157.34.242.65 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.34.242.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.34.242.65.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 07:18:02 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 65.242.34.157.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 157.34.242.65.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
112.216.3.211	attack	Aug 21 14:50:58 eventyay sshd[5628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.3.211 Aug 21 14:51:00 eventyay sshd[5628]: Failed password for invalid user guest from 112.216.3.211 port 56723 ssh2 Aug 21 14:55:01 eventyay sshd[5736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.3.211 ...	2020-08-21 21:04:28
178.116.216.159	attackbots	2020-08-21T12:06:03.261342abusebot-4.cloudsearch.cf sshd[9169]: Invalid user admin from 178.116.216.159 port 56336 2020-08-21T12:06:19.631523abusebot-4.cloudsearch.cf sshd[9169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-116-216-159.access.telenet.be 2020-08-21T12:06:03.261342abusebot-4.cloudsearch.cf sshd[9169]: Invalid user admin from 178.116.216.159 port 56336 2020-08-21T12:06:21.735913abusebot-4.cloudsearch.cf sshd[9169]: Failed password for invalid user admin from 178.116.216.159 port 56336 ssh2 2020-08-21T12:07:00.053008abusebot-4.cloudsearch.cf sshd[9172]: Invalid user admin from 178.116.216.159 port 42287 2020-08-21T12:07:00.086017abusebot-4.cloudsearch.cf sshd[9172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-116-216-159.access.telenet.be 2020-08-21T12:07:00.053008abusebot-4.cloudsearch.cf sshd[9172]: Invalid user admin from 178.116.216.159 port 42287 2020-08-21T12:07:02.138388ab ...	2020-08-21 21:27:30
200.38.232.248	attackbots	Aug 21 13:06:46 l02a sshd[1983]: Invalid user admin from 200.38.232.248 Aug 21 13:06:47 l02a sshd[1983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-38-232-248.infraestructura.static.axtel.net Aug 21 13:06:46 l02a sshd[1983]: Invalid user admin from 200.38.232.248 Aug 21 13:06:48 l02a sshd[1983]: Failed password for invalid user admin from 200.38.232.248 port 60620 ssh2	2020-08-21 21:41:04
218.92.0.246	attackbotsspam	SSH Brute-Force detected	2020-08-21 21:36:43
64.57.253.22	attackspam	Aug 20 05:21:01 garuda sshd[413888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.57.253.22 user=r.r Aug 20 05:21:03 garuda sshd[413888]: Failed password for r.r from 64.57.253.22 port 41606 ssh2 Aug 20 05:21:03 garuda sshd[413888]: Received disconnect from 64.57.253.22: 11: Bye Bye [preauth] Aug 20 05:27:36 garuda sshd[415080]: Invalid user test from 64.57.253.22 Aug 20 05:27:36 garuda sshd[415080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.57.253.22 Aug 20 05:27:38 garuda sshd[415080]: Failed password for invalid user test from 64.57.253.22 port 48662 ssh2 Aug 20 05:27:38 garuda sshd[415080]: Received disconnect from 64.57.253.22: 11: Bye Bye [preauth] Aug 20 05:30:16 garuda sshd[415944]: Invalid user odoo from 64.57.253.22 Aug 20 05:30:16 garuda sshd[415944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.57.253.22 Aug 20 05:30........ -------------------------------	2020-08-21 20:58:53
106.13.184.234	attack	Aug 21 13:07:14 gospond sshd[12031]: Invalid user zhang from 106.13.184.234 port 37550 ...	2020-08-21 21:18:19
