242.4.68.208 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 242.4.68.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;242.4.68.208.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021500 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 15 21:54:39 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 208.68.4.242.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 208.68.4.242.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
202.5.198.1	attackbotsspam	2019-08-07T20:52:13.031933abusebot-2.cloudsearch.cf sshd\[14711\]: Invalid user admin321 from 202.5.198.1 port 50733	2019-08-08 05:06:42
170.80.33.29	attackbots	Aug 7 21:44:06 nextcloud sshd\[24876\]: Invalid user leonidas from 170.80.33.29 Aug 7 21:44:06 nextcloud sshd\[24876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.80.33.29 Aug 7 21:44:08 nextcloud sshd\[24876\]: Failed password for invalid user leonidas from 170.80.33.29 port 52524 ssh2 ...	2019-08-08 04:35:10
80.134.28.127	attackspambots	\[2019-08-07 21:41:45\] NOTICE\[32542\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '80.134.28.127:5060' \(callid: 5C45BBA28991ADD7@80.134.28.127\) - Failed to authenticate \[2019-08-07 21:41:45\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-08-07T21:41:45.517+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="sip219222",SessionID="5C45BBA28991ADD7@80.134.28.127",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/80.134.28.127/5060",Challenge="1565205105/a0ae79e729103e7fa4110ef39512777c",Response="cc28d240e22551882b3da0981bb98f9d",ExpectedResponse="" \[2019-08-07 21:41:45\] NOTICE\[26038\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '80.134.28.127:5060' \(callid: 5C45BBA28991ADD7@80.134.28.127\) - Failed to authenticate \[2019-08-07 21:41:45\] SECURITY\[1715\] res_security_log.c: SecurityE	2019-08-08 04:23:36
223.220.159.78	attack	[ssh] SSH attack	2019-08-08 04:27:55
1.214.213.29	attackspambots	Fail2Ban Ban Triggered	2019-08-08 04:34:35
46.45.143.35	attackspambots	WordPress wp-login brute force :: 46.45.143.35 0.048 BYPASS [08/Aug/2019:03:40:46 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-08 04:42:33
66.249.64.11	attack	\[Wed Aug 07 19:41:39.566588 2019\] \[access_compat:error\] \[pid 3263:tid 139662966335232\] \[client 66.249.64.11:43296\] AH01797: client denied by server configuration: /var/www/lug/xmlrpc.php ...	2019-08-08 04:21:39
109.242.198.190	attackbotsspam	firewall-block, port(s): 23/tcp	2019-08-08 05:07:13
62.210.178.63	attack	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-08-08 04:34:20
37.49.227.12	attackbots	" "	2019-08-08 04:50:45
61.114.217.72	attack	61.114.217.72 [07/Aug/2019:13:33:59 +0100] "GET /phpmyadmin2011/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:33:59 +0100] "GET /phpmyadmin2012/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:00 +0100] "GET /phpmyadmin2013/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:00 +0100] "GET /phpmyadmin2014/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:00 +0100] "GET /phpmyadmin2015/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:01 +0100] "GET /phpmyadmin2016/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:01 +0100] "GET /phpmyadmin2017/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:02 +0100] "GET /phpmyadmin2018/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:02 +0100] "GET /phpmyadmin2019/index.php?lang=en HTTP/1.1" 61.114.217.72 [07/Aug/2019:13:34:03 +0100] "GET /index.php?lang=en HTTP/1.1"	2019-08-08 05:10:50
113.53.149.133	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-08 05:08:40
123.207.8.86	attackbots	Aug 7 17:40:39 MK-Soft-VM7 sshd\[8160\]: Invalid user iq from 123.207.8.86 port 50602 Aug 7 17:40:39 MK-Soft-VM7 sshd\[8160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.8.86 Aug 7 17:40:41 MK-Soft-VM7 sshd\[8160\]: Failed password for invalid user iq from 123.207.8.86 port 50602 ssh2 ...	2019-08-08 04:47:14
23.129.64.195	attack	Aug 7 21:20:16 vpn01 sshd\[9399\]: Invalid user eurek from 23.129.64.195 Aug 7 21:20:16 vpn01 sshd\[9399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.195 Aug 7 21:20:18 vpn01 sshd\[9399\]: Failed password for invalid user eurek from 23.129.64.195 port 25267 ssh2	2019-08-08 04:38:50
106.12.199.98	attack	Aug 7 22:01:07 dev0-dcde-rnet sshd[861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.98 Aug 7 22:01:09 dev0-dcde-rnet sshd[861]: Failed password for invalid user demo from 106.12.199.98 port 36104 ssh2 Aug 7 22:03:22 dev0-dcde-rnet sshd[867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.98	2019-08-08 04:57:10

最近上报的IP列表

64.18.4.198	166.47.144.67	227.79.144.179	231.101.107.183
3.50.163.50	36.249.61.242	200.183.221.238	150.8.30.223
188.141.113.35	173.8.93.215	129.31.219.148	186.10.214.26
143.72.137.47	96.37.92.122	26.117.11.236	63.8.215.233
167.78.103.24	59.66.80.140	207.5.186.218	97.173.228.100