 scw-gallant-ride sshd[12576]: Failed password for root from 122.51.80.81 port 36924 ssh2	2020-10-05 02:43:53
122.51.80.81	attackbots	2020-10-04T02:34:00.7875951495-001 sshd[34857]: Invalid user aaron from 122.51.80.81 port 42874 2020-10-04T02:34:02.7442591495-001 sshd[34857]: Failed password for invalid user aaron from 122.51.80.81 port 42874 ssh2 2020-10-04T02:37:51.1472731495-001 sshd[35057]: Invalid user mfg from 122.51.80.81 port 52090 2020-10-04T02:37:51.1542411495-001 sshd[35057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 2020-10-04T02:37:51.1472731495-001 sshd[35057]: Invalid user mfg from 122.51.80.81 port 52090 2020-10-04T02:37:53.1469581495-001 sshd[35057]: Failed password for invalid user mfg from 122.51.80.81 port 52090 ssh2 ...	2020-10-04 18:26:52
122.51.80.94	attack	SMB Server BruteForce Attack	2020-09-26 07:40:25
122.51.80.94	attackspam	SMB Server BruteForce Attack	2020-09-26 00:53:55
122.51.80.94	attack	SMB Server BruteForce Attack	2020-09-25 16:29:39
122.51.80.81	attackspam	Sep 5 08:43:47 rotator sshd\[7564\]: Invalid user precious from 122.51.80.81Sep 5 08:43:49 rotator sshd\[7564\]: Failed password for invalid user precious from 122.51.80.81 port 38582 ssh2Sep 5 08:48:13 rotator sshd\[8327\]: Invalid user www from 122.51.80.81Sep 5 08:48:15 rotator sshd\[8327\]: Failed password for invalid user www from 122.51.80.81 port 57910 ssh2Sep 5 08:52:42 rotator sshd\[9093\]: Invalid user wocloud from 122.51.80.81Sep 5 08:52:43 rotator sshd\[9093\]: Failed password for invalid user wocloud from 122.51.80.81 port 49002 ssh2 ...	2020-09-05 21:03:54
122.51.80.81	attackspambots	Sep 4 18:36:50 rush sshd[19946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 Sep 4 18:36:51 rush sshd[19946]: Failed password for invalid user user from 122.51.80.81 port 43052 ssh2 Sep 4 18:38:36 rush sshd[20019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 ...	2020-09-05 05:27:35
122.51.80.81	attack	Automatic Fail2ban report - Trying login SSH	2020-08-22 23:52:18
122.51.80.103	attackbotsspam	Aug 22 17:33:57 lunarastro sshd[17283]: Failed password for root from 122.51.80.103 port 56096 ssh2 Aug 22 17:46:18 lunarastro sshd[17732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.103 Aug 22 17:46:21 lunarastro sshd[17732]: Failed password for invalid user usuario from 122.51.80.103 port 57118 ssh2	2020-08-22 21:41:53
122.51.80.103	attack	Aug 17 18:39:21 pve1 sshd[21020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.103 Aug 17 18:39:23 pve1 sshd[21020]: Failed password for invalid user postgres from 122.51.80.103 port 42176 ssh2 ...	2020-08-18 01:34:07
122.51.80.81	attackspambots	$f2bV_matches	2020-08-10 08:09:29
122.51.80.81	attack	" "	2020-08-09 16:54:12
122.51.80.81	attackspam	Jul 31 22:31:13 eventyay sshd[20790]: Failed password for root from 122.51.80.81 port 39324 ssh2 Jul 31 22:32:34 eventyay sshd[20855]: Failed password for root from 122.51.80.81 port 53892 ssh2 ...	2020-08-01 04:59:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.51.80.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5515
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.51.80.104.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041701 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 20:54:16 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 104.80.51.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.80.51.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
