42.6.49.167 - IPInfo

基本信息:

城市(city): unknown

省份(region): Liaoning

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	FTP/21 MH Probe, BF, Hack -	2019-11-11 08:05:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.6.49.167
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.6.49.167.			IN	A

;; AUTHORITY SECTION:
.			258	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111001 1800 900 604800 86400

;; Query time: 911 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 08:05:03 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 167.49.6.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 167.49.6.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.175.163	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Failed password for root from 222.186.175.163 port 39188 ssh2 Failed password for root from 222.186.175.163 port 39188 ssh2 Failed password for root from 222.186.175.163 port 39188 ssh2 Failed password for root from 222.186.175.163 port 39188 ssh2	2019-12-02 00:35:34
159.65.146.250	attack	(sshd) Failed SSH login from 159.65.146.250 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Dec 1 16:55:30 s1 sshd[28137]: Invalid user naas from 159.65.146.250 port 47772 Dec 1 16:55:32 s1 sshd[28137]: Failed password for invalid user naas from 159.65.146.250 port 47772 ssh2 Dec 1 17:13:01 s1 sshd[28502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.146.250 user=root Dec 1 17:13:03 s1 sshd[28502]: Failed password for root from 159.65.146.250 port 35778 ssh2 Dec 1 17:16:17 s1 sshd[28555]: Invalid user heidemarie from 159.65.146.250 port 41918	2019-12-02 00:45:01
157.230.42.76	attackbots	Dec 1 17:18:29 OPSO sshd\[21460\]: Invalid user livengood from 157.230.42.76 port 35402 Dec 1 17:18:29 OPSO sshd\[21460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.76 Dec 1 17:18:31 OPSO sshd\[21460\]: Failed password for invalid user livengood from 157.230.42.76 port 35402 ssh2 Dec 1 17:22:39 OPSO sshd\[22298\]: Invalid user mysql123456 from 157.230.42.76 port 33665 Dec 1 17:22:39 OPSO sshd\[22298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.76	2019-12-02 00:51:55
77.247.109.31	attack	\[2019-12-01 11:15:48\] NOTICE\[2754\] chan_sip.c: Registration from '"3110" \' failed for '77.247.109.31:5158' - Wrong password \[2019-12-01 11:15:48\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-01T11:15:48.375-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="3110",SessionID="0x7f26c4964a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.31/5158",Challenge="4944ee98",ReceivedChallenge="4944ee98",ReceivedHash="989e66a1eef7678a5adfd5b61022c9c0" \[2019-12-01 11:22:02\] NOTICE\[2754\] chan_sip.c: Registration from '"1566" \' failed for '77.247.109.31:5108' - Wrong password \[2019-12-01 11:22:02\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-01T11:22:02.030-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1566",SessionID="0x7f26c4a750d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD	2019-12-02 00:38:34
159.65.152.201	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201 Failed password for invalid user password from 159.65.152.201 port 60380 ssh2 Invalid user nagako from 159.65.152.201 port 38794 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201 Failed password for invalid user nagako from 159.65.152.201 port 38794 ssh2	2019-12-02 00:30:59
222.186.180.41	attackspam	Dec 1 13:41:26 firewall sshd[7662]: Failed password for root from 222.186.180.41 port 42880 ssh2 Dec 1 13:41:39 firewall sshd[7662]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 42880 ssh2 [preauth] Dec 1 13:41:39 firewall sshd[7662]: Disconnecting: Too many authentication failures [preauth] ...	2019-12-02 00:43:35
202.151.30.145	attack	Dec 1 06:50:25 php1 sshd\[9087\]: Invalid user losfeld from 202.151.30.145 Dec 1 06:50:25 php1 sshd\[9087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.145 Dec 1 06:50:27 php1 sshd\[9087\]: Failed password for invalid user losfeld from 202.151.30.145 port 46298 ssh2 Dec 1 06:54:10 php1 sshd\[9387\]: Invalid user password12345677 from 202.151.30.145 Dec 1 06:54:10 php1 sshd\[9387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.145	2019-12-02 01:03:15
168.167.84.166	attackspam	Wordpress login scanning	2019-12-02 00:58:08
88.253.14.45	attack	Automatic report - Port Scan Attack	2019-12-02 00:49:34
218.92.0.212	attack	Dec 1 17:30:47 meumeu sshd[28709]: Failed password for root from 218.92.0.212 port 41998 ssh2 Dec 1 17:30:51 meumeu sshd[28709]: Failed password for root from 218.92.0.212 port 41998 ssh2 Dec 1 17:31:02 meumeu sshd[28709]: Failed password for root from 218.92.0.212 port 41998 ssh2 Dec 1 17:31:03 meumeu sshd[28709]: error: maximum authentication attempts exceeded for root from 218.92.0.212 port 41998 ssh2 [preauth] ...	2019-12-02 00:33:10
122.228.19.80	attack	Port-scan: detected 104 distinct ports within a 24-hour window.	2019-12-02 00:40:25
60.6.228.10	attackspambots	Dec 1 22:34:55 vibhu-HP-Z238-Microtower-Workstation sshd\[6779\]: Invalid user admin from 60.6.228.10 Dec 1 22:34:55 vibhu-HP-Z238-Microtower-Workstation sshd\[6779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.6.228.10 Dec 1 22:34:57 vibhu-HP-Z238-Microtower-Workstation sshd\[6779\]: Failed password for invalid user admin from 60.6.228.10 port 34847 ssh2 Dec 1 22:39:25 vibhu-HP-Z238-Microtower-Workstation sshd\[7164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.6.228.10 user=root Dec 1 22:39:27 vibhu-HP-Z238-Microtower-Workstation sshd\[7164\]: Failed password for root from 60.6.228.10 port 47101 ssh2 ...	2019-12-02 01:13:09
2a03:b0c0:3:d0::db7:9001	attackbotsspam	xmlrpc attack	2019-12-02 00:58:54
129.204.108.143	attack	(sshd) Failed SSH login from 129.204.108.143 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Dec 1 16:13:20 andromeda sshd[23120]: Invalid user ohh from 129.204.108.143 port 50692 Dec 1 16:13:22 andromeda sshd[23120]: Failed password for invalid user ohh from 129.204.108.143 port 50692 ssh2 Dec 1 16:27:58 andromeda sshd[24726]: Invalid user wijtvliet from 129.204.108.143 port 40710	2019-12-02 01:07:54
218.92.0.211	attackspambots	Dec 1 17:23:18 eventyay sshd[946]: Failed password for root from 218.92.0.211 port 19468 ssh2 Dec 1 17:23:20 eventyay sshd[946]: Failed password for root from 218.92.0.211 port 19468 ssh2 Dec 1 17:23:23 eventyay sshd[946]: Failed password for root from 218.92.0.211 port 19468 ssh2 ...	2019-12-02 00:27:36

最近上报的IP列表

181.54.131.99	198.199.82.4	180.252.22.214	61.55.135.118
222.246.37.113	103.113.3.178	185.238.137.218	183.82.1.60
186.91.102.240	125.70.111.182	190.97.252.94	185.216.40.160
5.196.18.169	186.141.138.241	78.190.67.198	195.201.1.239
118.25.126.32	110.232.87.115	171.229.235.115	191.119.118.150