172.94.40.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.94.40.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.94.40.1.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:17:41 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 1.40.94.172.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.40.94.172.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.144.15.3	attack	1596801954 - 08/07/2020 14:05:54 Host: 49.144.15.3/49.144.15.3 Port: 445 TCP Blocked	2020-08-07 23:03:27
96.45.182.124	attack	2020-08-07T13:53:45.429795ns386461 sshd\[27861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.45.182.124.16clouds.com user=root 2020-08-07T13:53:46.659854ns386461 sshd\[27861\]: Failed password for root from 96.45.182.124 port 54772 ssh2 2020-08-07T14:01:04.255311ns386461 sshd\[1728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.45.182.124.16clouds.com user=root 2020-08-07T14:01:06.094546ns386461 sshd\[1728\]: Failed password for root from 96.45.182.124 port 45756 ssh2 2020-08-07T14:05:57.450450ns386461 sshd\[6317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.45.182.124.16clouds.com user=root ...	2020-08-07 22:58:19
222.186.173.238	attack	Aug 7 16:22:57 vps1 sshd[23370]: Failed none for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:22:57 vps1 sshd[23370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Aug 7 16:23:00 vps1 sshd[23370]: Failed password for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:23:05 vps1 sshd[23370]: Failed password for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:23:10 vps1 sshd[23370]: Failed password for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:23:13 vps1 sshd[23370]: Failed password for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:23:18 vps1 sshd[23370]: Failed password for invalid user root from 222.186.173.238 port 57426 ssh2 Aug 7 16:23:18 vps1 sshd[23370]: error: maximum authentication attempts exceeded for invalid user root from 222.186.173.238 port 57426 ssh2 [preauth] Aug 7 16:23:24 vps1 sshd[23372]: pam_unix(sshd:au ...	2020-08-07 22:26:05
27.156.119.179	attackspambots	Aug 6 15:37:12 our-server-hostname sshd[29032]: reveeclipse mapping checking getaddrinfo for 179.119.156.27.broad.fz.fj.dynamic.163data.com.cn [27.156.119.179] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 6 15:37:12 our-server-hostname sshd[29032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.156.119.179 user=r.r Aug 6 15:37:15 our-server-hostname sshd[29032]: Failed password for r.r from 27.156.119.179 port 51996 ssh2 Aug 6 15:40:00 our-server-hostname sshd[29796]: reveeclipse mapping checking getaddrinfo for 179.119.156.27.broad.fz.fj.dynamic.163data.com.cn [27.156.119.179] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 6 15:40:00 our-server-hostname sshd[29796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.156.119.179 user=r.r Aug 6 15:40:02 our-server-hostname sshd[29796]: Failed password for r.r from 27.156.119.179 port 48608 ssh2 Aug 6 15:40:57 our-server-hostname sshd[30075]:........ -------------------------------	2020-08-07 22:39:30
90.177.244.100	attackspambots	brute-force attack on telnet (23) and Winbox (8291)	2020-08-07 23:05:00
117.199.220.238	attack	RDP Bruteforce	2020-08-07 22:23:45
222.186.180.147	attackbotsspam	Aug 7 16:29:18 minden010 sshd[6269]: Failed password for root from 222.186.180.147 port 15202 ssh2 Aug 7 16:29:21 minden010 sshd[6269]: Failed password for root from 222.186.180.147 port 15202 ssh2 Aug 7 16:29:25 minden010 sshd[6269]: Failed password for root from 222.186.180.147 port 15202 ssh2 Aug 7 16:29:29 minden010 sshd[6269]: Failed password for root from 222.186.180.147 port 15202 ssh2 ...	2020-08-07 22:35:21
