1.20.249.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.20.249.21	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:22:49
1.20.249.190	attack	Hits on port : 8291	2020-02-11 20:27:08
1.20.249.242	attack	Unauthorized connection attempt from IP address 1.20.249.242 on Port 445(SMB)	2019-08-30 22:15:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.249.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10143
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.249.42.			IN	A

;; AUTHORITY SECTION:
.			150	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 21:10:41 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 42.249.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.249.20.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.38.150.142	attack	2020-06-13 07:53:45 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=lj@org.ua$2020-06-13 07:54:36 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=arlington@org.ua$2020-06-13 07:55:17 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=AB\023@org.ua$ ...	2020-06-13 12:55:29
118.24.156.221	attackspambots	2020-06-13T04:28:58.753844shield sshd\[9156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.156.221 user=root 2020-06-13T04:29:01.156091shield sshd\[9156\]: Failed password for root from 118.24.156.221 port 56038 ssh2 2020-06-13T04:31:51.349994shield sshd\[11427\]: Invalid user eversec from 118.24.156.221 port 51974 2020-06-13T04:31:51.353975shield sshd\[11427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.156.221 2020-06-13T04:31:52.844899shield sshd\[11427\]: Failed password for invalid user eversec from 118.24.156.221 port 51974 ssh2	2020-06-13 12:40:15
159.203.32.71	attackspam	IP 159.203.32.71 attacked honeypot on port: 80 at 6/13/2020 5:11:31 AM	2020-06-13 12:17:45
107.170.249.6	attack	Jun 12 18:27:24 wbs sshd\[3884\]: Invalid user shan from 107.170.249.6 Jun 12 18:27:24 wbs sshd\[3884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 Jun 12 18:27:26 wbs sshd\[3884\]: Failed password for invalid user shan from 107.170.249.6 port 38180 ssh2 Jun 12 18:34:26 wbs sshd\[4438\]: Invalid user savan from 107.170.249.6 Jun 12 18:34:26 wbs sshd\[4438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6	2020-06-13 12:54:42
49.233.183.155	attack	Jun 13 06:06:06 minden010 sshd[11593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 Jun 13 06:06:08 minden010 sshd[11593]: Failed password for invalid user ftpuser from 49.233.183.155 port 56200 ssh2 Jun 13 06:11:00 minden010 sshd[14431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 ...	2020-06-13 12:27:17
46.38.150.153	attackspam	Brute Force attack - banned by Fail2Ban	2020-06-13 12:40:54
78.68.19.207	attackbots	Jun 12 15:40:35 finn sshd[32199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.68.19.207 user=r.r Jun 12 15:40:37 finn sshd[32199]: Failed password for r.r from 78.68.19.207 port 35720 ssh2 Jun 12 15:40:37 finn sshd[32199]: Received disconnect from 78.68.19.207 port 35720:11: Bye Bye [preauth] Jun 12 15:40:37 finn sshd[32199]: Disconnected from 78.68.19.207 port 35720 [preauth] Jun 12 15:51:54 finn sshd[2861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.68.19.207 user=r.r Jun 12 15:51:55 finn sshd[2861]: Failed password for r.r from 78.68.19.207 port 38230 ssh2 Jun 12 15:51:55 finn sshd[2861]: Received disconnect from 78.68.19.207 port 38230:11: Bye Bye [preauth] Jun 12 15:51:55 finn sshd[2861]: Disconnected from 78.68.19.207 port 38230 [preauth] Jun 12 15:55:21 finn sshd[3555]: Invalid user sshadmin from 78.68.19.207 port 46362 Jun 12 15:55:21 finn sshd[3555]: pam_unix(sshd:a........ -------------------------------	2020-06-13 12:45:19
165.227.70.23	attackbots	prod8 ...	2020-06-13 12:19:22
87.246.7.70	attack	Jun 13 05:07:57 blackbee postfix/smtpd\[4140\]: warning: unknown\[87.246.7.70\]: SASL LOGIN authentication failed: authentication failure Jun 13 05:08:51 blackbee postfix/smtpd\[4140\]: warning: unknown\[87.246.7.70\]: SASL LOGIN authentication failed: authentication failure Jun 13 05:09:42 blackbee postfix/smtpd\[4140\]: warning: unknown\[87.246.7.70\]: SASL LOGIN authentication failed: authentication failure Jun 13 05:10:36 blackbee postfix/smtpd\[4140\]: warning: unknown\[87.246.7.70\]: SASL LOGIN authentication failed: authentication failure Jun 13 05:11:30 blackbee postfix/smtpd\[4147\]: warning: unknown\[87.246.7.70\]: SASL LOGIN authentication failed: authentication failure ...	2020-06-13 12:18:04
5.188.87.49	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-13T04:01:22Z and 2020-06-13T04:11:36Z	2020-06-13 12:29:15
106.12.24.193	attackbotsspam	Jun 12 18:37:18 sachi sshd\[25921\]: Invalid user viktor from 106.12.24.193 Jun 12 18:37:18 sachi sshd\[25921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.193 Jun 12 18:37:21 sachi sshd\[25921\]: Failed password for invalid user viktor from 106.12.24.193 port 50676 ssh2 Jun 12 18:39:32 sachi sshd\[26210\]: Invalid user information from 106.12.24.193 Jun 12 18:39:32 sachi sshd\[26210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.193	2020-06-13 12:42:17
121.229.29.86	attackspambots	Jun 13 06:09:33 sip sshd[630556]: Invalid user 123 from 121.229.29.86 port 46494 Jun 13 06:09:35 sip sshd[630556]: Failed password for invalid user 123 from 121.229.29.86 port 46494 ssh2 Jun 13 06:11:51 sip sshd[630570]: Invalid user zhangruiteng from 121.229.29.86 port 35486 ...	2020-06-13 12:15:49
185.234.219.117	attack	2020-06-13 06:59:59 auth_plain authenticator failed for (95.216.137.45) [185.234.219.117]: 535 Incorrect authentication data (set_id=backup) 2020-06-13 07:11:32 auth_plain authenticator failed for (95.216.137.45) [185.234.219.117]: 535 Incorrect authentication data (set_id=demo) ...	2020-06-13 12:32:08
206.253.167.10	attack	2020-06-13T04:41:53.768395shield sshd\[15671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.253.167.10 user=root 2020-06-13T04:41:55.894947shield sshd\[15671\]: Failed password for root from 206.253.167.10 port 37070 ssh2 2020-06-13T04:44:26.784327shield sshd\[16592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.253.167.10 user=root 2020-06-13T04:44:28.917864shield sshd\[16592\]: Failed password for root from 206.253.167.10 port 36356 ssh2 2020-06-13T04:46:51.380509shield sshd\[17635\]: Invalid user admin from 206.253.167.10 port 35246	2020-06-13 12:49:50
222.186.52.39	attackspam	$f2bV_matches	2020-06-13 12:49:31

最近上报的IP列表

1.20.249.37	1.20.249.49	148.48.111.3	1.20.249.59
1.20.249.84	1.20.249.86	1.20.249.94	163.152.186.213
1.20.251.10	1.20.251.101	1.20.251.108	1.20.251.116
1.20.251.123	1.20.251.125	1.20.251.131	1.20.251.139
1.20.251.151	1.20.251.166	1.20.251.174	1.20.251.192

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表