42.2.25.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 42.2.25.169 to port 5555 [J]	2020-01-20 19:43:47

相同子网IP讨论:

IP	类型	评论内容	时间
42.2.252.42	attack	Unauthorized connection attempt detected from IP address 42.2.252.42 to port 5555 [J]	2020-02-06 05:43:35
42.2.252.141	attackspam	Unauthorized connection attempt detected from IP address 42.2.252.141 to port 5555 [J]	2020-01-28 06:08:38
42.2.255.137	attackspam	Unauthorized connection attempt detected from IP address 42.2.255.137 to port 5555 [J]	2020-01-19 06:12:30
42.2.254.27	attack	Unauthorized connection attempt detected from IP address 42.2.254.27 to port 5555 [J]	2020-01-06 20:52:04
42.2.255.242	attackbots	Unauthorized connection attempt detected from IP address 42.2.255.242 to port 5555 [J]	2020-01-06 19:23:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.25.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.25.169.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012000 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 20 19:43:43 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

169.25.2.42.in-addr.arpa domain name pointer 42-2-25-169.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
169.25.2.42.in-addr.arpa	name = 42-2-25-169.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.51.148.162	attackbots	Sep 17 17:02:32 scw-6657dc sshd[8133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.51.148.162 user=root Sep 17 17:02:32 scw-6657dc sshd[8133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.51.148.162 user=root Sep 17 17:02:34 scw-6657dc sshd[8133]: Failed password for root from 212.51.148.162 port 54265 ssh2 ...	2020-09-18 02:15:30
46.185.90.249	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 02:17:38
200.216.30.196	attackbots	Invalid user user from 200.216.30.196 port 6664	2020-09-18 01:58:26
212.70.149.68	attack	2020-09-17T19:24:08.230819web.dutchmasterserver.nl postfix/smtps/smtpd[1719043]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-17T19:26:07.169912web.dutchmasterserver.nl postfix/smtps/smtpd[1719043]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-17T19:28:06.317346web.dutchmasterserver.nl postfix/smtps/smtpd[1719043]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-17T19:30:06.170744web.dutchmasterserver.nl postfix/smtps/smtpd[1719043]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-17T19:32:06.149533web.dutchmasterserver.nl postfix/smtps/smtpd[1719043]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-18 01:44:34
45.176.214.8	attackbotsspam	Sep 16 18:24:35 mail.srvfarm.net postfix/smtpd[3600127]: warning: unknown[45.176.214.8]: SASL PLAIN authentication failed: Sep 16 18:24:36 mail.srvfarm.net postfix/smtpd[3600127]: lost connection after AUTH from unknown[45.176.214.8] Sep 16 18:26:31 mail.srvfarm.net postfix/smtpd[3600860]: warning: unknown[45.176.214.8]: SASL PLAIN authentication failed: Sep 16 18:26:32 mail.srvfarm.net postfix/smtpd[3600860]: lost connection after AUTH from unknown[45.176.214.8] Sep 16 18:26:57 mail.srvfarm.net postfix/smtpd[3585657]: warning: unknown[45.176.214.8]: SASL PLAIN authentication failed:	2020-09-18 01:54:59
201.218.138.131	attackspambots	Sep 16 18:01:24 mail.srvfarm.net postfix/smtpd[3580293]: warning: unknown[201.218.138.131]: SASL PLAIN authentication failed: Sep 16 18:01:25 mail.srvfarm.net postfix/smtpd[3580293]: lost connection after AUTH from unknown[201.218.138.131] Sep 16 18:05:04 mail.srvfarm.net postfix/smtps/smtpd[3580300]: warning: unknown[201.218.138.131]: SASL PLAIN authentication failed: Sep 16 18:05:05 mail.srvfarm.net postfix/smtps/smtpd[3580300]: lost connection after AUTH from unknown[201.218.138.131] Sep 16 18:10:33 mail.srvfarm.net postfix/smtpd[3585657]: warning: unknown[201.218.138.131]: SASL PLAIN authentication failed:	2020-09-18 01:45:31
191.240.112.249	attack	Sep 16 18:22:56 mail.srvfarm.net postfix/smtpd[3597748]: warning: unknown[191.240.112.249]: SASL PLAIN authentication failed: Sep 16 18:22:56 mail.srvfarm.net postfix/smtpd[3597748]: lost connection after AUTH from unknown[191.240.112.249] Sep 16 18:29:06 mail.srvfarm.net postfix/smtpd[3585658]: warning: unknown[191.240.112.249]: SASL PLAIN authentication failed: Sep 16 18:29:07 mail.srvfarm.net postfix/smtpd[3585658]: lost connection after AUTH from unknown[191.240.112.249] Sep 16 18:29:14 mail.srvfarm.net postfix/smtps/smtpd[3600011]: warning: unknown[191.240.112.249]: SASL PLAIN authentication failed:	2020-09-18 01:46:17
