5.42.2.153 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
5.42.21.72	attackspambots	DATE:2020-02-13 14:48:56, IP:5.42.21.72, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-14 00:04:28
5.42.239.197	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.42.239.197/ SA - 1H : (12) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SA NAME ASN : ASN35753 IP : 5.42.239.197 CIDR : 5.42.238.0/23 PREFIX COUNT : 230 UNIQUE IP COUNT : 194816 ATTACKS DETECTED ASN35753 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-18 23:53:44 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-19 07:40:51
5.42.226.10	attackspam	2019-07-23T05:56:25.288967abusebot-6.cloudsearch.cf sshd\[876\]: Invalid user ze from 5.42.226.10 port 52470	2019-07-23 14:17:13
5.42.226.10	attackspam	Jul 16 08:53:36 srv-4 sshd\[8178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root Jul 16 08:53:38 srv-4 sshd\[8178\]: Failed password for root from 5.42.226.10 port 48372 ssh2 Jul 16 08:59:07 srv-4 sshd\[8563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root ...	2019-07-16 14:15:53
5.42.226.10	attackspam	Jul 15 23:07:35 srv-4 sshd\[30286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=daemon Jul 15 23:07:37 srv-4 sshd\[30286\]: Failed password for daemon from 5.42.226.10 port 33338 ssh2 Jul 15 23:13:01 srv-4 sshd\[30689\]: Invalid user train5 from 5.42.226.10 Jul 15 23:13:01 srv-4 sshd\[30689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 ...	2019-07-16 04:29:37
5.42.226.10	attackbots	Jul 9 23:35:09 unicornsoft sshd\[15257\]: Invalid user vnc from 5.42.226.10 Jul 9 23:35:09 unicornsoft sshd\[15257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 Jul 9 23:35:11 unicornsoft sshd\[15257\]: Failed password for invalid user vnc from 5.42.226.10 port 43006 ssh2	2019-07-10 08:10:45
5.42.226.10	attack	Reported by AbuseIPDB proxy server.	2019-07-08 02:00:13
5.42.226.10	attackspambots	Jul 5 20:47:17 dedicated sshd[26725]: Invalid user daniel from 5.42.226.10 port 60224	2019-07-06 07:09:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.2.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.42.2.153.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 20:07:12 CST 2025
;; MSG SIZE  rcvd: 103

HOST信息:

153.2.42.5.in-addr.arpa domain name pointer 5-42-2-153.colomna.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
153.2.42.5.in-addr.arpa	name = 5-42-2-153.colomna.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.134.99.66	attackbotsspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-12 13:29:47
163.172.37.251	attackbots	Joomla User : try to access forms...	2019-10-12 12:52:58
177.22.120.98	attackspambots	postfix	2019-10-12 13:19:02
104.238.110.156	attackspambots	SSH Bruteforce attack	2019-10-12 13:04:17
190.72.61.50	attackspam	10/11/2019-17:45:49.957246 190.72.61.50 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-12 13:13:15
185.176.27.86	attackspambots	10/11/2019-17:45:27.037848 185.176.27.86 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-12 13:19:56
73.80.214.178	attack	Oct 11 17:45:53 tor-proxy-02 sshd\[9103\]: Invalid user pi from 73.80.214.178 port 48802 Oct 11 17:45:53 tor-proxy-02 sshd\[9103\]: Connection closed by 73.80.214.178 port 48802 \[preauth\] Oct 11 17:45:54 tor-proxy-02 sshd\[9104\]: Invalid user pi from 73.80.214.178 port 48804 ...	2019-10-12 13:11:30
61.76.175.195	attackbots	Oct 11 17:46:10 core sshd[28602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root Oct 11 17:46:12 core sshd[28602]: Failed password for root from 61.76.175.195 port 43056 ssh2 ...	2019-10-12 13:06:18
49.88.112.65	attackbots	Oct 11 15:45:01 hcbbdb sshd\[4619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Oct 11 15:45:02 hcbbdb sshd\[4619\]: Failed password for root from 49.88.112.65 port 50778 ssh2 Oct 11 15:45:52 hcbbdb sshd\[4706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Oct 11 15:45:53 hcbbdb sshd\[4706\]: Failed password for root from 49.88.112.65 port 59639 ssh2 Oct 11 15:46:48 hcbbdb sshd\[4788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root	2019-10-12 12:54:56
222.252.31.19	attack	2019-10-11T15:46:36.799829abusebot-4.cloudsearch.cf sshd\[9972\]: Invalid user admin from 222.252.31.19 port 60486	2019-10-12 12:57:24
45.55.224.209	attackspambots	Oct 11 05:42:33 kapalua sshd\[6812\]: Invalid user Success@123 from 45.55.224.209 Oct 11 05:42:33 kapalua sshd\[6812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209 Oct 11 05:42:35 kapalua sshd\[6812\]: Failed password for invalid user Success@123 from 45.55.224.209 port 53639 ssh2 Oct 11 05:46:39 kapalua sshd\[7129\]: Invalid user qwerty000 from 45.55.224.209 Oct 11 05:46:39 kapalua sshd\[7129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209	2019-10-12 12:57:04
167.114.226.137	attackbotsspam	Oct 11 18:41:12 sauna sshd[110903]: Failed password for root from 167.114.226.137 port 60438 ssh2 ...	2019-10-12 13:27:47
45.82.35.244	attackspambots	Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-12 13:15:52
125.212.201.8	attackspambots	Brute force attempt	2019-10-12 13:05:16
104.37.169.192	attack	Oct 12 00:48:23 ny01 sshd[29868]: Failed password for root from 104.37.169.192 port 57644 ssh2 Oct 12 00:52:28 ny01 sshd[30290]: Failed password for root from 104.37.169.192 port 50074 ssh2	2019-10-12 13:16:52

最近上报的IP列表

233.215.139.82	123.171.48.196	185.137.185.5	187.238.180.207
37.248.216.80	190.113.182.47	254.46.27.215	66.180.200.208
136.126.215.176	153.36.91.160	248.207.179.58	211.83.202.175
208.6.137.53	223.144.238.112	173.93.15.30	122.59.197.231
225.189.194.103	95.86.28.161	189.149.152.207	29.245.99.20