42.201.228.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Pakistan

运营商(isp): Fiberlink Pvt.Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 42.201.228.12 on Port 445(SMB)	2019-07-19 14:20:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.201.228.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22254
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.201.228.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071900 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 19 14:20:09 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

12.228.201.42.in-addr.arpa domain name pointer 12.228.201.42-static-fiberlink.net.pk.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.228.201.42.in-addr.arpa	name = 12.228.201.42-static-fiberlink.net.pk.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
129.226.64.39	attackspambots	Sep 18 03:21:05 *** sshd[1297]: Invalid user sinusbot from 129.226.64.39	2020-09-18 17:43:34
89.248.171.89	attackspambots	smtp probe/invalid login attempt	2020-09-18 18:04:12
185.59.113.206	attackspam	Automatic report - Port Scan Attack	2020-09-18 17:39:22
94.102.54.199	attack	Sep 18 10:21:16 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.54.199, lip=192.168.100.101, session=\\ Sep 18 10:25:14 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.54.199, lip=192.168.100.101, session=\<3zBWPZKvogBeZjbH\>\ Sep 18 10:45:09 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.54.199, lip=192.168.100.101, session=\\ Sep 18 10:48:31 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.54.199, lip=192.168.100.101, session=\\ Sep 18 10:51:04 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=94.102.54.199, lip=192.168.100.101, session=\\ Sep 18 10:55:19 pop3-logi	2020-09-18 18:03:45
179.49.134.211	attackspam	Sep 17 18:22:57 mail.srvfarm.net postfix/smtpd[157369]: warning: unknown[179.49.134.211]: SASL PLAIN authentication failed: Sep 17 18:22:57 mail.srvfarm.net postfix/smtpd[157369]: lost connection after AUTH from unknown[179.49.134.211] Sep 17 18:24:30 mail.srvfarm.net postfix/smtps/smtpd[157154]: warning: unknown[179.49.134.211]: SASL PLAIN authentication failed: Sep 17 18:24:31 mail.srvfarm.net postfix/smtps/smtpd[157154]: lost connection after AUTH from unknown[179.49.134.211] Sep 17 18:32:53 mail.srvfarm.net postfix/smtpd[157365]: warning: unknown[179.49.134.211]: SASL PLAIN authentication failed:	2020-09-18 17:58:41
93.99.210.114	attack	Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:	2020-09-18 18:03:57
172.82.239.22	attack	Sep 17 18:10:24 mail.srvfarm.net postfix/smtpd[143203]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Sep 17 18:11:33 mail.srvfarm.net postfix/smtpd[143209]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Sep 17 18:15:15 mail.srvfarm.net postfix/smtpd[143204]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Sep 17 18:17:55 mail.srvfarm.net postfix/smtpd[143201]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Sep 17 18:18:16 mail.srvfarm.net postfix/smtpd[157366]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22]	2020-09-18 18:10:14
170.83.188.170	attack	Sep 17 18:18:05 mail.srvfarm.net postfix/smtps/smtpd[157154]: warning: unknown[170.83.188.170]: SASL PLAIN authentication failed: Sep 17 18:18:05 mail.srvfarm.net postfix/smtps/smtpd[157154]: lost connection after AUTH from unknown[170.83.188.170] Sep 17 18:20:45 mail.srvfarm.net postfix/smtps/smtpd[137957]: warning: unknown[170.83.188.170]: SASL PLAIN authentication failed: Sep 17 18:20:46 mail.srvfarm.net postfix/smtps/smtpd[137957]: lost connection after AUTH from unknown[170.83.188.170] Sep 17 18:22:43 mail.srvfarm.net postfix/smtps/smtpd[157127]: warning: unknown[170.83.188.170]: SASL PLAIN authentication failed:	2020-09-18 18:01:05
94.102.57.137	attackspam	Attempted Brute Force (dovecot)	2020-09-18 17:51:17
181.174.128.23	attack	Sep 17 18:37:35 mail.srvfarm.net postfix/smtpd[156674]: warning: unknown[181.174.128.23]: SASL PLAIN authentication failed: Sep 17 18:37:35 mail.srvfarm.net postfix/smtpd[156674]: lost connection after AUTH from unknown[181.174.128.23] Sep 17 18:39:12 mail.srvfarm.net postfix/smtpd[157364]: warning: unknown[181.174.128.23]: SASL PLAIN authentication failed: Sep 17 18:39:13 mail.srvfarm.net postfix/smtpd[157364]: lost connection after AUTH from unknown[181.174.128.23] Sep 17 18:39:47 mail.srvfarm.net postfix/smtps/smtpd[161661]: warning: unknown[181.174.128.23]: SASL PLAIN authentication failed:	2020-09-18 17:57:54
35.192.148.81	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-18 17:37:59
182.182.252.176	attackspam	Brute forcing email accounts	2020-09-18 17:38:19
191.37.131.97	attackspam	Sep 17 18:25:04 mail.srvfarm.net postfix/smtps/smtpd[155677]: warning: unknown[191.37.131.97]: SASL PLAIN authentication failed: Sep 17 18:25:04 mail.srvfarm.net postfix/smtps/smtpd[155677]: lost connection after AUTH from unknown[191.37.131.97] Sep 17 18:29:52 mail.srvfarm.net postfix/smtps/smtpd[155678]: warning: unknown[191.37.131.97]: SASL PLAIN authentication failed: Sep 17 18:29:53 mail.srvfarm.net postfix/smtps/smtpd[155678]: lost connection after AUTH from unknown[191.37.131.97] Sep 17 18:32:43 mail.srvfarm.net postfix/smtps/smtpd[159171]: warning: unknown[191.37.131.97]: SASL PLAIN authentication failed:	2020-09-18 17:56:19
188.152.246.130	attackspambots	Automatic report - Banned IP Access	2020-09-18 17:37:43
172.82.239.23	attackspam	Sep 17 18:10:24 mail.srvfarm.net postfix/smtpd[156676]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Sep 17 18:11:33 mail.srvfarm.net postfix/smtpd[156676]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Sep 17 18:15:13 mail.srvfarm.net postfix/smtpd[157371]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Sep 17 18:17:55 mail.srvfarm.net postfix/smtpd[157370]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Sep 17 18:18:16 mail.srvfarm.net postfix/smtpd[157369]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23]	2020-09-18 18:09:46

最近上报的IP列表

117.142.38.25	182.52.0.240	95.216.74.83	1.54.2.82
216.117.216.200	78.187.207.184	42.112.239.249	223.16.130.63
62.122.100.27	85.185.42.98	219.90.105.196	223.204.191.143
185.81.153.11	180.171.56.16	52.46.130.13	165.73.59.70
125.166.112.116	213.55.225.80	177.86.125.237	176.31.94.190