2001:470:dfa9:10ff:0:242:ac11:1b

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port scan	2020-02-20 09:07:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:1b
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54595
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:1b. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Tue Feb 25 23:18:30 2020
;; MSG SIZE  rcvd: 125

HOST信息:

Host b.1.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find b.1.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.230.168.4	attackbots	Apr 10 09:25:55 vtv3 sshd\[26417\]: Invalid user jenkins from 157.230.168.4 port 58772 Apr 10 09:25:55 vtv3 sshd\[26417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Apr 10 09:25:56 vtv3 sshd\[26417\]: Failed password for invalid user jenkins from 157.230.168.4 port 58772 ssh2 Apr 10 09:31:52 vtv3 sshd\[29153\]: Invalid user cinstall from 157.230.168.4 port 37996 Apr 10 09:31:52 vtv3 sshd\[29153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Aug 1 10:18:33 vtv3 sshd\[17383\]: Invalid user connie from 157.230.168.4 port 37708 Aug 1 10:18:33 vtv3 sshd\[17383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Aug 1 10:18:35 vtv3 sshd\[17383\]: Failed password for invalid user connie from 157.230.168.4 port 37708 ssh2 Aug 1 10:24:02 vtv3 sshd\[20067\]: Invalid user daniel from 157.230.168.4 port 34038 Aug 1 10:24:02 vtv3 sshd\[2006	2019-10-03 16:53:00
106.12.24.1	attack	Oct 3 05:07:51 work-partkepr sshd\[20257\]: Invalid user ra from 106.12.24.1 port 51974 Oct 3 05:07:51 work-partkepr sshd\[20257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.1 ...	2019-10-03 16:59:29
163.172.216.150	attackbots	Automatic report - XMLRPC Attack	2019-10-03 16:42:18
91.121.155.226	attackspambots	Sep 29 22:54:25 eola sshd[10082]: Invalid user adahwai from 91.121.155.226 port 33913 Sep 29 22:54:25 eola sshd[10082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.155.226 Sep 29 22:54:27 eola sshd[10082]: Failed password for invalid user adahwai from 91.121.155.226 port 33913 ssh2 Sep 29 22:54:27 eola sshd[10082]: Received disconnect from 91.121.155.226 port 33913:11: Bye Bye [preauth] Sep 29 22:54:27 eola sshd[10082]: Disconnected from 91.121.155.226 port 33913 [preauth] Sep 29 23:10:04 eola sshd[10697]: Invalid user ux from 91.121.155.226 port 58619 Sep 29 23:10:04 eola sshd[10697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.155.226 Sep 29 23:10:06 eola sshd[10697]: Failed password for invalid user ux from 91.121.155.226 port 58619 ssh2 Sep 29 23:10:06 eola sshd[10697]: Received disconnect from 91.121.155.226 port 58619:11: Bye Bye [preauth] Sep 29 23:10:06 eola s........ -------------------------------	2019-10-03 16:38:51
122.152.197.6	attackspambots	Oct 3 09:46:47 meumeu sshd[6286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.197.6 Oct 3 09:46:48 meumeu sshd[6286]: Failed password for invalid user 0 from 122.152.197.6 port 58544 ssh2 Oct 3 09:51:38 meumeu sshd[6963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.197.6 ...	2019-10-03 16:33:24
222.186.175.183	attack	Oct 3 11:00:40 fr01 sshd[32072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Oct 3 11:00:42 fr01 sshd[32072]: Failed password for root from 222.186.175.183 port 41728 ssh2 ...	2019-10-03 17:09:46
103.218.242.190	attackspambots	Automatic report - Banned IP Access	2019-10-03 16:45:00
106.75.79.242	attack	Oct 3 03:17:44 plusreed sshd[22691]: Invalid user ubnt from 106.75.79.242 ...	2019-10-03 16:33:02
37.193.108.101	attack	Port Scan detected from 37.193.108.101 (RU/Russia/l37-193-108-101.novotelecom.ru). 4 hits in the last 20 seconds	2019-10-03 16:46:23
112.166.68.193	attack	Oct 3 06:49:53 www sshd\[60328\]: Invalid user mwkamau from 112.166.68.193Oct 3 06:49:55 www sshd\[60328\]: Failed password for invalid user mwkamau from 112.166.68.193 port 43074 ssh2Oct 3 06:54:45 www sshd\[60459\]: Invalid user user from 112.166.68.193Oct 3 06:54:47 www sshd\[60459\]: Failed password for invalid user user from 112.166.68.193 port 41192 ssh2 ...	2019-10-03 17:08:15
117.90.137.111	attack	Sep 30 11:13:25 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:30 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:30 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:32 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:34 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:34 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:34 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:37 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:37 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:37 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:38 eola postfix/smtpd[368]: lost conne........ -------------------------------	2019-10-03 16:54:20
114.67.110.221	attackbotsspam	Oct 2 22:53:31 web1 sshd\[32251\]: Invalid user oracle3 from 114.67.110.221 Oct 2 22:53:31 web1 sshd\[32251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.221 Oct 2 22:53:33 web1 sshd\[32251\]: Failed password for invalid user oracle3 from 114.67.110.221 port 37222 ssh2 Oct 2 22:58:39 web1 sshd\[32732\]: Invalid user staette from 114.67.110.221 Oct 2 22:58:39 web1 sshd\[32732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.221	2019-10-03 17:07:51
175.207.219.185	attackbotsspam	Oct 3 11:01:45 eventyay sshd[9258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.219.185 Oct 3 11:01:47 eventyay sshd[9258]: Failed password for invalid user kmem from 175.207.219.185 port 9377 ssh2 Oct 3 11:06:45 eventyay sshd[9388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.219.185 ...	2019-10-03 17:11:06
116.196.87.71	attack	Oct 3 10:46:27 tuxlinux sshd[51085]: Invalid user kedar from 116.196.87.71 port 39652 Oct 3 10:46:27 tuxlinux sshd[51085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.87.71 Oct 3 10:46:27 tuxlinux sshd[51085]: Invalid user kedar from 116.196.87.71 port 39652 Oct 3 10:46:27 tuxlinux sshd[51085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.87.71 Oct 3 10:46:27 tuxlinux sshd[51085]: Invalid user kedar from 116.196.87.71 port 39652 Oct 3 10:46:27 tuxlinux sshd[51085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.87.71 Oct 3 10:46:29 tuxlinux sshd[51085]: Failed password for invalid user kedar from 116.196.87.71 port 39652 ssh2 ...	2019-10-03 16:47:49
185.176.27.190	attack	10/03/2019-10:11:44.920307 185.176.27.190 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-03 16:43:52

最近上报的IP列表

2001:470:dfa9:10ff:0:242:ac11:10	165.22.98.239	156.96.47.41	187.126.87.39
118.70.45.156	62.156.202.172	207.21.196.2	145.121.43.130
79.134.161.112	75.122.208.89	78.160.33.166	180.150.247.220
238.180.106.181	134.209.102.95	1.34.74.113	52.229.175.253
218.149.221.136	177.40.179.139	113.87.14.157	185.202.2.247