42.2.254.27 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 42.2.254.27 to port 5555 [J]	2020-01-06 20:52:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.254.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.254.27.			IN	A

;; AUTHORITY SECTION:
.			489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010600 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 20:51:58 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

27.254.2.42.in-addr.arpa domain name pointer 42-2-254-027.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
27.254.2.42.in-addr.arpa	name = 42-2-254-027.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
206.189.85.88	attackbots	SS5,WP GET /wp-login.php GET /wp-login.php	2020-06-08 13:36:16
125.215.207.44	attack	Jun 8 06:28:23 ns382633 sshd\[23295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.44 user=root Jun 8 06:28:25 ns382633 sshd\[23295\]: Failed password for root from 125.215.207.44 port 47817 ssh2 Jun 8 06:37:35 ns382633 sshd\[24806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.44 user=root Jun 8 06:37:37 ns382633 sshd\[24806\]: Failed password for root from 125.215.207.44 port 51275 ssh2 Jun 8 06:41:08 ns382633 sshd\[25584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.44 user=root	2020-06-08 13:26:11
222.186.15.158	attackbotsspam	2020-06-08T07:19:16.188011vps751288.ovh.net sshd\[28440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root 2020-06-08T07:19:17.498963vps751288.ovh.net sshd\[28440\]: Failed password for root from 222.186.15.158 port 31290 ssh2 2020-06-08T07:19:19.522721vps751288.ovh.net sshd\[28440\]: Failed password for root from 222.186.15.158 port 31290 ssh2 2020-06-08T07:19:21.487502vps751288.ovh.net sshd\[28440\]: Failed password for root from 222.186.15.158 port 31290 ssh2 2020-06-08T07:19:23.502509vps751288.ovh.net sshd\[28444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root	2020-06-08 13:19:54
42.114.182.94	attack	445/tcp 445/tcp [2020-06-08]2pkt	2020-06-08 13:39:36
206.189.178.171	attackspam	Jun 8 07:10:05 PorscheCustomer sshd[7924]: Failed password for root from 206.189.178.171 port 34296 ssh2 Jun 8 07:11:19 PorscheCustomer sshd[8013]: Failed password for root from 206.189.178.171 port 51838 ssh2 ...	2020-06-08 13:23:13
27.50.21.137	attackspam	445/tcp 445/tcp [2020-06-08]2pkt	2020-06-08 13:26:57
222.186.180.223	attackspam	Jun 8 07:27:12 eventyay sshd[23777]: Failed password for root from 222.186.180.223 port 12702 ssh2 Jun 8 07:27:24 eventyay sshd[23777]: error: maximum authentication attempts exceeded for root from 222.186.180.223 port 12702 ssh2 [preauth] Jun 8 07:27:30 eventyay sshd[23786]: Failed password for root from 222.186.180.223 port 22512 ssh2 ...	2020-06-08 13:30:19
123.24.245.177	attackbots	445/tcp [2020-06-08]1pkt	2020-06-08 13:12:27
45.55.201.219	attackbots	Jun 8 07:12:54 home sshd[14678]: Failed password for root from 45.55.201.219 port 53746 ssh2 Jun 8 07:16:15 home sshd[15089]: Failed password for root from 45.55.201.219 port 55880 ssh2 ...	2020-06-08 13:32:13
91.121.76.43	attack	91.121.76.43 - - [08/Jun/2020:05:54:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.76.43 - - [08/Jun/2020:05:54:28 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.76.43 - - [08/Jun/2020:05:54:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.76.43 - - [08/Jun/2020:05:54:28 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.76.43 - - [08/Jun/2020:05:54:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.76.43 - - [08/Jun/2020:05:54:28 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-06-08 13:24:55
41.141.139.150	attackspambots	Jun 8 03:54:39 DDOS Attack: SRC=41.141.139.150 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=243 PROTO=TCP SPT=11082 DPT=993 WINDOW=0 RES=0x00 RST URGP=0	2020-06-08 13:12:05
201.163.56.82	attackbots	Jun 7 19:14:17 kapalua sshd\[10071\]: Invalid user kafka from 201.163.56.82 Jun 7 19:14:17 kapalua sshd\[10071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.163.56.82 Jun 7 19:14:19 kapalua sshd\[10071\]: Failed password for invalid user kafka from 201.163.56.82 port 56716 ssh2 Jun 7 19:14:29 kapalua sshd\[10090\]: Invalid user kafka from 201.163.56.82 Jun 7 19:14:29 kapalua sshd\[10090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.163.56.82	2020-06-08 13:22:09
106.75.244.62	attackbotsspam	Jun 8 01:15:48 NPSTNNYC01T sshd[14021]: Failed password for root from 106.75.244.62 port 33054 ssh2 Jun 8 01:19:22 NPSTNNYC01T sshd[14381]: Failed password for root from 106.75.244.62 port 55366 ssh2 ...	2020-06-08 13:28:14
122.116.154.68	attackspam	Port probing on unauthorized port 88	2020-06-08 13:09:48
202.184.121.176	attackspam	9000/tcp [2020-06-08]1pkt	2020-06-08 13:19:25

最近上报的IP列表

114.145.166.133	114.35.121.209	113.23.99.195	111.75.158.207
52.163.22.43	88.80.117.141	86.34.48.145	85.75.255.242
207.228.232.226	79.205.179.183	79.118.72.209	78.45.23.196
77.42.86.65	61.161.46.154	58.216.149.158	142.42.16.173
47.39.140.69	126.13.215.163	8.36.187.48	246.73.5.24