42.98.1.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute-force attempt banned	2020-06-10 00:29:20

相同子网IP讨论:

IP	类型	评论内容	时间
42.98.111.79	attackspam	$f2bV_matches	2020-09-06 04:01:55
42.98.111.79	attack	$f2bV_matches	2020-09-05 19:44:47
42.98.169.39	attack	SSH login attempts.	2020-08-22 23:57:03
42.98.180.116	attackbots	DATE:2020-08-21 22:20:54, IP:42.98.180.116, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-22 08:20:08
42.98.177.178	attackbots	SSH Remote Login Attempt Banned	2020-08-18 05:08:34
42.98.177.178	attack	Aug 15 14:51:15 webserver sshd[13490]: error: maximum authentication attempts exceeded for invalid user admin from 42.98.177.178 port 38342 ssh2 [preauth]	2020-08-15 21:42:11
42.98.117.150	attackspam	fail2ban/Aug 13 23:06:22 h1962932 sshd[7822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:06:24 h1962932 sshd[7822]: Failed password for root from 42.98.117.150 port 51342 ssh2 Aug 13 23:09:23 h1962932 sshd[7913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:09:25 h1962932 sshd[7913]: Failed password for root from 42.98.117.150 port 45172 ssh2 Aug 13 23:10:52 h1962932 sshd[7957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:10:55 h1962932 sshd[7957]: Failed password for root from 42.98.117.150 port 3856 ssh2	2020-08-14 08:33:39
42.98.110.128	attack	Unauthorized connection attempt detected from IP address 42.98.110.128 to port 5555 [T]	2020-08-14 03:36:50
42.98.177.178	attackbots	Fail2Ban	2020-08-13 17:38:20
42.98.177.178	attackbots	ET COMPROMISED Known Compromised or Hostile Host Traffic group 24 - port: 22 proto: tcp cat: Misc Attackbytes: 60	2020-08-10 02:13:13
42.98.177.178	attackbotsspam	Hits on port : 22	2020-08-03 20:19:22
42.98.177.178	attackspam	2020-08-01T22:49:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-08-02 05:14:59
42.98.177.178	attackspam	SSH Honeypot -> SSH Bruteforce / Login	2020-07-30 03:55:48
42.98.123.86	attack	Brute-force attempt banned	2020-06-07 03:23:04
42.98.155.245	attack	Invalid user pi from 42.98.155.245 port 60010	2020-05-24 04:02:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.98.1.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.98.1.1.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060900 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 10 00:29:09 CST 2020
;; MSG SIZE  rcvd: 113

HOST信息:

1.1.98.42.in-addr.arpa domain name pointer 42-98-1-001.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.1.98.42.in-addr.arpa	name = 42-98-1-001.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.68.194.250	attack	Automatic report - Port Scan Attack	2020-04-14 22:57:48
77.222.106.186	attack	Unauthorized connection attempt detected from IP address 77.222.106.186 to port 445 [T]	2020-04-14 23:27:50
2001:8f8:112d:6fec:b574:ed6c:ee3f:b92c	attack	WordPress wp-login brute force :: 2001:8f8:112d:6fec:b574:ed6c:ee3f:b92c 0.072 BYPASS [14/Apr/2020:12:13:22 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "https://[censored_2]/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"	2020-04-14 23:05:53
58.33.31.82	attackbots	Apr 14 15:11:26 vpn01 sshd[32105]: Failed password for root from 58.33.31.82 port 41994 ssh2 ...	2020-04-14 23:00:45
111.38.107.120	attackbots	Unauthorized connection attempt detected from IP address 111.38.107.120 to port 81 [T]	2020-04-14 23:25:43
120.32.20.52	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-04-14 22:49:55
91.98.159.233	attackbots	Automatic report - Port Scan Attack	2020-04-14 23:10:55
104.131.167.203	attackspambots	Apr 14 16:04:51 santamaria sshd\[32595\]: Invalid user alias from 104.131.167.203 Apr 14 16:04:51 santamaria sshd\[32595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.167.203 Apr 14 16:04:53 santamaria sshd\[32595\]: Failed password for invalid user alias from 104.131.167.203 port 49311 ssh2 ...	2020-04-14 22:51:58
176.31.182.79	attack	$f2bV_matches	2020-04-14 23:05:24
222.186.175.217	attack	Apr 14 14:46:40 localhost sshd[24559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Apr 14 14:46:43 localhost sshd[24559]: Failed password for root from 222.186.175.217 port 23700 ssh2 Apr 14 14:46:46 localhost sshd[24559]: Failed password for root from 222.186.175.217 port 23700 ssh2 Apr 14 14:46:40 localhost sshd[24559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Apr 14 14:46:43 localhost sshd[24559]: Failed password for root from 222.186.175.217 port 23700 ssh2 Apr 14 14:46:46 localhost sshd[24559]: Failed password for root from 222.186.175.217 port 23700 ssh2 Apr 14 14:46:40 localhost sshd[24559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Apr 14 14:46:43 localhost sshd[24559]: Failed password for root from 222.186.175.217 port 23700 ssh2 Apr 14 14:46:46 localhost sshd[24 ...	2020-04-14 23:09:24
94.123.34.83	attack	Automatic report - Port Scan Attack	2020-04-14 22:58:17
223.72.180.194	attackspam	Unauthorized connection attempt detected from IP address 223.72.180.194 to port 23 [T]	2020-04-14 23:33:37
180.218.96.185	attackbots	Unauthorized connection attempt detected from IP address 180.218.96.185 to port 9530 [T]	2020-04-14 23:16:54
181.49.118.185	attack	Apr 14 11:22:26 firewall sshd[31219]: Failed password for invalid user admin from 181.49.118.185 port 60626 ssh2 Apr 14 11:26:48 firewall sshd[31334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.118.185 user=root Apr 14 11:26:50 firewall sshd[31334]: Failed password for root from 181.49.118.185 port 39738 ssh2 ...	2020-04-14 22:51:13
89.248.174.216	attack	Activity from this block (89.248.174.xxx) has been a lot more active the last week. Netcore Router Backdoor Access followed by Remote Command Execution via Shell Script -2.	2020-04-14 22:52:37

最近上报的IP列表

194.213.120.7	96.45.180.34	51.143.11.140	109.134.9.22
109.238.229.98	92.118.114.32	178.128.193.162	50.115.19.143
212.170.23.8	14.230.150.7	91.118.33.134	220.143.157.226
14.132.124.189	139.0.176.245	96.10.81.36	85.249.78.245
169.239.3.103	5.67.224.186	95.47.255.183	61.147.103.174