2001:470:dfa9:10ff:0:242:ac11:5

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan	2020-02-20 08:22:41

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41551
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:5. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Tue Feb 25 23:18:29 2020
;; MSG SIZE  rcvd: 124

HOST信息:

Host 5.0.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.0.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
143.208.180.63	attack	'Fail2Ban'	2020-06-22 22:45:17
111.229.15.228	attackbotsspam	frenzy	2020-06-22 22:54:30
200.45.147.129	attack	Jun 22 13:16:52 game-panel sshd[1315]: Failed password for root from 200.45.147.129 port 47330 ssh2 Jun 22 13:18:05 game-panel sshd[1430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 Jun 22 13:18:07 game-panel sshd[1430]: Failed password for invalid user dmp from 200.45.147.129 port 40916 ssh2	2020-06-22 23:05:33
206.189.124.254	attackspam	Jun 22 14:20:32 roki-contabo sshd\[6199\]: Invalid user test from 206.189.124.254 Jun 22 14:20:32 roki-contabo sshd\[6199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.124.254 Jun 22 14:20:35 roki-contabo sshd\[6199\]: Failed password for invalid user test from 206.189.124.254 port 51860 ssh2 Jun 22 14:25:34 roki-contabo sshd\[6284\]: Invalid user admin from 206.189.124.254 Jun 22 14:25:34 roki-contabo sshd\[6284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.124.254 ...	2020-06-22 23:01:55
66.249.79.249	attackspambots	66.249.79.249 - - [22/Jun/2020:15:03:38 +0300] "GET /wp-content/plugins/jetpack/https://stats.wp.com/s-202026.js HTTP/1.0" 403 1525 "https://thecherryland.com/" "Mediapartners-Google" 66.249.79.249 - - [22/Jun/2020:15:05:06 +0300] "GET /wp-content/plugins/jetpack/https://stats.wp.com/s-202026.js HTTP/1.0" 403 1525 "https://thecherryland.com/about-cherry/" "Mediapartners-Google" 66.249.79.249 - - [22/Jun/2020:15:05:34 +0300] "GET /wp-content/plugins/jetpack/https://stats.wp.com/s-202026.js HTTP/1.0" 403 1525 "https://thecherryland.com/about/" "Mediapartners-Google" ...	2020-06-22 22:55:00
106.53.220.175	attackspam	Jun 22 13:51:58 ns382633 sshd\[18335\]: Invalid user filip from 106.53.220.175 port 35914 Jun 22 13:51:58 ns382633 sshd\[18335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.175 Jun 22 13:52:00 ns382633 sshd\[18335\]: Failed password for invalid user filip from 106.53.220.175 port 35914 ssh2 Jun 22 14:05:52 ns382633 sshd\[20792\]: Invalid user developer from 106.53.220.175 port 41954 Jun 22 14:05:52 ns382633 sshd\[20792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.175	2020-06-22 22:39:44
58.49.94.213	attackspambots	Jun 22 15:05:24 root sshd[29356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.94.213 user=root Jun 22 15:05:26 root sshd[29356]: Failed password for root from 58.49.94.213 port 37182 ssh2 ...	2020-06-22 23:06:16
109.175.166.38	attack	2020-06-22T07:38:31.808672linuxbox-skyline sshd[87847]: Invalid user linaro from 109.175.166.38 port 35678 ...	2020-06-22 22:37:14
88.119.215.55	attackspambots	Honeypot attack, port: 445, PTR: 88-119-215-55.static.zebra.lt.	2020-06-22 22:41:24
122.228.19.79	attackbotsspam	TCP (SYN) 122.228.19.79:49792 -> port 25, len 44	2020-06-22 22:52:04
78.128.113.108	attackspambots	(smtpauth) Failed SMTP AUTH login from 78.128.113.108 (BG/Bulgaria/ip-113-108.4vendeta.com): 5 in the last 3600 secs	2020-06-22 23:00:49
172.105.40.219	attackbotsspam	Jun 22 07:42:30 cumulus sshd[27373]: Invalid user ubuntu from 172.105.40.219 port 36004 Jun 22 07:42:30 cumulus sshd[27373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.105.40.219 Jun 22 07:42:32 cumulus sshd[27373]: Failed password for invalid user ubuntu from 172.105.40.219 port 36004 ssh2 Jun 22 07:42:32 cumulus sshd[27373]: Received disconnect from 172.105.40.219 port 36004:11: Bye Bye [preauth] Jun 22 07:42:32 cumulus sshd[27373]: Disconnected from 172.105.40.219 port 36004 [preauth] Jun 22 07:47:16 cumulus sshd[27750]: Invalid user admin from 172.105.40.219 port 57806 Jun 22 07:47:16 cumulus sshd[27750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.105.40.219 Jun 22 07:47:17 cumulus sshd[27750]: Failed password for invalid user admin from 172.105.40.219 port 57806 ssh2 Jun 22 07:47:17 cumulus sshd[27750]: Received disconnect from 172.105.40.219 port 57806:11: Bye Bye [pr........ -------------------------------	2020-06-22 23:13:22
139.59.66.101	attackbots	2020-06-22T15:18:55.291294lavrinenko.info sshd[10817]: Failed password for invalid user mozilla from 139.59.66.101 port 45588 ssh2 2020-06-22T15:21:33.631705lavrinenko.info sshd[10961]: Invalid user banca from 139.59.66.101 port 57536 2020-06-22T15:21:33.639557lavrinenko.info sshd[10961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.66.101 2020-06-22T15:21:33.631705lavrinenko.info sshd[10961]: Invalid user banca from 139.59.66.101 port 57536 2020-06-22T15:21:35.958272lavrinenko.info sshd[10961]: Failed password for invalid user banca from 139.59.66.101 port 57536 ssh2 ...	2020-06-22 22:49:20
14.228.124.92	attack	1592827516 - 06/22/2020 14:05:16 Host: 14.228.124.92/14.228.124.92 Port: 445 TCP Blocked	2020-06-22 23:15:27
69.94.158.125	attackbotsspam	Jun 22 14:41:26 mail.srvfarm.net postfix/smtpd[4156079]: NOQUEUE: reject: RCPT from medical.ifixheal.com[69.94.158.125]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 22 14:41:26 mail.srvfarm.net postfix/smtpd[4156127]: NOQUEUE: reject: RCPT from medical.ifixheal.com[69.94.158.125]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 22 14:41:26 mail.srvfarm.net postfix/smtpd[4152946]: NOQUEUE: reject: RCPT from unknown[69.94.158.125]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 22 14:41:27 mail.srvfarm.net postfix/smtpd[4152191]: NOQUEUE: reject: RCPT from u	2020-06-22 22:58:48

最近上报的IP列表

253.126.164.18	198.199.110.54	95.240.73.252	58.218.199.165
5.233.57.110	187.177.89.253	92.211.177.19	18.216.215.24
52.136.193.147	2001:470:dfa9:10ff:0:242:ac11:2e	2001:470:dfa9:10ff:0:242:ac11:2c	2001:470:dfa9:10ff:0:242:ac11:2b
2001:470:dfa9:10ff:0:242:ac11:2a	92.50.140.246	72.186.139.38	2001:470:dfa9:10ff:0:242:ac11:28
210.136.218.48	13.57.33.148	167.21.121.70	174.58.137.214