91.134.185.82	attackbotsspam	Aug 7 15:06:43 mertcangokgoz-v4-main kernel: [418938.460453] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=91.134.185.82 DST=94.130.96.165 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=60588 DF PROTO=TCP SPT=55485 DPT=111 WINDOW=5840 RES=0x00 SYN URGP=0	2020-08-07 22:21:20
156.96.128.222	attack	TCP (SYN) 156.96.128.222:48011 -> port 443, len 44	2020-08-07 22:59:14
190.255.222.2	attackspambots	(sshd) Failed SSH login from 190.255.222.2 (CO/Colombia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 7 15:17:17 amsweb01 sshd[26812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.255.222.2 user=root Aug 7 15:17:19 amsweb01 sshd[26812]: Failed password for root from 190.255.222.2 port 50416 ssh2 Aug 7 15:29:00 amsweb01 sshd[28200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.255.222.2 user=root Aug 7 15:29:02 amsweb01 sshd[28200]: Failed password for root from 190.255.222.2 port 60093 ssh2 Aug 7 15:36:25 amsweb01 sshd[29280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.255.222.2 user=root	2020-08-07 22:48:08
191.232.242.173	attack	Aug 7 13:07:40 ns3033917 sshd[5507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.242.173 Aug 7 13:07:40 ns3033917 sshd[5507]: Invalid user ubuntu from 191.232.242.173 port 44302 Aug 7 13:07:42 ns3033917 sshd[5507]: Failed password for invalid user ubuntu from 191.232.242.173 port 44302 ssh2 ...	2020-08-07 22:54:00
177.159.99.89	attackbots	Dovecot Invalid User Login Attempt.	2020-08-07 22:25:34
34.77.127.43	attackspambots	2020-08-07T13:59:27.891804shield sshd\[9759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.127.77.34.bc.googleusercontent.com user=root 2020-08-07T13:59:29.517138shield sshd\[9759\]: Failed password for root from 34.77.127.43 port 59994 ssh2 2020-08-07T14:03:33.149510shield sshd\[10087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.127.77.34.bc.googleusercontent.com user=root 2020-08-07T14:03:35.220667shield sshd\[10087\]: Failed password for root from 34.77.127.43 port 48044 ssh2 2020-08-07T14:07:48.873511shield sshd\[10495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.127.77.34.bc.googleusercontent.com user=root	2020-08-07 22:36:23
176.98.219.144	attackbots	Automatic report - Port Scan Attack	2020-08-07 23:01:20
213.166.73.17	attack	[FriAug0714:05:59.9525562020][:error][pid5825:tid139903400621824][client213.166.73.17:43015][client213.166.73.17]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?i\)\(\?:\\\\\\\\x5c\\|\(\?:%\(\?:2\(\?:5\(\?:2f\\|5c\)\\|F\\|f\)\\|c\(\?:0%\(\?:9v\\|af\)\\|1\)\\|u\(\?:221[56]\\|002f\)\\|2\(\?:F\\|F\)\\|e0??\\|1u\\|5c\)\\|\\\\\\\\/\)\)\(\?:%\(\?:2\(\?:\(\?:52\)\?e\\|E\)\\|\(\?:e0%8\\|c\)0?\\|u\(\?:002e\\|2024\)\\|2\(\?:E\\|E\)\)\\|\\\\\\\\.\){2}\(\?:\\\\\\\\x5c\\|\(\?:%\(\?:2\(\?:5\(\?:2f\\|5c\)\\|F\\|f\)\\|c\(\?:0%\(\?:9v\\|af\)\\|1\)\\|..."atARGS:file.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"198"][id"340007"][rev"47"][msg"Atomicorp.comWAFRules:GenericPathRecursiondenied"][data"/../\,ARGS:file"][severity"CRITICAL"][hostname"appalti-contratti.ch"][uri"/wp-content/plugins/db-backup/download.php"][unique_id"Xy1Dp8ORMJ9rBuORKRvdLAAAAMw"][FriAug0714:06:04.5502172020][:error][pid9433:tid139903400621824][client213.166.73.17:41231][client213.166.73.17]ModSecurity:Accessdeniedwithcode	2020-08-07 22:45:01

最近上报的IP列表

126.78.75.54	5.183.255.210	152.32.168.49	46.4.115.149
42.224.10.96	167.71.96.140	222.136.68.151	212.160.150.212
102.152.145.139	37.53.40.169	61.244.97.177	175.106.10.227
190.55.140.103	122.170.116.164	202.179.86.198	151.238.152.45
5.254.239.194	65.186.60.165	42.101.250.42	183.88.68.114