210.20.1.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Jupiter Telecommunication Co. Ltd

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
210.20.197.70	attackbotsspam	Unauthorized connection attempt detected from IP address 210.20.197.70 to port 23	2019-12-31 21:36:13

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 210.20.1.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40787
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;210.20.1.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050600 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon May 06 22:51:00 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

42.1.20.210.in-addr.arpa domain name pointer 210-20-1-42.wmx.home.ne.jp.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
42.1.20.210.in-addr.arpa	name = 210-20-1-42.wmx.home.ne.jp.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.32.97.36	attack	Sep 28 14:31:17 CT728 sshd[10318]: reveeclipse mapping checking getaddrinfo for b1206124.virtua.com.br [177.32.97.36] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 28 14:31:19 CT728 sshd[10318]: Failed password for invalid user fossil from 177.32.97.36 port 60563 ssh2 Sep 28 14:31:19 CT728 sshd[10318]: Received disconnect from 177.32.97.36: 11: Bye Bye [preauth] Sep 28 14:43:53 CT728 sshd[10706]: reveeclipse mapping checking getaddrinfo for b1206124.virtua.com.br [177.32.97.36] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 28 14:43:53 CT728 sshd[10706]: User r.r from 177.32.97.36 not allowed because not listed in AllowUsers Sep 28 14:43:53 CT728 sshd[10706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.32.97.36 user=r.r Sep 28 14:43:55 CT728 sshd[10706]: Failed password for invalid user r.r from 177.32.97.36 port 43013 ssh2 Sep 28 14:43:56 CT728 sshd[10706]: Received disconnect from 177.32.97.36: 11: Bye Bye [preauth] Sep 28 14:50:13 ........ -------------------------------	2020-10-02 01:39:58
181.37.151.73	attackbotsspam	Unauthorised access (Sep 30) SRC=181.37.151.73 LEN=52 TOS=0x08 PREC=0x20 TTL=107 ID=23209 DF TCP DPT=445 WINDOW=8192 SYN	2020-10-02 01:32:41
54.38.36.210	attackspam	Invalid user alan from 54.38.36.210 port 59812	2020-10-02 01:42:06
78.110.106.206	attackspambots	1601498166 - 09/30/2020 22:36:06 Host: 78.110.106.206/78.110.106.206 Port: 445 TCP Blocked ...	2020-10-02 01:27:40
178.209.170.75	attackspam	178.209.170.75 - - [01/Oct/2020:18:15:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2307 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.209.170.75 - - [01/Oct/2020:18:15:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2289 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.209.170.75 - - [01/Oct/2020:18:15:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 01:35:39
109.164.4.225	attack	Oct 1 06:39:40 mail.srvfarm.net postfix/smtpd[3729985]: warning: unknown[109.164.4.225]: SASL PLAIN authentication failed: Oct 1 06:39:40 mail.srvfarm.net postfix/smtpd[3729985]: lost connection after AUTH from unknown[109.164.4.225] Oct 1 06:45:56 mail.srvfarm.net postfix/smtps/smtpd[3723925]: warning: unknown[109.164.4.225]: SASL PLAIN authentication failed: Oct 1 06:45:56 mail.srvfarm.net postfix/smtps/smtpd[3723925]: lost connection after AUTH from unknown[109.164.4.225] Oct 1 06:49:19 mail.srvfarm.net postfix/smtps/smtpd[3729482]: warning: unknown[109.164.4.225]: SASL PLAIN authentication failed:	2020-10-02 01:24:00
165.22.43.225	attackbotsspam	Brute-force attempt banned	2020-10-02 01:11:12
160.124.50.93	attackspam	(sshd) Failed SSH login from 160.124.50.93 (ZA/South Africa/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 12:24:01 server2 sshd[14562]: Invalid user Justin from 160.124.50.93 Oct 1 12:24:01 server2 sshd[14562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.50.93 Oct 1 12:24:03 server2 sshd[14562]: Failed password for invalid user Justin from 160.124.50.93 port 38558 ssh2 Oct 1 12:36:09 server2 sshd[24491]: Invalid user el from 160.124.50.93 Oct 1 12:36:09 server2 sshd[24491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.50.93	2020-10-02 01:36:07
111.229.78.121	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-02 01:14:56
140.143.233.218	attackbotsspam	Oct 1 12:36:36 ns382633 sshd\[16886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.218 user=root Oct 1 12:36:39 ns382633 sshd\[16886\]: Failed password for root from 140.143.233.218 port 34330 ssh2 Oct 1 12:50:13 ns382633 sshd\[18678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.218 user=root Oct 1 12:50:15 ns382633 sshd\[18678\]: Failed password for root from 140.143.233.218 port 39718 ssh2 Oct 1 12:59:55 ns382633 sshd\[19807\]: Invalid user deploy from 140.143.233.218 port 59728 Oct 1 12:59:55 ns382633 sshd\[19807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.218	2020-10-02 01:29:14
164.90.190.60	attackspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-02 01:41:24
106.12.193.6	attackbotsspam	Brute-force attempt banned	2020-10-02 01:45:09
181.164.2.121	attackspam	Oct 1 19:15:35 OPSO sshd\[16125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.2.121 user=root Oct 1 19:15:37 OPSO sshd\[16125\]: Failed password for root from 181.164.2.121 port 48464 ssh2 Oct 1 19:19:16 OPSO sshd\[16468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.2.121 user=root Oct 1 19:19:19 OPSO sshd\[16468\]: Failed password for root from 181.164.2.121 port 35930 ssh2 Oct 1 19:22:55 OPSO sshd\[17264\]: Invalid user ts3server from 181.164.2.121 port 51626 Oct 1 19:22:55 OPSO sshd\[17264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.2.121	2020-10-02 01:33:27
172.81.242.40	attackspam	Oct 1 sshd[1609]: Invalid user deployer from 172.81.242.40 port 46802	2020-10-02 01:43:12
213.82.190.238	attackbotsspam	IP 213.82.190.238 attacked honeypot on port: 1433 at 9/30/2020 3:30:41 PM	2020-10-02 01:26:22

最近上报的IP列表

110.78.171.99	168.33.224.93	189.151.149.16	120.135.109.22
2002:7af1:59e9::7af1:59e9	216.135.67.119	17.148.166.2	164.73.191.46
110.78.171.6	87.139.249.193	98.248.157.83	213.105.50.163
170.216.42.189	185.212.129.147	217.19.239.65	65.2.109.205
110.36.223.234	177.120.48.217	45.169.216.3	124.109.32.106