42.56.11.29 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	DATE:2020-02-26 01:47:14, IP:42.56.11.29, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-26 09:02:41

相同子网IP讨论:

IP	类型	评论内容	时间
42.56.11.130	attackspam	Unauthorized connection attempt detected from IP address 42.56.11.130 to port 6656 [T]	2020-01-30 18:43:33
42.56.110.120	attack	8080	2019-09-03 06:56:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.56.11.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2752
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.56.11.29.			IN	A

;; AUTHORITY SECTION:
.			230	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022501 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 09:02:38 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 29.11.56.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 29.11.56.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
211.109.235.47	attackspam	Microsoft-Windows-Security-Auditing	2020-08-24 17:34:44
198.199.83.174	attackbotsspam	Aug 24 11:56:25 ns382633 sshd\[10522\]: Invalid user sdbadmin from 198.199.83.174 port 45344 Aug 24 11:56:25 ns382633 sshd\[10522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.83.174 Aug 24 11:56:27 ns382633 sshd\[10522\]: Failed password for invalid user sdbadmin from 198.199.83.174 port 45344 ssh2 Aug 24 12:01:00 ns382633 sshd\[11732\]: Invalid user ry from 198.199.83.174 port 43642 Aug 24 12:01:00 ns382633 sshd\[11732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.83.174	2020-08-24 18:08:13
200.206.81.154	attackbotsspam	Aug 23 23:59:12 Host-KLAX-C sshd[410]: Invalid user partimag from 200.206.81.154 port 36404 ...	2020-08-24 17:24:08
103.246.240.30	attack	$f2bV_matches	2020-08-24 17:53:57
111.231.62.191	attackbotsspam	Aug 23 23:28:15 pixelmemory sshd[64771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.62.191 Aug 23 23:28:15 pixelmemory sshd[64771]: Invalid user pentaho from 111.231.62.191 port 43530 Aug 23 23:28:17 pixelmemory sshd[64771]: Failed password for invalid user pentaho from 111.231.62.191 port 43530 ssh2 Aug 23 23:29:52 pixelmemory sshd[64915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.62.191 user=root Aug 23 23:29:54 pixelmemory sshd[64915]: Failed password for root from 111.231.62.191 port 57822 ssh2 ...	2020-08-24 17:27:04
192.241.224.160	attackspam	" "	2020-08-24 17:25:05
27.128.162.183	attackbotsspam	SSH bruteforce	2020-08-24 17:58:33
198.27.79.180	attackspam	Aug 24 08:11:31 host sshd[17549]: Invalid user random from 198.27.79.180 port 58693 ...	2020-08-24 18:02:45
198.245.53.163	attack	2020-08-24T04:02:05.509068linuxbox-skyline sshd[110071]: Invalid user seongmin from 198.245.53.163 port 56590 ...	2020-08-24 18:04:24
106.13.77.182	attack	Aug 24 05:44:07 onepixel sshd[3247550]: Invalid user vps from 106.13.77.182 port 56350 Aug 24 05:44:07 onepixel sshd[3247550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.77.182 Aug 24 05:44:07 onepixel sshd[3247550]: Invalid user vps from 106.13.77.182 port 56350 Aug 24 05:44:09 onepixel sshd[3247550]: Failed password for invalid user vps from 106.13.77.182 port 56350 ssh2 Aug 24 05:47:57 onepixel sshd[3248194]: Invalid user horacio from 106.13.77.182 port 45358	2020-08-24 17:55:26
167.99.77.94	attackspam	sshd: Failed password for invalid user .... from 167.99.77.94 port 53316 ssh2 (7 attempts)	2020-08-24 17:26:49
2.114.202.124	attack	Invalid user sendmail from 2.114.202.124 port 47256	2020-08-24 17:50:42
198.23.209.140	attack	Aug 24 11:01:25 h1745522 sshd[19647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.209.140 user=root Aug 24 11:01:28 h1745522 sshd[19647]: Failed password for root from 198.23.209.140 port 48642 ssh2 Aug 24 11:01:35 h1745522 sshd[19650]: Invalid user oracle from 198.23.209.140 port 51157 Aug 24 11:01:35 h1745522 sshd[19650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.209.140 Aug 24 11:01:35 h1745522 sshd[19650]: Invalid user oracle from 198.23.209.140 port 51157 Aug 24 11:01:36 h1745522 sshd[19650]: Failed password for invalid user oracle from 198.23.209.140 port 51157 ssh2 Aug 24 11:01:45 h1745522 sshd[19652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.209.140 user=root Aug 24 11:01:48 h1745522 sshd[19652]: Failed password for root from 198.23.209.140 port 53645 ssh2 Aug 24 11:01:55 h1745522 sshd[19656]: Invalid user postgres from ...	2020-08-24 18:06:18
2.57.122.186	attackbotsspam	TCP (SYN) 2.57.122.186:35157 -> port 22, len 48	2020-08-24 17:45:13
20.49.2.187	attack	2020-08-23T23:49:07.7512951495-001 sshd[32303]: Invalid user firefart from 20.49.2.187 port 57860 2020-08-23T23:49:09.7407801495-001 sshd[32303]: Failed password for invalid user firefart from 20.49.2.187 port 57860 ssh2 2020-08-23T23:51:35.8372871495-001 sshd[32461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.49.2.187 user=root 2020-08-23T23:51:37.8067781495-001 sshd[32461]: Failed password for root from 20.49.2.187 port 34930 ssh2 2020-08-23T23:53:56.0388581495-001 sshd[32575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.49.2.187 user=root 2020-08-23T23:53:58.0352211495-001 sshd[32575]: Failed password for root from 20.49.2.187 port 40208 ssh2 ...	2020-08-24 17:40:06

最近上报的IP列表

5.135.165.131	117.68.194.123	92.63.105.33	120.85.206.23
157.245.205.245	170.244.172.231	77.40.68.164	168.128.70.151
174.138.38.158	163.172.225.38	68.183.107.155	122.224.177.6
179.181.253.249	58.211.203.122	154.223.47.30	62.37.160.215
122.135.215.84	190.34.166.86	85.132.78.170	121.122.78.163

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表