42.4.247.44 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-26 14:37:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.4.247.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10193
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.4.247.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 14:37:36 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 44.247.4.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 44.247.4.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
65.182.2.241	attackbots	Jun 23 14:39:59 vps639187 sshd\[4649\]: Invalid user stefan from 65.182.2.241 port 42434 Jun 23 14:39:59 vps639187 sshd\[4649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.182.2.241 Jun 23 14:40:01 vps639187 sshd\[4649\]: Failed password for invalid user stefan from 65.182.2.241 port 42434 ssh2 ...	2020-06-23 21:39:16
88.214.26.93	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-23T12:11:06Z and 2020-06-23T12:44:52Z	2020-06-23 20:56:44
79.1.190.161	attack	2020-06-23T14:00:00.905143sd-86998 sshd[46519]: Invalid user user from 79.1.190.161 port 56760 2020-06-23T14:00:00.911393sd-86998 sshd[46519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-79-1-190-161.business.telecomitalia.it 2020-06-23T14:00:00.905143sd-86998 sshd[46519]: Invalid user user from 79.1.190.161 port 56760 2020-06-23T14:00:02.939442sd-86998 sshd[46519]: Failed password for invalid user user from 79.1.190.161 port 56760 ssh2 2020-06-23T14:08:46.680875sd-86998 sshd[47882]: Invalid user florian from 79.1.190.161 port 51854 ...	2020-06-23 20:59:50
218.92.0.220	attackspam	2020-06-23T12:57:47.920577shield sshd\[8597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root 2020-06-23T12:57:49.907210shield sshd\[8597\]: Failed password for root from 218.92.0.220 port 21739 ssh2 2020-06-23T12:57:52.270001shield sshd\[8597\]: Failed password for root from 218.92.0.220 port 21739 ssh2 2020-06-23T12:57:54.903292shield sshd\[8597\]: Failed password for root from 218.92.0.220 port 21739 ssh2 2020-06-23T12:58:16.760921shield sshd\[8633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root	2020-06-23 21:15:48
117.50.44.115	attackspambots	Invalid user fabiola from 117.50.44.115 port 35084 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.44.115 Failed password for invalid user fabiola from 117.50.44.115 port 35084 ssh2 Invalid user user from 117.50.44.115 port 47160 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.44.115	2020-06-23 21:43:20
2.229.250.69	attackspambots	Unauthorized connection attempt detected from IP address 2.229.250.69 to port 26	2020-06-23 21:09:17
60.243.101.162	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-23 21:06:41
106.54.52.35	attackbotsspam	2020-06-23T14:04:21.770588centos sshd[3260]: Failed password for invalid user jenkins from 106.54.52.35 port 44278 ssh2 2020-06-23T14:08:35.460013centos sshd[3477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.52.35 user=root 2020-06-23T14:08:37.522400centos sshd[3477]: Failed password for root from 106.54.52.35 port 51212 ssh2 ...	2020-06-23 21:02:30
186.113.18.109	attackspambots	$f2bV_matches	2020-06-23 21:31:02
117.232.127.51	attackbots	Jun 23 15:09:10 server sshd[33912]: Failed password for invalid user test123 from 117.232.127.51 port 50818 ssh2 Jun 23 15:10:20 server sshd[34942]: Failed password for root from 117.232.127.51 port 37958 ssh2 Jun 23 15:11:30 server sshd[35779]: Failed password for root from 117.232.127.51 port 53310 ssh2	2020-06-23 21:33:45
187.38.202.55	attackbotsspam	Jun 23 07:07:11 v2hgb sshd[23618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.38.202.55 user=r.r Jun 23 07:07:13 v2hgb sshd[23618]: Failed password for r.r from 187.38.202.55 port 50634 ssh2 Jun 23 07:07:14 v2hgb sshd[23618]: Received disconnect from 187.38.202.55 port 50634:11: Bye Bye [preauth] Jun 23 07:07:14 v2hgb sshd[23618]: Disconnected from authenticating user r.r 187.38.202.55 port 50634 [preauth] Jun 23 07:11:16 v2hgb sshd[23912]: Invalid user add from 187.38.202.55 port 51998 Jun 23 07:11:16 v2hgb sshd[23912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.38.202.55 Jun 23 07:11:18 v2hgb sshd[23912]: Failed password for invalid user add from 187.38.202.55 port 51998 ssh2 Jun 23 07:11:19 v2hgb sshd[23912]: Received disconnect from 187.38.202.55 port 51998:11: Bye Bye [preauth] Jun 23 07:11:19 v2hgb sshd[23912]: Disconnected from invalid user add 187.38.202.55 port 5........ -------------------------------	2020-06-23 21:39:54
106.12.56.126	attack	2020-06-23T15:09:08.538800vps773228.ovh.net sshd[28778]: Failed password for invalid user ftpuser from 106.12.56.126 port 54454 ssh2 2020-06-23T15:12:02.938103vps773228.ovh.net sshd[28808]: Invalid user dante from 106.12.56.126 port 33370 2020-06-23T15:12:02.960359vps773228.ovh.net sshd[28808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.126 2020-06-23T15:12:02.938103vps773228.ovh.net sshd[28808]: Invalid user dante from 106.12.56.126 port 33370 2020-06-23T15:12:04.991904vps773228.ovh.net sshd[28808]: Failed password for invalid user dante from 106.12.56.126 port 33370 ssh2 ...	2020-06-23 21:43:37
208.68.39.124	attack	Jun 23 13:59:09 vps687878 sshd\[26303\]: Failed password for root from 208.68.39.124 port 55232 ssh2 Jun 23 14:03:27 vps687878 sshd\[26778\]: Invalid user bojan from 208.68.39.124 port 54198 Jun 23 14:03:27 vps687878 sshd\[26778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.68.39.124 Jun 23 14:03:29 vps687878 sshd\[26778\]: Failed password for invalid user bojan from 208.68.39.124 port 54198 ssh2 Jun 23 14:07:53 vps687878 sshd\[27219\]: Invalid user ftptest from 208.68.39.124 port 53192 Jun 23 14:07:53 vps687878 sshd\[27219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.68.39.124 ...	2020-06-23 21:08:10
212.70.149.50	attackbotsspam	Jun 23 15:34:09 relay postfix/smtpd\[18751\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 15:34:27 relay postfix/smtpd\[16431\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 15:34:40 relay postfix/smtpd\[28590\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 15:34:59 relay postfix/smtpd\[31767\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 15:35:11 relay postfix/smtpd\[18763\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-23 21:42:32
192.241.210.68	attackspam	Port Scan detected! ...	2020-06-23 21:32:50

最近上报的IP列表

101.231.146.36	185.100.32.17	186.213.129.249	201.206.159.52
125.94.40.8	212.104.67.83	162.105.92.51	37.142.18.16
125.161.130.54	116.111.99.59	79.241.165.196	111.241.173.128
177.188.76.30	177.21.194.70	123.4.66.142	97.68.177.198
93.117.35.195	1.53.69.60	190.239.171.154	159.146.11.24