49.51.11.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 49.51.11.68 to port 2055	2020-07-09 05:26:45
attackspambots	POP3	2020-06-27 14:35:07
normal	unauthorized connection attempt	2020-02-21 00:06:31
normal	unauthorized connection attempt	2020-02-21 00:06:28
attack	unauthorized connection attempt	2020-02-18 16:06:18
attack	Unauthorized connection attempt detected from IP address 49.51.11.68 to port 1194 [J]	2020-01-21 19:17:40
attackspam	Unauthorized connection attempt detected from IP address 49.51.11.68 to port 1302	2019-12-29 19:04:17

相同子网IP讨论:

IP	类型	评论内容	时间
49.51.11.210	attack	Unauthorized connection attempt detected from IP address 49.51.11.210 to port 1234	2020-07-22 17:37:08
49.51.11.210	attackspambots	Unauthorized connection attempt detected from IP address 49.51.11.210 to port 10333	2020-06-13 06:30:33
49.51.11.133	attack	Unauthorized connection attempt detected from IP address 49.51.11.133 to port 10001	2020-05-30 04:38:04
49.51.11.210	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 31 - port: 11211 proto: TCP cat: Misc Attack	2020-05-03 06:20:20
49.51.11.133	attackbots	Unauthorized connection attempt detected from IP address 49.51.11.133 to port 7547	2020-03-17 20:48:55
49.51.11.133	attack	Unauthorized connection attempt detected from IP address 49.51.11.133 to port 8443	2020-01-14 20:05:55
49.51.11.210	attack	Unauthorized connection attempt detected from IP address 49.51.11.210 to port 6379 [J]	2020-01-13 01:40:11
49.51.11.133	attackspam	Unauthorized connection attempt detected from IP address 49.51.11.133 to port 37	2020-01-05 07:18:33
49.51.11.210	attackspam	Unauthorized connection attempt detected from IP address 49.51.11.210 to port 8800	2019-12-30 04:35:54
49.51.11.133	attackbotsspam	Unauthorized connection attempt detected from IP address 49.51.11.133 to port 7479	2019-12-29 08:24:32
49.51.11.133	attack	12/01/2019-15:38:04.508388 49.51.11.133 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 48	2019-12-02 04:02:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.51.11.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.51.11.68.			IN	A

;; AUTHORITY SECTION:
.			489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 19:04:14 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.11.51.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.11.51.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.102.254.230	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-07-09 21:33:31
80.244.179.6	attackbots	Jul 9 15:44:35 herz-der-gamer sshd[310]: Failed password for invalid user mario from 80.244.179.6 port 41148 ssh2 ...	2019-07-09 22:13:40
179.176.1.7	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 16:26:27,654 INFO [shellcode_manager] (179.176.1.7) no match, writing hexdump (3cc1ce66d664a2c003f9d8296a3b0935 :2533213) - MS17010 (EternalBlue)	2019-07-09 21:49:18
198.108.67.34	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-07-09 21:28:50
188.165.135.189	attack	xmlrpc attack	2019-07-09 21:21:42
185.93.3.114	attack	0,72-01/01 concatform PostRequest-Spammer scoring: paris	2019-07-09 22:32:47
185.220.101.6	attack	Jul 9 09:43:45 plusreed sshd[7810]: Invalid user admin from 185.220.101.6 Jul 9 09:43:45 plusreed sshd[7810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.6 Jul 9 09:43:45 plusreed sshd[7810]: Invalid user admin from 185.220.101.6 Jul 9 09:43:47 plusreed sshd[7810]: Failed password for invalid user admin from 185.220.101.6 port 41071 ssh2 Jul 9 09:43:45 plusreed sshd[7810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.6 Jul 9 09:43:45 plusreed sshd[7810]: Invalid user admin from 185.220.101.6 Jul 9 09:43:47 plusreed sshd[7810]: Failed password for invalid user admin from 185.220.101.6 port 41071 ssh2 Jul 9 09:43:50 plusreed sshd[7810]: Failed password for invalid user admin from 185.220.101.6 port 41071 ssh2 ...	2019-07-09 22:32:27
187.111.21.66	attackspambots	Spam, fraud letters	2019-07-09 22:06:04
185.36.81.173	attack	Rude login attack (10 tries in 1d)	2019-07-09 21:39:12
187.115.123.74	attack	Automatic report - Web App Attack	2019-07-09 21:53:50
218.92.0.182	attack	Jul 9 15:51:10 mail sshd\[23687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.182 user=root Jul 9 15:51:12 mail sshd\[23687\]: Failed password for root from 218.92.0.182 port 32043 ssh2 Jul 9 15:51:27 mail sshd\[23687\]: Failed password for root from 218.92.0.182 port 32043 ssh2 ...	2019-07-09 21:56:12
217.170.197.89	attackbots	Jul 9 15:44:36 ns341937 sshd[15047]: Failed password for root from 217.170.197.89 port 26219 ssh2 Jul 9 15:44:38 ns341937 sshd[15047]: Failed password for root from 217.170.197.89 port 26219 ssh2 Jul 9 15:44:40 ns341937 sshd[15047]: Failed password for root from 217.170.197.89 port 26219 ssh2 Jul 9 15:44:43 ns341937 sshd[15047]: Failed password for root from 217.170.197.89 port 26219 ssh2 ...	2019-07-09 22:10:02
172.104.16.249	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-07-09 21:46:12
92.47.97.10	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 16:26:15,917 INFO [shellcode_manager] (92.47.97.10) no match, writing hexdump (86cce91a2d77aa0a9eb1d3e7b6c7f4b6 :734723) - MS17010 (EternalBlue)	2019-07-09 22:16:09
185.36.81.180	attackbots	2019-07-09T12:01:23.522913ns1.unifynetsol.net postfix/smtpd\[20621\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-07-09T13:12:15.321187ns1.unifynetsol.net postfix/smtpd\[30262\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-07-09T14:45:33.638846ns1.unifynetsol.net postfix/smtpd\[5949\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-07-09T15:55:35.512906ns1.unifynetsol.net postfix/smtpd\[18334\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure 2019-07-09T17:05:25.412948ns1.unifynetsol.net postfix/smtpd\[32493\]: warning: unknown\[185.36.81.180\]: SASL LOGIN authentication failed: authentication failure	2019-07-09 21:24:43

最近上报的IP列表

189.69.70.13	187.202.186.148	186.130.100.131	185.253.80.104
178.207.125.4	177.159.249.144	121.131.208.218	118.71.224.175
195.181.65.246	103.52.217.172	113.166.225.9	141.193.69.226
103.52.216.181	102.150.113.109	93.87.76.170	150.62.125.101
85.191.47.95	61.27.67.209	32.103.33.78	87.17.4.121