80.85.56.51	attack	2020-08-21T07:40:33.1424891495-001 sshd[40097]: Invalid user wuyan from 80.85.56.51 port 22815 2020-08-21T07:40:33.1454901495-001 sshd[40097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.56.51 2020-08-21T07:40:33.1424891495-001 sshd[40097]: Invalid user wuyan from 80.85.56.51 port 22815 2020-08-21T07:40:34.9947271495-001 sshd[40097]: Failed password for invalid user wuyan from 80.85.56.51 port 22815 ssh2 2020-08-21T07:45:52.9922631495-001 sshd[40381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.56.51 user=root 2020-08-21T07:45:55.3029881495-001 sshd[40381]: Failed password for root from 80.85.56.51 port 61190 ssh2 ...	2020-08-21 21:05:28
217.145.199.45	attackspambots	srvr1: (mod_security) mod_security (id:942100) triggered by 217.145.199.45 (SK/-/45.Gutanet.sk): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:07:25 [error] 482759#0: 840776 [client 217.145.199.45] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801164583.411104"] [ref ""], client: 217.145.199.45, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29%29+AND+++%28%28%28%27Dczo%27%3D%27Dczo HTTP/1.1" [redacted]	2020-08-21 21:02:24
202.51.68.14	attackspambots	srvr1: (mod_security) mod_security (id:942100) triggered by 202.51.68.14 (NP/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:07:30 [error] 482759#0: 840777 [client 202.51.68.14] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801165083.218567"] [ref ""], client: 202.51.68.14, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29%29+OR+++%28%28%28%27Rd9B%27%3D%27XZXZ HTTP/1.1" [redacted]	2020-08-21 21:01:14
89.39.71.248	attackspambots	Wordpress attack	2020-08-21 21:36:11
51.158.190.54	attackbotsspam	Aug 21 15:16:19 vps639187 sshd\[22497\]: Invalid user genesis from 51.158.190.54 port 41168 Aug 21 15:16:19 vps639187 sshd\[22497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.190.54 Aug 21 15:16:20 vps639187 sshd\[22497\]: Failed password for invalid user genesis from 51.158.190.54 port 41168 ssh2 ...	2020-08-21 21:37:55
66.223.164.237	attackspambots	Aug 21 08:06:36 Tower sshd[3434]: Connection from 66.223.164.237 port 1202 on 192.168.10.220 port 22 rdomain "" Aug 21 08:06:37 Tower sshd[3434]: Invalid user testuser from 66.223.164.237 port 1202 Aug 21 08:06:37 Tower sshd[3434]: error: Could not get shadow information for NOUSER Aug 21 08:06:37 Tower sshd[3434]: Failed password for invalid user testuser from 66.223.164.237 port 1202 ssh2 Aug 21 08:06:37 Tower sshd[3434]: Received disconnect from 66.223.164.237 port 1202:11: Bye Bye [preauth] Aug 21 08:06:37 Tower sshd[3434]: Disconnected from invalid user testuser 66.223.164.237 port 1202 [preauth]	2020-08-21 21:41:28
58.211.152.116	attackbots	21 attempts against mh-ssh on cloud	2020-08-21 21:20:08
37.139.9.23	attackbotsspam	Aug 21 07:54:12 server sshd\[13804\]: Invalid user nagios from 37.139.9.23 port 55440 Aug 21 07:55:11 server sshd\[14212\]: Invalid user prueba from 37.139.9.23 port 33236	2020-08-21 21:34:35
49.72.181.188	attackspam	Aug 21 14:13:08 server sshd[21833]: Failed password for root from 49.72.181.188 port 53860 ssh2 Aug 21 14:19:11 server sshd[24909]: Failed password for invalid user blg from 49.72.181.188 port 39508 ssh2 Aug 21 14:25:13 server sshd[27918]: Failed password for invalid user red from 49.72.181.188 port 53396 ssh2	2020-08-21 21:10:16

最近上报的IP列表

239.238.66.142	248.116.51.42	33.229.39.16	5.116.201.147
153.133.130.172	124.92.248.243	249.241.43.240	235.87.234.204
179.36.46.69	115.78.246.92	7.23.62.217	177.163.215.237
39.80.78.135	187.209.63.23	174.18.190.77	244.185.10.182
41.162.58.130	206.8.83.121	25.214.245.247	75.232.241.202