41.164.23.42 - IPInfo

基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Liquid Telecommunications South Africa (Pty) Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 41.164.23.42 to port 8080 [J]	2020-01-05 03:39:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.164.23.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.164.23.42.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 03:39:15 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 42.23.164.41.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.23.164.41.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
23.247.118.10	attackbots	Excessive Port-Scanning	2019-08-04 09:47:47
103.6.153.123	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:42:47,586 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.6.153.123)	2019-08-04 09:42:45
1.170.31.160	attackbots	Aug 3 13:10:03 localhost kernel: [16096396.623401] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=23973 PROTO=TCP SPT=31500 DPT=37215 WINDOW=21281 RES=0x00 SYN URGP=0 Aug 3 13:10:03 localhost kernel: [16096396.623409] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=23973 PROTO=TCP SPT=31500 DPT=37215 SEQ=758669438 ACK=0 WINDOW=21281 RES=0x00 SYN URGP=0 Aug 3 20:52:52 localhost kernel: [16124165.965310] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=14943 PROTO=TCP SPT=31500 DPT=37215 WINDOW=21281 RES=0x00 SYN URGP=0 Aug 3 20:52:52 localhost kernel: [16124165.965342] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PR	2019-08-04 09:43:07
219.233.194.178	attackbotsspam	Aug 4 02:49:04 MainVPS sshd[5823]: Invalid user tecnico from 219.233.194.178 port 50606 Aug 4 02:49:04 MainVPS sshd[5823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.233.194.178 Aug 4 02:49:04 MainVPS sshd[5823]: Invalid user tecnico from 219.233.194.178 port 50606 Aug 4 02:49:06 MainVPS sshd[5823]: Failed password for invalid user tecnico from 219.233.194.178 port 50606 ssh2 Aug 4 02:53:07 MainVPS sshd[6093]: Invalid user vika from 219.233.194.178 port 42870 ...	2019-08-04 09:35:22
184.148.249.38	attackspam	Lines containing failures of 184.148.249.38 Aug 1 06:38:58 metroid sshd[20874]: Bad protocol version identification '' from 184.148.249.38 port 47768 Aug 1 06:38:58 metroid sshd[20875]: Invalid user openhabian from 184.148.249.38 port 47914 Aug 1 06:38:58 metroid sshd[20875]: Connection closed by invalid user openhabian 184.148.249.38 port 47914 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=184.148.249.38	2019-08-04 09:44:23
116.58.248.240	attackbotsspam	Automatic report - Port Scan Attack	2019-08-04 09:07:50
212.175.140.10	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:41:39,248 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.175.140.10)	2019-08-04 09:48:17
211.220.27.191	attackspam	Aug 4 02:37:58 vtv3 sshd\[5448\]: Invalid user ftpuser from 211.220.27.191 port 41748 Aug 4 02:37:58 vtv3 sshd\[5448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191 Aug 4 02:38:00 vtv3 sshd\[5448\]: Failed password for invalid user ftpuser from 211.220.27.191 port 41748 ssh2 Aug 4 02:42:58 vtv3 sshd\[7860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191 user=root Aug 4 02:43:00 vtv3 sshd\[7860\]: Failed password for root from 211.220.27.191 port 37992 ssh2 Aug 4 02:57:44 vtv3 sshd\[15153\]: Invalid user gx from 211.220.27.191 port 54376 Aug 4 02:57:44 vtv3 sshd\[15153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191 Aug 4 02:57:46 vtv3 sshd\[15153\]: Failed password for invalid user gx from 211.220.27.191 port 54376 ssh2 Aug 4 03:02:44 vtv3 sshd\[17522\]: Invalid user lair from 211.220.27.191 port 50620 Aug 4 03:02:44 vt	2019-08-04 09:32:01
40.76.0.158	attackspambots	08/03/2019-21:12:42.554366 40.76.0.158 Protocol: 6 ET SCAN Potential SSH Scan	2019-08-04 09:12:52
185.234.219.113	attack	Aug 3 20:53:04 web1 postfix/smtpd[20305]: warning: unknown[185.234.219.113]: SASL LOGIN authentication failed: authentication failure ...	2019-08-04 09:36:02
69.180.36.173	attack	2019-08-04T10:53:41.946577luisaranguren sshd[12917]: Connection from 69.180.36.173 port 43500 on 10.10.10.6 port 22 2019-08-04T10:53:43.357282luisaranguren sshd[12917]: Invalid user lihui from 69.180.36.173 port 43500 2019-08-04T10:53:43.366110luisaranguren sshd[12917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.180.36.173 2019-08-04T10:53:41.946577luisaranguren sshd[12917]: Connection from 69.180.36.173 port 43500 on 10.10.10.6 port 22 2019-08-04T10:53:43.357282luisaranguren sshd[12917]: Invalid user lihui from 69.180.36.173 port 43500 2019-08-04T10:53:45.858054luisaranguren sshd[12917]: Failed password for invalid user lihui from 69.180.36.173 port 43500 ssh2 ...	2019-08-04 09:06:12
129.213.145.85	attackspam	Feb 28 08:04:50 motanud sshd\[12743\]: Invalid user guest from 129.213.145.85 port 25387 Feb 28 08:04:50 motanud sshd\[12743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.145.85 Feb 28 08:04:52 motanud sshd\[12743\]: Failed password for invalid user guest from 129.213.145.85 port 25387 ssh2	2019-08-04 09:07:08
27.35.234.14	attackspambots	DATE:2019-08-04 02:53:51, IP:27.35.234.14, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-08-04 09:04:39
107.170.197.60	attackbotsspam	webserver:80 [04/Aug/2019] "GET /manager/html HTTP/1.1" 403 0 "-" "Mozilla/5.0 zgrab/0.x"	2019-08-04 09:40:35
211.25.231.52	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:40:55,023 INFO [amun_request_handler] PortScan Detected on Port: 445 (211.25.231.52)	2019-08-04 09:50:11

最近上报的IP列表

210.201.118.103	82.37.129.143	36.12.96.23	180.167.235.57
106.138.237.95	217.213.29.198	161.180.40.181	214.147.161.151
23.216.103.15	71.115.107.143	104.83.215.155	190.239.178.226
109.185.38.40	195.199.67.89	147.157.207.29	45.162.130.18
50.159.115.24	137.175.190.224	183.97.234.234	87.43.41.174