42.247.76.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '42.244.0.0 - 42.247.255.255'

% Abuse contact for '42.244.0.0 - 42.247.255.255' is 'abuse@cernet.edu.cn'

inetnum:        42.244.0.0 - 42.247.255.255
netname:        NJR-CERNET
descr:          China Education and Research Network
descr:          Nanjing Regional Network
country:        CN
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
remarks:        origin AS4538
remarks:        confederation
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CERNET-AP
mnt-routes:     MAINT-CERNET-AP
mnt-irt:        IRT-CERNET-AP
last-modified:  2020-09-03T09:16:28Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
mnt-by:         MAINT-CERNET-AP
last-modified:  2026-05-25T09:07:47Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-05T06:40:20Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% Information related to '42.246.0.0/15AS4538'

route:          42.246.0.0/15
descr:          CERNET
origin:         AS4538
mnt-by:         MAINT-CERNET-AP
last-modified:  2017-03-14T04:00:08Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.247.76.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50206
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.247.76.70.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062801 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 13:10:15 CST 2026
;; MSG SIZE  rcvd: 105

HOST信息:

Host 70.76.247.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.76.247.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.234.45.241	attackspam	Jul 30 18:16:05 haigwepa sshd[32503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.45.241 Jul 30 18:16:07 haigwepa sshd[32503]: Failed password for invalid user lbchen from 49.234.45.241 port 39406 ssh2 ...	2020-07-31 00:21:18
156.220.63.125	attack	20/7/30@08:56:34: FAIL: Alarm-Network address from=156.220.63.125 ...	2020-07-31 00:09:52
189.209.189.124	attack	Automatic report - Port Scan Attack	2020-07-31 00:37:00
120.70.103.239	attack	Jul 30 13:57:00 vps-51d81928 sshd[314204]: Invalid user lirui from 120.70.103.239 port 44686 Jul 30 13:57:00 vps-51d81928 sshd[314204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.103.239 Jul 30 13:57:00 vps-51d81928 sshd[314204]: Invalid user lirui from 120.70.103.239 port 44686 Jul 30 13:57:02 vps-51d81928 sshd[314204]: Failed password for invalid user lirui from 120.70.103.239 port 44686 ssh2 Jul 30 14:00:14 vps-51d81928 sshd[314282]: Invalid user cymtv from 120.70.103.239 port 58177 ...	2020-07-31 00:26:33
120.92.10.24	attackspam	Jul 30 16:31:30 PorscheCustomer sshd[26512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.10.24 Jul 30 16:31:33 PorscheCustomer sshd[26512]: Failed password for invalid user luwang from 120.92.10.24 port 64224 ssh2 Jul 30 16:35:24 PorscheCustomer sshd[26607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.10.24 ...	2020-07-30 23:59:17
156.96.45.198	attackbots	Jul 30 15:58:54 mail postfix/smtpd[120421]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure Jul 30 15:58:54 mail postfix/smtpd[120421]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure Jul 30 15:58:54 mail postfix/smtpd[120421]: warning: unknown[156.96.45.198]: SASL LOGIN authentication failed: generic failure ...	2020-07-31 00:24:18
183.83.240.137	attackbots	eintrachtkultkellerfulda.de 183.83.240.137 [30/Jul/2020:14:06:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" eintrachtkultkellerfulda.de 183.83.240.137 [30/Jul/2020:14:06:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-31 00:15:49
195.54.160.180	attack	2020-07-30T17:33:11.215191n23.at sshd[463327]: Failed password for invalid user rj1tn3tw0rks from 195.54.160.180 port 52163 ssh2 2020-07-30T17:33:12.107171n23.at sshd[463329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 user=root 2020-07-30T17:33:14.217825n23.at sshd[463329]: Failed password for root from 195.54.160.180 port 1086 ssh2 ...	2020-07-30 23:43:45
92.50.249.166	attackspambots	$f2bV_matches	2020-07-30 23:58:30
111.229.120.31	attackbotsspam	Jul 30 07:56:36 george sshd[28592]: Failed password for invalid user huzuyi from 111.229.120.31 port 47598 ssh2 Jul 30 08:01:41 george sshd[28698]: Invalid user xupeng from 111.229.120.31 port 45672 Jul 30 08:01:41 george sshd[28698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.120.31 Jul 30 08:01:43 george sshd[28698]: Failed password for invalid user xupeng from 111.229.120.31 port 45672 ssh2 Jul 30 08:06:47 george sshd[28746]: Invalid user ftpadmin4 from 111.229.120.31 port 43742 ...	2020-07-30 23:57:48
172.81.235.131	attackbotsspam	Total attacks: 2	2020-07-30 23:46:02
208.109.13.208	attackspam	Jul 30 18:10:08 piServer sshd[10712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.109.13.208 Jul 30 18:10:10 piServer sshd[10712]: Failed password for invalid user etse from 208.109.13.208 port 57876 ssh2 Jul 30 18:14:55 piServer sshd[11097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.109.13.208 ...	2020-07-31 00:15:22
193.38.54.49	attackbotsspam	Port probing on unauthorized port 1723	2020-07-31 00:32:47
110.78.23.220	attack	(eximsyntax) Exim syntax errors from 110.78.23.220 (TH/Thailand/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 16:36:14 SMTP call from [110.78.23.220] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-07-31 00:26:47
35.192.57.37	attackbots	2020-07-30T14:48:56.310095abusebot-7.cloudsearch.cf sshd[26443]: Invalid user wqyu from 35.192.57.37 port 49662 2020-07-30T14:48:56.313985abusebot-7.cloudsearch.cf sshd[26443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.192.35.bc.googleusercontent.com 2020-07-30T14:48:56.310095abusebot-7.cloudsearch.cf sshd[26443]: Invalid user wqyu from 35.192.57.37 port 49662 2020-07-30T14:48:58.904606abusebot-7.cloudsearch.cf sshd[26443]: Failed password for invalid user wqyu from 35.192.57.37 port 49662 ssh2 2020-07-30T14:56:07.146834abusebot-7.cloudsearch.cf sshd[26543]: Invalid user yamada from 35.192.57.37 port 40738 2020-07-30T14:56:07.152241abusebot-7.cloudsearch.cf sshd[26543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.192.35.bc.googleusercontent.com 2020-07-30T14:56:07.146834abusebot-7.cloudsearch.cf sshd[26543]: Invalid user yamada from 35.192.57.37 port 40738 2020-07-30T14:56:09.568316abu ...	2020-07-30 23:51:17

最近上报的IP列表

171.222.182.15	2606:4700:10::ac43:2100	34.38.10.50	2606:4700:10::6816:3729
34.156.24.156	111.61.246.242	20.240.51.74	34.21.172.25
216.180.246.42	69.5.169.190	69.5.169.177	69.5.169.176
69.5.169.170	31.14.254.50	194.88.98.112	221.236.196.27
95.134.252.7	2606:4700:10::6814:9638	134.35.157.178	2606:4700:10::6814:5064