196.42.11.145 - IPInfo

基本信息:

城市(city): Carolina

省份(region): unknown

国家(country): Puerto Rico

运营商(isp): Datacom Caribe Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report - Port Scan Attack	2020-08-24 08:03:37

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.42.11.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.42.11.145.			IN	A

;; AUTHORITY SECTION:
.			174	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082301 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 24 08:03:33 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

145.11.42.196.in-addr.arpa domain name pointer coqui-196-42-11-145.coqui.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.11.42.196.in-addr.arpa	name = coqui-196-42-11-145.coqui.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
68.183.83.89	attack	Aug 18 16:04:12 ns3110291 sshd\[31287\]: Invalid user fake from 68.183.83.89 Aug 18 16:04:12 ns3110291 sshd\[31287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.83.89 Aug 18 16:04:14 ns3110291 sshd\[31287\]: Failed password for invalid user fake from 68.183.83.89 port 36592 ssh2 Aug 18 16:04:16 ns3110291 sshd\[31292\]: Invalid user user from 68.183.83.89 Aug 18 16:04:16 ns3110291 sshd\[31292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.83.89 ...	2019-08-19 02:31:46
41.208.222.165	attackbots	Aug 18 14:24:30 XXX sshd[12347]: Invalid user earl from 41.208.222.165 port 40496	2019-08-19 01:57:31
188.6.161.77	attackspambots	Aug 18 17:56:24 hcbbdb sshd\[28784\]: Invalid user printul from 188.6.161.77 Aug 18 17:56:24 hcbbdb sshd\[28784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dslbc06a14d.fixip.t-online.hu Aug 18 17:56:26 hcbbdb sshd\[28784\]: Failed password for invalid user printul from 188.6.161.77 port 38370 ssh2 Aug 18 18:00:52 hcbbdb sshd\[29289\]: Invalid user raju from 188.6.161.77 Aug 18 18:00:52 hcbbdb sshd\[29289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dslbc06a14d.fixip.t-online.hu	2019-08-19 02:09:31
186.101.184.8	attackspam	firewall-block, port(s): 5555/tcp	2019-08-19 02:10:01
81.241.235.191	attack	2019-08-18T17:44:02.181963hub.schaetter.us sshd\[29130\]: Invalid user becker from 81.241.235.191 2019-08-18T17:44:02.234592hub.schaetter.us sshd\[29130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235-241-81.adsl-static.isp.belgacom.be 2019-08-18T17:44:04.376247hub.schaetter.us sshd\[29130\]: Failed password for invalid user becker from 81.241.235.191 port 38044 ssh2 2019-08-18T17:47:55.139208hub.schaetter.us sshd\[29151\]: Invalid user smbuser from 81.241.235.191 2019-08-18T17:47:55.172238hub.schaetter.us sshd\[29151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235-241-81.adsl-static.isp.belgacom.be ...	2019-08-19 02:05:23
190.128.168.78	attackbotsspam	Aug 18 14:17:38 XXX sshd[12267]: Invalid user backend from 190.128.168.78 port 48597	2019-08-19 02:09:01
2.42.255.212	attackspam	Aug 18 14:28:45 XXX sshd[12394]: Invalid user feered from 2.42.255.212 port 54026	2019-08-19 01:50:07
176.31.172.40	attackbots	Aug 18 14:56:32 root sshd[11475]: Failed password for root from 176.31.172.40 port 53174 ssh2 Aug 18 15:00:33 root sshd[11527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 Aug 18 15:00:35 root sshd[11527]: Failed password for invalid user system from 176.31.172.40 port 43464 ssh2 ...	2019-08-19 02:04:00
118.243.117.67	attackspam	$f2bV_matches	2019-08-19 02:26:11
192.99.147.77	attackbots	Sql/code injection probe	2019-08-19 02:08:35
206.189.221.160	attackbotsspam	Aug 18 18:13:04 SilenceServices sshd[24787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160 Aug 18 18:13:06 SilenceServices sshd[24787]: Failed password for invalid user nathan from 206.189.221.160 port 46416 ssh2 Aug 18 18:17:26 SilenceServices sshd[27472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160	2019-08-19 02:07:44
88.60.69.183	attackspambots	port scan and connect, tcp 23 (telnet)	2019-08-19 02:22:18
103.224.101.134	attackbots	Unauthorized connection attempt from IP address 103.224.101.134 on Port 445(SMB)	2019-08-19 01:49:28
133.130.89.210	attackbots	Aug 18 17:08:18 debian sshd\[21565\]: Invalid user holstein from 133.130.89.210 port 53390 Aug 18 17:08:18 debian sshd\[21565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.89.210 ...	2019-08-19 02:29:11
45.55.167.217	attack	Aug 18 14:17:57 XXX sshd[12272]: Invalid user hadoop from 45.55.167.217 port 55390	2019-08-19 02:07:08

最近上报的IP列表

177.192.121.90	82.51.52.110	183.172.148.170	150.242.185.57
117.15.203.32	104.144.89.94	91.76.25.100	58.238.196.213
84.91.189.8	112.198.60.106	122.231.43.72	180.9.174.47
126.33.155.8	117.185.109.215	170.0.45.85	108.217.31.18
87.169.199.183	46.155.197.59	148.167.5.204	210.249.110.27