106.42.41.38 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.42.41.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33235
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.42.41.38.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:27:06 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

b';; connection timed out; no servers could be reached
'

NSLOOKUP信息:

server can't find 106.42.41.38.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
101.109.102.201	attackspambots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:34:36
206.81.16.240	attack	Jan 31 07:14:56 OPSO sshd\[28351\]: Invalid user mugala from 206.81.16.240 port 56478 Jan 31 07:14:56 OPSO sshd\[28351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.16.240 Jan 31 07:14:58 OPSO sshd\[28351\]: Failed password for invalid user mugala from 206.81.16.240 port 56478 ssh2 Jan 31 07:18:12 OPSO sshd\[29211\]: Invalid user amalendu from 206.81.16.240 port 58516 Jan 31 07:18:12 OPSO sshd\[29211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.16.240	2020-01-31 14:23:08
103.77.159.59	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:20:36
103.248.20.118	attack	Brute-force attempt banned	2020-01-31 14:13:35
89.120.135.116	attackspam	Fail2Ban Ban Triggered	2020-01-31 14:35:07
118.175.133.210	attackbots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:19:56
14.116.187.31	attackbots	Jan 30 20:14:31 eddieflores sshd\[1506\]: Invalid user prasham from 14.116.187.31 Jan 30 20:14:31 eddieflores sshd\[1506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.187.31 Jan 30 20:14:33 eddieflores sshd\[1506\]: Failed password for invalid user prasham from 14.116.187.31 port 49461 ssh2 Jan 30 20:18:59 eddieflores sshd\[2035\]: Invalid user sakala from 14.116.187.31 Jan 30 20:18:59 eddieflores sshd\[2035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.187.31	2020-01-31 14:41:26
5.255.253.25	attackspam	[Fri Jan 31 11:57:46.750305 2020] [:error] [pid 13720:tid 140469332326144] [client 5.255.253.25:61784] [client 5.255.253.25] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XjOzykdOJHo1WGB1aNpwvgAAAAQ"] ...	2020-01-31 14:28:59
116.233.138.83	attackbotsspam	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:04:55
202.29.243.36	attack	Jan 31 07:20:02 vps691689 sshd[1809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.243.36 Jan 31 07:20:04 vps691689 sshd[1809]: Failed password for invalid user yantur from 202.29.243.36 port 48815 ssh2 Jan 31 07:27:26 vps691689 sshd[2058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.243.36 ...	2020-01-31 14:41:58
188.35.29.183	attack	Unauthorized connection attempt detected from IP address 188.35.29.183 to port 23 [J]	2020-01-31 14:36:18
206.81.7.42	attackbotsspam	Unauthorized connection attempt detected from IP address 206.81.7.42 to port 2220 [J]	2020-01-31 14:32:53
163.44.151.102	attackspambots	Invalid user pns from 163.44.151.102 port 40132	2020-01-31 14:19:30
47.103.85.98	attackbots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:32:03
218.88.164.159	attackbotsspam	Invalid user GUEST from 218.88.164.159 port 56253	2020-01-31 14:11:08

最近上报的IP列表

106.42.216.135	106.43.54.21	106.42.41.44	106.42.41.42
106.43.59.237	106.42.42.159	106.42.41.6	106.42.42.205
106.42.41.67	106.42.42.130	106.42.42.75	106.42.41.76
106.44.247.119	106.45.105.192	122.223.44.141	106.45.105.194
106.45.105.196	106.45.105.2	106.45.105.20	106.45.105.200