42.213.72.194 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.213.72.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25684
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.213.72.194.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030100 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 16:08:37 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 194.72.213.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.72.213.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
164.77.70.8	attack	2020-03-06 23:01:13 H=(dujyiesoj.com) [164.77.70.8]:62298 I=[10.100.18.25]:25 sender verify fail for : Unrouteable address 2020-03-06 x@x 2020-03-06 23:01:14 unexpected disconnection while reading SMTP command from (dujyiesoj.com) [164.77.70.8]:62298 I=[10.100.18.25]:25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=164.77.70.8	2020-03-07 06:34:49
182.61.178.45	attackspambots	2020-03-06T23:03:54.688327vps751288.ovh.net sshd\[11325\]: Invalid user smmsp from 182.61.178.45 port 32964 2020-03-06T23:03:54.699700vps751288.ovh.net sshd\[11325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.178.45 2020-03-06T23:03:56.567072vps751288.ovh.net sshd\[11325\]: Failed password for invalid user smmsp from 182.61.178.45 port 32964 ssh2 2020-03-06T23:06:10.164355vps751288.ovh.net sshd\[11327\]: Invalid user fujimura from 182.61.178.45 port 40920 2020-03-06T23:06:10.176691vps751288.ovh.net sshd\[11327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.178.45	2020-03-07 06:32:24
175.24.63.123	attack	Mar 6 23:05:53 MK-Soft-VM3 sshd[13086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.63.123 Mar 6 23:05:54 MK-Soft-VM3 sshd[13086]: Failed password for invalid user sara from 175.24.63.123 port 44236 ssh2 ...	2020-03-07 06:42:28
89.211.254.248	attack	" "	2020-03-07 06:49:49
198.54.113.6	attackbotsspam	Mar 6 23:15:16 debian-2gb-nbg1-2 kernel: \[5792079.982702\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.54.113.6 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=41056 PROTO=TCP SPT=58693 DPT=10325 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-07 06:36:39
165.227.66.224	attack	Lines containing failures of 165.227.66.224 Mar 4 19:19:03 neweola sshd[2710]: Invalid user user from 165.227.66.224 port 52434 Mar 4 19:19:03 neweola sshd[2710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 Mar 4 19:19:04 neweola sshd[2710]: Failed password for invalid user user from 165.227.66.224 port 52434 ssh2 Mar 4 19:19:05 neweola sshd[2710]: Received disconnect from 165.227.66.224 port 52434:11: Bye Bye [preauth] Mar 4 19:19:05 neweola sshd[2710]: Disconnected from invalid user user 165.227.66.224 port 52434 [preauth] Mar 4 19:29:28 neweola sshd[3030]: Invalid user common from 165.227.66.224 port 55650 Mar 4 19:29:28 neweola sshd[3030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 Mar 4 19:29:29 neweola sshd[3030]: Failed password for invalid user common from 165.227.66.224 port 55650 ssh2 Mar 4 19:29:30 neweola sshd[3030]: Received disco........ ------------------------------	2020-03-07 06:54:19
45.124.202.153	attack	Mar 6 23:01:29 mail.srvfarm.net postfix/smtpd[2295056]: NOQUEUE: reject: RCPT from unknown[45.124.202.153]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=<45-124-202-153.static.sa.cust.uniti.network> Mar 6 23:01:30 mail.srvfarm.net postfix/smtpd[2295056]: NOQUEUE: reject: RCPT from unknown[45.124.202.153]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=<45-124-202-153.static.sa.cust.uniti.network> Mar 6 23:01:31 mail.srvfarm.net postfix/smtpd[2295056]: NOQUEUE: reject: RCPT from unknown[45.124.202.153]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=<45-124-202-153.static.sa.cust.uniti.network> Mar 6 23:01:32 mail.srvfarm.net postfix/smtpd[2295056]: NOQUEUE: reject: RC	2020-03-07 07:01:07
118.100.141.142	attackspambots	Mar 6 14:24:06 mockhub sshd[28619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.100.141.142 Mar 6 14:24:08 mockhub sshd[28619]: Failed password for invalid user developer from 118.100.141.142 port 46572 ssh2 ...	2020-03-07 06:32:37
