52.165.42.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jul 15 10:34:30 inter-technics sshd[25694]: Invalid user admin from 52.165.42.12 port 34858 Jul 15 10:34:30 inter-technics sshd[25694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.165.42.12 Jul 15 10:34:30 inter-technics sshd[25694]: Invalid user admin from 52.165.42.12 port 34858 Jul 15 10:34:32 inter-technics sshd[25694]: Failed password for invalid user admin from 52.165.42.12 port 34858 ssh2 Jul 15 10:39:47 inter-technics sshd[26113]: Invalid user admin from 52.165.42.12 port 13048 ...	2020-07-15 16:46:28
attack	<6 unauthorized SSH connections	2020-06-26 16:02:04

类型

评论内容

时间

attackspam

Jul 15 10:34:30 inter-technics sshd[25694]: Invalid user admin from 52.165.42.12 port 34858
Jul 15 10:34:30 inter-technics sshd[25694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.165.42.12
Jul 15 10:34:30 inter-technics sshd[25694]: Invalid user admin from 52.165.42.12 port 34858
Jul 15 10:34:32 inter-technics sshd[25694]: Failed password for invalid user admin from 52.165.42.12 port 34858 ssh2
Jul 15 10:39:47 inter-technics sshd[26113]: Invalid user admin from 52.165.42.12 port 13048
...

2020-07-15 16:46:28

attack

<6 unauthorized SSH connections

2020-06-26 16:02:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.165.42.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.165.42.12.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062600 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 16:01:56 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 12.42.165.52.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.42.165.52.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
134.73.5.117	attackbotsspam	Jun 18 15:10:41 PorscheCustomer sshd[26586]: Failed password for root from 134.73.5.117 port 60914 ssh2 Jun 18 15:12:17 PorscheCustomer sshd[26637]: Failed password for root from 134.73.5.117 port 55252 ssh2 ...	2020-06-18 21:27:53
119.45.141.115	attackspambots	Jun 18 14:47:13 abendstille sshd\[28182\]: Invalid user nathaniel from 119.45.141.115 Jun 18 14:47:13 abendstille sshd\[28182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.141.115 Jun 18 14:47:15 abendstille sshd\[28182\]: Failed password for invalid user nathaniel from 119.45.141.115 port 47494 ssh2 Jun 18 14:49:21 abendstille sshd\[30392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.141.115 user=root Jun 18 14:49:24 abendstille sshd\[30392\]: Failed password for root from 119.45.141.115 port 42468 ssh2 ...	2020-06-18 21:38:54
61.177.172.102	attackbots	Honeypot hit.	2020-06-18 21:54:47
171.251.49.14	attack	SMB Server BruteForce Attack	2020-06-18 21:55:20
198.27.64.212	attackspam	(sshd) Failed SSH login from 198.27.64.212 (CA/Canada/ns504601.ip-198-27-64.net): 12 in the last 3600 secs	2020-06-18 21:29:39
102.44.187.29	attackspam	Jun 18 15:08:21 master sshd[20637]: Failed password for invalid user admin from 102.44.187.29 port 47077 ssh2	2020-06-18 21:34:49
61.177.172.168	attack	$f2bV_matches	2020-06-18 21:28:19
212.156.207.112	attackspambots	Automatic report - Banned IP Access	2020-06-18 21:50:15
5.142.239.166	attackbots	Unauthorized IMAP connection attempt	2020-06-18 21:11:59
74.82.47.15	attackspambots	TCP (SYN) 74.82.47.15:55606 -> port 3389, len 40	2020-06-18 21:26:19
157.230.31.236	attackspambots	Jun 18 14:09:11 mout sshd[30390]: Invalid user ut2k4server from 157.230.31.236 port 33252	2020-06-18 21:17:53
222.186.173.215	attackspambots	Jun 18 05:19:56 debian sshd[29977]: Unable to negotiate with 222.186.173.215 port 52612: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Jun 18 09:28:45 debian sshd[23881]: Unable to negotiate with 222.186.173.215 port 5122: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-06-18 21:36:44
139.59.66.101	attack	Jun 18 15:10:58 buvik sshd[9356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.66.101 Jun 18 15:11:00 buvik sshd[9356]: Failed password for invalid user lillo from 139.59.66.101 port 38180 ssh2 Jun 18 15:14:37 buvik sshd[9743]: Invalid user test from 139.59.66.101 ...	2020-06-18 21:40:55
186.226.6.37	attackbotsspam	Jun 18 15:08:16 master sshd[20635]: Failed password for invalid user admin from 186.226.6.37 port 50268 ssh2	2020-06-18 21:37:17
222.186.180.17	attackbotsspam	$f2bV_matches	2020-06-18 21:31:42

最近上报的IP列表

2806:108e:13:1088:e090:d545:f2bd:cbf0	35.194.70.48	113.181.44.48	45.162.7.216
200.37.197.132	178.62.99.103	138.201.47.156	70.212.155.92
46.38.150.132	122.130.216.149	169.235.129.188	180.5.5.192
143.83.89.209	136.90.114.145	39.109.117.153	212.144.30.240
143.124.102.36	128.227.222.119	208.133.182.124	137.168.123.14