114.67.108.60	attack	$f2bV_matches	2020-09-18 02:13:50
31.210.253.81	attack	Unauthorized connection attempt from IP address 31.210.253.81 on Port 445(SMB)	2020-09-18 02:18:13
81.219.95.66	attack	Sep 16 18:02:08 mail.srvfarm.net postfix/smtpd[3583724]: warning: 81-219-95-66.ostmedia.pl[81.219.95.66]: SASL PLAIN authentication failed: Sep 16 18:02:08 mail.srvfarm.net postfix/smtpd[3583724]: lost connection after AUTH from 81-219-95-66.ostmedia.pl[81.219.95.66] Sep 16 18:11:32 mail.srvfarm.net postfix/smtpd[3583724]: warning: 81-219-95-66.ostmedia.pl[81.219.95.66]: SASL PLAIN authentication failed: Sep 16 18:11:32 mail.srvfarm.net postfix/smtpd[3583724]: lost connection after AUTH from 81-219-95-66.ostmedia.pl[81.219.95.66] Sep 16 18:11:48 mail.srvfarm.net postfix/smtpd[3584838]: warning: 81-219-95-66.ostmedia.pl[81.219.95.66]: SASL PLAIN authentication failed:	2020-09-18 01:53:42
201.149.13.58	attackbots	SSH Bruteforce attack	2020-09-18 02:27:29
203.86.30.17	attackspam	Sep 17 18:49:53 web01.agentur-b-2.de postfix/smtpd[1716190]: lost connection after STARTTLS from unknown[203.86.30.17] Sep 17 18:49:55 web01.agentur-b-2.de postfix/smtpd[1700610]: NOQUEUE: reject: RCPT from unknown[203.86.30.17]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 17 18:49:56 web01.agentur-b-2.de postfix/smtpd[1700610]: NOQUEUE: reject: RCPT from unknown[203.86.30.17]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 17 18:51:01 web01.agentur-b-2.de postfix/smtpd[1700610]: lost connection after STARTTLS from unknown[203.86.30.17] Sep 17 18:51:03 web01.agentur-b-2.de postfix/smtpd[1726621]: NOQUEUE: reject: RCPT from unknown[203.86.30.17]: 450 4.7.1 : Helo command rejected: Host not found; from=	2020-09-18 01:45:15
20.48.102.92	attackspam	Sep 16 20:39:33 web01.agentur-b-2.de postfix/smtps/smtpd[1031049]: warning: unknown[20.48.102.92]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:39:49 web01.agentur-b-2.de postfix/smtps/smtpd[1031049]: warning: unknown[20.48.102.92]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:41:05 web01.agentur-b-2.de postfix/smtps/smtpd[1031049]: warning: unknown[20.48.102.92]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:41:28 web01.agentur-b-2.de postfix/smtps/smtpd[1031049]: warning: unknown[20.48.102.92]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:42:38 web01.agentur-b-2.de postfix/smtps/smtpd[1031049]: warning: unknown[20.48.102.92]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-18 01:43:01
188.254.0.182	attackbotsspam	Sep 17 19:46:31 h2779839 sshd[1281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 user=root Sep 17 19:46:32 h2779839 sshd[1281]: Failed password for root from 188.254.0.182 port 44444 ssh2 Sep 17 19:51:19 h2779839 sshd[1397]: Invalid user zhangy from 188.254.0.182 port 55062 Sep 17 19:51:19 h2779839 sshd[1397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 Sep 17 19:51:19 h2779839 sshd[1397]: Invalid user zhangy from 188.254.0.182 port 55062 Sep 17 19:51:22 h2779839 sshd[1397]: Failed password for invalid user zhangy from 188.254.0.182 port 55062 ssh2 Sep 17 19:56:13 h2779839 sshd[1697]: Invalid user web from 188.254.0.182 port 37450 Sep 17 19:56:13 h2779839 sshd[1697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 Sep 17 19:56:13 h2779839 sshd[1697]: Invalid user web from 188.254.0.182 port 37450 Sep 17 19:56:15 h2779 ...	2020-09-18 02:23:39
41.139.11.128	attackbotsspam	Sep 17 12:53:03 mail.srvfarm.net postfix/smtpd[18902]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 17 12:53:03 mail.srvfarm.net postfix/smtpd[18902]: lost connection after AUTH from unknown[41.139.11.128] Sep 17 12:56:00 mail.srvfarm.net postfix/smtps/smtpd[19071]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 17 12:56:00 mail.srvfarm.net postfix/smtps/smtpd[19071]: lost connection after AUTH from unknown[41.139.11.128] Sep 17 13:01:26 mail.srvfarm.net postfix/smtpd[18571]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed:	2020-09-18 01:42:39

最近上报的IP列表

160.46.85.57	179.127.117.22	177.185.111.230	175.151.83.101
154.126.177.163	139.155.2.188	132.255.82.42	117.216.139.26
114.254.195.246	113.161.214.60	110.52.28.86	106.13.234.61
103.52.216.170	103.36.124.59	85.95.115.239	85.51.33.148
76.119.111.250	72.228.36.46	69.6.31.150	62.234.148.231