85.234.145.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
85.234.145.20	attack	firewall-block, port(s): 11504/tcp	2020-10-01 04:46:52
85.234.145.20	attackspambots	TCP port : 30577	2020-09-30 21:00:51
85.234.145.20	attackspam	Port scanning [2 denied]	2020-09-30 13:30:23
85.234.145.20	attack	Port Scan detected from 85.234.145.20 (GB/United Kingdom/England/Reading/85-234-145-20.static.as29550.net). 4 hits in the last 250 seconds	2020-08-26 12:16:26
85.234.145.20	attack	firewall-block, port(s): 18044/tcp	2020-08-24 01:39:35
85.234.145.20	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-18 04:47:54
85.234.145.20	attack	6970/tcp 27675/tcp 14506/tcp... [2020-06-22/08-10]143pkt,54pt.(tcp)	2020-08-11 07:27:23
85.234.145.20	attackbots	TCP (SYN) 85.234.145.20:45610 -> port 32602, len 44	2020-08-01 08:03:40
85.234.145.20	attackspam	Port scan: Attack repeated for 24 hours	2020-07-05 16:42:48
85.234.145.20	attackspambots	Dec 22 17:14:00 silence02 sshd[1954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.145.20 Dec 22 17:14:02 silence02 sshd[1954]: Failed password for invalid user midori from 85.234.145.20 port 49535 ssh2 Dec 22 17:19:40 silence02 sshd[2200]: Failed password for root from 85.234.145.20 port 52817 ssh2	2019-12-23 00:20:57
85.234.145.20	attackspam	Dec 19 18:30:25 sd-53420 sshd\[6348\]: Invalid user maisa from 85.234.145.20 Dec 19 18:30:25 sd-53420 sshd\[6348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.145.20 Dec 19 18:30:27 sd-53420 sshd\[6348\]: Failed password for invalid user maisa from 85.234.145.20 port 34253 ssh2 Dec 19 18:35:21 sd-53420 sshd\[8148\]: Invalid user gavra from 85.234.145.20 Dec 19 18:35:21 sd-53420 sshd\[8148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.145.20 ...	2019-12-20 01:42:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.234.145.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.234.145.42.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020300 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 03 15:24:23 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

