42.5.201.212 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Aug 25) SRC=42.5.201.212 LEN=40 TTL=46 ID=64425 TCP DPT=8080 WINDOW=47336 SYN Unauthorised access (Aug 25) SRC=42.5.201.212 LEN=40 TTL=46 ID=22637 TCP DPT=8080 WINDOW=47336 SYN	2020-08-25 19:58:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.5.201.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.5.201.212.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082500 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 25 19:58:12 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 212.201.5.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 212.201.5.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.105.146.33	attackbots	Automatic report - Port Scan Attack	2019-10-04 14:29:31
198.20.70.114	attackspambots	Automatic report - Port Scan Attack	2019-10-04 14:34:58
178.32.44.197	attackspambots	Oct 3 19:40:22 web9 sshd\[4963\]: Invalid user Cheese2017 from 178.32.44.197 Oct 3 19:40:22 web9 sshd\[4963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.44.197 Oct 3 19:40:25 web9 sshd\[4963\]: Failed password for invalid user Cheese2017 from 178.32.44.197 port 46113 ssh2 Oct 3 19:44:21 web9 sshd\[5457\]: Invalid user Angela123 from 178.32.44.197 Oct 3 19:44:21 web9 sshd\[5457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.44.197	2019-10-04 14:04:04
23.94.133.72	attackbots	Oct 4 07:59:10 saschabauer sshd[18962]: Failed password for root from 23.94.133.72 port 55792 ssh2	2019-10-04 14:07:16
103.45.154.215	attackspam	Oct 3 18:35:41 eddieflores sshd\[16903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root Oct 3 18:35:42 eddieflores sshd\[16903\]: Failed password for root from 103.45.154.215 port 39874 ssh2 Oct 3 18:40:33 eddieflores sshd\[17397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root Oct 3 18:40:35 eddieflores sshd\[17397\]: Failed password for root from 103.45.154.215 port 47522 ssh2 Oct 3 18:45:21 eddieflores sshd\[17771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root	2019-10-04 14:28:54
219.93.106.33	attackspambots	Sep 30 14:48:18 h1946882 sshd[15566]: Failed password for daemon from 2= 19.93.106.33 port 46680 ssh2 Sep 30 14:48:18 h1946882 sshd[15566]: Received disconnect from 219.93.1= 06.33: 11: Normal Shutdown [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=219.93.106.33	2019-10-04 13:58:21
219.232.47.114	attackbots	Invalid user mellon from 219.232.47.114 port 53046	2019-10-04 13:53:32
222.186.180.147	attackspam	Oct 4 08:23:40 MK-Soft-Root1 sshd[5083]: Failed password for root from 222.186.180.147 port 18792 ssh2 Oct 4 08:23:44 MK-Soft-Root1 sshd[5083]: Failed password for root from 222.186.180.147 port 18792 ssh2 ...	2019-10-04 14:26:30
190.14.38.128	attackspambots	Oct 3 23:46:06 localhost kernel: [3898585.975446] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=65 ID=9348 DF PROTO=TCP SPT=60026 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:46:06 localhost kernel: [3898585.975474] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=65 ID=9348 DF PROTO=TCP SPT=60026 DPT=22 SEQ=524906690 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:56:49 localhost kernel: [3899228.873309] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=65006 DF PROTO=TCP SPT=58207 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:56:49 localhost kernel: [3899228.873334] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.38.128 DST=[mungedIP2] LEN=40 TOS=0x08 PREC	2019-10-04 14:08:57
197.50.25.133	attackbots	Oct 1 11:09:17 linuxrulz sshd[31845]: Invalid user admin from 197.50.25.133 port 44921 Oct 1 11:09:17 linuxrulz sshd[31845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.50.25.133 Oct 1 11:09:18 linuxrulz sshd[31845]: Failed password for invalid user admin from 197.50.25.133 port 44921 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.50.25.133	2019-10-04 14:27:17
117.23.69.18	attackbots	Unauthorised access (Oct 4) SRC=117.23.69.18 LEN=40 TOS=0x10 PREC=0x40 TTL=48 ID=24794 TCP DPT=8080 WINDOW=36154 SYN	2019-10-04 14:04:37
14.204.104.196	attackbots	port scan and connect, tcp 23 (telnet)	2019-10-04 14:34:00
187.87.38.63	attackspambots	Oct 4 07:47:15 MK-Soft-Root2 sshd[14752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.38.63 Oct 4 07:47:16 MK-Soft-Root2 sshd[14752]: Failed password for invalid user T3st@2018 from 187.87.38.63 port 37531 ssh2 ...	2019-10-04 14:31:55
176.110.134.2	attack	fell into ViewStateTrap:paris	2019-10-04 14:17:08
62.234.219.27	attack	Oct 3 19:52:14 php1 sshd\[8936\]: Invalid user apache from 62.234.219.27 Oct 3 19:52:14 php1 sshd\[8936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.219.27 Oct 3 19:52:16 php1 sshd\[8936\]: Failed password for invalid user apache from 62.234.219.27 port 33658 ssh2 Oct 3 19:58:13 php1 sshd\[9403\]: Invalid user legal2 from 62.234.219.27 Oct 3 19:58:13 php1 sshd\[9403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.219.27	2019-10-04 14:06:03

最近上报的IP列表

108.138.45.18	92.52.98.62	150.89.161.214	217.252.173.59
253.143.136.52	18.23.249.239	194.44.20.78	255.29.219.149
190.76.8.184	64.85.66.206	53.132.0.52	203.43.140.244
181.149.243.63	234.173.178.57	134.116.254.157	122.175.196.98
41.209.104.129	45.148.10.11	61.220.28.250	109.96.62.117