42.122.49.98 - IPInfo

基本信息:

城市(city): Tianjin

省份(region): Tianjin

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.122.49.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.122.49.98.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070100 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 11:34:57 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 98.49.122.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.49.122.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
152.32.164.39	attackspam	SSH invalid-user multiple login try	2019-10-20 20:02:26
185.176.27.178	attack	Oct 20 13:34:30 mc1 kernel: \[2857627.762003\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=56688 PROTO=TCP SPT=50501 DPT=36412 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 20 13:38:19 mc1 kernel: \[2857856.337680\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56732 PROTO=TCP SPT=50501 DPT=3435 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 20 13:39:57 mc1 kernel: \[2857954.341958\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=17112 PROTO=TCP SPT=50501 DPT=3425 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-20 19:41:02
104.131.113.106	attack	Oct 20 11:15:30 localhost sshd\[17036\]: Invalid user admin from 104.131.113.106 port 45134 Oct 20 11:15:30 localhost sshd\[17036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.113.106 Oct 20 11:15:32 localhost sshd\[17036\]: Failed password for invalid user admin from 104.131.113.106 port 45134 ssh2 ...	2019-10-20 20:01:47
112.169.9.150	attackbotsspam	Oct 20 09:55:37 server sshd\[27292\]: Invalid user dh from 112.169.9.150 port 52867 Oct 20 09:55:37 server sshd\[27292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.9.150 Oct 20 09:55:39 server sshd\[27292\]: Failed password for invalid user dh from 112.169.9.150 port 52867 ssh2 Oct 20 10:00:11 server sshd\[9502\]: User root from 112.169.9.150 not allowed because listed in DenyUsers Oct 20 10:00:11 server sshd\[9502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.9.150 user=root	2019-10-20 19:53:11
192.99.154.17	attackbotsspam	Oct 17 05:35:25 ahost sshd[5520]: Invalid user tibero from 192.99.154.17 Oct 17 05:35:26 ahost sshd[5520]: Failed password for invalid user tibero from 192.99.154.17 port 52856 ssh2 Oct 17 05:35:26 ahost sshd[5520]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:49:08 ahost sshd[7494]: Failed password for www-data from 192.99.154.17 port 35632 ssh2 Oct 17 05:49:09 ahost sshd[7494]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:52:50 ahost sshd[7532]: Failed password for r.r from 192.99.154.17 port 48526 ssh2 Oct 17 05:52:50 ahost sshd[7532]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:56:42 ahost sshd[7567]: Failed password for r.r from 192.99.154.17 port 33186 ssh2 Oct 17 05:56:42 ahost sshd[7567]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 06:00:29 ahost sshd[7680]: Invalid user yr from 192.99.154.17 Oct 17 06:00:31 ahost sshd[7680]: Failed password for invalid user........ ------------------------------	2019-10-20 19:52:24
193.200.74.219	attackbotsspam	www.handydirektreparatur.de 193.200.74.219 \[20/Oct/2019:14:05:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5665 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.handydirektreparatur.de 193.200.74.219 \[20/Oct/2019:14:05:55 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4114 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-20 20:14:20
203.80.34.178	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-10-20 19:45:31
185.53.88.102	attackspam	\[2019-10-19 23:44:56\] NOTICE\[2038\] chan_sip.c: Registration from '"600" \' failed for '185.53.88.102:5366' - Wrong password \[2019-10-19 23:44:56\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-19T23:44:56.733-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="600",SessionID="0x7f61300a2fa8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.102/5366",Challenge="12b3b28d",ReceivedChallenge="12b3b28d",ReceivedHash="ee40797af7d6d7108009add89441d75c" \[2019-10-19 23:44:56\] NOTICE\[2038\] chan_sip.c: Registration from '"600" \' failed for '185.53.88.102:5366' - Wrong password \[2019-10-19 23:44:56\] SECURITY\[2046\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-19T23:44:56.829-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="600",SessionID="0x7f613013d028",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.	2019-10-20 19:42:24
182.253.222.197	attackbotsspam	Oct 19 08:19:09 mailserver sshd[21103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.222.197 user=r.r Oct 19 08:19:11 mailserver sshd[21103]: Failed password for r.r from 182.253.222.197 port 59516 ssh2 Oct 19 08:19:11 mailserver sshd[21103]: Received disconnect from 182.253.222.197 port 59516:11: Bye Bye [preauth] Oct 19 08:19:11 mailserver sshd[21103]: Disconnected from 182.253.222.197 port 59516 [preauth] Oct 19 08:23:37 mailserver sshd[21360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.222.197 user=r.r Oct 19 08:23:38 mailserver sshd[21360]: Failed password for r.r from 182.253.222.197 port 57050 ssh2 Oct 19 08:23:38 mailserver sshd[21360]: Received disconnect from 182.253.222.197 port 57050:11: Bye Bye [preauth] Oct 19 08:23:38 mailserver sshd[21360]: Disconnected from 182.253.222.197 port 57050 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html	2019-10-20 20:13:00
191.232.198.212	attackbotsspam	2019-10-20T12:05:55.620259abusebot-4.cloudsearch.cf sshd\[17598\]: Invalid user 123Sunshine from 191.232.198.212 port 45400	2019-10-20 20:14:53
185.250.44.68	attackbotsspam	185.250.44.68 - - [20/Oct/2019:08:05:49 -0400] "GET /?page=products&action=../../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17300 "https://newportbrassfaucets.com/?page=products&action=../../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 20:17:56
5.14.169.92	attackbotsspam	Automatic report - Port Scan Attack	2019-10-20 20:13:45
142.93.1.100	attackbotsspam	Automatic report - Banned IP Access	2019-10-20 20:00:49
159.203.75.13	attackspambots	Invalid user oracle from 159.203.75.13 port 40782	2019-10-20 19:55:39
113.231.108.157	attackspam	Unauthorised access (Oct 20) SRC=113.231.108.157 LEN=40 TTL=49 ID=24628 TCP DPT=23 WINDOW=49580 SYN	2019-10-20 20:16:45

最近上报的IP列表

118.75.32.174	214.144.122.104	103.78.219.196	175.4.184.169
87.76.168.4	218.134.185.8	122.83.145.157	123.196.57.241
146.244.45.233	214.85.226.197	109.201.150.179	75.154.120.2
136.30.132.145	128.79.50.89	193.1.54.159	79.229.49.124
82.199.74.207	65.111.92.120	206.61.182.37	54.138.89.32