117.57.67.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.57.67.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28633
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.57.67.42.			IN	A

;; AUTHORITY SECTION:
.			333	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 21:32:28 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 42.67.57.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.67.57.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
223.97.197.74	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-25 18:07:53
40.123.36.193	attackbots	11/25/2019-04:50:46.402010 40.123.36.193 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-25 18:14:50
111.230.241.245	attackspam	Nov 25 10:31:01 OPSO sshd\[10325\]: Invalid user cav from 111.230.241.245 port 57408 Nov 25 10:31:01 OPSO sshd\[10325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.241.245 Nov 25 10:31:03 OPSO sshd\[10325\]: Failed password for invalid user cav from 111.230.241.245 port 57408 ssh2 Nov 25 10:38:42 OPSO sshd\[11728\]: Invalid user hisanori from 111.230.241.245 port 36544 Nov 25 10:38:42 OPSO sshd\[11728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.241.245	2019-11-25 17:45:17
51.68.230.54	attack	Nov 25 10:39:24 mail sshd[7773]: Invalid user phion from 51.68.230.54 ...	2019-11-25 18:20:13
185.176.27.166	attack	UTC: 2019-11-24 pkts: 3 ports(tcp): 101, 301, 701	2019-11-25 18:16:56
182.68.37.237	attackbots	Unauthorised access (Nov 25) SRC=182.68.37.237 LEN=52 TTL=119 ID=31297 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-25 17:58:07
80.241.221.145	attackspam	2019-11-25T09:36:40.234439abusebot-8.cloudsearch.cf sshd\[26069\]: Invalid user bot from 80.241.221.145 port 34280	2019-11-25 17:45:38
140.143.142.190	attackbotsspam	Lines containing failures of 140.143.142.190 Nov 25 00:32:00 nxxxxxxx sshd[3776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.142.190 user=r.r Nov 25 00:32:02 nxxxxxxx sshd[3776]: Failed password for r.r from 140.143.142.190 port 59896 ssh2 Nov 25 00:32:03 nxxxxxxx sshd[3776]: Received disconnect from 140.143.142.190 port 59896:11: Bye Bye [preauth] Nov 25 00:32:03 nxxxxxxx sshd[3776]: Disconnected from authenticating user r.r 140.143.142.190 port 59896 [preauth] Nov 25 00:51:53 nxxxxxxx sshd[6053]: Invalid user joerg from 140.143.142.190 port 39684 Nov 25 00:51:53 nxxxxxxx sshd[6053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.142.190 Nov 25 00:51:55 nxxxxxxx sshd[6053]: Failed password for invalid user joerg from 140.143.142.190 port 39684 ssh2 Nov 25 00:51:55 nxxxxxxx sshd[6053]: Received disconnect from 140.143.142.190 port 39684:11: Bye Bye [preauth] Nov 25 00:5........ ------------------------------	2019-11-25 18:04:48
69.94.131.69	attack	Nov 25 07:13:56 h2421860 postfix/postscreen[9602]: CONNECT from [69.94.131.69]:51580 to [85.214.119.52]:25 Nov 25 07:13:56 h2421860 postfix/dnsblog[9605]: addr 69.94.131.69 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 25 07:13:56 h2421860 postfix/dnsblog[9604]: addr 69.94.131.69 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 25 07:13:56 h2421860 postfix/dnsblog[9607]: addr 69.94.131.69 listed by domain bl.mailspike.net as 127.0.0.10 Nov 25 07:13:56 h2421860 postfix/dnsblog[9605]: addr 69.94.131.69 listed by domain Unknown.trblspam.com as 185.53.179.7 Nov 25 07:13:56 h2421860 postfix/dnsblog[9606]: addr 69.94.131.69 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 25 07:14:02 h2421860 postfix/postscreen[9602]: DNSBL rank 10 for [69.94.131.69]:51580 Nov x@x Nov 25 07:14:02 h2421860 postfix/postscreen[9602]: DISCONNECT [69.94.131.69]:51580 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=69.94.131.69	2019-11-25 17:51:16
124.255.1.195	attackbotsspam	Automatic report - Port Scan Attack	2019-11-25 18:00:53
106.12.189.2	attack	Nov 25 06:52:48 server02 sshd[24079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.2 Nov 25 06:52:50 server02 sshd[24079]: Failed password for invalid user csmp from 106.12.189.2 port 38834 ssh2 Nov 25 07:13:49 server02 sshd[25088]: User dovecot from 106.12.189.2 not allowed because not listed in AllowUsers Nov 25 07:13:49 server02 sshd[25088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.2 user=dovecot ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.189.2	2019-11-25 18:19:15
78.156.251.230	attack	Portscan or hack attempt detected by psad/fwsnort	2019-11-25 18:03:33
104.248.16.85	attackspam	104.248.16.85 - - [25/Nov/2019:07:57:11 +0100] "POST /wp-login.php HTTP/1.1" 200 3897 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 104.248.16.85 - - [25/Nov/2019:07:57:11 +0100] "POST /wp-login.php HTTP/1.1" 200 3897 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 104.248.16.85 - - [25/Nov/2019:07:57:11 +0100] "POST /wp-login.php HTTP/1.1" 200 3897 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 104.248.16.85 - - [25/Nov/2019:07:57:12 +0100] "POST /wp-login.php HTTP/1.1" 200 3897 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 104.248.16.85 - - [25/Nov/2019:07:57:12 +0100] "	2019-11-25 17:47:32
62.159.228.138	attack	Automatic report - Banned IP Access	2019-11-25 18:22:40
167.71.215.72	attackbots	Nov 25 09:54:06 web8 sshd\[8163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=mysql Nov 25 09:54:09 web8 sshd\[8163\]: Failed password for mysql from 167.71.215.72 port 10358 ssh2 Nov 25 09:57:47 web8 sshd\[9988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=mysql Nov 25 09:57:49 web8 sshd\[9988\]: Failed password for mysql from 167.71.215.72 port 25985 ssh2 Nov 25 10:01:29 web8 sshd\[11737\]: Invalid user tangene from 167.71.215.72	2019-11-25 18:12:48

最近上报的IP列表

117.57.74.142	117.57.74.172	117.57.74.126	117.57.72.228
117.57.74.64	117.57.74.208	117.57.74.188	117.57.74.72
114.226.162.120	117.57.74.84	117.57.75.157	117.57.75.100
117.57.75.229	117.57.75.119	117.57.75.60	117.57.75.9
117.57.75.232	117.57.75.171	114.226.162.121	117.57.76.10