68.107.252.42 - IPInfo

基本信息:

城市(city): Metairie

省份(region): Louisiana

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.107.252.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14593
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.107.252.42.			IN	A

;; AUTHORITY SECTION:
.			232	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 16:56:47 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

42.252.107.68.in-addr.arpa domain name pointer ip68-107-252-42.no.no.cox.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.252.107.68.in-addr.arpa	name = ip68-107-252-42.no.no.cox.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
85.250.117.25	attack	$f2bV_matches	2020-06-04 20:19:21
172.104.94.253	attack	Jun 4 14:09:48 debian-2gb-nbg1-2 kernel: \[13531346.583678\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=172.104.94.253 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=49345 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-04 20:30:19
103.106.211.126	attack	Jun 4 14:39:56 vps639187 sshd\[8381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.106.211.126 user=root Jun 4 14:39:58 vps639187 sshd\[8381\]: Failed password for root from 103.106.211.126 port 30870 ssh2 Jun 4 14:44:09 vps639187 sshd\[8432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.106.211.126 user=root ...	2020-06-04 20:48:06
101.89.151.127	attackspambots	Jun 4 06:09:43 Host-KLAX-C sshd[28738]: Disconnected from invalid user root 101.89.151.127 port 60504 [preauth] ...	2020-06-04 20:37:02
62.210.139.12	attackspam	Unauthorized access detected from black listed ip!	2020-06-04 20:26:33
222.186.175.163	attack	Jun 4 06:44:22 debian sshd[32666]: Unable to negotiate with 222.186.175.163 port 15244: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Jun 4 08:34:30 debian sshd[12127]: Unable to negotiate with 222.186.175.163 port 56746: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-06-04 20:34:45
14.242.3.203	attackbots	Lines containing failures of 14.242.3.203 (max 1000) Jun 1 12:33:54 UTC__SANYALnet-Labs__cac12 sshd[26991]: Connection from 14.242.3.203 port 55659 on 64.137.176.96 port 22 Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: Address 14.242.3.203 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: User r.r from 14.242.3.203 not allowed because not listed in AllowUsers Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.242.3.203 user=r.r Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Failed password for invalid user r.r from 14.242.3.203 port 55659 ssh2 Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Received disconnect from 14.242.3.203 port 55659:11: Bye Bye [preauth] Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Disconnected from 14.242.3.203 por........ ------------------------------	2020-06-04 20:20:17
46.225.73.66	attack	1591272589 - 06/04/2020 14:09:49 Host: 46.225.73.66/46.225.73.66 Port: 445 TCP Blocked	2020-06-04 20:31:16
112.85.42.172	attackbotsspam	Jun 4 14:14:39 santamaria sshd\[7911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Jun 4 14:14:41 santamaria sshd\[7911\]: Failed password for root from 112.85.42.172 port 38603 ssh2 Jun 4 14:14:59 santamaria sshd\[7913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root ...	2020-06-04 20:21:34
83.103.96.10	attackspam	Honeypot hit.	2020-06-04 20:44:13
182.43.134.224	attack	Jun 4 14:32:00 eventyay sshd[26195]: Failed password for root from 182.43.134.224 port 39540 ssh2 Jun 4 14:33:42 eventyay sshd[26328]: Failed password for root from 182.43.134.224 port 60746 ssh2 ...	2020-06-04 20:50:23
113.125.155.247	attackspam	2020-06-04T14:01:22.982616sd-86998 sshd[10266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.155.247 user=root 2020-06-04T14:01:24.844852sd-86998 sshd[10266]: Failed password for root from 113.125.155.247 port 25332 ssh2 2020-06-04T14:06:50.763220sd-86998 sshd[11031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.155.247 user=root 2020-06-04T14:06:52.655175sd-86998 sshd[11031]: Failed password for root from 113.125.155.247 port 36971 ssh2 2020-06-04T14:09:58.870444sd-86998 sshd[11439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.155.247 user=root 2020-06-04T14:10:01.238993sd-86998 sshd[11439]: Failed password for root from 113.125.155.247 port 10470 ssh2 ...	2020-06-04 20:16:44
156.146.36.102	attackspam	(From lorena.melba@gmail.com) Interested in the latest fitness , wellness, nutrition trends? Check out my blog here: https://bit.ly/www-fitnessismystatussymbol-com And my Instagram page @ziptofitness	2020-06-04 20:32:16
104.236.51.102	attackbots	104.236.51.102 - - [04/Jun/2020:14:09:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.51.102 - - [04/Jun/2020:14:09:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.51.102 - - [04/Jun/2020:14:09:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.51.102 - - [04/Jun/2020:14:09:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.51.102 - - [04/Jun/2020:14:09:35 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.51.102 - - [04/Jun/2020:14:09:36 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-06-04 20:42:48
35.237.12.174	attack	Trolling for resource vulnerabilities	2020-06-04 20:39:21

最近上报的IP列表

37.187.116.98	103.85.56.192	139.28.223.130	36.41.172.145
27.3.36.23	221.98.235.251	117.215.39.110	192.158.239.53
89.34.27.46	182.69.170.67	163.47.158.18	103.105.56.39
180.243.190.163	59.238.241.230	78.117.127.222	141.32.36.208
71.203.208.104	154.252.121.21	42.193.102.139	99.198.85.139