1.1.242.71 - IPInfo

基本信息:

城市(city): Kantharawichai

省份(region): Maha Sarakham

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.1.242.100	attack	Unauthorized connection attempt from IP address 1.1.242.100 on Port 445(SMB)	2020-07-08 13:35:35
1.1.242.100	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-26 08:42:44
1.1.242.43	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 12-03-2020 03:50:08.	2020-03-12 17:03:35
1.1.242.89	attackspambots	port scan/probe/communication attempt; port 23	2019-11-24 07:09:49
1.1.242.11	attack	Unauthorized connection attempt from IP address 1.1.242.11 on Port 445(SMB)	2019-08-28 00:26:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.242.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30420
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.242.71.			IN	A

;; AUTHORITY SECTION:
.			362	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030300 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 03 22:25:31 CST 2022
;; MSG SIZE  rcvd: 103

HOST信息:

71.242.1.1.in-addr.arpa domain name pointer node-mkn.pool-1-1.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.242.1.1.in-addr.arpa	name = node-mkn.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
179.189.105.114	attack	Jun 16 05:02:27 mail.srvfarm.net postfix/smtps/smtpd[906464]: warning: ip-179-189-105-114.isp.valenet.com.br[179.189.105.114]: SASL PLAIN authentication failed: Jun 16 05:02:27 mail.srvfarm.net postfix/smtps/smtpd[906464]: lost connection after AUTH from ip-179-189-105-114.isp.valenet.com.br[179.189.105.114] Jun 16 05:06:12 mail.srvfarm.net postfix/smtpd[915628]: warning: ip-179-189-105-114.isp.valenet.com.br[179.189.105.114]: SASL PLAIN authentication failed: Jun 16 05:06:13 mail.srvfarm.net postfix/smtpd[915628]: lost connection after AUTH from ip-179-189-105-114.isp.valenet.com.br[179.189.105.114] Jun 16 05:08:20 mail.srvfarm.net postfix/smtps/smtpd[916113]: lost connection after CONNECT from ip-179-189-105-114.isp.valenet.com.br[179.189.105.114]	2020-06-16 17:37:21
185.216.183.236	attack	Jun 16 05:06:44 mail.srvfarm.net postfix/smtps/smtpd[935140]: warning: i236.kajakom.pl[185.216.183.236]: SASL PLAIN authentication failed: Jun 16 05:06:44 mail.srvfarm.net postfix/smtps/smtpd[935140]: lost connection after AUTH from i236.kajakom.pl[185.216.183.236] Jun 16 05:08:12 mail.srvfarm.net postfix/smtpd[935987]: lost connection after CONNECT from unknown[185.216.183.236] Jun 16 05:08:26 mail.srvfarm.net postfix/smtpd[921415]: warning: i236.kajakom.pl[185.216.183.236]: SASL PLAIN authentication failed: Jun 16 05:08:26 mail.srvfarm.net postfix/smtpd[921415]: lost connection after AUTH from i236.kajakom.pl[185.216.183.236]	2020-06-16 17:35:59
180.183.158.178	attackspambots	67 counts in 6 hours: Login attempt failed for...	2020-06-16 17:56:47
36.91.38.31	attackbotsspam	Jun 16 06:27:58 srv-ubuntu-dev3 sshd[126321]: Invalid user fraga from 36.91.38.31 Jun 16 06:27:58 srv-ubuntu-dev3 sshd[126321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.91.38.31 Jun 16 06:27:58 srv-ubuntu-dev3 sshd[126321]: Invalid user fraga from 36.91.38.31 Jun 16 06:28:00 srv-ubuntu-dev3 sshd[126321]: Failed password for invalid user fraga from 36.91.38.31 port 51543 ssh2 Jun 16 06:32:38 srv-ubuntu-dev3 sshd[129154]: Invalid user firefart from 36.91.38.31 Jun 16 06:32:38 srv-ubuntu-dev3 sshd[129154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.91.38.31 Jun 16 06:32:38 srv-ubuntu-dev3 sshd[129154]: Invalid user firefart from 36.91.38.31 Jun 16 06:32:40 srv-ubuntu-dev3 sshd[129154]: Failed password for invalid user firefart from 36.91.38.31 port 51300 ssh2 Jun 16 06:37:24 srv-ubuntu-dev3 sshd[764]: Invalid user host from 36.91.38.31 ...	2020-06-16 18:06:03
46.38.150.142	attackspambots	Jun 16 11:27:41 websrv1.derweidener.de postfix/smtpd[2758718]: warning: unknown[46.38.150.142]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 16 11:28:41 websrv1.derweidener.de postfix/smtpd[2758332]: warning: unknown[46.38.150.142]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 16 11:29:30 websrv1.derweidener.de postfix/smtpd[2758332]: warning: unknown[46.38.150.142]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 16 11:30:19 websrv1.derweidener.de postfix/smtpd[2770793]: warning: unknown[46.38.150.142]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 16 11:30:56 websrv1.derweidener.de postfix/smtpd[2770793]: warning: unknown[46.38.150.142]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-16 17:56:17
