12.42.102.185 - IPInfo

基本信息:

城市(city): Fort Lauderdale

省份(region): Florida

国家(country): United States

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.42.102.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64816
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;12.42.102.185.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112701 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Thu Nov 28 03:25:19 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

185.102.42.12.in-addr.arpa is an alias for 185.160-27.102.42.12.in-addr.arpa.
185.160-27.102.42.12.in-addr.arpa domain name pointer remote.parkridgeca.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
185.102.42.12.in-addr.arpa	canonical name = 185.160-27.102.42.12.in-addr.arpa.
185.160-27.102.42.12.in-addr.arpa	name = remote.parkridgeca.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
81.22.45.85	attack	1561902302 - 06/30/2019 15:45:02 Host: 81.22.45.85/81.22.45.85 Port: 2000 TCP Blocked	2019-07-01 00:41:17
179.127.146.140	attack	SMTP-sasl brute force ...	2019-07-01 00:53:08
121.35.103.81	attackbotsspam	$f2bV_matches	2019-07-01 00:50:59
198.245.61.114	attack	/wp-login.php	2019-07-01 00:54:38
218.92.0.195	attackspambots	2019-06-30T16:49:37.409775abusebot-3.cloudsearch.cf sshd\[4282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.195 user=root	2019-07-01 01:22:58
14.9.115.224	attackbots	Jun 30 15:23:35 srv206 sshd[12639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=m014009115224.v4.enabler.ne.jp user=root Jun 30 15:23:38 srv206 sshd[12639]: Failed password for root from 14.9.115.224 port 16299 ssh2 ...	2019-07-01 00:42:26
46.54.254.114	attack	Jun 30 15:07:56 xb3 sshd[21868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-54-254-114.static.kate-wing.si user=r.r Jun 30 15:07:58 xb3 sshd[21868]: Failed password for r.r from 46.54.254.114 port 58431 ssh2 Jun 30 15:08:00 xb3 sshd[21868]: Failed password for r.r from 46.54.254.114 port 58431 ssh2 Jun 30 15:08:01 xb3 sshd[21868]: Failed password for r.r from 46.54.254.114 port 58431 ssh2 Jun 30 15:08:01 xb3 sshd[21868]: Disconnecting: Too many authentication failures for r.r from 46.54.254.114 port 58431 ssh2 [preauth] Jun 30 15:08:01 xb3 sshd[21868]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-54-254-114.static.kate-wing.si user=r.r Jun 30 15:08:03 xb3 sshd[22349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46-54-254-114.static.kate-wing.si user=r.r Jun 30 15:08:05 xb3 sshd[22349]: Failed password for r.r from 46.54.254.114 port 58437 s........ -------------------------------	2019-07-01 01:14:48
128.199.150.231	attack	Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: connect from unknown[128.199.150.231] Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: NOQUEUE: reject: RCPT from unknown[128.199.150.231]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: lost connection after RCPT from unknown[128.199.150.231] Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: disconnect from unknown[128.199.150.231] Jun 30 07:54:01 our-server-hostname postfix/smtpd[29375]: connect from unknown[128.199.150.231] Jun 30 07:54:01 our-server-hostname postfix/smtpd[29375]: NOQUEUE: reject: RCPT from unknown[128.199.150.231]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x proto= .... truncated .... Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: connect from unknown[128.199.150.231] Jun 30 07:19:31 our-server-hostname postfix/smtpd[17736]: ........ -------------------------------	2019-07-01 01:02:24
143.208.249.188	attack	Lines containing failures of 143.208.249.188 2019-06-30 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=143.208.249.188	2019-07-01 01:04:01
191.217.84.226	attack	Jun 30 15:21:58 localhost sshd\[11204\]: Invalid user database2 from 191.217.84.226 port 58474 Jun 30 15:21:58 localhost sshd\[11204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.217.84.226 Jun 30 15:22:01 localhost sshd\[11204\]: Failed password for invalid user database2 from 191.217.84.226 port 58474 ssh2	2019-07-01 01:23:59
134.73.161.45	attackbots	Jun 29 04:59:59 ACSRAD auth.info sshd[15825]: Invalid user sebastian from 134.73.161.45 port 49766 Jun 29 04:59:59 ACSRAD auth.info sshd[15825]: Failed password for invalid user sebastian from 134.73.161.45 port 49766 ssh2 Jun 29 04:59:59 ACSRAD auth.info sshd[15825]: Received disconnect from 134.73.161.45 port 49766:11: Bye Bye [preauth] Jun 29 04:59:59 ACSRAD auth.info sshd[15825]: Disconnected from 134.73.161.45 port 49766 [preauth] Jun 29 04:59:59 ACSRAD auth.notice sshguard[13458]: Attack from "134.73.161.45" on service 100 whostnameh danger 10. Jun 29 04:59:59 ACSRAD auth.notice sshguard[13458]: Attack from "134.73.161.45" on service 100 whostnameh danger 10. Jun 29 04:59:59 ACSRAD auth.notice sshguard[13458]: Attack from "134.73.161.45" on service 100 whostnameh danger 10. Jun 29 04:59:59 ACSRAD auth.warn sshguard[13458]: Blocking "134.73.161.45/32" forever (3 attacks in 0 secs, after 2 abuses over 1666 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/view.h	2019-07-01 00:36:36
188.31.182.0	attack	illegal networks duplicate three.co.uk into EN03/alongside en1/en2/etc/specific to English issues -set up accounts and rr.com main ISP/check owner of ISP usually hackers themselves	2019-07-01 00:38:38
62.4.15.110	attackbotsspam	firewall-block, port(s): 8291/tcp	2019-07-01 00:43:37
134.73.161.31	attackbots	Jun 30 15:00:19 xxx sshd[23471]: Invalid user friend from 134.73.161.31 port 60380 Jun 30 15:00:19 xxx sshd[23471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.161.31 Jun 30 15:00:21 xxx sshd[23471]: Failed password for invalid user friend from 134.73.161.31 port 60380 ssh2 Jun 30 15:00:21 xxx sshd[23471]: Received disconnect from 134.73.161.31 port 60380:11: Bye Bye [preauth] Jun 30 15:00:21 xxx sshd[23471]: Disconnected from 134.73.161.31 port 60380 [preauth] Jun 30 15:08:10 xxx sshd[24083]: Invalid user di from 134.73.161.31 port 45286 Jun 30 15:08:10 xxx sshd[24083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.161.31 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.73.161.31	2019-07-01 01:13:33
202.162.198.91	attackbots	RDP Bruteforce	2019-07-01 00:55:11

最近上报的IP列表

77.213.144.12	218.248.215.145	66.208.46.245	32.238.235.156
66.109.53.235	56.224.52.55	195.160.252.44	147.235.123.90
97.49.246.224	144.217.89.17	77.24.204.168	121.131.170.187
61.231.184.122	2.160.147.97	126.106.203.33	56.190.177.54
94.13.101.239	111.41.60.247	99.157.166.234	121.150.77.164