49.51.160.107 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 49.51.160.107 to port 2181	2020-07-25 21:09:41
attackbotsspam	Unauthorized connection attempt detected from IP address 49.51.160.107 to port 8800	2020-05-31 21:55:25
attackspambots	Unauthorized connection attempt detected from IP address 49.51.160.107 to port 6679	2020-05-30 03:59:45
attackbots	Port scan: Attack repeated for 24 hours	2020-03-30 13:20:32
attack	Unauthorized connection attempt detected from IP address 49.51.160.107 to port 4389	2020-01-09 18:40:02

相同子网IP讨论:

IP	类型	评论内容	时间
49.51.160.53	attack	[portscan]	2020-12-31 13:16:15
49.51.160.77	spamattack	port 6003	2020-12-31 13:09:30
49.51.160.139	attack	2020-09-10T09:32:33.079252upcloud.m0sh1x2.com sshd[17555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 user=root 2020-09-10T09:32:34.904026upcloud.m0sh1x2.com sshd[17555]: Failed password for root from 49.51.160.139 port 41714 ssh2	2020-09-11 03:52:31
49.51.160.139	attack	2020-09-10T09:32:33.079252upcloud.m0sh1x2.com sshd[17555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 user=root 2020-09-10T09:32:34.904026upcloud.m0sh1x2.com sshd[17555]: Failed password for root from 49.51.160.139 port 41714 ssh2	2020-09-10 19:27:17
49.51.160.139	attackbots	Time: Sat Sep 5 08:07:22 2020 +0000 IP: 49.51.160.139 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 5 07:40:14 ca-16-ede1 sshd[78257]: Invalid user nexthink from 49.51.160.139 port 52316 Sep 5 07:40:16 ca-16-ede1 sshd[78257]: Failed password for invalid user nexthink from 49.51.160.139 port 52316 ssh2 Sep 5 07:53:09 ca-16-ede1 sshd[79899]: Invalid user dongwei from 49.51.160.139 port 36616 Sep 5 07:53:11 ca-16-ede1 sshd[79899]: Failed password for invalid user dongwei from 49.51.160.139 port 36616 ssh2 Sep 5 08:07:21 ca-16-ede1 sshd[81762]: Invalid user stats from 49.51.160.139 port 58818	2020-09-05 17:36:05
49.51.160.139	attackspambots	Invalid user lzj from 49.51.160.139 port 59010	2020-08-31 19:47:00
49.51.160.139	attackspam	$f2bV_matches	2020-08-28 04:51:12
49.51.160.139	attackspam	web-1 [ssh_2] SSH Attack	2020-08-23 03:41:58
49.51.160.139	attack	Aug 19 20:04:21 nextcloud sshd\[13546\]: Invalid user cnz from 49.51.160.139 Aug 19 20:04:21 nextcloud sshd\[13546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 Aug 19 20:04:24 nextcloud sshd\[13546\]: Failed password for invalid user cnz from 49.51.160.139 port 46272 ssh2	2020-08-20 02:35:29
49.51.160.139	attackbotsspam	21 attempts against mh-ssh on echoip	2020-08-19 07:11:36
49.51.160.139	attackbotsspam	Aug 11 23:29:40 fhem-rasp sshd[4817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 user=root Aug 11 23:29:43 fhem-rasp sshd[4817]: Failed password for root from 49.51.160.139 port 50350 ssh2 ...	2020-08-12 05:42:13
49.51.160.139	attackbotsspam	2020-07-26T07:07:43.168439dmca.cloudsearch.cf sshd[13743]: Invalid user paci from 49.51.160.139 port 50926 2020-07-26T07:07:43.173487dmca.cloudsearch.cf sshd[13743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 2020-07-26T07:07:43.168439dmca.cloudsearch.cf sshd[13743]: Invalid user paci from 49.51.160.139 port 50926 2020-07-26T07:07:45.445483dmca.cloudsearch.cf sshd[13743]: Failed password for invalid user paci from 49.51.160.139 port 50926 ssh2 2020-07-26T07:15:51.521002dmca.cloudsearch.cf sshd[13945]: Invalid user servidor from 49.51.160.139 port 56296 2020-07-26T07:15:51.526612dmca.cloudsearch.cf sshd[13945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 2020-07-26T07:15:51.521002dmca.cloudsearch.cf sshd[13945]: Invalid user servidor from 49.51.160.139 port 56296 2020-07-26T07:15:53.126095dmca.cloudsearch.cf sshd[13945]: Failed password for invalid user servidor from 49.5 ...	2020-07-26 15:39:33
49.51.160.240	attack	Unauthorized connection attempt detected from IP address 49.51.160.240 to port 8181	2020-07-25 22:41:04
49.51.160.139	attack	Jul 25 06:01:16 vm1 sshd[5064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.160.139 Jul 25 06:01:18 vm1 sshd[5064]: Failed password for invalid user md from 49.51.160.139 port 41048 ssh2 ...	2020-07-25 14:47:18
49.51.160.201	attackspam	Unauthorized connection attempt detected from IP address 49.51.160.201 to port 4506	2020-07-22 22:01:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.51.160.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55826
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.51.160.107.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010900 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 18:39:59 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 107.160.51.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.160.51.49.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
201.178.233.209	attackspam	postfix-gen jail [ma]	2019-07-22 08:22:02
154.183.154.28	attackbotsspam	Sun, 21 Jul 2019 18:27:18 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:17:18
27.79.176.61	attack	Sun, 21 Jul 2019 18:27:20 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:15:32
125.167.217.140	attackspambots	Sun, 21 Jul 2019 18:27:17 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:24:19
103.30.78.15	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-22 08:24:43
217.147.1.165	attackspam	Splunk® : port scan detected: Jul 21 14:27:16 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=217.147.1.165 DST=104.248.11.191 LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=20609 DF PROTO=TCP SPT=62965 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0	2019-07-22 08:25:22
49.34.120.215	attackspambots	Sun, 21 Jul 2019 18:27:10 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:48:08
41.251.9.156	attackbots	Sun, 21 Jul 2019 18:27:11 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:43:47
180.243.134.77	attackbotsspam	Sun, 21 Jul 2019 18:27:18 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:20:56
116.71.130.38	attackbotsspam	Sun, 21 Jul 2019 18:27:13 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:37:37
116.68.105.183	attackbotsspam	Sun, 21 Jul 2019 18:27:18 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:21:32
180.254.164.199	attackbots	Sun, 21 Jul 2019 18:27:17 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 08:23:46
189.51.103.44	attackbotsspam	Autoban 189.51.103.44 AUTH/CONNECT	2019-07-22 08:49:56
189.91.5.88	attack	Autoban 189.91.5.88 AUTH/CONNECT	2019-07-22 08:33:48
190.104.119.27	attackspam	Autoban 190.104.119.27 AUTH/CONNECT	2019-07-22 08:20:24

最近上报的IP列表

200.57.226.212	191.243.36.240	188.151.20.101	188.87.253.252
187.188.153.149	187.178.145.161	181.60.62.11	179.189.48.38
178.46.215.199	178.46.212.91	177.222.229.167	176.108.241.27
118.168.59.232	118.122.124.85	114.24.105.136	95.255.77.6
94.179.189.233	90.188.27.158	83.226.185.62	78.26.141.16