87.251.74.30	attackbots	Jun 16 11:49:50 mail sshd[21505]: Invalid user from 87.251.74.30 port 2048 Jun 16 11:49:50 mail sshd[21505]: Failed none for invalid user from 87.251.74.30 port 2048 ssh2 ...	2020-06-16 17:55:45
193.189.77.114	attack	Jun 16 05:00:56 mail.srvfarm.net postfix/smtpd[916110]: warning: unknown[193.189.77.114]: SASL PLAIN authentication failed: Jun 16 05:00:56 mail.srvfarm.net postfix/smtpd[916110]: lost connection after AUTH from unknown[193.189.77.114] Jun 16 05:07:46 mail.srvfarm.net postfix/smtps/smtpd[915908]: lost connection after CONNECT from unknown[193.189.77.114] Jun 16 05:09:35 mail.srvfarm.net postfix/smtpd[935949]: lost connection after CONNECT from unknown[193.189.77.114] Jun 16 05:09:48 mail.srvfarm.net postfix/smtpd[936016]: lost connection after CONNECT from unknown[193.189.77.114]	2020-06-16 17:33:25
91.246.210.39	attack	Jun 16 04:57:42 mail.srvfarm.net postfix/smtps/smtpd[915895]: warning: unknown[91.246.210.39]: SASL PLAIN authentication failed: Jun 16 04:57:42 mail.srvfarm.net postfix/smtps/smtpd[915895]: lost connection after AUTH from unknown[91.246.210.39] Jun 16 05:04:01 mail.srvfarm.net postfix/smtps/smtpd[915580]: warning: unknown[91.246.210.39]: SASL PLAIN authentication failed: Jun 16 05:04:01 mail.srvfarm.net postfix/smtps/smtpd[915580]: lost connection after AUTH from unknown[91.246.210.39] Jun 16 05:06:34 mail.srvfarm.net postfix/smtps/smtpd[935136]: warning: unknown[91.246.210.39]: SASL PLAIN authentication failed:	2020-06-16 17:42:26
167.172.103.224	attack	SSH login attempts.	2020-06-16 18:05:34
46.23.140.18	attack	Jun 16 04:59:12 mail.srvfarm.net postfix/smtps/smtpd[917493]: warning: 46-23-140-18.static.podluzi.net[46.23.140.18]: SASL PLAIN authentication failed: Jun 16 04:59:12 mail.srvfarm.net postfix/smtps/smtpd[917493]: lost connection after AUTH from 46-23-140-18.static.podluzi.net[46.23.140.18] Jun 16 05:07:47 mail.srvfarm.net postfix/smtps/smtpd[917498]: warning: 46-23-140-18.static.podluzi.net[46.23.140.18]: SASL PLAIN authentication failed: Jun 16 05:07:47 mail.srvfarm.net postfix/smtps/smtpd[917498]: lost connection after AUTH from 46-23-140-18.static.podluzi.net[46.23.140.18] Jun 16 05:08:23 mail.srvfarm.net postfix/smtps/smtpd[915909]: warning: 46-23-140-18.static.podluzi.net[46.23.140.18]: SASL PLAIN authentication failed:	2020-06-16 17:44:07
122.51.194.209	attack	Fail2Ban Ban Triggered	2020-06-16 17:49:47
103.57.84.82	attackspam	SMTP/25/465/587 Probe, BadAuth, SPAM, Hack -	2020-06-16 17:54:23
95.173.68.204	attackspam	Jun 16 09:38:23 mail.srvfarm.net postfix/smtps/smtpd[1099748]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed: Jun 16 09:38:23 mail.srvfarm.net postfix/smtps/smtpd[1099748]: lost connection after AUTH from unknown[95.173.68.204] Jun 16 09:38:44 mail.srvfarm.net postfix/smtpd[1104278]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed: Jun 16 09:38:44 mail.srvfarm.net postfix/smtpd[1104278]: lost connection after AUTH from unknown[95.173.68.204] Jun 16 09:45:00 mail.srvfarm.net postfix/smtps/smtpd[1105851]: warning: unknown[95.173.68.204]: SASL PLAIN authentication failed:	2020-06-16 17:26:54
125.64.94.132	attackspambots	Port scan denied	2020-06-16 17:52:36
185.215.231.209	attackbots	Jun 16 05:00:41 mail.srvfarm.net postfix/smtps/smtpd[915905]: warning: unknown[185.215.231.209]: SASL PLAIN authentication failed: Jun 16 05:00:41 mail.srvfarm.net postfix/smtps/smtpd[915905]: lost connection after AUTH from unknown[185.215.231.209] Jun 16 05:07:58 mail.srvfarm.net postfix/smtps/smtpd[913342]: warning: unknown[185.215.231.209]: SASL PLAIN authentication failed: Jun 16 05:07:58 mail.srvfarm.net postfix/smtps/smtpd[913342]: lost connection after AUTH from unknown[185.215.231.209] Jun 16 05:08:28 mail.srvfarm.net postfix/smtps/smtpd[917493]: warning: unknown[185.215.231.209]: SASL PLAIN authentication failed:	2020-06-16 17:36:18

最近上报的IP列表

1.1.241.56	1.1.243.106	1.1.244.186	1.1.244.189
1.1.245.69	1.1.246.39	1.1.251.134	1.10.130.55
1.10.132.109	1.10.133.109	1.10.133.180	1.10.133.241
1.117.149.208	1.117.240.93	1.117.65.73	1.117.83.110
1.117.97.110	1.119.141.60	1.119.147.34	1.12.224.77