70.142.117.231

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 70.142.117.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3414
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;70.142.117.231.			IN	A

;; AUTHORITY SECTION:
.			485	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092100 1800 900 604800 86400

;; Query time: 518 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 22 02:09:01 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 231.117.142.70.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 231.117.142.70.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
92.118.38.37	attack	Oct 20 15:48:03 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:48:23 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:48:58 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:49:33 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 20 15:50:08 webserver postfix/smtpd\[28412\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-20 21:53:33
41.41.3.222	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-10-20 21:49:35
106.13.86.199	attackbots	Oct 20 15:59:42 sauna sshd[89270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.86.199 Oct 20 15:59:44 sauna sshd[89270]: Failed password for invalid user qwerty7 from 106.13.86.199 port 48372 ssh2 ...	2019-10-20 21:52:33
193.70.37.140	attack	Oct 20 14:46:35 meumeu sshd[32339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.37.140 Oct 20 14:46:37 meumeu sshd[32339]: Failed password for invalid user stepan from 193.70.37.140 port 36680 ssh2 Oct 20 14:50:24 meumeu sshd[392]: Failed password for root from 193.70.37.140 port 45672 ssh2 ...	2019-10-20 22:06:26
43.230.115.110	attack	Oct 20 13:34:15 vps58358 sshd\[24628\]: Invalid user abcd from 43.230.115.110Oct 20 13:34:17 vps58358 sshd\[24628\]: Failed password for invalid user abcd from 43.230.115.110 port 47676 ssh2Oct 20 13:41:49 vps58358 sshd\[24762\]: Invalid user abcd from 43.230.115.110Oct 20 13:41:51 vps58358 sshd\[24762\]: Failed password for invalid user abcd from 43.230.115.110 port 53370 ssh2Oct 20 13:42:19 vps58358 sshd\[24766\]: Invalid user abcd from 43.230.115.110Oct 20 13:42:21 vps58358 sshd\[24766\]: Failed password for invalid user abcd from 43.230.115.110 port 49473 ssh2 ...	2019-10-20 21:59:55
80.211.43.205	attackbots	Oct 20 13:14:17 reporting1 sshd[2212]: reveeclipse mapping checking getaddrinfo for host205-43-211-80.serverdedicati.aruba.hostname [80.211.43.205] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 20 13:14:17 reporting1 sshd[2212]: User r.r from 80.211.43.205 not allowed because not listed in AllowUsers Oct 20 13:14:17 reporting1 sshd[2212]: Failed password for invalid user r.r from 80.211.43.205 port 35278 ssh2 Oct 20 13:33:39 reporting1 sshd[12581]: reveeclipse mapping checking getaddrinfo for host205-43-211-80.serverdedicati.aruba.hostname [80.211.43.205] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 20 13:33:39 reporting1 sshd[12581]: Invalid user joanna from 80.211.43.205 Oct 20 13:33:39 reporting1 sshd[12581]: Failed password for invalid user joanna from 80.211.43.205 port 45300 ssh2 Oct 20 13:37:34 reporting1 sshd[14754]: reveeclipse mapping checking getaddrinfo for host205-43-211-80.serverdedicati.aruba.hostname [80.211.43.205] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 20 13:37:........ -------------------------------	2019-10-20 22:23:11
189.7.17.61	attackspam	Invalid user dr from 189.7.17.61 port 40274 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.17.61 Failed password for invalid user dr from 189.7.17.61 port 40274 ssh2 Invalid user robert from 189.7.17.61 port 49543 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.17.61	2019-10-20 22:14:30
147.231.34.32	attackspambots	Oct 20 16:09:44 vmanager6029 sshd\[25583\]: Invalid user tamas from 147.231.34.32 port 50242 Oct 20 16:09:44 vmanager6029 sshd\[25583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.231.34.32 Oct 20 16:09:47 vmanager6029 sshd\[25583\]: Failed password for invalid user tamas from 147.231.34.32 port 50242 ssh2	2019-10-20 22:15:15
45.80.105.41	attack	45.80.105.41 - - [20/Oct/2019:08:03:42 -0400] "GET /?page=products&action=..%2f..%2f..%2fetc%2fpasswd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17151 "https://newportbrassfaucets.com/?page=products&action=..%2f..%2f..%2fetc%2fpasswd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:43:22
185.40.12.9	attackbots	" "	2019-10-20 22:24:31
51.255.168.202	attackspam	Oct 20 15:27:26 SilenceServices sshd[17248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.202 Oct 20 15:27:28 SilenceServices sshd[17248]: Failed password for invalid user 1234 from 51.255.168.202 port 47162 ssh2 Oct 20 15:31:47 SilenceServices sshd[18382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.202	2019-10-20 21:48:02
110.49.71.248	attack	$f2bV_matches	2019-10-20 22:08:15
164.132.57.16	attack	2019-10-20T14:49:54.609350scmdmz1 sshd\[22792\]: Invalid user debian@123 from 164.132.57.16 port 47432 2019-10-20T14:49:54.612010scmdmz1 sshd\[22792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=16.ip-164-132-57.eu 2019-10-20T14:49:56.187573scmdmz1 sshd\[22792\]: Failed password for invalid user debian@123 from 164.132.57.16 port 47432 ssh2 ...	2019-10-20 21:46:22
164.132.42.32	attackspam	Oct 20 15:35:34 vpn01 sshd[21984]: Failed password for root from 164.132.42.32 port 59854 ssh2 ...	2019-10-20 22:25:33
61.95.233.61	attack	Oct 18 09:29:23 myhostname sshd[12238]: Invalid user bula from 61.95.233.61 Oct 18 09:29:23 myhostname sshd[12238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 Oct 18 09:29:24 myhostname sshd[12238]: Failed password for invalid user bula from 61.95.233.61 port 37718 ssh2 Oct 18 09:29:24 myhostname sshd[12238]: Received disconnect from 61.95.233.61 port 37718:11: Bye Bye [preauth] Oct 18 09:29:24 myhostname sshd[12238]: Disconnected from 61.95.233.61 port 37718 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.95.233.61	2019-10-20 21:54:26

最近上报的IP列表

140.23.205.147	90.34.113.135	192.254.173.208	191.227.92.42
41.117.58.196	144.1.255.255	123.40.202.124	7.188.23.164
143.108.205.254	103.206.138.95	76.28.76.236	185.6.246.65
208.209.191.32	109.252.133.78	47.13.2.255	97.244.235.85
175.120.139.245	196.66.133.34	194.93.59.44	106.18.59.27