152.67.67.89	attackspambots	(sshd) Failed SSH login from 152.67.67.89 (CH/Switzerland/Zurich/Zurich/-/[AS31898 Oracle Corporation]): 1 in the last 3600 secs	2020-01-07 05:02:01
202.98.38.149	attackspam	Unauthorized connection attempt detected from IP address 202.98.38.149 to port 1433 [T]	2020-01-07 04:51:38
113.70.230.12	attackbots	Unauthorized connection attempt detected from IP address 113.70.230.12 to port 23 [T]	2020-01-07 04:35:04
222.137.8.166	attackspam	Unauthorized connection attempt detected from IP address 222.137.8.166 to port 2323 [J]	2020-01-07 04:49:13
183.89.246.117	attackbots	Jan 6 15:29:27 server sshd\[21236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.89.246.117 user=root Jan 6 15:29:29 server sshd\[21236\]: Failed password for root from 183.89.246.117 port 44490 ssh2 Jan 6 16:09:01 server sshd\[30105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.89.246.117 user=root Jan 6 16:09:02 server sshd\[30105\]: Failed password for root from 183.89.246.117 port 60168 ssh2 Jan 6 23:12:39 server sshd\[32517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.89.246.117 user=root ...	2020-01-07 04:26:10
222.186.175.155	attackbotsspam	Jan 6 15:59:48 plusreed sshd[26006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Jan 6 15:59:50 plusreed sshd[26006]: Failed password for root from 222.186.175.155 port 36752 ssh2 Jan 6 15:59:53 plusreed sshd[26006]: Failed password for root from 222.186.175.155 port 36752 ssh2 Jan 6 15:59:48 plusreed sshd[26006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Jan 6 15:59:50 plusreed sshd[26006]: Failed password for root from 222.186.175.155 port 36752 ssh2 Jan 6 15:59:53 plusreed sshd[26006]: Failed password for root from 222.186.175.155 port 36752 ssh2 ...	2020-01-07 05:01:45
139.99.45.201	attack	139.99.45.201 - - \[06/Jan/2020:21:54:07 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 139.99.45.201 - - \[06/Jan/2020:21:54:10 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 139.99.45.201 - - \[06/Jan/2020:21:54:11 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-01-07 04:55:06
106.75.3.52	attackbots	Unauthorized connection attempt detected from IP address 106.75.3.52 to port 8099 [J]	2020-01-07 04:36:51
60.220.226.102	attackspam	Unauthorized connection attempt detected from IP address 60.220.226.102 to port 1433 [T]	2020-01-07 04:39:00
81.23.118.162	attackspambots	Unauthorized connection attempt detected from IP address 81.23.118.162 to port 8080 [T]	2020-01-07 04:38:31
218.92.0.201	attackspam	Unauthorized connection attempt detected from IP address 218.92.0.201 to port 22 [T]	2020-01-07 04:23:37
154.85.38.58	attackspam	(sshd) Failed SSH login from 154.85.38.58 (US/United States/California/Los Angeles/-/[AS55967 Beijing Baidu Netcom Science and Technology Co., Ltd.]): 1 in the last 3600 secs	2020-01-07 04:57:53
118.243.106.178	attack	Unauthorized connection attempt detected from IP address 118.243.106.178 to port 23 [T]	2020-01-07 04:32:00
59.153.241.100	attackspam	Unauthorized connection attempt detected from IP address 59.153.241.100 to port 445 [T]	2020-01-07 04:39:40
115.53.124.11	attackbots	Unauthorized connection attempt detected from IP address 115.53.124.11 to port 23 [T]	2020-01-07 04:34:06

最近上报的IP列表

125.139.129.201	61.51.183.48	65.171.161.61	24.184.19.240
178.117.107.48	34.98.255.198	175.94.125.5	210.67.190.164
115.229.45.83	76.173.226.25	246.194.9.53	206.203.52.243
92.244.83.39	123.194.162.100	14.12.68.43	164.45.126.136
241.11.138.252	200.41.123.59	15.96.221.200	150.109.127.191