42.2.220.164 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 5555, PTR: 42-2-220-164.static.netvigator.com.	2020-03-23 04:42:41

相同子网IP讨论:

IP	类型	评论内容	时间
42.2.220.152	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 543418cebb0ddddb \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: HK \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Mobile/15E148 Safari/604.1 \| CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:35:09
42.2.220.152	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54113efc4b48dd02 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: HK \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Safari/605.1.15 \| CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:24:20

类型

评论内容

时间

42.2.220.152

attackbots

The IP has triggered Cloudflare WAF. CF-Ray: 543418cebb0ddddb | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Mobile/15E148 Safari/604.1 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 06:35:09

42.2.220.152

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 54113efc4b48dd02 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Safari/605.1.15 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:24:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.220.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48538
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.220.164.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032201 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 04:42:38 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

164.220.2.42.in-addr.arpa domain name pointer 42-2-220-164.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.220.2.42.in-addr.arpa	name = 42-2-220-164.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.101.27.6	attackbots	Dec 10 19:24:10 MK-Soft-Root2 sshd[31187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.27.6 Dec 10 19:24:12 MK-Soft-Root2 sshd[31187]: Failed password for invalid user jason from 46.101.27.6 port 44892 ssh2 ...	2019-12-11 03:13:43
185.36.81.233	attackspam	Brute force SMTP login attempts.	2019-12-11 03:04:34
49.247.214.67	attack	Dec 10 08:36:12 hpm sshd\[25774\]: Invalid user kun from 49.247.214.67 Dec 10 08:36:12 hpm sshd\[25774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 Dec 10 08:36:14 hpm sshd\[25774\]: Failed password for invalid user kun from 49.247.214.67 port 52490 ssh2 Dec 10 08:45:52 hpm sshd\[26780\]: Invalid user aminudin from 49.247.214.67 Dec 10 08:45:52 hpm sshd\[26780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67	2019-12-11 03:33:34
118.25.11.204	attackspambots	Dec 10 19:05:46 ovpn sshd\[7681\]: Invalid user yq from 118.25.11.204 Dec 10 19:05:46 ovpn sshd\[7681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204 Dec 10 19:05:48 ovpn sshd\[7681\]: Failed password for invalid user yq from 118.25.11.204 port 38513 ssh2 Dec 10 19:22:47 ovpn sshd\[11984\]: Invalid user yoyo from 118.25.11.204 Dec 10 19:22:47 ovpn sshd\[11984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204	2019-12-11 03:02:31
170.130.187.58	attack	firewall-block, port(s): 5900/tcp	2019-12-11 02:59:33
122.51.182.164	attackspam	IDS	2019-12-11 03:28:19
185.36.81.243	attack	Rude login attack (21 tries in 1d)	2019-12-11 03:10:11
45.55.210.248	attackspam	Dec 10 19:37:01 root sshd[31236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.210.248 Dec 10 19:37:03 root sshd[31236]: Failed password for invalid user server from 45.55.210.248 port 51486 ssh2 Dec 10 19:43:02 root sshd[31449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.210.248 ...	2019-12-11 02:56:59
113.147.108.36	attackspam	Dec 10 20:03:53 meumeu sshd[13510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.147.108.36 Dec 10 20:03:55 meumeu sshd[13510]: Failed password for invalid user joomla from 113.147.108.36 port 59917 ssh2 Dec 10 20:09:49 meumeu sshd[14445]: Failed password for root from 113.147.108.36 port 63969 ssh2 ...	2019-12-11 03:22:45
103.81.156.56	attackbots	Dec 10 22:01:11 server sshd\[21738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.156.56 user=root Dec 10 22:01:13 server sshd\[21738\]: Failed password for root from 103.81.156.56 port 51244 ssh2 Dec 10 22:15:07 server sshd\[25422\]: Invalid user marugg from 103.81.156.56 Dec 10 22:15:07 server sshd\[25422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.156.56 Dec 10 22:15:08 server sshd\[25422\]: Failed password for invalid user marugg from 103.81.156.56 port 28832 ssh2 ...	2019-12-11 03:16:12
103.253.42.51	attackspambots	Rude login attack (12 tries in 1d)	2019-12-11 03:03:27
200.149.111.246	attack	Portscan or hack attempt detected by psad/fwsnort	2019-12-11 03:22:07
189.125.2.234	attackbots	Dec 10 13:45:46 TORMINT sshd\[15023\]: Invalid user city from 189.125.2.234 Dec 10 13:45:46 TORMINT sshd\[15023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.2.234 Dec 10 13:45:48 TORMINT sshd\[15023\]: Failed password for invalid user city from 189.125.2.234 port 58832 ssh2 ...	2019-12-11 03:02:05
112.220.24.131	attackspam	2019-12-10T19:50:47.093677centos sshd\[12457\]: Invalid user scaner from 112.220.24.131 port 40248 2019-12-10T19:50:47.099734centos sshd\[12457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.24.131 2019-12-10T19:50:49.222007centos sshd\[12457\]: Failed password for invalid user scaner from 112.220.24.131 port 40248 ssh2	2019-12-11 03:08:36
45.125.66.57	attackspambots	Bruteforce on smtp	2019-12-11 03:12:33

最近上报的IP列表

101.135.122.143	164.10.112.123	75.200.105.236	82.138.50.172
235.92.82.52	59.56.251.90	159.34.12.91	52.230.38.105
29.136.224.162	138.201.189.47	72.138.25.82	209.235.150.6
234.150.216.241	113.164.79.17	177.157.26.228	49.74.201.193
105.251.53.141	118.163.1.86	207.134.151.23	177.217.206.42