104.18.42.101 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.42.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.42.101.			IN	A

;; AUTHORITY SECTION:
.			278	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 11:41:31 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 101.42.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 101.42.18.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
125.211.171.159	attackbotsspam	Brute force blocker - service: proftpd1, proftpd2 - aantal: 139 - Tue Jun 19 00:15:16 2018	2020-04-30 15:07:30
198.206.243.23	attackspam	Invalid user db2fenc1 from 198.206.243.23 port 46812	2020-04-30 14:58:16
1.203.115.141	attackbots	Invalid user cashier from 1.203.115.141 port 36365	2020-04-30 15:14:16
152.136.141.254	attackspambots	Apr 30 06:21:04 meumeu sshd[24168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.141.254 Apr 30 06:21:05 meumeu sshd[24168]: Failed password for invalid user roozbeh from 152.136.141.254 port 48588 ssh2 Apr 30 06:25:45 meumeu sshd[24726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.141.254 ...	2020-04-30 14:52:38
69.9.229.18	attackbots	Brute forcing email accounts	2020-04-30 14:33:38
183.89.215.120	attack	Dovecot Invalid User Login Attempt.	2020-04-30 15:04:16
104.131.58.179	attack	Automatic report - XMLRPC Attack	2020-04-30 15:00:31
117.84.114.201	attack	lfd: (smtpauth) Failed SMTP AUTH login from 117.84.114.201 (201.114.84.117.broad.wx.js.dynamic.163data.com.cn): 5 in the last 3600 secs - Wed Jun 20 22:41:45 2018	2020-04-30 14:32:37
31.13.115.23	attackspambots	[Thu Apr 30 11:25:37.614305 2020] [:error] [pid 22182:tid 140693016954624] [client 31.13.115.23:39234] [client 31.13.115.23] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/timeout-worker-v1.js"] [unique_id "XqpTQdxPkEinMoyak2l38gACdwM"] ...	2020-04-30 15:03:08
158.69.254.173	attack	Honeypot attack, port: 445, PTR: ns550796.ip-158-69-254.net.	2020-04-30 15:00:08
31.13.115.2	attack	[Thu Apr 30 11:25:50.153283 2020] [:error] [pid 20443:tid 140693016954624] [client 31.13.115.2:51946] [client 31.13.115.2] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/script-v32.js"] [unique_id "XqpTTk70qnkBKhQpBbErBQABxAM"] ...	2020-04-30 14:46:59
92.118.234.234	attackspam	\[Apr 30 15:35:03\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from '"1004" \' failed for '92.118.234.234:6040' - Wrong password \[Apr 30 15:35:04\] NOTICE\[2019\] chan_sip.c: Registration from ...	2020-04-30 14:35:36
31.13.115.3	attack	[Thu Apr 30 11:25:53.912675 2020] [:error] [pid 20433:tid 140692991776512] [client 31.13.115.3:35166] [client 31.13.115.3] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/swiper-v64.js"] [unique_id "XqpTUTcb@TScSTKUfwgk0wABlwA"] ...	2020-04-30 14:36:43
45.236.131.60	attackbotsspam	$f2bV_matches	2020-04-30 15:08:02
54.66.124.255	attackbots	RDP Brute-Force (honeypot 2)	2020-04-30 14:47:41

最近上报的IP列表

185.33.236.82	104.18.42.103	104.18.42.105	104.18.42.110
104.18.42.111	104.18.42.114	104.18.42.116	93.245.157.169
104.18.42.12	104.18.42.120	104.18.42.121	104.18.42.122
104.18.42.125	104.18.42.126	104.18.42.127	104.18.42.128
104.18.42.132	104.18.42.135	104.18.42.138	17.252.9.62