42.159.205.12 - IPInfo

基本信息:

城市(city): Shanghai

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai Blue Cloud Technology Co. Ltd

主机名(hostname): unknown

机构(organization): Shanghai Blue Cloud Technology Co.,Ltd

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Invalid user administrador from 42.159.205.12 port 1280	2019-07-13 22:07:48
attackbots	Invalid user jc from 42.159.205.12 port 2944 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.205.12 Failed password for invalid user jc from 42.159.205.12 port 2944 ssh2 Invalid user robot from 42.159.205.12 port 2944 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.205.12	2019-07-11 12:41:10
attackspambots	Jul 9 23:17:50 sshgateway sshd\[30098\]: Invalid user tesla from 42.159.205.12 Jul 9 23:17:50 sshgateway sshd\[30098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.205.12 Jul 9 23:17:52 sshgateway sshd\[30098\]: Failed password for invalid user tesla from 42.159.205.12 port 2432 ssh2	2019-07-10 15:24:20
attackspambots	07.07.2019 14:13:53 SSH access blocked by firewall	2019-07-08 02:55:34
attack	Jul 4 15:03:06 vps65 sshd\[4142\]: Invalid user microsoft from 42.159.205.12 port 2816 Jul 4 15:03:06 vps65 sshd\[4142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.205.12 ...	2019-07-05 05:18:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.159.205.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61126
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.159.205.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 17 19:38:46 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 12.205.159.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 12.205.159.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.171.45.37	attackspambots	DATE:2019-10-19 05:58:27, IP:118.171.45.37, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-19 12:19:40
140.143.197.56	attackspambots	$f2bV_matches	2019-10-19 07:45:19
128.14.209.250	attackbots	" "	2019-10-19 07:48:54
167.71.3.163	attackspambots	Oct 19 03:51:29 ip-172-31-62-245 sshd\[24265\]: Invalid user testing from 167.71.3.163\ Oct 19 03:51:31 ip-172-31-62-245 sshd\[24265\]: Failed password for invalid user testing from 167.71.3.163 port 61118 ssh2\ Oct 19 03:55:01 ip-172-31-62-245 sshd\[24292\]: Failed password for root from 167.71.3.163 port 36395 ssh2\ Oct 19 03:58:21 ip-172-31-62-245 sshd\[24333\]: Invalid user johary from 167.71.3.163\ Oct 19 03:58:23 ip-172-31-62-245 sshd\[24333\]: Failed password for invalid user johary from 167.71.3.163 port 11680 ssh2\	2019-10-19 12:20:58
222.186.175.183	attackspambots	Oct 18 23:58:54 plusreed sshd[19467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Oct 18 23:58:56 plusreed sshd[19467]: Failed password for root from 222.186.175.183 port 56570 ssh2 ...	2019-10-19 12:03:40
185.209.0.12	attackbots	10/18/2019-23:56:48.166989 185.209.0.12 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-19 07:44:56
147.135.156.89	attackspam	Oct 18 17:53:59 php1 sshd\[28380\]: Invalid user client from 147.135.156.89 Oct 18 17:53:59 php1 sshd\[28380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip89.ip-147-135-156.eu Oct 18 17:54:01 php1 sshd\[28380\]: Failed password for invalid user client from 147.135.156.89 port 34752 ssh2 Oct 18 17:58:51 php1 sshd\[28925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip89.ip-147-135-156.eu user=sync Oct 18 17:58:54 php1 sshd\[28925\]: Failed password for sync from 147.135.156.89 port 53800 ssh2	2019-10-19 12:04:40
185.38.3.138	attack	Oct 18 17:55:00 auw2 sshd\[25371\]: Invalid user AB123123 from 185.38.3.138 Oct 18 17:55:00 auw2 sshd\[25371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pan0138.panoulu.net Oct 18 17:55:01 auw2 sshd\[25371\]: Failed password for invalid user AB123123 from 185.38.3.138 port 35918 ssh2 Oct 18 17:58:58 auw2 sshd\[25720\]: Invalid user sj3317 from 185.38.3.138 Oct 18 17:58:58 auw2 sshd\[25720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pan0138.panoulu.net	2019-10-19 12:01:33
103.21.148.51	attack	Automatic report - Banned IP Access	2019-10-19 07:39:32
167.114.230.252	attack	Oct 19 05:54:56 ns381471 sshd[20186]: Failed password for root from 167.114.230.252 port 55692 ssh2 Oct 19 05:58:30 ns381471 sshd[20307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.230.252 Oct 19 05:58:32 ns381471 sshd[20307]: Failed password for invalid user nagios from 167.114.230.252 port 46641 ssh2	2019-10-19 12:16:16
140.114.71.51	attackspambots	Oct 19 07:16:19 www sshd\[34619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.71.51 user=root Oct 19 07:16:21 www sshd\[34619\]: Failed password for root from 140.114.71.51 port 47518 ssh2 Oct 19 07:20:57 www sshd\[34660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.114.71.51 user=root ...	2019-10-19 12:21:24
210.221.220.68	attackbots	Oct 18 13:37:58 home sshd[30664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.221.220.68 user=root Oct 18 13:38:00 home sshd[30664]: Failed password for root from 210.221.220.68 port 52636 ssh2 Oct 18 13:45:10 home sshd[30719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.221.220.68 user=root Oct 18 13:45:11 home sshd[30719]: Failed password for root from 210.221.220.68 port 60209 ssh2 Oct 18 13:49:30 home sshd[30760]: Invalid user drive from 210.221.220.68 port 35143 Oct 18 13:49:30 home sshd[30760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.221.220.68 Oct 18 13:49:30 home sshd[30760]: Invalid user drive from 210.221.220.68 port 35143 Oct 18 13:49:31 home sshd[30760]: Failed password for invalid user drive from 210.221.220.68 port 35143 ssh2 Oct 18 13:53:48 home sshd[30780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=21	2019-10-19 07:40:48
113.173.101.78	attackbots	Oct 19 03:58:32 thevastnessof sshd[22118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.101.78 ...	2019-10-19 12:17:46
200.149.231.50	attackspambots	Oct 19 05:54:45 markkoudstaal sshd[21652]: Failed password for root from 200.149.231.50 port 51084 ssh2 Oct 19 06:00:50 markkoudstaal sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.149.231.50 Oct 19 06:00:52 markkoudstaal sshd[22200]: Failed password for invalid user user from 200.149.231.50 port 34354 ssh2	2019-10-19 12:14:03
106.75.17.91	attack	Oct 18 13:28:56 sachi sshd\[16790\]: Invalid user user01 from 106.75.17.91 Oct 18 13:28:56 sachi sshd\[16790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.91 Oct 18 13:28:57 sachi sshd\[16790\]: Failed password for invalid user user01 from 106.75.17.91 port 44674 ssh2 Oct 18 13:33:35 sachi sshd\[17156\]: Invalid user gitlab from 106.75.17.91 Oct 18 13:33:35 sachi sshd\[17156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.91	2019-10-19 07:42:58

最近上报的IP列表

200.111.120.82	171.241.34.18	34.228.209.8	104.130.154.88
116.68.127.9	179.52.109.181	87.106.179.172	154.123.40.123
69.164.203.77	161.202.5.149	90.94.178.48	37.204.32.9
82.240.175.73	50.29.136.234	202.83.57.86	54.36.149.41
69.30.213.202	182.61.43.47	188.131.242.237	197.87.182.110