5.42.108.221 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): CJSC Kolomna-Sviaz TV

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 5.42.108.221 to port 23 [J]	2020-02-06 18:11:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.108.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12418
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.42.108.221.			IN	A

;; AUTHORITY SECTION:
.			115	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 18:11:04 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

221.108.42.5.in-addr.arpa domain name pointer 5-42-108-221.colomna.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.108.42.5.in-addr.arpa	name = 5-42-108-221.colomna.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
156.96.58.96	attackbots	Brute force SMTP login attempts.	2019-11-12 01:17:18
190.215.136.177	attackbots	Nov 11 15:40:52 linuxrulz sshd[16645]: Invalid user admin from 190.215.136.177 port 41581 Nov 11 15:40:52 linuxrulz sshd[16645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.215.136.177 Nov 11 15:40:55 linuxrulz sshd[16645]: Failed password for invalid user admin from 190.215.136.177 port 41581 ssh2 Nov 11 15:40:55 linuxrulz sshd[16645]: Connection closed by 190.215.136.177 port 41581 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.215.136.177	2019-11-12 01:03:33
91.99.157.41	attack	Connection by 91.99.157.41 on port: 5555 got caught by honeypot at 11/11/2019 1:44:00 PM	2019-11-12 01:00:07
51.68.174.177	attackbotsspam	$f2bV_matches	2019-11-12 00:46:03
139.59.9.234	attackspam	2019-11-11T15:43:47.893055struts4.enskede.local sshd\[26307\]: Invalid user daniel from 139.59.9.234 port 33376 2019-11-11T15:43:47.902550struts4.enskede.local sshd\[26307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.9.234 2019-11-11T15:43:50.428029struts4.enskede.local sshd\[26307\]: Failed password for invalid user daniel from 139.59.9.234 port 33376 ssh2 2019-11-11T15:50:18.171707struts4.enskede.local sshd\[26313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.9.234 user=daemon 2019-11-11T15:50:20.712388struts4.enskede.local sshd\[26313\]: Failed password for daemon from 139.59.9.234 port 43514 ssh2 ...	2019-11-12 00:44:30
167.71.60.209	attackbots	Automatic report - Banned IP Access	2019-11-12 00:53:30
222.186.175.183	attack	Nov 11 22:07:41 vibhu-HP-Z238-Microtower-Workstation sshd\[18270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Nov 11 22:07:43 vibhu-HP-Z238-Microtower-Workstation sshd\[18270\]: Failed password for root from 222.186.175.183 port 34212 ssh2 Nov 11 22:07:46 vibhu-HP-Z238-Microtower-Workstation sshd\[18270\]: Failed password for root from 222.186.175.183 port 34212 ssh2 Nov 11 22:07:49 vibhu-HP-Z238-Microtower-Workstation sshd\[18270\]: Failed password for root from 222.186.175.183 port 34212 ssh2 Nov 11 22:08:03 vibhu-HP-Z238-Microtower-Workstation sshd\[18285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root ...	2019-11-12 00:39:58
52.187.57.130	attackbotsspam	52.187.57.130 - - [11/Nov/2019:16:33:48 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.187.57.130 - - [11/Nov/2019:16:33:48 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.187.57.130 - - [11/Nov/2019:16:33:49 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.187.57.130 - - [11/Nov/2019:16:33:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.187.57.130 - - [11/Nov/2019:16:33:50 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.187.57.130 - - [11/Nov/2019:16:33:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-12 00:36:17
80.211.133.238	attackspambots	Nov 11 17:22:55 vps666546 sshd\[25374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.133.238 user=root Nov 11 17:22:57 vps666546 sshd\[25374\]: Failed password for root from 80.211.133.238 port 54950 ssh2 Nov 11 17:26:39 vps666546 sshd\[25515\]: Invalid user henri from 80.211.133.238 port 35358 Nov 11 17:26:39 vps666546 sshd\[25515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.133.238 Nov 11 17:26:41 vps666546 sshd\[25515\]: Failed password for invalid user henri from 80.211.133.238 port 35358 ssh2 ...	2019-11-12 00:41:15
62.234.44.43	attackspambots	Nov 11 21:53:56 vibhu-HP-Z238-Microtower-Workstation sshd\[17361\]: Invalid user byoung from 62.234.44.43 Nov 11 21:53:56 vibhu-HP-Z238-Microtower-Workstation sshd\[17361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.44.43 Nov 11 21:53:58 vibhu-HP-Z238-Microtower-Workstation sshd\[17361\]: Failed password for invalid user byoung from 62.234.44.43 port 37870 ssh2 Nov 11 21:58:46 vibhu-HP-Z238-Microtower-Workstation sshd\[17678\]: Invalid user kkkkkkkkkk from 62.234.44.43 Nov 11 21:58:46 vibhu-HP-Z238-Microtower-Workstation sshd\[17678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.44.43 ...	2019-11-12 00:39:21
106.13.6.116	attack	Nov 11 14:56:41 game-panel sshd[24288]: Failed password for postfix from 106.13.6.116 port 57406 ssh2 Nov 11 15:01:48 game-panel sshd[24433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.116 Nov 11 15:01:49 game-panel sshd[24433]: Failed password for invalid user julie from 106.13.6.116 port 49670 ssh2	2019-11-12 00:44:58
197.255.116.14	attackbots	//phpMyAdmin/scripts/setup.php	2019-11-12 01:00:55
139.215.217.181	attack	Nov 11 12:46:18 firewall sshd[6971]: Invalid user guest from 139.215.217.181 Nov 11 12:46:20 firewall sshd[6971]: Failed password for invalid user guest from 139.215.217.181 port 34592 ssh2 Nov 11 12:51:35 firewall sshd[7079]: Invalid user chaey from 139.215.217.181 ...	2019-11-12 01:11:33
36.84.80.31	attack	Nov 11 18:31:37 sauna sshd[136879]: Failed password for root from 36.84.80.31 port 8161 ssh2 ...	2019-11-12 00:43:44
84.244.180.7	attackbotsspam	2019-11-11T17:45:52.448998mail01 postfix/smtpd[13701]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T17:54:54.263226mail01 postfix/smtpd[13701]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T17:54:59.203245mail01 postfix/smtpd[14466]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-12 00:58:50

最近上报的IP列表

238.121.53.139	99.12.15.23	157.135.8.111	84.60.120.148
179.17.69.186	207.195.90.43	117.188.58.249	2.58.46.250
86.147.166.63	5.215.24.210	113.172.130.190	209.97.190.223
36.68.6.15	190.75.35.62	46.190.18.9	39.188.230.201
196.219.85.159	123.108.231.15	188.188.102.139	128.197.207.154