42.2.80.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Port probing on unauthorized port 5555	2020-03-29 13:58:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.80.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30722
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.80.196.			IN	A

;; AUTHORITY SECTION:
.			436	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032900 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 29 13:57:59 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

196.80.2.42.in-addr.arpa domain name pointer 42-2-80-196.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.80.2.42.in-addr.arpa	name = 42-2-80-196.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
37.146.182.38	attack	Unauthorized connection attempt from IP address 37.146.182.38 on Port 445(SMB)	2020-02-01 10:50:51
169.1.252.192	attack	Automatic report - Port Scan Attack	2020-02-01 10:34:50
46.101.119.148	attackbots	Unauthorized connection attempt detected from IP address 46.101.119.148 to port 2220 [J]	2020-02-01 11:00:56
54.206.19.43	attackspam	[FriJan3121:49:49.7055332020][:error][pid12190:tid47392766236416][client54.206.19.43:40910][client54.206.19.43]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"www.casaplusticino.ch"][uri"/.env"][unique_id"XjSS7RZ2LVVmbSpBd99nHQAAAAM"][FriJan3122:30:10.5819102020][:error][pid12039:tid47392787248896][client54.206.19.43:46606][client54.206.19.43]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\	2020-02-01 10:55:39
3.122.232.104	attackspambots	Time: Fri Jan 31 18:02:12 2020 -0300 IP: 3.122.232.104 (DE/Germany/ec2-3-122-232-104.eu-central-1.compute.amazonaws.com) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-02-01 10:43:00
52.79.150.118	attackspambots	Time: Fri Jan 31 18:23:19 2020 -0300 IP: 52.79.150.118 (KR/South Korea/ec2-52-79-150-118.ap-northeast-2.compute.amazonaws.com) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-02-01 11:00:19
116.26.175.238	attackbots	1580506215 - 01/31/2020 22:30:15 Host: 116.26.175.238/116.26.175.238 Port: 445 TCP Blocked	2020-02-01 10:44:04
124.205.224.179	attack	Feb 1 05:58:44 lnxmysql61 sshd[8380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.205.224.179 Feb 1 05:58:44 lnxmysql61 sshd[8380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.205.224.179	2020-02-01 13:05:34
45.228.232.13	attackbots	Unauthorized connection attempt from IP address 45.228.232.13 on Port 445(SMB)	2020-02-01 10:56:45
37.70.132.170	attackspambots	Feb 1 05:54:04 dedicated sshd[24361]: Failed password for invalid user ts3 from 37.70.132.170 port 35837 ssh2 Feb 1 05:58:36 dedicated sshd[25290]: Invalid user template from 37.70.132.170 port 46782 Feb 1 05:58:36 dedicated sshd[25290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.70.132.170 Feb 1 05:58:36 dedicated sshd[25290]: Invalid user template from 37.70.132.170 port 46782 Feb 1 05:58:38 dedicated sshd[25290]: Failed password for invalid user template from 37.70.132.170 port 46782 ssh2	2020-02-01 13:12:13
14.239.34.224	attackspam	Unauthorized connection attempt from IP address 14.239.34.224 on Port 445(SMB)	2020-02-01 10:40:38
185.32.222.16	attackspam	Automatic report - Banned IP Access	2020-02-01 10:47:32
101.71.2.165	attackspam	2020-02-01T05:53:50.878059struts4.enskede.local sshd\[14539\]: Invalid user jenkins from 101.71.2.165 port 5956 2020-02-01T05:53:50.885277struts4.enskede.local sshd\[14539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.2.165 2020-02-01T05:53:53.792452struts4.enskede.local sshd\[14539\]: Failed password for invalid user jenkins from 101.71.2.165 port 5956 ssh2 2020-02-01T05:57:51.163010struts4.enskede.local sshd\[14547\]: Invalid user jenkins from 101.71.2.165 port 5959 2020-02-01T05:57:51.169230struts4.enskede.local sshd\[14547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.2.165 ...	2020-02-01 13:13:30
43.229.90.69	attackbots	Unauthorized connection attempt from IP address 43.229.90.69 on Port 445(SMB)	2020-02-01 10:42:27
106.75.118.145	attackspam	Unauthorized connection attempt detected from IP address 106.75.118.145 to port 2220 [J]	2020-02-01 10:49:50

最近上报的IP列表

71.41.245.35	201.174.123.242	189.4.151.102	51.81.4.233
179.104.49.27	156.221.46.151	24.29.201.98	206.132.166.27
31.40.56.124	120.132.114.5	61.171.90.1	41.222.15.157
185.241.6.52	27.8.195.181	78.36.3.248	81.22.48.96
197.41.197.232	179.108.139.226	106.13.58.178	187.73.219.50