171.101.241.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): True Internet Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2019-07-19T17:15:44.548402stt-1.[munged] kernel: [7602563.415202] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=16452 DF PROTO=TCP SPT=56127 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-19T21:13:12.137981stt-1.[munged] kernel: [7616810.957487] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=7154 DF PROTO=TCP SPT=51851 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-19T21:35:50.576167stt-1.[munged] kernel: [7618169.391103] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=12888 DF PROTO=TCP SPT=60297 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0	2019-07-20 11:26:49

类型

评论内容

时间

attackspam

2019-07-19T17:15:44.548402stt-1.[munged] kernel: [7602563.415202] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=16452 DF PROTO=TCP SPT=56127 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 
2019-07-19T21:13:12.137981stt-1.[munged] kernel: [7616810.957487] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=7154 DF PROTO=TCP SPT=51851 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 
2019-07-19T21:35:50.576167stt-1.[munged] kernel: [7618169.391103] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=171.101.241.142 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x20 TTL=109 ID=12888 DF PROTO=TCP SPT=60297 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0

2019-07-20 11:26:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.101.241.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43519
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;171.101.241.142.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 20 11:26:43 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

142.241.101.171.in-addr.arpa domain name pointer cm-171-101-241-142.revip11.asianet.co.th.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.241.101.171.in-addr.arpa	name = cm-171-101-241-142.revip11.asianet.co.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.237.53.14	attackbots	Sep 15 04:00:10 scw-focused-cartwright sshd[28871]: Failed password for root from 119.237.53.14 port 41758 ssh2	2020-09-16 05:29:41
142.4.213.28	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-16 05:38:24
116.75.105.73	attackspambots	Auto Detect Rule! proto TCP (SYN), 116.75.105.73:12521->gjan.info:23, len 40	2020-09-16 05:46:53
45.254.25.62	attackbots	Brute-force attempt banned	2020-09-16 05:17:53
1.230.26.66	attackspam	Sep 15 19:00:44 sip sshd[2045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.230.26.66 Sep 15 19:00:46 sip sshd[2045]: Failed password for invalid user support from 1.230.26.66 port 36799 ssh2 Sep 15 19:00:48 sip sshd[2051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.230.26.66	2020-09-16 05:28:30
115.98.149.230	attackbots	Auto Detect Rule! proto TCP (SYN), 115.98.149.230:10041->gjan.info:23, len 40	2020-09-16 05:34:33
119.123.56.12	attackbots	Brute force attempt	2020-09-16 05:34:08
181.126.28.119	attackbots	Sep 15 19:00:48 roki-contabo sshd\[21804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.28.119 user=root Sep 15 19:00:48 roki-contabo sshd\[21802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.28.119 user=root Sep 15 19:00:49 roki-contabo sshd\[21807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.28.119 user=root Sep 15 19:00:51 roki-contabo sshd\[21804\]: Failed password for root from 181.126.28.119 port 35122 ssh2 Sep 15 19:00:51 roki-contabo sshd\[21802\]: Failed password for root from 181.126.28.119 port 35018 ssh2 ...	2020-09-16 05:20:39
60.208.131.178	attackspambots	DATE:2020-09-15 18:59:03, IP:60.208.131.178, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-16 05:42:32
111.93.71.219	attackspambots	2020-09-15T17:00:58.129860dmca.cloudsearch.cf sshd[8816]: Invalid user mobile from 111.93.71.219 port 55370 2020-09-15T17:00:58.136011dmca.cloudsearch.cf sshd[8816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 2020-09-15T17:00:58.129860dmca.cloudsearch.cf sshd[8816]: Invalid user mobile from 111.93.71.219 port 55370 2020-09-15T17:01:00.290032dmca.cloudsearch.cf sshd[8816]: Failed password for invalid user mobile from 111.93.71.219 port 55370 ssh2 2020-09-15T17:05:28.279875dmca.cloudsearch.cf sshd[8945]: Invalid user ftptest from 111.93.71.219 port 60154 2020-09-15T17:05:28.287509dmca.cloudsearch.cf sshd[8945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 2020-09-15T17:05:28.279875dmca.cloudsearch.cf sshd[8945]: Invalid user ftptest from 111.93.71.219 port 60154 2020-09-15T17:05:29.839705dmca.cloudsearch.cf sshd[8945]: Failed password for invalid user ftptest from 111.93.71 ...	2020-09-16 05:22:59
221.203.6.138	attack	Auto Detect Rule! proto TCP (SYN), 221.203.6.138:42746->gjan.info:1433, len 40	2020-09-16 05:50:53
47.21.12.22	attack	Automatic report - Port Scan Attack	2020-09-16 05:17:23
202.83.42.180	attackspam	Mirai and Reaper Exploitation Traffic	2020-09-16 05:36:14
134.122.85.209	attackspambots	Sep 15 19:15:01 master sshd[6596]: Failed password for root from 134.122.85.209 port 49301 ssh2 Sep 15 19:20:20 master sshd[6769]: Failed password for root from 134.122.85.209 port 34302 ssh2 Sep 15 19:24:31 master sshd[6782]: Failed password for root from 134.122.85.209 port 42223 ssh2 Sep 15 19:28:42 master sshd[6845]: Failed password for root from 134.122.85.209 port 50151 ssh2 Sep 15 19:34:03 master sshd[7295]: Failed password for invalid user donut from 134.122.85.209 port 58083 ssh2 Sep 15 19:39:53 master sshd[7404]: Failed password for root from 134.122.85.209 port 37767 ssh2 Sep 15 19:46:01 master sshd[7577]: Failed password for root from 134.122.85.209 port 45687 ssh2 Sep 15 19:51:57 master sshd[7690]: Failed password for root from 134.122.85.209 port 53613 ssh2 Sep 15 19:57:59 master sshd[7767]: Failed password for root from 134.122.85.209 port 33301 ssh2	2020-09-16 05:25:55
103.90.202.230	attackbotsspam	Unauthorized connection attempt from IP address 103.90.202.230 on Port 445(SMB)	2020-09-16 05:27:23

最近上报的IP列表

193.31.119.174	193.31.119.166	193.31.119.163	185.133.237.8
185.81.153.13	185.81.153.12	185.81.153.10	185.81.153.8
177.94.243.188	167.62.173.32	159.89.31.136	48.132.33.27
59.25.197.150	169.228.173.202	126.230.29.53	48.84.150.1
135.54.24.239	202.201.147.38	18.45.173.66	133.145.74.50