2001:470:dfa9:10ff:0:242:ac11:26

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port scan	2020-02-20 08:48:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39859
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:26. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Tue Feb 25 23:18:30 2020
;; MSG SIZE  rcvd: 125

HOST信息:

Host 6.2.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.2.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
189.2.141.83	attackbots	Aug 14 17:36:40 roki-contabo sshd\[27596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.2.141.83 user=root Aug 14 17:36:42 roki-contabo sshd\[27596\]: Failed password for root from 189.2.141.83 port 55166 ssh2 Aug 14 18:01:17 roki-contabo sshd\[28159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.2.141.83 user=root Aug 14 18:01:19 roki-contabo sshd\[28159\]: Failed password for root from 189.2.141.83 port 54784 ssh2 Aug 14 18:04:58 roki-contabo sshd\[28264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.2.141.83 user=root ...	2020-08-15 01:12:11
51.161.45.174	attackbots	SSH Brute Force	2020-08-15 01:15:50
185.153.197.32	attackspam	[H1.VM4] Blocked by UFW	2020-08-15 01:19:42
34.80.223.251	attackbots	Aug 14 16:58:57 buvik sshd[19429]: Failed password for root from 34.80.223.251 port 45753 ssh2 Aug 14 17:02:38 buvik sshd[20373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.223.251 user=root Aug 14 17:02:40 buvik sshd[20373]: Failed password for root from 34.80.223.251 port 38588 ssh2 ...	2020-08-15 01:07:15
185.147.212.8	attackbots	[2020-08-14 13:03:02] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.212.8:64806' - Wrong password [2020-08-14 13:03:02] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-14T13:03:02.263-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9841",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8/64806",Challenge="7bd2bc28",ReceivedChallenge="7bd2bc28",ReceivedHash="242cbdd2a3c5667b559290903464b7ad" [2020-08-14 13:03:31] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.212.8:60820' - Wrong password [2020-08-14 13:03:31] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-14T13:03:31.062-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1974",SessionID="0x7f10c4270ff8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8 ...	2020-08-15 01:08:17
49.233.68.90	attack	bruteforce detected	2020-08-15 01:10:51
151.54.195.209	attackspambots	[14/Aug/2020 x@x [14/Aug/2020 x@x [14/Aug/2020 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=151.54.195.209	2020-08-15 01:40:39
106.13.126.15	attackspambots	Aug 14 16:37:17 vps639187 sshd\[23883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.15 user=root Aug 14 16:37:19 vps639187 sshd\[23883\]: Failed password for root from 106.13.126.15 port 41766 ssh2 Aug 14 16:40:13 vps639187 sshd\[23942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.15 user=root ...	2020-08-15 01:16:50
181.48.139.118	attackspambots	Aug 14 14:19:59 electroncash sshd[7003]: Failed password for root from 181.48.139.118 port 37836 ssh2 Aug 14 14:21:41 electroncash sshd[7514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.139.118 user=root Aug 14 14:21:43 electroncash sshd[7514]: Failed password for root from 181.48.139.118 port 35536 ssh2 Aug 14 14:23:30 electroncash sshd[7988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.139.118 user=root Aug 14 14:23:32 electroncash sshd[7988]: Failed password for root from 181.48.139.118 port 33254 ssh2 ...	2020-08-15 01:13:26
123.30.149.76	attackbotsspam	Aug 14 19:55:20 pkdns2 sshd\[47993\]: Address 123.30.149.76 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 14 19:55:23 pkdns2 sshd\[47993\]: Failed password for root from 123.30.149.76 port 44897 ssh2Aug 14 19:58:13 pkdns2 sshd\[48089\]: Address 123.30.149.76 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 14 19:58:15 pkdns2 sshd\[48089\]: Failed password for root from 123.30.149.76 port 36386 ssh2Aug 14 20:01:09 pkdns2 sshd\[48227\]: Address 123.30.149.76 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 14 20:01:11 pkdns2 sshd\[48227\]: Failed password for root from 123.30.149.76 port 56108 ssh2 ...	2020-08-15 01:24:14
106.75.32.229	attackbots	"fail2ban match"	2020-08-15 01:36:24
183.103.115.2	attackspam	2020-08-14T21:36:13.181161billing sshd[21378]: Failed password for root from 183.103.115.2 port 22230 ssh2 2020-08-14T21:39:57.876572billing sshd[29911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.103.115.2 user=root 2020-08-14T21:39:59.261755billing sshd[29911]: Failed password for root from 183.103.115.2 port 12034 ssh2 ...	2020-08-15 01:18:56
99.248.36.93	attack	Wordpress attack	2020-08-15 01:39:46
162.243.129.112	attackbots	Port scan: Attack repeated for 24 hours	2020-08-15 01:24:47
222.186.190.2	attackbots	2020-08-14T20:28:42.547544afi-git.jinr.ru sshd[16508]: Failed password for root from 222.186.190.2 port 38690 ssh2 2020-08-14T20:28:45.972378afi-git.jinr.ru sshd[16508]: Failed password for root from 222.186.190.2 port 38690 ssh2 2020-08-14T20:28:50.092806afi-git.jinr.ru sshd[16508]: Failed password for root from 222.186.190.2 port 38690 ssh2 2020-08-14T20:28:50.092933afi-git.jinr.ru sshd[16508]: error: maximum authentication attempts exceeded for root from 222.186.190.2 port 38690 ssh2 [preauth] 2020-08-14T20:28:50.092947afi-git.jinr.ru sshd[16508]: Disconnecting: Too many authentication failures [preauth] ...	2020-08-15 01:30:44

最近上报的IP列表

34.204.62.186	205.188.183.234	15.222.240.149	71.0.200.241
135.225.175.162	149.8.58.255	156.49.116.231	132.255.66.31
233.182.231.6	103.36.8.146	85.13.253.154	185.164.72.103
3.6.43.35	106.127.184.114	18.105.105.8	101.200.49.79
175.112.93.78	166.158.179.173	78.137.198.165	187.162.42.135