42.145.234.85.in-addr.arpa domain name pointer 85-234-145-42.static.as29550.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.145.234.85.in-addr.arpa	name = 85-234-145-42.static.as29550.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
41.63.0.133	attackbotsspam	web-1 [ssh] SSH Attack	2019-11-22 18:32:03
122.228.19.79	attackspam	122.228.19.79 was recorded 27 times by 8 hosts attempting to connect to the following ports: 2083,8069,8005,1026,3389,28015,3690,7443,40001,389,104,7548,7001,264,179,8086,8004,4730,5357,9418,10001,631,1433,16993,2480,9295. Incident counter (4h, 24h, all-time): 27, 160, 3486	2019-11-22 18:04:26
106.59.35.237	attackbots	badbot	2019-11-22 18:26:12
202.71.6.127	attack	Automatic report - Banned IP Access	2019-11-22 18:03:33
46.166.151.47	attack	\[2019-11-22 04:37:39\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-22T04:37:39.823-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0002146406820574",SessionID="0x7f26c4832958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/50962",ACLName="no_extension_match" \[2019-11-22 04:40:04\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-22T04:40:04.009-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="002146462607509",SessionID="0x7f26c4832958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/60424",ACLName="no_extension_match" \[2019-11-22 04:45:55\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-22T04:45:55.750-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00146406820574",SessionID="0x7f26c40441e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/64385",ACLName="no_ext	2019-11-22 17:58:24
203.217.139.226	attackspambots	SMB Server BruteForce Attack	2019-11-22 18:26:30
88.214.16.98	attackspam	Nov 22 07:16:56 mxgate1 postfix/postscreen[24303]: CONNECT from [88.214.16.98]:11157 to [176.31.12.44]:25 Nov 22 07:16:56 mxgate1 postfix/dnsblog[24329]: addr 88.214.16.98 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 22 07:16:56 mxgate1 postfix/dnsblog[24329]: addr 88.214.16.98 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 22 07:16:56 mxgate1 postfix/dnsblog[24330]: addr 88.214.16.98 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 22 07:16:56 mxgate1 postfix/dnsblog[24327]: addr 88.214.16.98 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 22 07:17:02 mxgate1 postfix/postscreen[24303]: DNSBL rank 4 for [88.214.16.98]:11157 Nov x@x Nov 22 07:17:03 mxgate1 postfix/postscreen[24303]: HANGUP after 0.82 from [88.214.16.98]:11157 in tests after SMTP handshake Nov 22 07:17:03 mxgate1 postfix/postscreen[24303]: DISCONNECT [88.214.16.98]:11157 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=88.214.16.98	2019-11-22 18:29:43
175.158.53.126	attack	Nov 22 07:06:32 mxgate1 postfix/postscreen[24303]: CONNECT from [175.158.53.126]:61551 to [176.31.12.44]:25 Nov 22 07:06:32 mxgate1 postfix/dnsblog[24327]: addr 175.158.53.126 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 22 07:06:32 mxgate1 postfix/dnsblog[24327]: addr 175.158.53.126 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 22 07:06:32 mxgate1 postfix/dnsblog[24329]: addr 175.158.53.126 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 22 07:06:32 mxgate1 postfix/dnsblog[24330]: addr 175.158.53.126 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 22 07:06:38 mxgate1 postfix/postscreen[24303]: DNSBL rank 4 for [175.158.53.126]:61551 Nov x@x Nov 22 07:06:49 mxgate1 postfix/postscreen[24303]: HANGUP after 11 from [175.158.53.126]:61551 in tests after SMTP handshake Nov 22 07:06:49 mxgate1 postfix/postscreen[24303]: DISCONNECT [175.158.53.126]:61551 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.158.53.126	2019-11-22 18:06:55
172.105.178.30	attack	SSH Scan	2019-11-22 18:18:27
222.186.175.161	attack	Nov 22 05:11:45 TORMINT sshd\[28209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 22 05:11:47 TORMINT sshd\[28209\]: Failed password for root from 222.186.175.161 port 56370 ssh2 Nov 22 05:12:04 TORMINT sshd\[28222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root ...	2019-11-22 18:12:26
41.84.131.10	attack	Nov 22 11:02:28 server sshd\[13451\]: Invalid user alamgir from 41.84.131.10 port 13728 Nov 22 11:02:28 server sshd\[13451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.84.131.10 Nov 22 11:02:30 server sshd\[13451\]: Failed password for invalid user alamgir from 41.84.131.10 port 13728 ssh2 Nov 22 11:07:16 server sshd\[2045\]: Invalid user password from 41.84.131.10 port 32404 Nov 22 11:07:16 server sshd\[2045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.84.131.10	2019-11-22 18:19:37
183.166.160.190	attack	badbot	2019-11-22 18:11:23
93.175.201.120	attack	Unauthorised access (Nov 22) SRC=93.175.201.120 LEN=52 TTL=122 ID=4947 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 22) SRC=93.175.201.120 LEN=52 TTL=122 ID=11174 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 22) SRC=93.175.201.120 LEN=52 TTL=122 ID=12114 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-22 18:31:37
51.15.15.51	attackspam	3389BruteforceFW23	2019-11-22 18:28:52
114.88.70.125	attack	Nov 22 01:15:53 eola postfix/smtpd[24426]: connect from unknown[114.88.70.125] Nov 22 01:15:54 eola postfix/smtpd[24426]: lost connection after AUTH from unknown[114.88.70.125] Nov 22 01:15:54 eola postfix/smtpd[24426]: disconnect from unknown[114.88.70.125] ehlo=1 auth=0/1 commands=1/2 Nov 22 01:15:55 eola postfix/smtpd[24426]: connect from unknown[114.88.70.125] Nov 22 01:15:56 eola postfix/smtpd[24426]: lost connection after AUTH from unknown[114.88.70.125] Nov 22 01:15:56 eola postfix/smtpd[24426]: disconnect from unknown[114.88.70.125] ehlo=1 auth=0/1 commands=1/2 Nov 22 01:15:56 eola postfix/smtpd[24394]: connect from unknown[114.88.70.125] Nov 22 01:15:57 eola postfix/smtpd[24394]: lost connection after AUTH from unknown[114.88.70.125] Nov 22 01:15:57 eola postfix/smtpd[24394]: disconnect from unknown[114.88.70.125] ehlo=1 auth=0/1 commands=1/2 Nov 22 01:15:57 eola postfix/smtpd[24426]: connect from unknown[114.88.70.125] Nov 22 01:15:57 eola postfix/smtpd[24426]........ -------------------------------	2019-11-22 18:27:21

最近上报的IP列表

78.56.10.173	30.134.105.167	214.147.74.12	155.29.255.130
204.185.176.125	153.205.234.47	131.74.124.220	217.75.92.86
101.66.43.13	116.198.32.42	234.121.121.132	191.110.109.116
206.25.107.119	199.7.92.195	10.95.202.108	186.22.179.209
63.239.184.191	3.197.216.79	178.239.161.92	174.160.123.188