5.42.85.117 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
5.42.85.60	attackbots	Automatic report - Port Scan Attack	2019-11-24 07:01:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.85.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25197
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.42.85.117.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 11:15:36 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

b'Host 117.85.42.5.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.82.98, trying next server
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.85.42.5.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
174.136.57.116	attackspam	$f2bV_matches	2020-09-06 23:45:20
174.217.14.90	attack	Brute forcing email accounts	2020-09-06 23:58:01
193.169.253.136	attackspambots	Sep 6 14:54:39 srv01 postfix/smtpd\[11293\]: warning: unknown\[193.169.253.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 14:54:45 srv01 postfix/smtpd\[11411\]: warning: unknown\[193.169.253.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 14:54:55 srv01 postfix/smtpd\[9957\]: warning: unknown\[193.169.253.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 14:55:18 srv01 postfix/smtpd\[11293\]: warning: unknown\[193.169.253.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 14:55:24 srv01 postfix/smtpd\[9957\]: warning: unknown\[193.169.253.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-06 23:09:53
120.133.136.75	attack	Sep 6 02:31:48 melroy-server sshd[1237]: Failed password for root from 120.133.136.75 port 60310 ssh2 ...	2020-09-06 23:44:23
37.254.110.43	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-06 23:42:13
85.209.0.251	attack	$f2bV_matches	2020-09-06 23:36:06
45.142.120.36	attackspam	2020-09-06 17:00:37 dovecot_login authenticator failed for $User$ \[45.142.120.36\]: 535 Incorrect authentication data $set_id=constanza@no-server.de$ 2020-09-06 17:00:38 dovecot_login authenticator failed for $User$ \[45.142.120.36\]: 535 Incorrect authentication data $set_id=constanza@no-server.de$ 2020-09-06 17:00:48 dovecot_login authenticator failed for $User$ \[45.142.120.36\]: 535 Incorrect authentication data $set_id=self@no-server.de$ 2020-09-06 17:01:15 dovecot_login authenticator failed for $User$ \[45.142.120.36\]: 535 Incorrect authentication data $set_id=self@no-server.de$ 2020-09-06 17:01:15 dovecot_login authenticator failed for $User$ \[45.142.120.36\]: 535 Incorrect authentication data $set_id=self@no-server.de$ ...	2020-09-06 23:10:51
103.147.10.222	attackspambots	103.147.10.222 - - [06/Sep/2020:16:21:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.147.10.222 - - [06/Sep/2020:16:21:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.147.10.222 - - [06/Sep/2020:16:21:07 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-06 23:52:39
121.40.212.94	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-06 23:55:32
188.120.119.244	attack	Automatic report - XMLRPC Attack	2020-09-06 23:22:25
106.12.84.63	attackbotsspam	Sep 6 13:31:28 rotator sshd\[22232\]: Invalid user bot from 106.12.84.63Sep 6 13:31:30 rotator sshd\[22232\]: Failed password for invalid user bot from 106.12.84.63 port 37622 ssh2Sep 6 13:34:47 rotator sshd\[22256\]: Invalid user asshole2 from 106.12.84.63Sep 6 13:34:49 rotator sshd\[22256\]: Failed password for invalid user asshole2 from 106.12.84.63 port 17589 ssh2Sep 6 13:38:13 rotator sshd\[23028\]: Invalid user spark from 106.12.84.63Sep 6 13:38:15 rotator sshd\[23028\]: Failed password for invalid user spark from 106.12.84.63 port 54057 ssh2 ...	2020-09-06 23:29:07
213.180.203.83	attackspam	Mailserver and mailaccount attacks	2020-09-06 23:11:59
62.234.20.135	attackbots	Sep 6 14:08:52 marvibiene sshd[12717]: Failed password for root from 62.234.20.135 port 36308 ssh2	2020-09-06 23:56:20
189.126.95.27	attackspam	DATE:2020-09-05 18:48:26, IP:189.126.95.27, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-07 00:00:54
222.186.180.8	attackbots	Sep 6 17:40:07 server sshd[9294]: Failed none for root from 222.186.180.8 port 21860 ssh2 Sep 6 17:40:14 server sshd[9294]: Failed password for root from 222.186.180.8 port 21860 ssh2 Sep 6 17:40:19 server sshd[9294]: Failed password for root from 222.186.180.8 port 21860 ssh2	2020-09-06 23:50:24

最近上报的IP列表

81.192.245.45	7.25.62.38	41.168.193.166	40.22.74.196
221.118.37.84	227.22.117.151	67.212.182.12	88.155.72.97
216.178.62.56	185.10.63.193	10.145.181.116	234.251.122.174
133.13.225.92	110.196.143.172	192.168.43.67	114.39.240.214
45.175.146.22	185.172.60.216	121.22.237.21	29.76.196.71