42.98.249.111 - IPInfo

基本信息:

城市(city): Yuen Long

省份(region): Yuen Long District

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Honeypot attack, port: 5555, PTR: 42-98-249-111.static.netvigator.com.	2020-05-05 10:40:03

相同子网IP讨论:

IP	类型	评论内容	时间
42.98.249.69	attackbotsspam	Unauthorized connection attempt detected from IP address 42.98.249.69 to port 5555 [J]	2020-01-25 07:18:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.98.249.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.98.249.111.			IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050403 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 05 10:39:55 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

111.249.98.42.in-addr.arpa domain name pointer 42-98-249-111.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
111.249.98.42.in-addr.arpa	name = 42-98-249-111.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.59.213.68	attackbots	Repeated brute force against a port	2020-07-13 04:40:33
64.197.196.174	attackspam	Jul 12 20:31:08 rush sshd[27888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.197.196.174 Jul 12 20:31:10 rush sshd[27888]: Failed password for invalid user roo from 64.197.196.174 port 42860 ssh2 Jul 12 20:34:17 rush sshd[28005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.197.196.174 ...	2020-07-13 04:37:26
34.80.223.251	attackspam	Jul 12 14:24:50 server1 sshd\[31221\]: Invalid user zipcode from 34.80.223.251 Jul 12 14:24:50 server1 sshd\[31221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.223.251 Jul 12 14:24:52 server1 sshd\[31221\]: Failed password for invalid user zipcode from 34.80.223.251 port 55785 ssh2 Jul 12 14:26:35 server1 sshd\[31829\]: Invalid user sbin from 34.80.223.251 Jul 12 14:26:35 server1 sshd\[31829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.223.251 ...	2020-07-13 04:42:08
109.24.144.69	attack	Jul 12 21:16:20 ns382633 sshd\[5951\]: Invalid user weblogic from 109.24.144.69 port 60980 Jul 12 21:16:20 ns382633 sshd\[5951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.24.144.69 Jul 12 21:16:22 ns382633 sshd\[5951\]: Failed password for invalid user weblogic from 109.24.144.69 port 60980 ssh2 Jul 12 22:02:43 ns382633 sshd\[14549\]: Invalid user test from 109.24.144.69 port 32888 Jul 12 22:02:43 ns382633 sshd\[14549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.24.144.69	2020-07-13 04:46:35
35.200.168.65	attackbotsspam	Jul 12 20:38:46 onepixel sshd[3895285]: Invalid user gaetan from 35.200.168.65 port 45716 Jul 12 20:38:46 onepixel sshd[3895285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.168.65 Jul 12 20:38:46 onepixel sshd[3895285]: Invalid user gaetan from 35.200.168.65 port 45716 Jul 12 20:38:48 onepixel sshd[3895285]: Failed password for invalid user gaetan from 35.200.168.65 port 45716 ssh2 Jul 12 20:42:43 onepixel sshd[3897692]: Invalid user remo from 35.200.168.65 port 45294	2020-07-13 04:45:05
27.151.6.27	attackspam	Jul 12 21:10:14 ns392434 sshd[1560]: Invalid user ab from 27.151.6.27 port 49147 Jul 12 21:10:14 ns392434 sshd[1560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.151.6.27 Jul 12 21:10:14 ns392434 sshd[1560]: Invalid user ab from 27.151.6.27 port 49147 Jul 12 21:10:16 ns392434 sshd[1560]: Failed password for invalid user ab from 27.151.6.27 port 49147 ssh2 Jul 12 21:50:26 ns392434 sshd[2766]: Invalid user spark from 27.151.6.27 port 33768 Jul 12 21:50:26 ns392434 sshd[2766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.151.6.27 Jul 12 21:50:26 ns392434 sshd[2766]: Invalid user spark from 27.151.6.27 port 33768 Jul 12 21:50:28 ns392434 sshd[2766]: Failed password for invalid user spark from 27.151.6.27 port 33768 ssh2 Jul 12 22:02:27 ns392434 sshd[3145]: Invalid user hbase from 27.151.6.27 port 45340	2020-07-13 05:02:12
