39.106.190.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	firewall-block, port(s): 1433/tcp, 6380/tcp, 7001/tcp, 7002/tcp, 9200/tcp	2020-03-18 19:15:42

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.106.190.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 733
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.106.190.42.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 19:15:35 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.190.106.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.190.106.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.91.25	attackspambots	Aug 27 08:06:32 ny01 sshd[25169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.91.25 Aug 27 08:06:34 ny01 sshd[25169]: Failed password for invalid user wei from 68.183.91.25 port 33662 ssh2 Aug 27 08:11:25 ny01 sshd[25992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.91.25	2019-08-27 20:14:57
210.56.28.219	attackbotsspam	Automated report - ssh fail2ban: Aug 27 13:20:50 authentication failure Aug 27 13:20:53 wrong password, user=ubuntu, port=45976, ssh2 Aug 27 13:25:49 authentication failure	2019-08-27 19:52:25
159.65.149.131	attackbotsspam	Invalid user dizmatt from 159.65.149.131 port 57698	2019-08-27 20:04:11
222.186.15.18	attackspam	Aug 27 01:33:13 web9 sshd\[30153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Aug 27 01:33:14 web9 sshd\[30153\]: Failed password for root from 222.186.15.18 port 11552 ssh2 Aug 27 01:34:05 web9 sshd\[30338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Aug 27 01:34:07 web9 sshd\[30338\]: Failed password for root from 222.186.15.18 port 18734 ssh2 Aug 27 01:34:59 web9 sshd\[30526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2019-08-27 19:56:13
186.159.112.226	attackbots	2019-08-27 04:08:05 H=(226-112-159-186.static.itelkom.co) [186.159.112.226]:47467 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-27 04:08:06 H=(226-112-159-186.static.itelkom.co) [186.159.112.226]:47467 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/186.159.112.226) 2019-08-27 04:08:06 H=(226-112-159-186.static.itelkom.co) [186.159.112.226]:47467 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/186.159.112.226) ...	2019-08-27 19:57:05
222.186.42.117	attackspam	Aug 27 13:31:45 ArkNodeAT sshd\[24672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.117 user=root Aug 27 13:31:47 ArkNodeAT sshd\[24672\]: Failed password for root from 222.186.42.117 port 33860 ssh2 Aug 27 13:31:50 ArkNodeAT sshd\[24672\]: Failed password for root from 222.186.42.117 port 33860 ssh2	2019-08-27 19:55:56
125.76.225.11	attackspambots	[TueAug2711:05:28.0803052019][:error][pid13495:tid47849310029568][client125.76.225.11:62388][client125.76.225.11]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"81.17.25.235"][uri"/App.php"][unique_id"XWTyWGbH8KL3ZJzJxVqpgAAAABQ"][TueAug2711:05:57.9219612019][:error][pid13757:tid47849212626688][client125.76.225.11:6045][client125.76.225.11]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternma	2019-08-27 20:15:22
185.242.113.224	attackspambots	Aug 27 12:07:46 cvbmail sshd\[15846\]: Invalid user user from 185.242.113.224 Aug 27 12:07:46 cvbmail sshd\[15846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.242.113.224 Aug 27 12:07:47 cvbmail sshd\[15846\]: Failed password for invalid user user from 185.242.113.224 port 43702 ssh2	2019-08-27 19:47:36
87.120.36.157	attack	Aug 27 13:26:23 dev0-dcfr-rnet sshd[5131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.120.36.157 Aug 27 13:26:25 dev0-dcfr-rnet sshd[5131]: Failed password for invalid user user from 87.120.36.157 port 43229 ssh2 Aug 27 13:26:28 dev0-dcfr-rnet sshd[5131]: Failed password for invalid user user from 87.120.36.157 port 43229 ssh2 Aug 27 13:26:31 dev0-dcfr-rnet sshd[5131]: Failed password for invalid user user from 87.120.36.157 port 43229 ssh2	2019-08-27 20:14:04
201.16.251.121	attackspam	Aug 27 07:29:33 xtremcommunity sshd\[31406\]: Invalid user qq from 201.16.251.121 port 56000 Aug 27 07:29:33 xtremcommunity sshd\[31406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.251.121 Aug 27 07:29:36 xtremcommunity sshd\[31406\]: Failed password for invalid user qq from 201.16.251.121 port 56000 ssh2 Aug 27 07:34:48 xtremcommunity sshd\[31572\]: Invalid user altri from 201.16.251.121 port 46709 Aug 27 07:34:48 xtremcommunity sshd\[31572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.251.121 ...	2019-08-27 19:36:50
54.39.144.23	attackbots	Aug 27 13:10:55 ArkNodeAT sshd\[22586\]: Invalid user cacti from 54.39.144.23 Aug 27 13:10:55 ArkNodeAT sshd\[22586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.144.23 Aug 27 13:10:56 ArkNodeAT sshd\[22586\]: Failed password for invalid user cacti from 54.39.144.23 port 50478 ssh2	2019-08-27 19:59:40
35.154.180.182	attackbots	Automatic report - Banned IP Access	2019-08-27 20:13:09
35.232.132.225	attackspam	scanning for folders: / /wordpress/ /wp/ /blog/ /new/ /old/ /test/ /main/ /backup/ /home/ /tmp/ /dev/ /portal/ /web/ /temp/ etc	2019-08-27 19:28:02
162.247.74.202	attackbotsspam	Aug 27 18:39:58 webhost01 sshd[1147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.202 Aug 27 18:40:00 webhost01 sshd[1147]: Failed password for invalid user user from 162.247.74.202 port 37396 ssh2 ...	2019-08-27 19:42:01
88.247.110.88	attackbots	Aug 27 13:13:17 nextcloud sshd\[13233\]: Invalid user test from 88.247.110.88 Aug 27 13:13:17 nextcloud sshd\[13233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.247.110.88 Aug 27 13:13:19 nextcloud sshd\[13233\]: Failed password for invalid user test from 88.247.110.88 port 4951 ssh2 ...	2019-08-27 19:29:54

最近上报的IP列表

42.113.153.232	188.37.236.27	77.72.254.134	114.141.185.93
113.167.250.7	42.119.150.102	125.162.221.254	49.146.35.102
14.248.68.67	113.190.72.91	52.27.76.97	134.209.147.73
115.124.73.190	115.72.116.239	211.202.227.221	118.70.169.232
212.156.205.241	106.12.173.149	119.96.110.28	42.112.192.129