120.244.91.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	(ftpd) Failed FTP login from 120.244.91.42 (CN/China/-): 10 in the last 3600 secs	2020-06-03 18:14:29

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.244.91.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42681
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.244.91.42.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060300 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 03 18:14:26 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.91.244.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.91.244.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
107.189.3.126	attack	Time: Sun Sep 22 09:59:11 2019 -0300 IP: 107.189.3.126 (LU/Luxembourg/mandaviya.com) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2019-09-23 00:47:17
75.132.174.9	attack	Sep 22 15:27:04 [snip] sshd[10945]: Invalid user dv from 75.132.174.9 port 52286 Sep 22 15:27:04 [snip] sshd[10945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.132.174.9 Sep 22 15:27:06 [snip] sshd[10945]: Failed password for invalid user dv from 75.132.174.9 port 52286 ssh2[...]	2019-09-23 00:11:35
222.186.15.204	attack	Sep 22 12:30:46 plusreed sshd[25204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.204 user=root Sep 22 12:30:48 plusreed sshd[25204]: Failed password for root from 222.186.15.204 port 48168 ssh2 ...	2019-09-23 00:34:27
185.137.234.127	attackbots	$f2bV_matches	2019-09-23 01:00:30
150.31.26.82	attackbots	Unauthorised access (Sep 22) SRC=150.31.26.82 LEN=40 PREC=0x20 TTL=42 ID=61533 TCP DPT=8080 WINDOW=24702 SYN	2019-09-23 01:01:51
35.189.237.181	attack	Sep 22 06:09:39 hiderm sshd\[20935\]: Invalid user db from 35.189.237.181 Sep 22 06:09:39 hiderm sshd\[20935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.237.189.35.bc.googleusercontent.com Sep 22 06:09:41 hiderm sshd\[20935\]: Failed password for invalid user db from 35.189.237.181 port 55902 ssh2 Sep 22 06:13:48 hiderm sshd\[21290\]: Invalid user guest from 35.189.237.181 Sep 22 06:13:48 hiderm sshd\[21290\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.237.189.35.bc.googleusercontent.com	2019-09-23 00:28:09
117.48.212.113	attackspam	Sep 22 19:36:26 lcl-usvr-01 sshd[21199]: Invalid user ul from 117.48.212.113 Sep 22 19:36:26 lcl-usvr-01 sshd[21199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.212.113 Sep 22 19:36:26 lcl-usvr-01 sshd[21199]: Invalid user ul from 117.48.212.113 Sep 22 19:36:28 lcl-usvr-01 sshd[21199]: Failed password for invalid user ul from 117.48.212.113 port 56922 ssh2 Sep 22 19:43:12 lcl-usvr-01 sshd[23282]: Invalid user docker from 117.48.212.113	2019-09-23 00:50:11
105.156.174.9	attackspambots	Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 ...	2019-09-23 00:20:32
202.43.164.46	attackspam	Sep 22 06:06:03 auw2 sshd\[3862\]: Invalid user tess from 202.43.164.46 Sep 22 06:06:03 auw2 sshd\[3862\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.43.164.46 Sep 22 06:06:05 auw2 sshd\[3862\]: Failed password for invalid user tess from 202.43.164.46 port 49028 ssh2 Sep 22 06:12:40 auw2 sshd\[4675\]: Invalid user gregor from 202.43.164.46 Sep 22 06:12:40 auw2 sshd\[4675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.43.164.46	2019-09-23 00:25:17
200.11.219.206	attackspam	Sep 22 18:41:04 mail sshd\[25716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206 Sep 22 18:41:06 mail sshd\[25716\]: Failed password for invalid user kayla from 200.11.219.206 port 22433 ssh2 Sep 22 18:45:27 mail sshd\[26155\]: Invalid user qo from 200.11.219.206 port 4068 Sep 22 18:45:27 mail sshd\[26155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206 Sep 22 18:45:28 mail sshd\[26155\]: Failed password for invalid user qo from 200.11.219.206 port 4068 ssh2	2019-09-23 00:50:40
74.63.255.138	attack	\[2019-09-22 12:15:45\] NOTICE\[2270\] chan_sip.c: Registration from '"666" \' failed for '74.63.255.138:5531' - Wrong password \[2019-09-22 12:15:45\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-22T12:15:45.196-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="666",SessionID="0x7fcd8c856e68",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.63.255.138/5531",Challenge="1478062b",ReceivedChallenge="1478062b",ReceivedHash="8c8eee6d299428ee46a9df7b18753e08" \[2019-09-22 12:15:45\] NOTICE\[2270\] chan_sip.c: Registration from '"666" \' failed for '74.63.255.138:5531' - Wrong password \[2019-09-22 12:15:45\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-22T12:15:45.311-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="666",SessionID="0x7fcd8c297358",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.6	2019-09-23 00:23:18
159.65.24.7	attack	Sep 22 16:48:15 MainVPS sshd[15802]: Invalid user madison from 159.65.24.7 port 33768 Sep 22 16:48:15 MainVPS sshd[15802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.24.7 Sep 22 16:48:15 MainVPS sshd[15802]: Invalid user madison from 159.65.24.7 port 33768 Sep 22 16:48:18 MainVPS sshd[15802]: Failed password for invalid user madison from 159.65.24.7 port 33768 ssh2 Sep 22 16:52:33 MainVPS sshd[16172]: Invalid user nagios from 159.65.24.7 port 46924 ...	2019-09-23 00:09:43
40.78.16.63	attack	Multiple failed RDP login attempts	2019-09-23 00:22:29
187.44.113.33	attackbots	Sep 22 12:38:18 plusreed sshd[26887]: Invalid user support from 187.44.113.33 ...	2019-09-23 00:55:32
60.250.23.233	attackspambots	Sep 22 18:20:12 lnxded64 sshd[32381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.23.233 Sep 22 18:20:14 lnxded64 sshd[32381]: Failed password for invalid user test from 60.250.23.233 port 34590 ssh2 Sep 22 18:24:43 lnxded64 sshd[887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.23.233	2019-09-23 00:28:41

最近上报的IP列表

121.143.116.41	29.11.254.99	35.2.231.37	10.13.164.138
198.46.223.23	112.151.14.147	21.148.197.228	186.46.118.204
143.177.171.124	82.202.226.51	158.41.209.203	206.72.204.195
123.201.65.236	23.250.26.118	178.147.23.184	150.136.245.92
187.190.10.242	123.20.157.93	123.20.117.29	117.194.166.28