193.151.24.222	attack	Mar 6 23:04:46 vps339862 kernel: \[2751201.997142\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=193.151.24.222 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=3080 PROTO=TCP SPT=34533 DPT=23 SEQ=872336939 ACK=0 WINDOW=35636 RES=0x00 SYN URGP=0 Mar 6 23:05:08 vps339862 kernel: \[2751223.984163\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=193.151.24.222 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=3080 PROTO=TCP SPT=34533 DPT=23 SEQ=872336939 ACK=0 WINDOW=35636 RES=0x00 SYN URGP=0 Mar 6 23:05:37 vps339862 kernel: \[2751253.493848\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=193.151.24.222 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=3080 PROTO=TCP SPT=34533 DPT=23 SEQ=872336939 ACK=0 WINDOW=35636 RES=0x00 SYN URGP=0 Mar 6 23:06:22 vps339862 kernel: \[2751298.225913\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a ...	2020-03-07 06:25:14
222.186.31.135	attackspambots	Mar 6 23:33:02 dcd-gentoo sshd[20737]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Mar 6 23:33:05 dcd-gentoo sshd[20737]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Mar 6 23:33:02 dcd-gentoo sshd[20737]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Mar 6 23:33:05 dcd-gentoo sshd[20737]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Mar 6 23:33:02 dcd-gentoo sshd[20737]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Mar 6 23:33:05 dcd-gentoo sshd[20737]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Mar 6 23:33:05 dcd-gentoo sshd[20737]: Failed keyboard-interactive/pam for invalid user root from 222.186.31.135 port 54297 ssh2 ...	2020-03-07 06:42:05
190.98.233.66	attack	Mar 6 22:46:16 mail.srvfarm.net postfix/smtpd[2296746]: warning: unknown[190.98.233.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 6 22:46:16 mail.srvfarm.net postfix/smtpd[2296746]: lost connection after AUTH from unknown[190.98.233.66] Mar 6 22:47:00 mail.srvfarm.net postfix/smtpd[2295056]: warning: unknown[190.98.233.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 6 22:47:00 mail.srvfarm.net postfix/smtpd[2295056]: lost connection after AUTH from unknown[190.98.233.66] Mar 6 22:54:54 mail.srvfarm.net postfix/smtpd[2296749]: warning: unknown[190.98.233.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-07 06:57:25
222.186.30.209	attack	Mar 6 23:53:45 ncomp sshd[4944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root Mar 6 23:53:46 ncomp sshd[4944]: Failed password for root from 222.186.30.209 port 58134 ssh2 Mar 7 00:26:42 ncomp sshd[5566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root Mar 7 00:26:44 ncomp sshd[5566]: Failed password for root from 222.186.30.209 port 52862 ssh2	2020-03-07 06:37:30
63.82.48.11	attackbots	Mar 6 21:45:56 web01 postfix/smtpd[23532]: connect from know.ehfizi.com[63.82.48.11] Mar 6 21:45:56 web01 policyd-spf[23536]: None; identhostnamey=helo; client-ip=63.82.48.11; helo=know.tgptest.com; envelope-from=x@x Mar 6 21:45:56 web01 policyd-spf[23536]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.11; helo=know.tgptest.com; envelope-from=x@x Mar x@x Mar 6 21:45:57 web01 postfix/smtpd[23532]: disconnect from know.ehfizi.com[63.82.48.11] Mar 6 21:46:22 web01 postfix/smtpd[23532]: connect from know.ehfizi.com[63.82.48.11] Mar 6 21:46:22 web01 policyd-spf[23536]: None; identhostnamey=helo; client-ip=63.82.48.11; helo=know.tgptest.com; envelope-from=x@x Mar 6 21:46:22 web01 policyd-spf[23536]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.11; helo=know.tgptest.com; envelope-from=x@x Mar x@x Mar 6 21:46:22 web01 postfix/smtpd[23532]: disconnect from know.ehfizi.com[63.82.48.11] Mar 6 21:46:49 web01 postfix/smtpd[23532]: connect from know.ehfizi.com[63.82........ -------------------------------	2020-03-07 06:59:49
185.209.0.19	attack	03/06/2020-17:06:22.923126 185.209.0.19 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-07 06:25:29
1.53.194.9	attackbotsspam	1583532341 - 03/06/2020 23:05:41 Host: 1.53.194.9/1.53.194.9 Port: 23 TCP Blocked	2020-03-07 06:49:00

最近上报的IP列表

246.3.22.66	235.16.17.39	173.149.190.132	241.127.85.240
231.248.162.136	113.252.120.220	197.190.218.74	55.126.204.253
63.13.69.181	51.87.167.249	164.219.75.0	138.15.140.80
252.7.52.195	195.73.214.202	245.6.145.5	98.82.236.117
191.126.215.40	64.130.75.254	136.190.240.11	90.224.248.233