45.55.197.229	attackbotsspam	Jul 12 21:02:36 ajax sshd[4013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.197.229 Jul 12 21:02:38 ajax sshd[4013]: Failed password for invalid user test1 from 45.55.197.229 port 57438 ssh2	2020-07-13 04:52:28
111.93.58.18	attack	Jul 12 22:28:44 ns41 sshd[31272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.58.18	2020-07-13 04:36:59
187.148.23.94	attackbotsspam	Port Scan ...	2020-07-13 04:50:02
115.193.170.21	attackbotsspam	Jul 12 18:37:45 host sshd[24045]: Invalid user user from 115.193.170.21 port 43846 Jul 12 18:37:45 host sshd[24045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.170.21 Jul 12 18:37:47 host sshd[24045]: Failed password for invalid user user from 115.193.170.21 port 43846 ssh2 Jul 12 18:37:48 host sshd[24045]: Received disconnect from 115.193.170.21 port 43846:11: Bye Bye [preauth] Jul 12 18:37:48 host sshd[24045]: Disconnected from invalid user user 115.193.170.21 port 43846 [preauth] Jul 12 18:54:17 host sshd[24430]: Invalid user zulma from 115.193.170.21 port 54764 Jul 12 18:54:17 host sshd[24430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.170.21 Jul 12 18:54:19 host sshd[24430]: Failed password for invalid user zulma from 115.193.170.21 port 54764 ssh2 Jul 12 18:54:19 host sshd[24430]: Received disconnect from 115.193.170.21 port 54764:11: Bye Bye [preauth] Jul 12........ -------------------------------	2020-07-13 04:51:48
42.81.163.153	attackbots	Jul 12 22:02:34 tuxlinux sshd[1274]: Invalid user mdc from 42.81.163.153 port 44635 Jul 12 22:02:34 tuxlinux sshd[1274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.81.163.153 Jul 12 22:02:34 tuxlinux sshd[1274]: Invalid user mdc from 42.81.163.153 port 44635 Jul 12 22:02:34 tuxlinux sshd[1274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.81.163.153 Jul 12 22:02:34 tuxlinux sshd[1274]: Invalid user mdc from 42.81.163.153 port 44635 Jul 12 22:02:34 tuxlinux sshd[1274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.81.163.153 Jul 12 22:02:36 tuxlinux sshd[1274]: Failed password for invalid user mdc from 42.81.163.153 port 44635 ssh2 ...	2020-07-13 04:38:06
114.33.29.180	attack	Port probing on unauthorized port 85	2020-07-13 04:49:14
217.182.206.121	attackspam	Jul 12 22:24:28 piServer sshd[11285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.206.121 Jul 12 22:24:30 piServer sshd[11285]: Failed password for invalid user samir from 217.182.206.121 port 57196 ssh2 Jul 12 22:27:41 piServer sshd[11594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.206.121 ...	2020-07-13 04:33:44
106.39.15.168	attackspam	2020-07-12T21:04:43.272265mail.csmailer.org sshd[32486]: Invalid user audrey from 106.39.15.168 port 34364 2020-07-12T21:04:43.274930mail.csmailer.org sshd[32486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.39.15.168 2020-07-12T21:04:43.272265mail.csmailer.org sshd[32486]: Invalid user audrey from 106.39.15.168 port 34364 2020-07-12T21:04:44.865897mail.csmailer.org sshd[32486]: Failed password for invalid user audrey from 106.39.15.168 port 34364 ssh2 2020-07-12T21:06:39.286789mail.csmailer.org sshd[32589]: Invalid user account from 106.39.15.168 port 49263 ...	2020-07-13 05:05:57
99.76.37.121	attack	IP 99.76.37.121 attacked honeypot on port: 85 at 7/12/2020 1:02:21 PM	2020-07-13 04:46:53

最近上报的IP列表

76.36.241.205	113.142.123.212	215.67.95.19	201.78.26.151
90.152.92.219	208.64.33.98	60.211.18.39	87.94.121.163
42.112.93.44	84.229.130.241	45.78.251.228	3.236.55.184
181.46.9.192	192.241.65.247	67.32.201.231	113.175.119.54
182.61.3.152	104.153.30.170	183.88.217.148	87.144.55.32