42.245.203.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Cernet New Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-23 22:23:13
attackbotsspam	19/7/22@19:26:43: FAIL: Alarm-Intrusion address from=42.245.203.139 ...	2019-07-23 09:28:25

相同子网IP讨论:

IP	类型	评论内容	时间
42.245.203.153	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-26 07:54:52
42.245.203.136	attackbots	Port probing on unauthorized port 445	2020-02-14 09:53:22
42.245.203.148	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-13 14:30:01
42.245.203.148	attackspam	Unauthorized connection attempt detected from IP address 42.245.203.148 to port 4899 [J]	2020-01-06 14:26:40
42.245.203.134	attack	Port Scan: TCP/445	2019-08-24 14:32:30
42.245.203.136	attackspam	19/7/22@19:27:24: FAIL: Alarm-Intrusion address from=42.245.203.136 ...	2019-07-23 09:08:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.245.203.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35211
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.245.203.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 23 09:28:17 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.203.245.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.203.245.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
121.33.247.107	attack	2019-08-15T04:10:34.145398 X postfix/smtpd[31439]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-15T09:41:00.141266 X postfix/smtpd[15881]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-16T00:49:13.395744 X postfix/smtpd[1072]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-08-16 07:13:33
128.14.136.158	attack	2019-08-15T22:45:11.267285abusebot.cloudsearch.cf sshd\[9324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.14.136.158 user=root	2019-08-16 07:15:13
218.17.221.58	attackbots	2019-08-15T23:06:41.164063abusebot-3.cloudsearch.cf sshd\[8458\]: Invalid user firebird from 218.17.221.58 port 50627	2019-08-16 07:09:00
85.163.230.163	attackspambots	Aug 15 16:43:12 aat-srv002 sshd[28408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.163.230.163 Aug 15 16:43:14 aat-srv002 sshd[28408]: Failed password for invalid user replicator from 85.163.230.163 port 36918 ssh2 Aug 15 16:47:42 aat-srv002 sshd[28503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.163.230.163 Aug 15 16:47:45 aat-srv002 sshd[28503]: Failed password for invalid user nano from 85.163.230.163 port 33197 ssh2 ...	2019-08-16 06:39:52
58.9.85.99	attack	23/tcp [2019-08-15]1pkt	2019-08-16 07:02:09
199.195.251.227	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-16 06:56:22
152.136.116.121	attack	Aug 15 17:17:49 aat-srv002 sshd[29383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.116.121 Aug 15 17:17:51 aat-srv002 sshd[29383]: Failed password for invalid user chat from 152.136.116.121 port 35056 ssh2 Aug 15 17:22:35 aat-srv002 sshd[29535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.116.121 Aug 15 17:22:36 aat-srv002 sshd[29535]: Failed password for invalid user oracle from 152.136.116.121 port 54558 ssh2 ...	2019-08-16 06:43:05
91.67.105.22	attackbotsspam	Aug 15 12:17:02 eddieflores sshd\[30549\]: Invalid user usuario from 91.67.105.22 Aug 15 12:17:02 eddieflores sshd\[30549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5b436916.dynamic.kabel-deutschland.de Aug 15 12:17:05 eddieflores sshd\[30549\]: Failed password for invalid user usuario from 91.67.105.22 port 45042 ssh2 Aug 15 12:21:28 eddieflores sshd\[30920\]: Invalid user git from 91.67.105.22 Aug 15 12:21:28 eddieflores sshd\[30920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5b436916.dynamic.kabel-deutschland.de	2019-08-16 06:35:40
196.52.43.105	attack	port scan and connect, tcp 5984 (couchdb)	2019-08-16 06:36:34
154.66.113.78	attackspam	2019-08-15T22:20:25.712436abusebot.cloudsearch.cf sshd\[8658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.113.78 user=root	2019-08-16 06:49:02
121.141.5.199	attack	Aug 15 22:21:56 MK-Soft-VM6 sshd\[24595\]: Invalid user candice from 121.141.5.199 port 39448 Aug 15 22:21:56 MK-Soft-VM6 sshd\[24595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.141.5.199 Aug 15 22:21:58 MK-Soft-VM6 sshd\[24595\]: Failed password for invalid user candice from 121.141.5.199 port 39448 ssh2 ...	2019-08-16 06:58:21
51.38.238.22	attack	Invalid user customer from 51.38.238.22 port 39596	2019-08-16 07:07:01
192.99.55.200	attack	Aug 16 00:22:41 SilenceServices sshd[32301]: Failed password for root from 192.99.55.200 port 45818 ssh2 Aug 16 00:27:25 SilenceServices sshd[5136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.55.200 Aug 16 00:27:27 SilenceServices sshd[5136]: Failed password for invalid user devopsuser from 192.99.55.200 port 38054 ssh2	2019-08-16 06:41:44
106.13.78.56	attackspambots	Aug 16 01:29:48 www sshd\[241640\]: Invalid user tiago from 106.13.78.56 Aug 16 01:29:48 www sshd\[241640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.56 Aug 16 01:29:50 www sshd\[241640\]: Failed password for invalid user tiago from 106.13.78.56 port 39582 ssh2 ...	2019-08-16 06:38:31
61.161.237.38	attack	Aug 15 11:16:31 wbs sshd\[6599\]: Invalid user ice from 61.161.237.38 Aug 15 11:16:31 wbs sshd\[6599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.161.237.38 Aug 15 11:16:33 wbs sshd\[6599\]: Failed password for invalid user ice from 61.161.237.38 port 40454 ssh2 Aug 15 11:19:33 wbs sshd\[6856\]: Invalid user itk from 61.161.237.38 Aug 15 11:19:33 wbs sshd\[6856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.161.237.38	2019-08-16 06:52:15

最近上报的IP列表

177.54.239.233	40.76.63.49	181.105.8.109	149.200.183.54
77.247.108.160	190.88.145.235	37.112.207.68	180.76.134.167
201.93.8.20	185.53.88.22	180.125.254.200	47.99.242.107
151.106.8.39	75.75.235.138	145.237.117.49	5.26.221.0
49.82.185.25	188.255.103.82	190.89.198.98	177.179.249.203