133.242.6.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
133.242.68.230	attackspam	Oct 29 13:23:51 nginx sshd[58486]: Invalid user user from 133.242.68.230 Oct 29 13:23:51 nginx sshd[58486]: Received disconnect from 133.242.68.230 port 51839:11: Normal Shutdown, Thank you for playing [preauth]	2019-10-29 21:50:36
133.242.61.51	attackspam	2019-07-17 11:15:05 H=(mail.smb.schit.co.jp) [133.242.61.51]:45638 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-07-17 11:28:53 H=(mail.smb.schit.co.jp) [133.242.61.51]:54664 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-07-17 11:29:00 H=(mail.smb.schit.co.jp) [133.242.61.51]:55028 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-07-18 05:27:52

类型

评论内容

时间

133.242.68.230

attackspam

Oct 29 13:23:51 nginx sshd[58486]: Invalid user user from 133.242.68.230
Oct 29 13:23:51 nginx sshd[58486]: Received disconnect from 133.242.68.230 port 51839:11: Normal Shutdown, Thank you for playing [preauth]

2019-10-29 21:50:36

133.242.61.51

attackspam

2019-07-17 11:15:05 H=(mail.smb.schit.co.jp) [133.242.61.51]:45638 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed
2019-07-17 11:28:53 H=(mail.smb.schit.co.jp) [133.242.61.51]:54664 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed
2019-07-17 11:29:00 H=(mail.smb.schit.co.jp) [133.242.61.51]:55028 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed
...

2019-07-18 05:27:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 133.242.6.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;133.242.6.80.			IN	A

;; AUTHORITY SECTION:
.			523	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:39:04 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

