106.42.97.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 106.42.97.1 to port 139 [T]	2020-05-20 08:59:41

相同子网IP讨论:

IP	类型	评论内容	时间
106.42.97.127	attackbots	Unauthorized connection attempt detected from IP address 106.42.97.127 to port 139 [T]	2020-05-20 09:29:55
106.42.97.132	attackspam	Unauthorized connection attempt detected from IP address 106.42.97.132 to port 139 [T]	2020-05-20 08:50:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.42.97.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.42.97.1.			IN	A

;; AUTHORITY SECTION:
.			286	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051901 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 08:59:36 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 1.97.42.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 1.97.42.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
82.145.157.199	attackbots	Honeypot attack, port: 5555, PTR: 82-145-157-199.network.biggnet.net.	2020-06-22 01:59:50
72.166.243.197	attack	Jun 20 01:12:40 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 4 secs\): user=\, method=PLAIN, rip=72.166.243.197, lip=10.64.89.208, TLS, session=\ Jun 20 05:26:12 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=72.166.243.197, lip=10.64.89.208, TLS: Disconnected, session=\ Jun 20 07:48:53 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=72.166.243.197, lip=10.64.89.208, TLS, session=\ Jun 20 08:30:18 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=72.166.243.197, lip=10.64.89.208, TLS: Disconnected, session=\ Jun 20 16:17:19 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 4 secs\): ...	2020-06-22 01:32:28
46.161.27.75	attack	[MK-VM4] Blocked by UFW	2020-06-22 01:41:07
172.245.159.160	attackspam	fail2ban - Attack against Apache (too many 404s)	2020-06-22 01:32:50
5.135.165.55	attackspam	Jun 21 16:23:09 server sshd[10612]: Failed password for invalid user test from 5.135.165.55 port 50134 ssh2 Jun 21 16:27:06 server sshd[14947]: Failed password for invalid user ntb from 5.135.165.55 port 58222 ssh2 Jun 21 16:29:55 server sshd[17879]: Failed password for invalid user holger from 5.135.165.55 port 56882 ssh2	2020-06-22 01:34:41
107.170.17.129	attack	Jun 21 08:11:52 mail sshd\[34209\]: Invalid user tmn from 107.170.17.129 Jun 21 08:11:52 mail sshd\[34209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.17.129 ...	2020-06-22 01:50:48
218.92.0.246	attackbots	Jun 21 19:25:43 santamaria sshd\[14744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.246 user=root Jun 21 19:25:44 santamaria sshd\[14744\]: Failed password for root from 218.92.0.246 port 32287 ssh2 Jun 21 19:26:02 santamaria sshd\[14746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.246 user=root ...	2020-06-22 01:26:49
93.174.95.106	attack	TCP (SYN) 93.174.95.106:23978 -> port 3460, len 44	2020-06-22 01:40:14
212.70.149.50	attack	Jun 21 19:24:59 mail postfix/smtpd\[24841\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 19:55:23 mail postfix/smtpd\[25855\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 19:55:54 mail postfix/smtpd\[25855\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 19:56:26 mail postfix/smtpd\[26113\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-22 01:56:23
218.92.0.251	attackspam	2020-06-21T20:34:15.162044afi-git.jinr.ru sshd[17761]: Failed password for root from 218.92.0.251 port 2856 ssh2 2020-06-21T20:34:18.817174afi-git.jinr.ru sshd[17761]: Failed password for root from 218.92.0.251 port 2856 ssh2 2020-06-21T20:34:21.884170afi-git.jinr.ru sshd[17761]: Failed password for root from 218.92.0.251 port 2856 ssh2 2020-06-21T20:34:21.884359afi-git.jinr.ru sshd[17761]: error: maximum authentication attempts exceeded for root from 218.92.0.251 port 2856 ssh2 [preauth] 2020-06-21T20:34:21.884376afi-git.jinr.ru sshd[17761]: Disconnecting: Too many authentication failures [preauth] ...	2020-06-22 01:43:18
45.226.50.245	attackbots	BR_EMPRESA DE SERVICOS ADM. DE ITUBERA LTD_<177>1592741510 [1:2403354:58145] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 28 [Classification: Misc Attack] [Priority: 2]: {TCP} 45.226.50.245:62823	2020-06-22 01:52:03
223.204.250.116	attackbotsspam	Honeypot attack, port: 445, PTR: mx-ll-223.204.250-116.dynamic.3bb.co.th.	2020-06-22 02:02:44
129.211.1.12	attackbotsspam	Jun 21 14:52:14 lnxmail61 sshd[29763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.1.12	2020-06-22 01:37:51
45.65.230.165	attackbots	SSH fail RA	2020-06-22 01:33:21
165.22.40.147	attackspambots	2020-06-21T10:17:06.1213521495-001 sshd[16129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.40.147 user=root 2020-06-21T10:17:08.0027121495-001 sshd[16129]: Failed password for root from 165.22.40.147 port 38910 ssh2 2020-06-21T10:20:29.8780941495-001 sshd[16248]: Invalid user webapps from 165.22.40.147 port 38058 2020-06-21T10:20:29.8810861495-001 sshd[16248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.40.147 2020-06-21T10:20:29.8780941495-001 sshd[16248]: Invalid user webapps from 165.22.40.147 port 38058 2020-06-21T10:20:31.9685111495-001 sshd[16248]: Failed password for invalid user webapps from 165.22.40.147 port 38058 ssh2 ...	2020-06-22 02:05:01

最近上报的IP列表

101.1.115.143	1.199.159.28	1.199.158.147	1.199.158.90
1.199.158.31	1.197.214.108	1.197.214.59	1.197.213.160
1.197.213.47	1.197.212.172	1.197.212.167	1.197.212.107
1.197.212.38	1.196.143.22	1.196.142.251	1.196.142.226
1.196.141.79	1.196.140.103	1.196.140.54	1.192.103.151

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表