124.115.49.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanxi (SN) Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorised access (Aug 27) SRC=124.115.49.42 LEN=40 TTL=48 ID=6913 TCP DPT=8080 WINDOW=34238 SYN	2019-08-28 09:04:59

相同子网IP讨论:

IP	类型	评论内容	时间
124.115.49.44	attackspambots	Jul 8 20:32:36 nginx sshd[40003]: error: maximum authentication attempts exceeded for root from 124.115.49.44 port 43880 ssh2 [preauth] Jul 8 20:32:36 nginx sshd[40003]: Disconnecting: Too many authentication failures [preauth]	2019-07-09 09:47:30

类型

评论内容

时间

124.115.49.44

attackspambots

Jul  8 20:32:36 nginx sshd[40003]: error: maximum authentication attempts exceeded for root from 124.115.49.44 port 43880 ssh2 [preauth]
Jul  8 20:32:36 nginx sshd[40003]: Disconnecting: Too many authentication failures [preauth]

2019-07-09 09:47:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.115.49.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18522
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.115.49.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082701 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 28 09:04:52 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.49.115.124.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 42.49.115.124.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.74.4.189	attackspam	Nov 6 08:56:28 v22018076622670303 sshd\[18973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.4.189 user=root Nov 6 08:56:30 v22018076622670303 sshd\[18973\]: Failed password for root from 185.74.4.189 port 53302 ssh2 Nov 6 09:00:37 v22018076622670303 sshd\[18983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.4.189 user=root ...	2019-11-06 16:45:21
185.117.120.26	attackspam	Telnetd brute force attack detected by fail2ban	2019-11-06 16:43:44
51.77.148.55	attackspam	Nov 5 19:32:26 srv2 sshd\[9119\]: Invalid user redirecte from 51.77.148.55 Nov 5 19:32:26 srv2 sshd\[9119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.148.55 Nov 5 19:32:27 srv2 sshd\[9119\]: Failed password for invalid user redirecte from 51.77.148.55 port 53116 ssh2 Nov 5 19:44:25 srv2 sshd\[9307\]: Invalid user samiam from 51.77.148.55 Nov 5 19:44:25 srv2 sshd\[9307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.148.55 Nov 5 19:44:27 srv2 sshd\[9307\]: Failed password for invalid user samiam from 51.77.148.55 port 55918 ssh2 Nov 5 19:56:28 srv2 sshd\[9454\]: Invalid user vcx from 51.77.148.55 Nov 5 19:56:28 srv2 sshd\[9454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.148.55 Nov 5 19:56:30 srv2 sshd\[9454\]: Failed password for invalid user vcx from 51.77.148.55 port 58722 ssh2 Nov 5 20:08:25 srv2 sshd\[9619\]: In ...	2019-11-06 16:37:28
37.139.21.75	attack	auto-add	2019-11-06 16:44:26
193.203.215.196	attack	11/06/2019-07:27:15.984463 193.203.215.196 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-06 17:08:13
51.68.126.45	attack	Nov 6 02:58:34 lanister sshd[12872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.126.45 user=root Nov 6 02:58:36 lanister sshd[12872]: Failed password for root from 51.68.126.45 port 7177 ssh2 Nov 6 03:04:26 lanister sshd[13042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.126.45 user=root Nov 6 03:04:29 lanister sshd[13042]: Failed password for root from 51.68.126.45 port 25912 ssh2 ...	2019-11-06 17:11:58
59.10.5.156	attackbots	Nov 6 06:55:18 localhost sshd\[14326\]: Invalid user pos from 59.10.5.156 port 49328 Nov 6 06:55:18 localhost sshd\[14326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156 Nov 6 06:55:19 localhost sshd\[14326\]: Failed password for invalid user pos from 59.10.5.156 port 49328 ssh2 ...	2019-11-06 17:04:03
106.75.148.95	attackspambots	v+ssh-bruteforce	2019-11-06 16:49:46
128.134.30.40	attack	Nov 6 08:54:18 sshd[4356]: Failed password for invalid user ltsp from 128.134.30.40 port 12279 ssh2	2019-11-06 17:02:54
91.134.173.103	attack	Nov 5 19:57:25 srv3 sshd\[7137\]: Invalid user temp from 91.134.173.103 Nov 5 19:57:25 srv3 sshd\[7137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.103 Nov 5 19:57:27 srv3 sshd\[7137\]: Failed password for invalid user temp from 91.134.173.103 port 38407 ssh2 Nov 5 23:12:07 srv3 sshd\[11091\]: Invalid user git from 91.134.173.103 Nov 5 23:12:07 srv3 sshd\[11091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.103 Nov 5 23:12:09 srv3 sshd\[11091\]: Failed password for invalid user git from 91.134.173.103 port 40680 ssh2 ...	2019-11-06 16:56:29
14.232.160.213	attackspambots	2019-11-06T08:30:21.458658abusebot-3.cloudsearch.cf sshd\[32188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 user=root	2019-11-06 16:37:54
106.12.82.70	attackbots	Nov 6 09:11:33 ns381471 sshd[16577]: Failed password for root from 106.12.82.70 port 52616 ssh2	2019-11-06 17:09:56
106.12.84.209	attack	Nov 5 19:28:00 srv2 sshd\[9072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.209 user=root Nov 5 19:28:03 srv2 sshd\[9072\]: Failed password for root from 106.12.84.209 port 56770 ssh2 Nov 5 19:32:34 srv2 sshd\[9130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.209 user=root Nov 5 19:46:05 srv2 sshd\[9333\]: Invalid user postgres from 106.12.84.209 Nov 5 19:46:05 srv2 sshd\[9333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.209 Nov 5 19:46:07 srv2 sshd\[9333\]: Failed password for invalid user postgres from 106.12.84.209 port 42486 ssh2 Nov 5 19:59:35 srv2 sshd\[9501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.209 user=root Nov 5 19:59:37 srv2 sshd\[9501\]: Failed password for root from 106.12.84.209 port 45892 ssh2 Nov 5 20:04:20 srv2 sshd\[95 ...	2019-11-06 16:52:52
37.59.51.51	attack	Nov 5 21:41:52 srv3 sshd\[9147\]: Invalid user alex from 37.59.51.51 Nov 5 21:41:52 srv3 sshd\[9147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.51.51 Nov 5 21:41:54 srv3 sshd\[9147\]: Failed password for invalid user alex from 37.59.51.51 port 40436 ssh2 Nov 6 00:06:37 srv3 sshd\[12072\]: Invalid user music from 37.59.51.51 Nov 6 00:06:38 srv3 sshd\[12072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.51.51 Nov 6 00:06:39 srv3 sshd\[12072\]: Failed password for invalid user music from 37.59.51.51 port 37997 ssh2 ...	2019-11-06 17:11:39
223.80.100.87	attack	Automatic report - Banned IP Access	2019-11-06 17:13:30

最近上报的IP列表

41.33.127.215	185.189.53.214	81.214.184.235	103.249.134.56
170.239.46.62	78.83.132.211	45.115.173.155	11.40.163.235
201.49.161.144	39.78.194.175	5.54.255.119	168.4.36.138
66.249.65.98	113.17.16.43	49.81.95.160	103.76.190.37
35.233.88.133	79.49.80.177	110.7.61.50	185.24.201.100