42.98.140.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 5555, PTR: 42-98-140-196.static.netvigator.com.	2020-04-01 03:30:06
attack	unauthorized connection attempt	2020-02-16 15:47:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.98.140.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15823
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.98.140.196.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021600 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 15:47:11 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

196.140.98.42.in-addr.arpa domain name pointer 42-98-140-196.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.140.98.42.in-addr.arpa	name = 42-98-140-196.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
187.109.46.108	attackbots	Sep 6 19:35:44 mailman postfix/smtpd[25424]: warning: unknown[187.109.46.108]: SASL PLAIN authentication failed: authentication failure	2019-09-07 16:03:31
151.16.224.185	attack	Sep 7 09:03:16 root sshd[28194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.16.224.185 Sep 7 09:03:18 root sshd[28194]: Failed password for invalid user 123456 from 151.16.224.185 port 41588 ssh2 Sep 7 09:14:36 root sshd[28391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.16.224.185 ...	2019-09-07 16:15:18
60.14.198.230	attackspambots	Unauthorised access (Sep 7) SRC=60.14.198.230 LEN=40 TTL=49 ID=35776 TCP DPT=8080 WINDOW=15186 SYN Unauthorised access (Sep 3) SRC=60.14.198.230 LEN=40 TTL=49 ID=13065 TCP DPT=8080 WINDOW=59778 SYN Unauthorised access (Sep 2) SRC=60.14.198.230 LEN=40 TTL=49 ID=29146 TCP DPT=8080 WINDOW=15186 SYN	2019-09-07 16:00:20
91.121.143.205	attackbotsspam	Sep 1 03:36:40 itv-usvr-01 sshd[775]: Invalid user stevey from 91.121.143.205 Sep 1 03:36:40 itv-usvr-01 sshd[775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.143.205 Sep 1 03:36:40 itv-usvr-01 sshd[775]: Invalid user stevey from 91.121.143.205 Sep 1 03:36:43 itv-usvr-01 sshd[775]: Failed password for invalid user stevey from 91.121.143.205 port 41630 ssh2 Sep 1 03:45:42 itv-usvr-01 sshd[1248]: Invalid user guest from 91.121.143.205	2019-09-07 16:07:02
162.144.119.35	attackspam	Sep 7 09:20:07 yabzik sshd[6694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.119.35 Sep 7 09:20:09 yabzik sshd[6694]: Failed password for invalid user 1q2w3e4r from 162.144.119.35 port 41190 ssh2 Sep 7 09:24:54 yabzik sshd[8083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.119.35	2019-09-07 16:31:44
119.249.217.124	attackbots	Unauthorised access (Sep 7) SRC=119.249.217.124 LEN=40 TTL=49 ID=4294 TCP DPT=8080 WINDOW=61066 SYN Unauthorised access (Sep 6) SRC=119.249.217.124 LEN=40 TTL=49 ID=63175 TCP DPT=8080 WINDOW=51191 SYN Unauthorised access (Sep 4) SRC=119.249.217.124 LEN=40 TTL=49 ID=9600 TCP DPT=8080 WINDOW=23055 SYN	2019-09-07 16:35:55
34.77.37.13	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-09-07 16:01:06
186.137.123.202	attack	Sep 7 09:30:46 Ubuntu-1404-trusty-64-minimal sshd\[24242\]: Invalid user pp from 186.137.123.202 Sep 7 09:30:46 Ubuntu-1404-trusty-64-minimal sshd\[24242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.137.123.202 Sep 7 09:30:48 Ubuntu-1404-trusty-64-minimal sshd\[24242\]: Failed password for invalid user pp from 186.137.123.202 port 38828 ssh2 Sep 7 09:44:26 Ubuntu-1404-trusty-64-minimal sshd\[32751\]: Invalid user spike from 186.137.123.202 Sep 7 09:44:26 Ubuntu-1404-trusty-64-minimal sshd\[32751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.137.123.202	2019-09-07 16:27:08
170.130.187.14	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-07 15:51:25
218.92.0.161	attackspam	" "	2019-09-07 15:46:12
34.68.136.212	attack	Sep 6 21:31:19 lcprod sshd\[26029\]: Invalid user demo3 from 34.68.136.212 Sep 6 21:31:19 lcprod sshd\[26029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.136.68.34.bc.googleusercontent.com Sep 6 21:31:21 lcprod sshd\[26029\]: Failed password for invalid user demo3 from 34.68.136.212 port 51180 ssh2 Sep 6 21:35:17 lcprod sshd\[26428\]: Invalid user live from 34.68.136.212 Sep 6 21:35:17 lcprod sshd\[26428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.136.68.34.bc.googleusercontent.com	2019-09-07 16:01:32
194.88.204.163	attack	Sep 6 22:03:00 friendsofhawaii sshd\[13204\]: Invalid user teamspeak from 194.88.204.163 Sep 6 22:03:00 friendsofhawaii sshd\[13204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.88.204.163 Sep 6 22:03:01 friendsofhawaii sshd\[13204\]: Failed password for invalid user teamspeak from 194.88.204.163 port 47828 ssh2 Sep 6 22:07:29 friendsofhawaii sshd\[13633\]: Invalid user chris from 194.88.204.163 Sep 6 22:07:29 friendsofhawaii sshd\[13633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.88.204.163	2019-09-07 16:10:14
111.231.132.94	attackbotsspam	Sep 6 17:48:25 php2 sshd\[8984\]: Invalid user deploy from 111.231.132.94 Sep 6 17:48:25 php2 sshd\[8984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.132.94 Sep 6 17:48:27 php2 sshd\[8984\]: Failed password for invalid user deploy from 111.231.132.94 port 39472 ssh2 Sep 6 17:54:19 php2 sshd\[9502\]: Invalid user nagios from 111.231.132.94 Sep 6 17:54:19 php2 sshd\[9502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.132.94	2019-09-07 15:59:12
177.154.234.172	attack	Brute force attack to crack SMTP password (port 25 / 587)	2019-09-07 16:29:21
213.234.26.179	attackspam	2019-09-07T08:15:46.650273abusebot-7.cloudsearch.cf sshd\[18571\]: Invalid user webs from 213.234.26.179 port 54300	2019-09-07 16:23:18

最近上报的IP列表

220.133.81.185	180.247.135.64	123.7.207.59	113.53.41.11
191.181.95.19	250.140.114.23	211.72.178.116	37.224.175.4
197.248.101.174	227.37.211.218	190.104.238.34	102.186.67.119
189.41.158.219	183.167.219.42	183.99.111.211	177.10.150.189
144.76.44.180	199.108.21.57	123.25.21.156	166.7.91.165