80.6.242.133.in-addr.arpa domain name pointer www223.ziyu.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.6.242.133.in-addr.arpa	name = www223.ziyu.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
40.88.138.25	attackbots	Jul 16 15:46:35 pve1 sshd[16097]: Failed password for root from 40.88.138.25 port 23427 ssh2 ...	2020-07-17 02:15:17
95.248.137.161	attack	Automatic report - Port Scan Attack	2020-07-17 01:48:26
40.117.63.36	attackspam	Jul 16 05:36:43 hidden sshd[7473]: Failed password for hidden from 40.117.63.36 port 18318 ssh2 Jul 16 17:12:51 hidden sshd[17455]: Failed password for hidden from 40.117.63.36 port 40576 ssh2 Jul 16 18:51:06 hidden sshd[32339]: Failed password for hidden from 40.117.63.36 port 37823 ssh2	2020-07-17 01:36:24
134.175.191.248	attack	Jul 16 18:32:41 zooi sshd[26930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.191.248 Jul 16 18:32:43 zooi sshd[26930]: Failed password for invalid user anna from 134.175.191.248 port 34756 ssh2 ...	2020-07-17 01:38:44
60.173.178.149	attack	Jul 16 15:40:26 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=60.173.178.149 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=780 PROTO=TCP SPT=63336 DPT=23 WINDOW=61299 RES=0x00 SYN URGP=0 Jul 16 15:41:55 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=60.173.178.149 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=780 PROTO=TCP SPT=63336 DPT=2323 WINDOW=61299 RES=0x00 SYN URGP=0 Jul 16 15:43:37 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=60.173.178.149 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=780 PROTO=TCP SPT=63336 DPT=23 WINDOW=61299 RES=0x00 SYN URGP=0 Jul 16 15:44:56 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=60.173.178.149 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=780 PROTO=TCP SPT=63336 DPT=23 WINDOW=61299 RES=0x00 SYN URGP=0 Jul 16 15:46:09 hidden kernel: [UFW ...	2020-07-17 02:11:28
118.34.12.35	attack	(sshd) Failed SSH login from 118.34.12.35 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 16 15:28:38 grace sshd[5401]: Invalid user user from 118.34.12.35 port 35720 Jul 16 15:28:41 grace sshd[5401]: Failed password for invalid user user from 118.34.12.35 port 35720 ssh2 Jul 16 15:41:39 grace sshd[7442]: Invalid user e from 118.34.12.35 port 39566 Jul 16 15:41:41 grace sshd[7442]: Failed password for invalid user e from 118.34.12.35 port 39566 ssh2 Jul 16 15:46:20 grace sshd[7992]: Invalid user backups from 118.34.12.35 port 54812	2020-07-17 01:54:52
203.195.131.162	attackspam	2020-07-16T13:40:43.297838abusebot-8.cloudsearch.cf sshd[16709]: Invalid user mike from 203.195.131.162 port 60852 2020-07-16T13:40:43.307017abusebot-8.cloudsearch.cf sshd[16709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.131.162 2020-07-16T13:40:43.297838abusebot-8.cloudsearch.cf sshd[16709]: Invalid user mike from 203.195.131.162 port 60852 2020-07-16T13:40:45.551401abusebot-8.cloudsearch.cf sshd[16709]: Failed password for invalid user mike from 203.195.131.162 port 60852 ssh2 2020-07-16T13:46:06.461147abusebot-8.cloudsearch.cf sshd[16724]: Invalid user skype from 203.195.131.162 port 35416 2020-07-16T13:46:06.466931abusebot-8.cloudsearch.cf sshd[16724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.131.162 2020-07-16T13:46:06.461147abusebot-8.cloudsearch.cf sshd[16724]: Invalid user skype from 203.195.131.162 port 35416 2020-07-16T13:46:09.052647abusebot-8.cloudsearch.cf sshd[167 ...	2020-07-17 02:10:31
196.1.254.246	attackbotsspam	1594909319 - 07/16/2020 16:21:59 Host: 196.1.254.246/196.1.254.246 Port: 445 TCP Blocked	2020-07-17 02:01:02
103.99.102.217	attackbotsspam	Unauthorized connection attempt from IP address 103.99.102.217 on Port 445(SMB)	2020-07-17 02:10:54
190.232.106.248	attackspambots	2020-07-16T17:33:54.085803v22018076590370373 sshd[29040]: Invalid user qun from 190.232.106.248 port 55847 2020-07-16T17:33:54.092575v22018076590370373 sshd[29040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.232.106.248 2020-07-16T17:33:54.085803v22018076590370373 sshd[29040]: Invalid user qun from 190.232.106.248 port 55847 2020-07-16T17:33:56.285346v22018076590370373 sshd[29040]: Failed password for invalid user qun from 190.232.106.248 port 55847 ssh2 2020-07-16T18:23:15.296272v22018076590370373 sshd[32535]: Invalid user shreya from 190.232.106.248 port 46828 ...	2020-07-17 02:05:07
162.243.129.92	attackspam	Web application attack detected by fail2ban	2020-07-17 01:36:07
85.105.22.82	attackbotsspam	Unauthorized connection attempt from IP address 85.105.22.82 on Port 445(SMB)	2020-07-17 02:12:19
120.92.35.5	attackspambots	Failed password for invalid user prerana from 120.92.35.5 port 45048 ssh2	2020-07-17 02:07:29
188.208.121.98	attack	Unauthorized connection attempt from IP address 188.208.121.98 on Port 445(SMB)	2020-07-17 02:07:06
195.54.160.163	attack	SQL Injection in QueryString parameter: 387 AND 4719=(SELECT (CASE WHEN (4719=4719) THEN 4719 ELSE (SELECT 6311 UNION SELECT 1410) END))-- FIte	2020-07-17 02:12:56

最近上报的IP列表

133.242.6.220	133.242.70.210	133.242.74.253	133.242.6.73
133.242.68.55	133.242.76.220	133.242.6.237	133.242.74.118
133.242.72.59	133.242.79.149	133.242.8.22	133.242.74.252
133.242.77.140	133.242.79.146	133.242.77.75	133.242.81.110
133.242.85.54	133.242.85.120	133.242.83.131	133.242.87.156