1.197.240.12 - IPInfo

基本信息:

城市(city): Zhoukou

省份(region): Henan

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): No.31,Jin-rong Street

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.197.240.211	attack	Unauthorized connection attempt detected from IP address 1.197.240.211 to port 445 [T]	2020-01-09 02:27:38

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.197.240.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63092
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.197.240.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052700 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 27 21:51:43 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

12.240.197.1.in-addr.arpa has no PTR record

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 12.240.197.1.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
221.215.130.162	attackspambots	2019-10-23T20:12:37.108933abusebot-5.cloudsearch.cf sshd\[9127\]: Invalid user keith from 221.215.130.162 port 42520	2019-10-24 07:32:43
40.73.103.7	attackbotsspam	$f2bV_matches	2019-10-24 07:07:22
103.52.52.22	attack	Oct 24 02:28:49 www sshd\[35166\]: Invalid user 121g from 103.52.52.22Oct 24 02:28:51 www sshd\[35166\]: Failed password for invalid user 121g from 103.52.52.22 port 32788 ssh2Oct 24 02:33:21 www sshd\[35220\]: Invalid user lenxue888 from 103.52.52.22 ...	2019-10-24 07:36:47
89.36.220.145	attackspam	Oct 21 22:15:45 odroid64 sshd\[7513\]: Invalid user ftpuser from 89.36.220.145 Oct 21 22:15:45 odroid64 sshd\[7513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 Oct 21 22:15:47 odroid64 sshd\[7513\]: Failed password for invalid user ftpuser from 89.36.220.145 port 49456 ssh2 Oct 21 22:15:45 odroid64 sshd\[7513\]: Invalid user ftpuser from 89.36.220.145 Oct 21 22:15:45 odroid64 sshd\[7513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 Oct 21 22:15:47 odroid64 sshd\[7513\]: Failed password for invalid user ftpuser from 89.36.220.145 port 49456 ssh2 Oct 21 22:15:45 odroid64 sshd\[7513\]: Invalid user ftpuser from 89.36.220.145 Oct 21 22:15:45 odroid64 sshd\[7513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 Oct 21 22:15:47 odroid64 sshd\[7513\]: Failed password for invalid user ftpuser from 89.36.220.145 po ...	2019-10-24 07:37:31
37.49.231.123	attackbotsspam	Port scan on 3 port(s): 7070 9080 50802	2019-10-24 07:15:09
203.138.172.104	attackbots	$f2bV_matches	2019-10-24 07:14:52
89.248.174.215	attack	ET DROP Dshield Block Listed Source group 1 - port: 8089 proto: TCP cat: Misc Attack	2019-10-24 07:24:24
92.207.180.50	attackspam	Oct 23 20:09:57 sshgateway sshd\[6776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.207.180.50 user=root Oct 23 20:09:59 sshgateway sshd\[6776\]: Failed password for root from 92.207.180.50 port 57122 ssh2 Oct 23 20:13:30 sshgateway sshd\[6781\]: Invalid user from 92.207.180.50	2019-10-24 07:06:52
31.163.130.106	attackspam	" "	2019-10-24 07:29:17
62.234.55.241	attackspambots	(sshd) Failed SSH login from 62.234.55.241 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 23 21:48:50 server2 sshd[28555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.55.241 user=root Oct 23 21:48:52 server2 sshd[28555]: Failed password for root from 62.234.55.241 port 55124 ssh2 Oct 23 22:08:41 server2 sshd[29049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.55.241 user=root Oct 23 22:08:43 server2 sshd[29049]: Failed password for root from 62.234.55.241 port 57652 ssh2 Oct 23 22:13:40 server2 sshd[29170]: Invalid user tristan from 62.234.55.241 port 46368	2019-10-24 06:59:37
142.93.248.5	attack	Oct 23 21:53:41 apollo sshd\[30235\]: Failed password for root from 142.93.248.5 port 49382 ssh2Oct 23 22:13:09 apollo sshd\[30328\]: Invalid user user3 from 142.93.248.5Oct 23 22:13:10 apollo sshd\[30328\]: Failed password for invalid user user3 from 142.93.248.5 port 33086 ssh2 ...	2019-10-24 07:16:10
104.200.110.210	attackspam	2019-10-23T20:43:19.432820shield sshd\[22776\]: Invalid user 123456789a@ from 104.200.110.210 port 34798 2019-10-23T20:43:19.436970shield sshd\[22776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.110.210 2019-10-23T20:43:21.158593shield sshd\[22776\]: Failed password for invalid user 123456789a@ from 104.200.110.210 port 34798 ssh2 2019-10-23T20:47:38.672653shield sshd\[23561\]: Invalid user pAsswORD from 104.200.110.210 port 44904 2019-10-23T20:47:38.680537shield sshd\[23561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.110.210	2019-10-24 07:36:33
62.173.149.58	attackspam	Oct 24 00:28:41 root sshd[3219]: Failed password for root from 62.173.149.58 port 53884 ssh2 Oct 24 00:36:13 root sshd[3299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.173.149.58 Oct 24 00:36:15 root sshd[3299]: Failed password for invalid user ftp from 62.173.149.58 port 36672 ssh2 ...	2019-10-24 07:28:54
123.131.135.246	attackspam	Oct 23 16:13:01 Tower sshd[40378]: Connection from 123.131.135.246 port 5349 on 192.168.10.220 port 22 Oct 23 16:13:03 Tower sshd[40378]: Invalid user ripley from 123.131.135.246 port 5349 Oct 23 16:13:03 Tower sshd[40378]: error: Could not get shadow information for NOUSER Oct 23 16:13:03 Tower sshd[40378]: Failed password for invalid user ripley from 123.131.135.246 port 5349 ssh2 Oct 23 16:13:03 Tower sshd[40378]: Received disconnect from 123.131.135.246 port 5349:11: Bye Bye [preauth] Oct 23 16:13:03 Tower sshd[40378]: Disconnected from invalid user ripley 123.131.135.246 port 5349 [preauth]	2019-10-24 07:17:17
191.37.74.136	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/191.37.74.136/ BR - 1H : (236) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN263356 IP : 191.37.74.136 CIDR : 191.37.74.0/24 PREFIX COUNT : 8 UNIQUE IP COUNT : 2048 ATTACKS DETECTED ASN263356 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-23 22:13:04 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-24 07:19:39

最近上报的IP列表

38.244.132.161	37.241.222.183	90.171.104.158	1.147.114.89
197.223.75.32	194.87.150.150	84.29.120.87	149.205.63.49
39.21.114.129	121.52.140.169	68.101.79.13	75.118.124.100
123.24.164.153	72.70.18.179	176.112.207.128	90.197.246.118
139.199.121.129	144.53.232.240	53.73.64.73	132.197.187.246