42.98.1.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute-force attempt banned	2020-06-10 00:29:20

相同子网IP讨论:

IP	类型	评论内容	时间
42.98.111.79	attackspam	$f2bV_matches	2020-09-06 04:01:55
42.98.111.79	attack	$f2bV_matches	2020-09-05 19:44:47
42.98.169.39	attack	SSH login attempts.	2020-08-22 23:57:03
42.98.180.116	attackbots	DATE:2020-08-21 22:20:54, IP:42.98.180.116, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-22 08:20:08
42.98.177.178	attackbots	SSH Remote Login Attempt Banned	2020-08-18 05:08:34
42.98.177.178	attack	Aug 15 14:51:15 webserver sshd[13490]: error: maximum authentication attempts exceeded for invalid user admin from 42.98.177.178 port 38342 ssh2 [preauth]	2020-08-15 21:42:11
42.98.117.150	attackspam	fail2ban/Aug 13 23:06:22 h1962932 sshd[7822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:06:24 h1962932 sshd[7822]: Failed password for root from 42.98.117.150 port 51342 ssh2 Aug 13 23:09:23 h1962932 sshd[7913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:09:25 h1962932 sshd[7913]: Failed password for root from 42.98.117.150 port 45172 ssh2 Aug 13 23:10:52 h1962932 sshd[7957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-98-117-150.static.netvigator.com user=root Aug 13 23:10:55 h1962932 sshd[7957]: Failed password for root from 42.98.117.150 port 3856 ssh2	2020-08-14 08:33:39
42.98.110.128	attack	Unauthorized connection attempt detected from IP address 42.98.110.128 to port 5555 [T]	2020-08-14 03:36:50
42.98.177.178	attackbots	Fail2Ban	2020-08-13 17:38:20
42.98.177.178	attackbots	ET COMPROMISED Known Compromised or Hostile Host Traffic group 24 - port: 22 proto: tcp cat: Misc Attackbytes: 60	2020-08-10 02:13:13
42.98.177.178	attackbotsspam	Hits on port : 22	2020-08-03 20:19:22
42.98.177.178	attackspam	2020-08-01T22:49:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-08-02 05:14:59
42.98.177.178	attackspam	SSH Honeypot -> SSH Bruteforce / Login	2020-07-30 03:55:48
42.98.123.86	attack	Brute-force attempt banned	2020-06-07 03:23:04
42.98.155.245	attack	Invalid user pi from 42.98.155.245 port 60010	2020-05-24 04:02:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.98.1.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.98.1.1.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060900 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 10 00:29:09 CST 2020
;; MSG SIZE  rcvd: 113

HOST信息:

1.1.98.42.in-addr.arpa domain name pointer 42-98-1-001.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.1.98.42.in-addr.arpa	name = 42-98-1-001.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
164.132.205.21	attackbots	Oct 30 03:42:52 odroid64 sshd\[12010\]: User root from 164.132.205.21 not allowed because not listed in AllowUsers Oct 30 03:42:52 odroid64 sshd\[12010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.205.21 user=root Nov 21 02:39:44 odroid64 sshd\[22548\]: User root from 164.132.205.21 not allowed because not listed in AllowUsers Nov 21 02:39:44 odroid64 sshd\[22548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.205.21 user=root ...	2020-03-06 02:39:27
167.99.12.47	attackbotsspam	Wordpress attack	2020-03-06 03:00:20
70.55.119.171	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 02:33:15
164.132.46.197	attackbotsspam	Feb 23 08:19:53 odroid64 sshd\[4123\]: Invalid user mother from 164.132.46.197 Feb 23 08:19:53 odroid64 sshd\[4123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.197 ...	2020-03-06 02:26:15
109.64.71.64	attackspambots	FTP	2020-03-06 03:05:04
81.16.127.201	attackbotsspam	Unauthorized connection attempt from IP address 81.16.127.201 on Port 445(SMB)	2020-03-06 03:02:45
42.233.97.136	attackbots	port scan and connect, tcp 23 (telnet)	2020-03-06 02:41:18
178.205.145.180	attackbotsspam	Unauthorized connection attempt from IP address 178.205.145.180 on Port 445(SMB)	2020-03-06 02:59:57
163.172.63.244	attack	DATE:2020-03-05 19:42:49, IP:163.172.63.244, PORT:ssh SSH brute force auth (docker-dc)	2020-03-06 03:03:47
45.125.65.35	attack	Mar 5 18:25:55 mail postfix/smtpd[21951]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: generic failure Mar 5 18:32:30 mail postfix/smtpd[21977]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: generic failure Mar 5 18:35:27 mail postfix/smtpd[21979]: warning: unknown[45.125.65.35]: SASL LOGIN authentication failed: generic failure ...	2020-03-06 02:38:47
164.132.24.138	attack	Nov 4 00:07:14 odroid64 sshd\[25439\]: User root from 164.132.24.138 not allowed because not listed in AllowUsers Nov 4 00:07:15 odroid64 sshd\[25439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 user=root Feb 16 08:21:08 odroid64 sshd\[21372\]: Invalid user administrator from 164.132.24.138 Feb 16 08:21:08 odroid64 sshd\[21372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 ...	2020-03-06 02:35:23
129.28.154.240	attack	suspicious action Thu, 05 Mar 2020 10:32:53 -0300	2020-03-06 02:49:59
14.102.93.108	attackspam	Unauthorized connection attempt from IP address 14.102.93.108 on Port 445(SMB)	2020-03-06 02:54:47
164.132.44.25	attackbotsspam	Oct 21 10:20:16 odroid64 sshd\[16319\]: User root from 164.132.44.25 not allowed because not listed in AllowUsers Oct 21 10:20:16 odroid64 sshd\[16319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25 user=root Oct 21 10:20:18 odroid64 sshd\[16319\]: Failed password for invalid user root from 164.132.44.25 port 36444 ssh2 Oct 21 10:20:16 odroid64 sshd\[16319\]: User root from 164.132.44.25 not allowed because not listed in AllowUsers Oct 21 10:20:16 odroid64 sshd\[16319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25 user=root Oct 21 10:20:18 odroid64 sshd\[16319\]: Failed password for invalid user root from 164.132.44.25 port 36444 ssh2 Feb 3 20:17:57 odroid64 sshd\[6767\]: Invalid user archiva from 164.132.44.25 Feb 3 20:17:57 odroid64 sshd\[6767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25 Feb 28 01:4 ...	2020-03-06 02:29:09
116.104.93.158	attack	Telnet Server BruteForce Attack	2020-03-06 02:39:43

最近上报的IP列表

194.213.120.7	96.45.180.34	51.143.11.140	109.134.9.22
109.238.229.98	92.118.114.32	178.128.193.162	50.115.19.143
212.170.23.8	14.230.150.7	91.118.33.134	220.143.157.226
14.132.124.189	139.0.176.245	96.10.81.36	85.249.78.245
169.239.3.103	5.67.224.186	95.47.255.183	61.147.103.174