42.111.139.44 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Vodafone India Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute force SMTP login attempts.	2020-01-05 01:10:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.111.139.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10503
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.111.139.44.			IN	A

;; AUTHORITY SECTION:
.			108	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 01:10:24 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

44.139.111.42.in-addr.arpa domain name pointer 42-111-139-44.live.vodafone.in.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
44.139.111.42.in-addr.arpa	name = 42-111-139-44.live.vodafone.in.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.59.213.27	attackspam	Aug 19 02:08:58 vpn01 sshd\[13555\]: Invalid user gregory from 139.59.213.27 Aug 19 02:08:58 vpn01 sshd\[13555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.213.27 Aug 19 02:09:00 vpn01 sshd\[13555\]: Failed password for invalid user gregory from 139.59.213.27 port 45156 ssh2	2019-08-19 10:55:46
58.87.79.172	attackspambots	Aug 19 00:07:29 mintao sshd\[1149\]: Invalid user pi from 58.87.79.172\ Aug 19 00:07:31 mintao sshd\[1151\]: Invalid user pi from 58.87.79.172\	2019-08-19 10:48:47
13.67.91.234	attack	Automatic report - Banned IP Access	2019-08-19 11:33:43
184.64.13.67	attackbotsspam	Aug 19 04:57:37 server01 sshd\[3757\]: Invalid user aline from 184.64.13.67 Aug 19 04:57:37 server01 sshd\[3757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.64.13.67 Aug 19 04:57:39 server01 sshd\[3757\]: Failed password for invalid user aline from 184.64.13.67 port 58912 ssh2 ...	2019-08-19 11:17:10
185.11.244.21	attackspam	Aug 19 04:50:41 mail sshd\[1065\]: Failed password for invalid user ubuntu. from 185.11.244.21 port 42836 ssh2 Aug 19 04:54:56 mail sshd\[1771\]: Invalid user 123456 from 185.11.244.21 port 60366 Aug 19 04:54:56 mail sshd\[1771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.11.244.21 Aug 19 04:54:58 mail sshd\[1771\]: Failed password for invalid user 123456 from 185.11.244.21 port 60366 ssh2 Aug 19 04:59:09 mail sshd\[2268\]: Invalid user Huawei123 from 185.11.244.21 port 49660 Aug 19 04:59:09 mail sshd\[2268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.11.244.21	2019-08-19 11:11:41
124.236.22.54	attackbotsspam	Aug 19 02:19:45 meumeu sshd[22912]: Failed password for invalid user gu from 124.236.22.54 port 44960 ssh2 ...	2019-08-19 11:15:19
65.151.157.14	attack	Aug 19 03:19:18 hb sshd\[10815\]: Invalid user laurel from 65.151.157.14 Aug 19 03:19:18 hb sshd\[10815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.151.157.14 Aug 19 03:19:21 hb sshd\[10815\]: Failed password for invalid user laurel from 65.151.157.14 port 59652 ssh2 Aug 19 03:24:25 hb sshd\[11261\]: Invalid user sysadmin from 65.151.157.14 Aug 19 03:24:25 hb sshd\[11261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.151.157.14	2019-08-19 11:31:49
153.36.242.143	attackspambots	19/8/18@20:49:19: FAIL: Alarm-SSH address from=153.36.242.143 ...	2019-08-19 11:02:15
189.91.239.181	attack	Aug 18 16:54:05 lcprod sshd\[5583\]: Invalid user tomcat from 189.91.239.181 Aug 18 16:54:05 lcprod sshd\[5583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189-91-239-181-wlan.lpnet.com.br Aug 18 16:54:06 lcprod sshd\[5583\]: Failed password for invalid user tomcat from 189.91.239.181 port 35200 ssh2 Aug 18 16:59:41 lcprod sshd\[6130\]: Invalid user hue from 189.91.239.181 Aug 18 16:59:41 lcprod sshd\[6130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189-91-239-181-wlan.lpnet.com.br	2019-08-19 11:07:21
218.92.0.204	attackbots	Aug 19 04:57:15 mail sshd\[2040\]: Failed password for root from 218.92.0.204 port 19583 ssh2 Aug 19 04:58:40 mail sshd\[2200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root Aug 19 04:58:43 mail sshd\[2200\]: Failed password for root from 218.92.0.204 port 14169 ssh2 Aug 19 04:58:45 mail sshd\[2200\]: Failed password for root from 218.92.0.204 port 14169 ssh2 Aug 19 04:58:47 mail sshd\[2200\]: Failed password for root from 218.92.0.204 port 14169 ssh2	2019-08-19 11:10:47
2.227.250.104	attack	Aug 19 05:39:54 server sshd\[20529\]: Invalid user factorio from 2.227.250.104 port 45860 Aug 19 05:39:54 server sshd\[20529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.227.250.104 Aug 19 05:39:56 server sshd\[20529\]: Failed password for invalid user factorio from 2.227.250.104 port 45860 ssh2 Aug 19 05:44:00 server sshd\[7571\]: User root from 2.227.250.104 not allowed because listed in DenyUsers Aug 19 05:44:00 server sshd\[7571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.227.250.104 user=root	2019-08-19 11:00:56
37.49.231.104	attack	Splunk® : port scan detected: Aug 18 22:41:41 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=37.49.231.104 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=29834 PROTO=TCP SPT=40770 DPT=50802 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-19 10:50:13
200.116.173.38	attackspam	Aug 19 05:26:35 nextcloud sshd\[11180\]: Invalid user mobil from 200.116.173.38 Aug 19 05:26:35 nextcloud sshd\[11180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.173.38 Aug 19 05:26:37 nextcloud sshd\[11180\]: Failed password for invalid user mobil from 200.116.173.38 port 40408 ssh2 ...	2019-08-19 11:34:56
106.13.44.78	attackspambots	Aug 18 16:30:29 web9 sshd\[5244\]: Invalid user sun from 106.13.44.78 Aug 18 16:30:29 web9 sshd\[5244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.44.78 Aug 18 16:30:31 web9 sshd\[5244\]: Failed password for invalid user sun from 106.13.44.78 port 35636 ssh2 Aug 18 16:36:33 web9 sshd\[6412\]: Invalid user nagios from 106.13.44.78 Aug 18 16:36:33 web9 sshd\[6412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.44.78	2019-08-19 10:52:53
45.14.148.101	attackspam	2019-08-19T02:38:45.034426abusebot-6.cloudsearch.cf sshd\[27790\]: Invalid user appserver from 45.14.148.101 port 53604	2019-08-19 10:53:21

最近上报的IP列表

141.172.59.63	57.157.234.92	154.214.25.247	36.232.57.56
115.149.222.136	174.90.231.113	134.30.231.177	210.210.146.151
51.113.62.8	109.125.129.195	60.250.84.97	115.76.254.202
125.77.88.196	106.111.240.248	113.22.205.199	167.71.100.59
41.102.169.17	189.182.185.163	58.211.226.126	183.145.84.181