115.42.169.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): SingNet Pte Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 115.42.169.130 on Port 445(SMB)	2019-11-02 17:49:03

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.42.169.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58932
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;115.42.169.130.			IN	A

;; AUTHORITY SECTION:
.			329	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110200 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 17:49:00 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.169.42.115.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.169.42.115.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.92.0.173	attackspambots	Failed password for root from 218.92.0.173 port 11390 ssh2 Failed password for root from 218.92.0.173 port 11390 ssh2 Failed password for root from 218.92.0.173 port 11390 ssh2 error: maximum authentication attempts exceeded for root from 218.92.0.173 port 11390 ssh2 \[preauth\] pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root	2019-11-05 02:13:26
87.98.167.38	attack	Invalid user 1q2w_1234 from 87.98.167.38 port 58272 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.167.38 Failed password for invalid user 1q2w_1234 from 87.98.167.38 port 58272 ssh2 Invalid user origin from 87.98.167.38 port 40110 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.167.38	2019-11-05 02:16:43
179.89.5.135	attackbotsspam	Nov 4 12:31:37 ws12vmsma01 sshd[16704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.89.5.135 user=root Nov 4 12:31:39 ws12vmsma01 sshd[16704]: Failed password for root from 179.89.5.135 port 29767 ssh2 Nov 4 12:31:41 ws12vmsma01 sshd[16714]: Invalid user ubnt from 179.89.5.135 ...	2019-11-05 01:56:17
200.54.242.46	attack	2019-11-04T16:06:54.524197abusebot-6.cloudsearch.cf sshd\[18337\]: Invalid user zjsxIDC123!@\# from 200.54.242.46 port 53298	2019-11-05 02:17:13
116.203.152.250	attack	SSH/22 MH Probe, BF, Hack -	2019-11-05 02:04:18
196.221.147.17	attackspambots	Unauthorized connection attempt from IP address 196.221.147.17 on Port 445(SMB)	2019-11-05 01:58:02
120.132.6.27	attack	Failed password for root from 120.132.6.27 port 49739 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.6.27 user=root Failed password for root from 120.132.6.27 port 39639 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.6.27 user=root Failed password for root from 120.132.6.27 port 57777 ssh2	2019-11-05 01:57:13
51.15.167.124	attackbotsspam	Nov 4 17:38:26 srv01 sshd[7299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.resistance.cf user=root Nov 4 17:38:28 srv01 sshd[7299]: Failed password for root from 51.15.167.124 port 35878 ssh2 Nov 4 17:43:40 srv01 sshd[7541]: Invalid user com from 51.15.167.124 Nov 4 17:43:40 srv01 sshd[7541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.resistance.cf Nov 4 17:43:40 srv01 sshd[7541]: Invalid user com from 51.15.167.124 Nov 4 17:43:42 srv01 sshd[7541]: Failed password for invalid user com from 51.15.167.124 port 46996 ssh2 ...	2019-11-05 01:55:10
93.174.93.114	attackspam	Too many connections or unauthorized access detected from Dain banned ip	2019-11-05 02:20:57
46.166.151.47	attackspambots	\[2019-11-04 13:03:06\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-04T13:03:06.530-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="46462607509",SessionID="0x7fdf2c3f5928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/59932",ACLName="no_extension_match" \[2019-11-04 13:07:15\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-04T13:07:15.445-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="81046462607509",SessionID="0x7fdf2c020748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/51360",ACLName="no_extension_match" \[2019-11-04 13:11:30\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-04T13:11:30.738-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="981046462607509",SessionID="0x7fdf2c3d9bf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/50236",ACLName="no_extensio	2019-11-05 02:15:22
51.75.52.195	attack	" "	2019-11-05 02:27:48
121.142.111.214	attackspambots	2019-11-04T14:31:37.200250abusebot-5.cloudsearch.cf sshd\[15774\]: Invalid user robert from 121.142.111.214 port 32880	2019-11-05 02:23:19
193.56.28.130	attackspambots	Nov 4 17:11:09 heicom postfix/smtpd\[19202\]: warning: unknown\[193.56.28.130\]: SASL LOGIN authentication failed: authentication failure Nov 4 17:11:09 heicom postfix/smtpd\[19202\]: warning: unknown\[193.56.28.130\]: SASL LOGIN authentication failed: authentication failure Nov 4 17:11:10 heicom postfix/smtpd\[19202\]: warning: unknown\[193.56.28.130\]: SASL LOGIN authentication failed: authentication failure Nov 4 17:11:10 heicom postfix/smtpd\[19202\]: warning: unknown\[193.56.28.130\]: SASL LOGIN authentication failed: authentication failure Nov 4 17:11:10 heicom postfix/smtpd\[19202\]: warning: unknown\[193.56.28.130\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-05 02:26:04
92.119.160.106	attack	Nov 4 18:30:22 mc1 kernel: \[4174928.117273\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=25446 PROTO=TCP SPT=56856 DPT=47298 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 18:31:59 mc1 kernel: \[4175025.132659\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=10809 PROTO=TCP SPT=56856 DPT=46686 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 18:35:54 mc1 kernel: \[4175259.774039\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=55500 PROTO=TCP SPT=56856 DPT=46775 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-05 02:02:16
179.108.106.44	attack	Invalid user sd from 179.108.106.44 port 51276 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.108.106.44 Failed password for invalid user sd from 179.108.106.44 port 51276 ssh2 Invalid user guest from 179.108.106.44 port 33412 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.108.106.44	2019-11-05 02:17:45

最近上报的IP列表

44.79.180.161	166.167.133.137	205.226.175.197	133.174.186.201
165.100.110.95	120.188.197.141	24.149.247.36	212.129.31.97
66.214.106.135	188.37.158.109	204.212.20.195	204.1.179.32
202.152.55.233	189.247.156.88	41.138.142.234	212.25.89.253
81.167.39.159	88.198.182.176	15.189.201.176	190.81.69.25