42.239.137.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 42.239.137.49:43438 -> port 23, len 44	2020-08-24 16:11:55

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.137.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30129
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.239.137.49.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082400 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 24 16:11:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

49.137.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.137.239.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
109.158.236.168	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/109.158.236.168/ GB - 1H : (76) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN2856 IP : 109.158.236.168 CIDR : 109.144.0.0/12 PREFIX COUNT : 292 UNIQUE IP COUNT : 10658560 WYKRYTE ATAKI Z ASN2856 : 1H - 3 3H - 4 6H - 6 12H - 8 24H - 11 DateTime : 2019-10-10 05:49:52 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-10 15:51:53
157.230.133.15	attackbotsspam	Oct 8 15:27:21 toyboy sshd[15775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.133.15 user=r.r Oct 8 15:27:24 toyboy sshd[15775]: Failed password for r.r from 157.230.133.15 port 47340 ssh2 Oct 8 15:27:24 toyboy sshd[15775]: Received disconnect from 157.230.133.15: 11: Bye Bye [preauth] Oct 8 15:46:47 toyboy sshd[16733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.133.15 user=r.r Oct 8 15:46:49 toyboy sshd[16733]: Failed password for r.r from 157.230.133.15 port 40840 ssh2 Oct 8 15:46:49 toyboy sshd[16733]: Received disconnect from 157.230.133.15: 11: Bye Bye [preauth] Oct 8 15:51:49 toyboy sshd[17030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.133.15 user=r.r Oct 8 15:51:51 toyboy sshd[17030]: Failed password for r.r from 157.230.133.15 port 52410 ssh2 Oct 8 15:51:51 toyboy sshd[17030]: Received discon........ -------------------------------	2019-10-10 16:10:59
106.13.27.93	attackspambots	Tried sshing with brute force.	2019-10-10 15:57:32
209.105.243.145	attackbots	Oct 10 03:49:45 venus sshd\[11394\]: Invalid user Qq@12345 from 209.105.243.145 port 50933 Oct 10 03:49:46 venus sshd\[11394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 Oct 10 03:49:47 venus sshd\[11394\]: Failed password for invalid user Qq@12345 from 209.105.243.145 port 50933 ssh2 ...	2019-10-10 15:55:32
119.29.170.202	attack	Automatic report - Banned IP Access	2019-10-10 16:01:36
193.8.82.188	attack	$f2bV_matches	2019-10-10 15:36:54
106.12.127.183	attackbotsspam	Automatic report - Banned IP Access	2019-10-10 16:04:15
54.37.79.94	attack	Port Scan: TCP/443	2019-10-10 16:07:51
125.212.201.7	attack	Oct 10 09:37:41 dedicated sshd[24848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.201.7 user=root Oct 10 09:37:43 dedicated sshd[24848]: Failed password for root from 125.212.201.7 port 43810 ssh2	2019-10-10 15:46:07
95.170.205.151	attackspam	Oct 10 07:51:10 web8 sshd\[21222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.205.151 user=root Oct 10 07:51:12 web8 sshd\[21222\]: Failed password for root from 95.170.205.151 port 39136 ssh2 Oct 10 07:55:32 web8 sshd\[23346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.205.151 user=root Oct 10 07:55:34 web8 sshd\[23346\]: Failed password for root from 95.170.205.151 port 59253 ssh2 Oct 10 07:59:47 web8 sshd\[25359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.205.151 user=root	2019-10-10 16:04:27
202.51.74.189	attack	Oct 10 07:20:00 venus sshd\[14595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.189 user=root Oct 10 07:20:02 venus sshd\[14595\]: Failed password for root from 202.51.74.189 port 36256 ssh2 Oct 10 07:25:05 venus sshd\[14691\]: Invalid user 123 from 202.51.74.189 port 48282 ...	2019-10-10 15:38:33
51.38.129.20	attackspam	Oct 10 09:49:24 SilenceServices sshd[21693]: Failed password for root from 51.38.129.20 port 40578 ssh2 Oct 10 09:53:21 SilenceServices sshd[22721]: Failed password for root from 51.38.129.20 port 52310 ssh2	2019-10-10 15:59:22
40.115.185.174	attackbotsspam	RDP Bruteforce	2019-10-10 15:34:23
124.74.248.218	attackspambots	$f2bV_matches	2019-10-10 15:59:09
23.129.64.150	attackbotsspam	2019-10-10T03:50:27.036533abusebot.cloudsearch.cf sshd\[5692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.150 user=root	2019-10-10 15:31:45

最近上报的IP列表

155.187.161.223	64.110.134.102	19.74.166.225	222.87.246.48
33.122.114.133	17.203.91.246	125.85.23.157	202.186.156.95
202.13.22.32	202.109.158.139	101.20.120.110	159.237.10.53
143.255.242.128	95.169.235.217	64.156.217.75	184.0.180.226
201.43.191.250	201.234.55.82	201.212.219.215	201.16.140.130