42.235.51.111 - IPInfo

基本信息:

城市(city): Luoyang

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.235.51.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40866
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.235.51.111.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 13 21:14:34 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

111.51.235.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
111.51.235.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.12.227.90	attackspambots	198.12.227.90 - - [09/Aug/2020:05:56:06 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [09/Aug/2020:05:56:07 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [09/Aug/2020:05:56:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-09 12:07:07
121.22.5.92	attack	[client 121.22.5.92:39856] script '/var/www/html/elrekt.php'	2020-08-09 08:23:33
218.92.0.246	attack	Aug 9 02:23:30 db sshd[10022]: User root from 218.92.0.246 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-09 08:26:35
174.76.35.9	attack	Automatic report - Banned IP Access	2020-08-09 12:03:11
183.155.197.37	attack	Brute force attempt	2020-08-09 12:12:16
85.209.0.101	attackspam	[H1.VM6] Blocked by UFW	2020-08-09 08:28:54
23.101.160.44	attackspam	[2020-08-08 23:54:03] NOTICE[1248][C-00004fdf] chan_sip.c: Call from '' (23.101.160.44:54918) to extension '11009725994397432' rejected because extension not found in context 'public'. [2020-08-08 23:54:03] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-08T23:54:03.771-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="11009725994397432",SessionID="0x7f27203bfb78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/23.101.160.44/54918",ACLName="no_extension_match" [2020-08-08 23:56:01] NOTICE[1248][C-00004fe0] chan_sip.c: Call from '' (23.101.160.44:58702) to extension '8911390498256029' rejected because extension not found in context 'public'. [2020-08-08 23:56:01] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-08T23:56:01.801-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8911390498256029",SessionID="0x7f2720621db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV ...	2020-08-09 12:15:42
144.217.85.4	attackbotsspam	Aug 9 06:07:46 OPSO sshd\[22334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root Aug 9 06:07:48 OPSO sshd\[22334\]: Failed password for root from 144.217.85.4 port 49998 ssh2 Aug 9 06:11:46 OPSO sshd\[23403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root Aug 9 06:11:49 OPSO sshd\[23403\]: Failed password for root from 144.217.85.4 port 32864 ssh2 Aug 9 06:15:48 OPSO sshd\[24351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root	2020-08-09 12:24:40
165.3.86.114	attack	2020-08-08T22:23:47.515555+02:00 lumpi kernel: [22207820.542006] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=165.3.86.114 DST=78.46.199.189 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=5059 DF PROTO=TCP SPT=25780 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2020-08-09 08:32:28
37.59.48.181	attack	Aug 9 05:48:35 eventyay sshd[16585]: Failed password for root from 37.59.48.181 port 45858 ssh2 Aug 9 05:52:22 eventyay sshd[16701]: Failed password for root from 37.59.48.181 port 59222 ssh2 ...	2020-08-09 12:13:09
141.98.9.161	attackspam	Aug 8 06:06:24 XXX sshd[676]: Invalid user admin from 141.98.9.161 port 35723	2020-08-09 08:32:51
184.105.139.67	attackspam	srv02 Mass scanning activity detected Target: 161(snmp) ..	2020-08-09 12:13:26
185.220.100.247	attack	"Path Traversal Attack (/../) - Matched Data: ../ found within ARGS:img: ../wp-config.php"	2020-08-09 12:11:40
125.33.253.10	attackbots	Aug 9 06:08:46 lnxmysql61 sshd[14343]: Failed password for root from 125.33.253.10 port 58462 ssh2 Aug 9 06:08:46 lnxmysql61 sshd[14343]: Failed password for root from 125.33.253.10 port 58462 ssh2	2020-08-09 12:16:31
67.68.120.95	attack	Aug 9 05:00:28 gospond sshd[4570]: Failed password for root from 67.68.120.95 port 48953 ssh2 Aug 9 05:04:08 gospond sshd[4614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.68.120.95 user=root Aug 9 05:04:10 gospond sshd[4614]: Failed password for root from 67.68.120.95 port 54144 ssh2 ...	2020-08-09 12:23:12

最近上报的IP列表

46.24.197.220	81.171.98.64	66.113.66.192	186.233.104.3
35.242.241.207	142.244.33.37	118.191.168.111	187.56.209.206
82.18.14.223	125.134.187.233	202.217.68.100	95.187.61.62
175.14.158.109	178.239.149.199	162.57.141.111	177.95.76.183
175.221.84.181	184.149.230.169	139.129.130.253	191.97.214.216