77.42.75.133 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Iran, Islamic Republic of

运营商(isp): Rayaneh Danesh Golestan Complex P.J.S. Co.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Automatic report - Port Scan Attack	2020-04-17 17:43:15

相同子网IP讨论:

IP	类型	评论内容	时间
77.42.75.121	attack	Unauthorized connection attempt detected from IP address 77.42.75.121 to port 80	2020-06-22 06:01:56
77.42.75.52	attackspambots	Automatic report - Port Scan Attack	2020-05-17 01:44:18
77.42.75.141	attackspambots	Unauthorized connection attempt detected from IP address 77.42.75.141 to port 23	2020-05-13 03:38:58
77.42.75.106	attackspam	Automatic report - Port Scan Attack	2020-04-26 04:45:41
77.42.75.179	attackbots	Automatic report - Port Scan Attack	2020-04-17 12:36:20
77.42.75.216	attackbots	Port probing on unauthorized port 23	2020-03-31 20:09:59
77.42.75.8	attackbotsspam	unauthorized connection attempt	2020-02-16 18:15:19
77.42.75.28	attackbotsspam	Unauthorized connection attempt detected from IP address 77.42.75.28 to port 5555 [J]	2020-01-28 22:18:58
77.42.75.125	attackspambots	Unauthorized connection attempt detected from IP address 77.42.75.125 to port 23 [J]	2020-01-27 00:28:10
77.42.75.107	attackbotsspam	Automatic report - Port Scan Attack	2020-01-24 22:42:13
77.42.75.195	attack	Unauthorized connection attempt detected from IP address 77.42.75.195 to port 23 [J]	2020-01-06 16:42:51
77.42.75.210	attack	Automatic report - Port Scan Attack	2020-01-05 16:04:39
77.42.75.117	attackbots	Automatic report - Port Scan Attack	2019-12-19 00:52:21
77.42.75.218	attack	" "	2019-12-12 13:42:49
77.42.75.139	attack	Automatic report - Port Scan Attack	2019-12-10 21:14:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 77.42.75.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38890
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;77.42.75.133.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041701 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 17:43:08 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 133.75.42.77.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 133.75.42.77.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
36.74.168.87	attackbotsspam	Unauthorized connection attempt from IP address 36.74.168.87 on Port 445(SMB)	2019-06-24 05:14:26
185.81.99.242	attackspam	Automatic report - Web App Attack	2019-06-24 04:40:13
103.138.10.71	attackbots	TCP src-port=57500 dst-port=25 dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious) (1032)	2019-06-24 04:37:20
194.93.59.12	attackspam	Many RDP login attempts detected by IDS script	2019-06-24 04:39:28
117.241.237.112	attack	55555/tcp [2019-06-23]1pkt	2019-06-24 04:33:34
112.229.5.199	attackspam	Lines containing failures of 112.229.5.199 /var/log/apache/pucorp.org.log:2019-06-22T09:42:06.273228+02:00 rz-sp-adm-01 sshd[12726]: Invalid user admin from 112.229.5.199 port 34536 /var/log/apache/pucorp.org.log:2019-06-22T09:42:06.280115+02:00 rz-sp-adm-01 sshd[12726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.229.5.199 /var/log/apache/pucorp.org.log:2019-06-22T09:42:06.286242+02:00 rz-sp-adm-01 sshd[12726]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.229.5.199 user=admin /var/log/apache/pucorp.org.log:2019-06-22T09:42:08.694418+02:00 rz-sp-adm-01 sshd[12726]: Failed password for invalid user admin from 112.229.5.199 port 34536 ssh2 /var/log/apache/pucorp.org.log:2019-06-22T09:42:10.464911+02:00 rz-sp-adm-01 sshd[12726]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.229.5.199 user=admin /var/log/apache/pucorp.org.log:2019-06-22T........ ------------------------------	2019-06-24 05:11:29
104.195.10.162	attackbots	445/tcp [2019-06-23]1pkt	2019-06-24 04:57:05
78.187.174.71	attackbotsspam	firewall-block, port(s): 23/tcp	2019-06-24 05:15:17
142.44.158.48	attackspambots	Jun 23 22:10:46 tux-35-217 sshd\[9771\]: Invalid user ts3server from 142.44.158.48 port 55728 Jun 23 22:10:46 tux-35-217 sshd\[9771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.158.48 Jun 23 22:10:48 tux-35-217 sshd\[9771\]: Failed password for invalid user ts3server from 142.44.158.48 port 55728 ssh2 Jun 23 22:11:04 tux-35-217 sshd\[9773\]: Invalid user teamspeak from 142.44.158.48 port 43860 Jun 23 22:11:04 tux-35-217 sshd\[9773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.158.48 ...	2019-06-24 04:47:19
190.161.104.178	attackbotsspam	20 attempts against mh-ssh on sand.magehost.pro	2019-06-24 04:36:03
73.70.18.30	attack	Jun 23 21:54:53 shared09 sshd[20784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.70.18.30 user=r.r Jun 23 21:54:55 shared09 sshd[20784]: Failed password for r.r from 73.70.18.30 port 33482 ssh2 Jun 23 21:54:55 shared09 sshd[20784]: Received disconnect from 73.70.18.30 port 33482:11: Bye Bye [preauth] Jun 23 21:54:55 shared09 sshd[20784]: Disconnected from 73.70.18.30 port 33482 [preauth] Jun 23 21:58:37 shared09 sshd[22391]: Invalid user chai from 73.70.18.30 Jun 23 21:58:37 shared09 sshd[22391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.70.18.30 Jun 23 21:58:39 shared09 sshd[22391]: Failed password for invalid user chai from 73.70.18.30 port 60088 ssh2 Jun 23 21:58:40 shared09 sshd[22391]: Received disconnect from 73.70.18.30 port 60088:11: Bye Bye [preauth] Jun 23 21:58:40 shared09 sshd[22391]: Disconnected from 73.70.18.30 port 60088 [preauth] ........ ----------------------------------------------- https://	2019-06-24 05:07:24
106.45.0.23	attackspam	Port scan on 2 port(s): 8080 8081	2019-06-24 04:56:35
190.254.51.46	attackspambots	SSH Brute Force, server-1 sshd[30208]: Failed password for invalid user upload from 190.254.51.46 port 54396 ssh2	2019-06-24 04:51:36
114.38.92.28	attackbots	37215/tcp [2019-06-23]1pkt	2019-06-24 04:48:04
79.103.146.232	attack	23/tcp [2019-06-23]1pkt	2019-06-24 04:44:46

最近上报的IP列表

21.5.164.221	116.70.103.186	85.62.51.112	89.216.225.60
144.78.220.225	130.18.98.107	13.18.166.79	98.181.16.229
214.219.220.220	184.61.75.179	110.225.242.130	31.34.227.194
5.244.109.254	106.12.168.83	38.59.218.199	178.62.39.189
19.111.28.248	217.249.73.205	111.92.233.79	97.14.20.243