49.67.138.51 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
49.67.138.21	attackspam	2019-06-28T05:32:10.469828 X postfix/smtpd[29757]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-28T05:32:35.493042 X postfix/smtpd[29753]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-28T07:10:13.058841 X postfix/smtpd[42764]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-28 18:18:50
49.67.138.223	attackbotsspam	2019-06-23T21:32:09.378996 X postfix/smtpd[39204]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-23T21:50:51.368754 X postfix/smtpd[41059]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-23T21:51:43.075338 X postfix/smtpd[41518]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-24 10:51:42
49.67.138.209	attackbotsspam	2019-06-22T04:45:27.394797 X postfix/smtpd[19345]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:32:35.383133 X postfix/smtpd[34046]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:34:23.147502 X postfix/smtpd[34059]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-22 15:04:00

类型

评论内容

时间

49.67.138.21

attackspam

2019-06-28T05:32:10.469828 X postfix/smtpd[29757]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-28T05:32:35.493042 X postfix/smtpd[29753]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-28T07:10:13.058841 X postfix/smtpd[42764]: warning: unknown[49.67.138.21]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2019-06-28 18:18:50

49.67.138.223

attackbotsspam

2019-06-23T21:32:09.378996 X postfix/smtpd[39204]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-23T21:50:51.368754 X postfix/smtpd[41059]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-23T21:51:43.075338 X postfix/smtpd[41518]: warning: unknown[49.67.138.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2019-06-24 10:51:42

49.67.138.209

attackbotsspam

2019-06-22T04:45:27.394797 X postfix/smtpd[19345]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-22T06:32:35.383133 X postfix/smtpd[34046]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-22T06:34:23.147502 X postfix/smtpd[34059]: warning: unknown[49.67.138.209]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2019-06-22 15:04:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.67.138.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54798
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.67.138.51.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 09:12:53 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 51.138.67.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 51.138.67.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
207.186.160.22	attack	20 attempts against mh-ssh on mist	2020-07-11 16:35:41
149.56.13.111	attackbots	Port Scan detected from 149.56.13.111 (CA/Canada/Quebec/Montreal (Ville-Marie)/111.ip-149-56-13.net). 4 hits in the last 275 seconds	2020-07-11 15:59:52
183.167.211.135	attackspam	Invalid user yangke from 183.167.211.135 port 41548 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.167.211.135 Invalid user yangke from 183.167.211.135 port 41548 Failed password for invalid user yangke from 183.167.211.135 port 41548 ssh2 Invalid user saleema from 183.167.211.135 port 40500	2020-07-11 16:32:06
117.50.63.253	attack	1594439545 - 07/11/2020 05:52:25 Host: 117.50.63.253/117.50.63.253 Port: 2000 TCP Blocked ...	2020-07-11 16:39:51
165.22.40.128	attack	165.22.40.128 - - [11/Jul/2020:07:36:01 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.40.128 - - [11/Jul/2020:07:36:03 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.40.128 - - [11/Jul/2020:07:36:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-11 16:38:19
51.161.45.65	attackbotsspam	Invalid user heming from 51.161.45.65 port 47030	2020-07-11 16:28:18
182.61.24.101	attackspam	"fail2ban match"	2020-07-11 16:09:42
152.136.213.72	attackspam	Jul 11 06:21:32 ws26vmsma01 sshd[98962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.213.72 Jul 11 06:21:34 ws26vmsma01 sshd[98962]: Failed password for invalid user scm from 152.136.213.72 port 60006 ssh2 ...	2020-07-11 16:06:44
156.96.47.131	attackbots	Jul 11 06:22:19 debian-2gb-nbg1-2 kernel: \[16699925.061934\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=156.96.47.131 DST=195.201.40.59 LEN=427 TOS=0x00 PREC=0x00 TTL=50 ID=41840 DF PROTO=UDP SPT=5093 DPT=5060 LEN=407	2020-07-11 16:24:16
51.38.70.175	attack	Jul 11 08:03:29 ms-srv sshd[39753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.70.175 Jul 11 08:03:30 ms-srv sshd[39753]: Failed password for invalid user shaun from 51.38.70.175 port 43222 ssh2	2020-07-11 16:25:06
163.125.75.147	attack	xmlrpc attack	2020-07-11 16:25:46
208.113.162.87	attackspam	208.113.162.87 - - [11/Jul/2020:07:04:31 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [11/Jul/2020:07:04:34 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [11/Jul/2020:07:04:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-11 16:37:03
46.38.150.94	attackbotsspam	2020-07-11 11:02:37 dovecot_login authenticator failed for \(User\) \[46.38.150.94\]: 535 Incorrect authentication data \(set_id=dasani@ift.org.ua\)2020-07-11 11:03:42 dovecot_login authenticator failed for \(User\) \[46.38.150.94\]: 535 Incorrect authentication data \(set_id=efsuser@ift.org.ua\)2020-07-11 11:04:44 dovecot_login authenticator failed for \(User\) \[46.38.150.94\]: 535 Incorrect authentication data \(set_id=dorcast@ift.org.ua\) ...	2020-07-11 16:07:32
128.199.103.239	attackspambots	Jul 10 22:52:29 s158375 sshd[3688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.103.239	2020-07-11 16:38:41
219.250.188.134	attackbotsspam	Jul 11 03:30:09 XXXXXX sshd[14494]: Invalid user chang from 219.250.188.134 port 44976	2020-07-11 16:19:01

最近上报的IP列表

64.104.132.243	95.12.136.240	85.183.68.14	177.44.75.154
124.236.153.64	79.115.173.55	178.32.97.170	218.40.230.194
209.102.231.104	116.192.102.74	120.108.56.219	119.247.167.50
77.247.108.132	104.218.93.207	1.47.1.124	60.191.23.61
145.92.87.183	193.57.67.117	122.219.90.39	138.48.222.222