104.201.242.118

基本信息:

城市(city): Aston Mills

省份(region): Pennsylvania

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.201.242.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44560
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.201.242.118.		IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021000 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 10 22:55:14 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 118.242.201.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.242.201.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.176.205.186	attackspambots	(Oct 7) LEN=40 TTL=243 ID=59952 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=63953 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=57552 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=22302 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=20461 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=39357 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=54940 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=28578 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=22788 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=43647 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=25005 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=41960 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=6593 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=37427 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=33914 DF TCP DPT=23 WINDOW=14600 S...	2020-10-07 13:15:00
103.97.3.215	attackspam	103.97.3.215 (HK/Hong Kong/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 7 00:58:07 server4 sshd[29574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.198.187 user=root Oct 7 00:58:10 server4 sshd[29574]: Failed password for root from 42.194.198.187 port 50768 ssh2 Oct 7 01:01:12 server4 sshd[31405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.227.8.141 user=root Oct 7 00:56:46 server4 sshd[28884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.97.3.215 user=root Oct 7 00:57:08 server4 sshd[29001]: Failed password for root from 142.44.211.27 port 57166 ssh2 Oct 7 00:56:48 server4 sshd[28884]: Failed password for root from 103.97.3.215 port 59242 ssh2 IP Addresses Blocked: 42.194.198.187 (CN/China/-) 120.227.8.141 (CN/China/-)	2020-10-07 13:02:26
180.76.101.244	attackbots	Oct 7 05:18:06 host2 sshd[1637230]: Failed password for root from 180.76.101.244 port 38052 ssh2 Oct 7 05:20:46 host2 sshd[1637254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.101.244 user=root Oct 7 05:20:48 host2 sshd[1637254]: Failed password for root from 180.76.101.244 port 42886 ssh2 Oct 7 05:20:46 host2 sshd[1637254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.101.244 user=root Oct 7 05:20:48 host2 sshd[1637254]: Failed password for root from 180.76.101.244 port 42886 ssh2 ...	2020-10-07 12:49:33
110.185.185.17	attackspam	Oct 5 20:46:12 pl3server sshd[6303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.185.17 user=r.r Oct 5 20:46:14 pl3server sshd[6303]: Failed password for r.r from 110.185.185.17 port 52004 ssh2 Oct 5 20:46:14 pl3server sshd[6303]: Received disconnect from 110.185.185.17 port 52004:11: Bye Bye [preauth] Oct 5 20:46:14 pl3server sshd[6303]: Disconnected from 110.185.185.17 port 52004 [preauth] Oct 5 21:02:12 pl3server sshd[12318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.185.17 user=r.r Oct 5 21:02:14 pl3server sshd[12318]: Failed password for r.r from 110.185.185.17 port 37398 ssh2 Oct 5 21:02:14 pl3server sshd[12318]: Received disconnect from 110.185.185.17 port 37398:11: Bye Bye [preauth] Oct 5 21:02:14 pl3server sshd[12318]: Disconnected from 110.185.185.17 port 37398 [preauth] Oct 5 21:06:11 pl3server sshd[14254]: pam_unix(sshd:auth): authentication f........ -------------------------------	2020-10-07 13:04:56
2a01:4f8:201:62f5::2	attackbotsspam	20 attempts against mh-misbehave-ban on cedar	2020-10-07 13:22:05
139.59.232.188	attack	SSH login attempts.	2020-10-07 13:07:55
68.183.38.145	attack	Oct 7 06:35:09 pornomens sshd\[15356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.38.145 user=root Oct 7 06:35:11 pornomens sshd\[15356\]: Failed password for root from 68.183.38.145 port 44774 ssh2 Oct 7 06:38:58 pornomens sshd\[15397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.38.145 user=root ...	2020-10-07 13:12:15
167.86.117.63	attackspam	Oct 7 00:52:36 ny01 sshd[17594]: Failed password for root from 167.86.117.63 port 56788 ssh2 Oct 7 00:56:08 ny01 sshd[18356]: Failed password for root from 167.86.117.63 port 34178 ssh2	2020-10-07 13:06:01
178.62.187.136	attackbots	s2.hscode.pl - SSH Attack	2020-10-07 13:02:04
45.150.206.113	attack	Oct 7 07:14:11 galaxy event: galaxy/lswi: smtp: matthias.klaukien@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password Oct 7 07:14:13 galaxy event: galaxy/lswi: smtp: matthias.klaukien [45.150.206.113] authentication failure using internet password Oct 7 07:14:43 galaxy event: galaxy/lswi: smtp: simone.schmid@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password Oct 7 07:14:46 galaxy event: galaxy/lswi: smtp: simone.schmid [45.150.206.113] authentication failure using internet password Oct 7 07:14:57 galaxy event: galaxy/lswi: smtp: julia.matthiessen@wi.uni-potsdam.de [45.150.206.113] authentication failure using internet password ...	2020-10-07 13:16:01
175.6.35.46	attack	Oct 7 04:27:15 ns381471 sshd[9050]: Failed password for root from 175.6.35.46 port 33572 ssh2	2020-10-07 12:49:55
106.13.34.131	attackbots	Oct 7 02:43:43 santamaria sshd\[24826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.131 user=root Oct 7 02:43:45 santamaria sshd\[24826\]: Failed password for root from 106.13.34.131 port 36518 ssh2 Oct 7 02:47:37 santamaria sshd\[24874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.131 user=root ...	2020-10-07 13:09:54
186.147.160.189	attackspam	(sshd) Failed SSH login from 186.147.160.189 (CO/Colombia/static-ip-186147160189.cable.net.co): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 7 01:07:37 optimus sshd[22941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.160.189 user=root Oct 7 01:07:39 optimus sshd[22941]: Failed password for root from 186.147.160.189 port 48908 ssh2 Oct 7 01:14:08 optimus sshd[25394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.160.189 user=root Oct 7 01:14:10 optimus sshd[25394]: Failed password for root from 186.147.160.189 port 37952 ssh2 Oct 7 01:16:07 optimus sshd[26196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.160.189 user=root	2020-10-07 13:19:13
103.90.226.99	attack	RDP Brute-Force (honeypot 6)	2020-10-07 13:19:43
27.102.114.131	attackbots	SSH login attempts.	2020-10-07 13:13:50

最近上报的IP列表

5.239.146.43	160.254.228.154	66.94.86.124	212.208.200.88
89.90.119.120	196.16.15.86	98.87.225.158	69.242.119.103
128.75.72.234	113.90.243.196	180.99.215.229	131.168.110.233
165.79.196.228	236.8.76.24	40.113.120.16	224.244.147.174
163.171.136.102	34.3.176.6	60.9.66.171	157.177.78.41