42.56.108.157 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-12 23:56:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.56.108.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65127
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.56.108.157.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 23:56:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 157.108.56.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.108.56.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
216.246.234.77	attackspam	2020-05-20T06:52:56.961088shield sshd\[27389\]: Invalid user aqi from 216.246.234.77 port 58128 2020-05-20T06:52:56.965101shield sshd\[27389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216-246-234-77.cpe.distributel.net 2020-05-20T06:52:58.383766shield sshd\[27389\]: Failed password for invalid user aqi from 216.246.234.77 port 58128 ssh2 2020-05-20T06:56:35.503954shield sshd\[28354\]: Invalid user msd from 216.246.234.77 port 58700 2020-05-20T06:56:35.507568shield sshd\[28354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216-246-234-77.cpe.distributel.net	2020-05-20 15:02:58
129.211.30.94	attackbots	May 20 02:27:46 eventyay sshd[16062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.30.94 May 20 02:27:48 eventyay sshd[16062]: Failed password for invalid user om from 129.211.30.94 port 41070 ssh2 May 20 02:31:33 eventyay sshd[16307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.30.94 ...	2020-05-20 14:35:23
222.186.175.217	attack	2020-05-20T06:41:55.098402abusebot-4.cloudsearch.cf sshd[17051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-05-20T06:41:57.437863abusebot-4.cloudsearch.cf sshd[17051]: Failed password for root from 222.186.175.217 port 37354 ssh2 2020-05-20T06:42:03.038563abusebot-4.cloudsearch.cf sshd[17051]: Failed password for root from 222.186.175.217 port 37354 ssh2 2020-05-20T06:41:55.098402abusebot-4.cloudsearch.cf sshd[17051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-05-20T06:41:57.437863abusebot-4.cloudsearch.cf sshd[17051]: Failed password for root from 222.186.175.217 port 37354 ssh2 2020-05-20T06:42:03.038563abusebot-4.cloudsearch.cf sshd[17051]: Failed password for root from 222.186.175.217 port 37354 ssh2 2020-05-20T06:41:55.098402abusebot-4.cloudsearch.cf sshd[17051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-05-20 14:46:13
78.188.218.80	attackbots	Automatic report - Banned IP Access	2020-05-20 15:02:24
180.76.97.9	attack	May 19 19:32:31 tdfoods sshd\[10134\]: Invalid user owu from 180.76.97.9 May 19 19:32:31 tdfoods sshd\[10134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.97.9 May 19 19:32:33 tdfoods sshd\[10134\]: Failed password for invalid user owu from 180.76.97.9 port 36376 ssh2 May 19 19:38:43 tdfoods sshd\[10569\]: Invalid user uxo from 180.76.97.9 May 19 19:38:43 tdfoods sshd\[10569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.97.9	2020-05-20 14:28:34
159.192.143.249	attackspam	May 20 06:55:58 ourumov-web sshd\[1131\]: Invalid user cur from 159.192.143.249 port 42900 May 20 06:55:58 ourumov-web sshd\[1131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.249 May 20 06:56:00 ourumov-web sshd\[1131\]: Failed password for invalid user cur from 159.192.143.249 port 42900 ssh2 ...	2020-05-20 14:53:52
162.243.142.146	attack	05/19/2020-21:48:19.031920 162.243.142.146 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-05-20 14:42:03
152.89.105.102	attackspam	Invalid user kuf from 152.89.105.102 port 41272	2020-05-20 14:26:11
45.124.86.65	attackspam	...	2020-05-20 14:55:59
106.13.161.250	attackspam	May 20 04:46:13 ns382633 sshd\[11059\]: Invalid user eya from 106.13.161.250 port 47586 May 20 04:46:13 ns382633 sshd\[11059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.161.250 May 20 04:46:16 ns382633 sshd\[11059\]: Failed password for invalid user eya from 106.13.161.250 port 47586 ssh2 May 20 05:13:43 ns382633 sshd\[15747\]: Invalid user ogd from 106.13.161.250 port 37974 May 20 05:13:43 ns382633 sshd\[15747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.161.250	2020-05-20 14:33:34
114.80.94.228	attackspambots	May 20 02:12:02 onepixel sshd[393829]: Invalid user anz from 114.80.94.228 port 58962 May 20 02:12:02 onepixel sshd[393829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 May 20 02:12:02 onepixel sshd[393829]: Invalid user anz from 114.80.94.228 port 58962 May 20 02:12:04 onepixel sshd[393829]: Failed password for invalid user anz from 114.80.94.228 port 58962 ssh2 May 20 02:14:52 onepixel sshd[394181]: Invalid user bmi from 114.80.94.228 port 27739	2020-05-20 15:02:06
59.56.238.79	attack	SpamScore above: 10.0	2020-05-20 14:54:41
95.15.20.47	attackbotsspam	Port probing on unauthorized port 23	2020-05-20 14:43:58
34.78.211.173	attack	Unauthorized connection attempt detected from IP address 34.78.211.173 to port 3689 [T]	2020-05-20 14:20:28
148.101.15.185	attack	May 20 08:16:14 abendstille sshd\[6802\]: Invalid user gsd from 148.101.15.185 May 20 08:16:14 abendstille sshd\[6802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.15.185 May 20 08:16:17 abendstille sshd\[6802\]: Failed password for invalid user gsd from 148.101.15.185 port 53964 ssh2 May 20 08:17:44 abendstille sshd\[8331\]: Invalid user euj from 148.101.15.185 May 20 08:17:44 abendstille sshd\[8331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.15.185 ...	2020-05-20 14:42:29

最近上报的IP列表

85.209.0.203	49.151.253.35	112.199.81.114	103.217.243.109
217.79.165.29	82.241.206.2	217.112.142.59	195.231.3.146
195.23.57.238	134.73.51.94	90.150.98.14	85.209.0.137
85.209.0.14	69.94.158.120	69.94.144.45	69.94.135.172
63.82.50.249	63.82.49.161	63.82.48.177	178.132.192.21