42.51.192.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Henan Telcom Union Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	account brute force by foreign IP	2019-08-06 11:19:38

相同子网IP讨论:

IP	类型	评论内容	时间
42.51.192.49	attack	account brute force by foreign IP	2019-08-06 11:19:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.51.192.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38961
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.51.192.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080503 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 11:19:32 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

20.192.51.42.in-addr.arpa domain name pointer idc.ly.ha.

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 20.192.51.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
151.80.144.39	attackspambots	Dec 4 20:04:39 mail sshd\[24072\]: Invalid user ploeger from 151.80.144.39 Dec 4 20:04:39 mail sshd\[24072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Dec 4 20:04:41 mail sshd\[24072\]: Failed password for invalid user ploeger from 151.80.144.39 port 34384 ssh2 ...	2019-12-05 03:27:44
112.30.185.8	attack	Dec 4 19:28:18 localhost sshd\[17592\]: Invalid user bruce from 112.30.185.8 port 35362 Dec 4 19:28:18 localhost sshd\[17592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.185.8 Dec 4 19:28:21 localhost sshd\[17592\]: Failed password for invalid user bruce from 112.30.185.8 port 35362 ssh2 ...	2019-12-05 03:31:23
42.157.128.188	attack	Dec 4 21:28:08 sauna sshd[51697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Dec 4 21:28:10 sauna sshd[51697]: Failed password for invalid user tryjefaczka from 42.157.128.188 port 47104 ssh2 ...	2019-12-05 03:42:41
217.182.70.125	attackspambots	Dec 4 20:47:41 lnxweb62 sshd[6256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.70.125 Dec 4 20:47:41 lnxweb62 sshd[6256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.70.125	2019-12-05 03:57:28
95.12.49.157	attackspambots	Automatic report - Port Scan Attack	2019-12-05 03:50:41
106.13.4.250	attackbotsspam	Dec 4 20:48:08 vserver sshd\[4899\]: Invalid user kaaren from 106.13.4.250Dec 4 20:48:10 vserver sshd\[4899\]: Failed password for invalid user kaaren from 106.13.4.250 port 43648 ssh2Dec 4 20:53:53 vserver sshd\[4949\]: Invalid user ident from 106.13.4.250Dec 4 20:53:55 vserver sshd\[4949\]: Failed password for invalid user ident from 106.13.4.250 port 49150 ssh2 ...	2019-12-05 04:05:33
120.89.64.8	attack	Dec 4 20:20:59 OPSO sshd\[20083\]: Invalid user pertti from 120.89.64.8 port 52646 Dec 4 20:20:59 OPSO sshd\[20083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 Dec 4 20:21:00 OPSO sshd\[20083\]: Failed password for invalid user pertti from 120.89.64.8 port 52646 ssh2 Dec 4 20:28:04 OPSO sshd\[21884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 user=root Dec 4 20:28:06 OPSO sshd\[21884\]: Failed password for root from 120.89.64.8 port 60698 ssh2	2019-12-05 03:46:12
137.135.93.220	attackspambots	WordPress wp-login brute force :: 137.135.93.220 0.068 BYPASS [04/Dec/2019:19:27:52 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2286 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-05 04:03:30
218.92.0.179	attackspambots	SSH Bruteforce attack	2019-12-05 03:34:44
164.132.196.98	attack	Dec 4 14:27:55 plusreed sshd[4509]: Invalid user hirdler from 164.132.196.98 ...	2019-12-05 03:39:31
5.9.36.180	attack	Received: from localhost (5.9.36.180) by ExchangeServer.. (10.0.7.78) with Microsoft SMTP Server id 14.3.468.0; Wed, 4 Dec 2019 11:01: +0100 Received: by localhost (Postfix, from userid 0) id B2E2EA*; Wed, 4 Dec 2019 04:00: -0500 (EST) To: <@.de> Subject: Der Einweisungsprozess ist obligatorisch #DE1D22H11788Z.. From: DeutscheBank MIME-Version: 1.0 Content-Type: text/html; charset="UTF-8" Date: Wed, 4 Dec 2019 04:00:* -0500 Return-Path: root@localhost	2019-12-05 03:26:05
118.24.74.84	attack	2019-12-04T19:13:24.298418abusebot-2.cloudsearch.cf sshd\[19809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.74.84 user=root	2019-12-05 03:28:10
186.206.131.158	attack	Lines containing failures of 186.206.131.158 Dec 2 18:27:18 MAKserver06 sshd[3678]: Invalid user brivins from 186.206.131.158 port 59598 Dec 2 18:27:18 MAKserver06 sshd[3678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.131.158 Dec 2 18:27:20 MAKserver06 sshd[3678]: Failed password for invalid user brivins from 186.206.131.158 port 59598 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=186.206.131.158	2019-12-05 03:33:09
35.229.92.83	attack	Dec 4 20:21:54 eventyay sshd[26372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.92.83 Dec 4 20:21:56 eventyay sshd[26372]: Failed password for invalid user drageset from 35.229.92.83 port 47076 ssh2 Dec 4 20:28:17 eventyay sshd[26698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.92.83 ...	2019-12-05 03:34:20
198.100.146.98	attack	Dec 4 21:22:51 sauna sshd[51559]: Failed password for root from 198.100.146.98 port 42146 ssh2 ...	2019-12-05 03:37:39

最近上报的IP列表

106.226.231.71	180.118.128.120	51.99.203.133	115.204.26.93
49.79.130.201	157.119.29.22	5.180.78.140	117.90.0.156
90.157.221.90	198.71.246.93	190.11.11.86	186.156.167.167
238.85.124.248	181.171.193.51	167.99.124.60	82.211.8.74
137.206.161.91	188.116.90.140	43.254.215.40	227.121.226.222