2002:42d4:1fc6::42d4:1fc6

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): 6to4 RFC3056

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Reserved

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	MYH,DEF POST /wp-content/plugins/asset-manager/upload.php GET /wp-content/uploads/assets/temp/sherror.php	2019-08-09 19:44:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2002:42d4:1fc6::42d4:1fc6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55448
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2002:42d4:1fc6::42d4:1fc6.	IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 19:44:47 CST 2019
;; MSG SIZE  rcvd: 129

HOST信息:

Host 6.c.f.1.4.d.2.4.0.0.0.0.0.0.0.0.0.0.0.0.6.c.f.1.4.d.2.4.2.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 6.c.f.1.4.d.2.4.0.0.0.0.0.0.0.0.0.0.0.0.6.c.f.1.4.d.2.4.2.0.0.2.ip6.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.32.120.215	attack	Dec 27 23:56:42 lnxweb61 sshd[10320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.120.215	2019-12-28 07:16:12
140.143.197.232	attackspam	Dec 27 17:57:09 mail sshd\[6110\]: Invalid user admin from 140.143.197.232 Dec 27 17:57:09 mail sshd\[6110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.197.232 ...	2019-12-28 06:59:02
94.73.194.12	attackspam	michaelklotzbier.de 94.73.194.12 [27/Dec/2019:23:57:01 +0100] "POST /wp-login.php HTTP/1.1" 200 6418 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" michaelklotzbier.de 94.73.194.12 [27/Dec/2019:23:57:02 +0100] "POST /wp-login.php HTTP/1.1" 200 6378 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-28 07:04:00
13.52.247.140	attack	Unauthorized connection attempt detected from IP address 13.52.247.140 to port 4434	2019-12-28 07:05:27
95.81.28.17	attack	2019-12-27T23:56:15.581467scmdmz1 sshd[7761]: Invalid user pi from 95.81.28.17 port 36436 2019-12-27T23:56:15.584349scmdmz1 sshd[7763]: Invalid user pi from 95.81.28.17 port 36442 2019-12-27T23:56:15.611409scmdmz1 sshd[7761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.81.28.17 2019-12-27T23:56:15.581467scmdmz1 sshd[7761]: Invalid user pi from 95.81.28.17 port 36436 2019-12-27T23:56:17.953513scmdmz1 sshd[7761]: Failed password for invalid user pi from 95.81.28.17 port 36436 ssh2 ...	2019-12-28 07:29:46
46.38.144.117	attack	Dec 28 00:23:56 webserver postfix/smtpd\[30852\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 00:25:33 webserver postfix/smtpd\[31504\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 00:27:14 webserver postfix/smtpd\[30852\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 00:28:55 webserver postfix/smtpd\[30852\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 28 00:30:35 webserver postfix/smtpd\[30852\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-28 07:30:12
124.61.206.234	attackspam	Dec 27 21:44:25 zeus sshd[28394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.206.234 Dec 27 21:44:27 zeus sshd[28394]: Failed password for invalid user seung from 124.61.206.234 port 35894 ssh2 Dec 27 21:47:17 zeus sshd[28529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.206.234 Dec 27 21:47:18 zeus sshd[28529]: Failed password for invalid user 1q2w3e4r5!@# from 124.61.206.234 port 58636 ssh2	2019-12-28 06:54:19
93.140.8.104	attackspambots	Web App Attack	2019-12-28 07:22:56
84.238.224.47	attack	Invalid user yohg from 84.238.224.47 port 37952	2019-12-28 07:23:19
201.16.228.170	attackbots	2019-12-27 23:57:11 H=(201-016-228-170.xf-static.ctbcnetsuper.com.br.228.16.201.in-addr.arpa) [201.16.228.170] sender verify fail for : Unrouteable address 2019-12-27 23:57:11 H=(201-016-228-170.xf-static.ctbcnetsuper.com.br.228.16.201.in-addr.arpa) [201.16.228.170] F= rejected RCPT : Sender verify failed ...	2019-12-28 06:57:40
217.145.45.2	attackspam	Invalid user dutchman from 217.145.45.2 port 49814	2019-12-28 07:18:55
45.136.108.128	attackspambots	Port scan on 16 port(s): 205 305 615 635 6788 20546 22829 23031 26566 31319 39397 44748 48889 50052 59394 61611	2019-12-28 07:10:32
198.108.67.106	attackbots	Dec 27 23:57:07 debian-2gb-nbg1-2 kernel: \[1140148.345669\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.67.106 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=49530 PROTO=TCP SPT=42032 DPT=12205 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-28 07:00:17
89.248.160.193	attackbotsspam	12/27/2019-23:56:16.372836 89.248.160.193 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2019-12-28 07:31:49
45.33.77.110	attack	Automatic report - Port Scan	2019-12-28 07:28:38

最近上报的IP列表

115.54.241.97	171.103.4.242	175.21.78.8	197.53.213.70
103.89.170.90	54.213.159.205	121.1.38.228	186.47.86.75
151.225.207.19	195.154.188.129	199.255.159.254	160.153.156.130
73.52.80.140	180.183.69.86	160.153.147.136	87.96.139.69
162.252.58.148	89.44.138.250	184.168.193.168	188.16.150.51