2001:4ca0:108:42:0:80:6:9

基本信息:

城市(city): unknown

省份(region): Bavaria

国家(country): Germany

运营商(isp): LEIBNIZ-RECHENZENTRUM

主机名(hostname): unknown

机构(organization): Leibniz-Rechenzentrum

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 3 13:25:34 TCP Attack: SRC=2001:4ca0:0108:0042:0000:0080:0006:0009 DST=[Masked] LEN=80 TC=0 HOPLIMIT=245 FLOWLBL=0 PROTO=TCP SPT=47595 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0	2019-07-03 23:35:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2001:4ca0:108:42:0:80:6:9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30670
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2001:4ca0:108:42:0:80:6:9.	IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 23:34:57 CST 2019
;; MSG SIZE  rcvd: 129

HOST信息:

9.0.0.0.6.0.0.0.0.8.0.0.0.0.0.0.2.4.0.0.8.0.1.0.0.a.c.4.1.0.0.2.ip6.arpa domain name pointer planetlab9.net.in.tum.de.8.0.1.0.0.a.c.4.1.0.0.2.ip6.arpa.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
9.0.0.0.6.0.0.0.0.8.0.0.0.0.0.0.2.4.0.0.8.0.1.0.0.a.c.4.1.0.0.2.ip6.arpa	name = planetlab9.net.in.tum.de.8.0.1.0.0.a.c.4.1.0.0.2.ip6.arpa.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
155.232.195.63	attack	Oct 21 06:59:15 sanyalnet-cloud-vps4 sshd[31229]: Connection from 155.232.195.63 port 42248 on 64.137.160.124 port 22 Oct 21 06:59:21 sanyalnet-cloud-vps4 sshd[31229]: Failed password for invalid user r.r from 155.232.195.63 port 42248 ssh2 Oct 21 06:59:21 sanyalnet-cloud-vps4 sshd[31229]: Received disconnect from 155.232.195.63: 11: Bye Bye [preauth] Oct 21 07:11:40 sanyalnet-cloud-vps4 sshd[31566]: Connection from 155.232.195.63 port 35110 on 64.137.160.124 port 22 Oct 21 07:11:42 sanyalnet-cloud-vps4 sshd[31566]: Invalid user ec from 155.232.195.63 Oct 21 07:11:44 sanyalnet-cloud-vps4 sshd[31566]: Failed password for invalid user ec from 155.232.195.63 port 35110 ssh2 Oct 21 07:11:44 sanyalnet-cloud-vps4 sshd[31566]: Received disconnect from 155.232.195.63: 11: Bye Bye [preauth] Oct 21 07:16:47 sanyalnet-cloud-vps4 sshd[31651]: Connection from 155.232.195.63 port 48022 on 64.137.160.124 port 22 Oct 21 07:16:49 sanyalnet-cloud-vps4 sshd[31651]: Invalid user admin from........ -------------------------------	2019-10-23 16:13:36
168.63.154.174	attack	2019-10-23T08:26:45.845176abusebot-3.cloudsearch.cf sshd\[30693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.63.154.174 user=root	2019-10-23 16:27:02
13.228.122.216	attackbots	[munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:18 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:20 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:20 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:23 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:23 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 13.228.122.216 - - [23/Oct/2019:09:09:26 +0200] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11	2019-10-23 16:16:29
200.11.240.234	attack	Oct 22 21:49:38 sachi sshd\[28843\]: Invalid user test from 200.11.240.234 Oct 22 21:49:38 sachi sshd\[28843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.240.234 Oct 22 21:49:41 sachi sshd\[28843\]: Failed password for invalid user test from 200.11.240.234 port 55842 ssh2 Oct 22 21:55:14 sachi sshd\[29272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.240.234 user=root Oct 22 21:55:16 sachi sshd\[29272\]: Failed password for root from 200.11.240.234 port 40418 ssh2	2019-10-23 16:29:33
81.28.100.139	attack	2019-10-23T05:52:21.988488stark.klein-stark.info postfix/smtpd\[22008\]: NOQUEUE: reject: RCPT from favor.shrewdmhealth.com\[81.28.100.139\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-10-23 16:08:05
79.137.33.20	attackbots	Oct 23 02:00:52 firewall sshd[2141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.33.20 user=root Oct 23 02:00:53 firewall sshd[2141]: Failed password for root from 79.137.33.20 port 44649 ssh2 Oct 23 02:04:40 firewall sshd[2243]: Invalid user testbuy from 79.137.33.20 ...	2019-10-23 16:23:20
85.59.188.15	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/85.59.188.15/ ES - 1H : (31) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN12479 IP : 85.59.188.15 CIDR : 85.59.160.0/19 PREFIX COUNT : 6057 UNIQUE IP COUNT : 6648832 ATTACKS DETECTED ASN12479 : 1H - 1 3H - 2 6H - 3 12H - 4 24H - 4 DateTime : 2019-10-23 05:52:08 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-23 16:15:40
134.249.170.22	attack	Fail2Ban Ban Triggered	2019-10-23 15:55:50
174.138.19.114	attackspambots	Oct 23 06:46:02 MK-Soft-VM5 sshd[3997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.19.114 Oct 23 06:46:04 MK-Soft-VM5 sshd[3997]: Failed password for invalid user donna from 174.138.19.114 port 39716 ssh2 ...	2019-10-23 16:34:01
177.170.112.138	attack	Automatic report - Port Scan Attack	2019-10-23 16:20:51
112.33.16.34	attackbots	Oct 23 06:52:07 hosting sshd[16869]: Invalid user teste01 from 112.33.16.34 port 36152 ...	2019-10-23 16:17:35
119.29.114.235	attack	Oct 23 07:07:51 www sshd\[24149\]: Invalid user kyr from 119.29.114.235 Oct 23 07:07:51 www sshd\[24149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.114.235 Oct 23 07:07:53 www sshd\[24149\]: Failed password for invalid user kyr from 119.29.114.235 port 38090 ssh2 ...	2019-10-23 16:13:12
222.186.180.41	attack	2019-10-23T07:51:09.027578abusebot.cloudsearch.cf sshd\[9197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root	2019-10-23 16:02:39
109.238.3.180	attackspambots	Oct 22 20:02:58 hanapaa sshd\[22738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.238.3.180 user=root Oct 22 20:03:01 hanapaa sshd\[22738\]: Failed password for root from 109.238.3.180 port 34558 ssh2 Oct 22 20:07:13 hanapaa sshd\[23130\]: Invalid user kxso from 109.238.3.180 Oct 22 20:07:13 hanapaa sshd\[23130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.238.3.180 Oct 22 20:07:16 hanapaa sshd\[23130\]: Failed password for invalid user kxso from 109.238.3.180 port 44858 ssh2	2019-10-23 16:14:07
81.155.157.38	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/81.155.157.38/ GB - 1H : (83) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN2856 IP : 81.155.157.38 CIDR : 81.144.0.0/12 PREFIX COUNT : 292 UNIQUE IP COUNT : 10658560 ATTACKS DETECTED ASN2856 : 1H - 1 3H - 3 6H - 3 12H - 9 24H - 13 DateTime : 2019-10-23 05:51:47 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-23 16:29:13

最近上报的IP列表

179.99.9.31	2001:4ca0:108:42:0:443:6:9	146.78.157.238	220.193.22.11
104.219.2.148	96.63.16.21	46.101.149.106	117.106.37.236
84.120.41.118	49.176.171.34	155.118.101.182	72.136.17.242
34.77.236.1	218.68.243.133	124.212.160.211	54.244.130.76
2600:387:a:3::1d	107.165.164.2	182.83.138.164	91.196.103.204