18.207.42.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.207.42.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.207.42.1.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010602 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 13:11:31 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

1.42.207.18.in-addr.arpa domain name pointer ec2-18-207-42-1.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.42.207.18.in-addr.arpa	name = ec2-18-207-42-1.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
111.229.13.242	attack	2020-05-25T04:12:17.417212abusebot-2.cloudsearch.cf sshd[15985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.13.242 user=root 2020-05-25T04:12:19.308650abusebot-2.cloudsearch.cf sshd[15985]: Failed password for root from 111.229.13.242 port 53518 ssh2 2020-05-25T04:17:14.069926abusebot-2.cloudsearch.cf sshd[16067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.13.242 user=root 2020-05-25T04:17:15.735333abusebot-2.cloudsearch.cf sshd[16067]: Failed password for root from 111.229.13.242 port 49788 ssh2 2020-05-25T04:22:11.576369abusebot-2.cloudsearch.cf sshd[16090]: Invalid user balaban from 111.229.13.242 port 46066 2020-05-25T04:22:11.581943abusebot-2.cloudsearch.cf sshd[16090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.13.242 2020-05-25T04:22:11.576369abusebot-2.cloudsearch.cf sshd[16090]: Invalid user balaban from 111.229.13.242 ...	2020-05-25 12:44:33
222.186.175.215	attackbots	May 25 06:24:29 ns381471 sshd[31424]: Failed password for root from 222.186.175.215 port 40160 ssh2 May 25 06:24:43 ns381471 sshd[31424]: error: maximum authentication attempts exceeded for root from 222.186.175.215 port 40160 ssh2 [preauth]	2020-05-25 12:44:59
193.112.79.159	attack	SSH auth scanning - multiple failed logins	2020-05-25 12:18:22
121.57.226.91	attack	[Mon May 25 10:55:36.630598 2020] [:error] [pid 28669:tid 139717567837952] [client 121.57.226.91:47534] [client 121.57.226.91] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "123.125.114.144"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "123.125.114.144"] [uri "/"] [unique_id "XstBuOTO9BwP5Ve1Gyk@3wAAAcQ"] ...	2020-05-25 12:42:58
159.65.41.159	attackspam	2020-05-25T03:48:36.325041abusebot-5.cloudsearch.cf sshd[18747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.159 user=root 2020-05-25T03:48:38.472500abusebot-5.cloudsearch.cf sshd[18747]: Failed password for root from 159.65.41.159 port 38860 ssh2 2020-05-25T03:52:36.920751abusebot-5.cloudsearch.cf sshd[18805]: Invalid user sir from 159.65.41.159 port 51858 2020-05-25T03:52:36.926840abusebot-5.cloudsearch.cf sshd[18805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.159 2020-05-25T03:52:36.920751abusebot-5.cloudsearch.cf sshd[18805]: Invalid user sir from 159.65.41.159 port 51858 2020-05-25T03:52:39.023680abusebot-5.cloudsearch.cf sshd[18805]: Failed password for invalid user sir from 159.65.41.159 port 51858 ssh2 2020-05-25T03:55:51.713978abusebot-5.cloudsearch.cf sshd[18816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.159 u ...	2020-05-25 12:28:52
167.172.139.65	attack	Auto reported by IDS	2020-05-25 12:42:39
120.237.118.144	attack	May 25 06:18:49 plex sshd[6630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.237.118.144 user=root May 25 06:18:51 plex sshd[6630]: Failed password for root from 120.237.118.144 port 38374 ssh2	2020-05-25 12:48:04
37.152.182.18	attack	May 24 18:40:15 hpm sshd\[8812\]: Invalid user share from 37.152.182.18 May 24 18:40:15 hpm sshd\[8812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.182.18 May 24 18:40:18 hpm sshd\[8812\]: Failed password for invalid user share from 37.152.182.18 port 53414 ssh2 May 24 18:43:30 hpm sshd\[9035\]: Invalid user yy from 37.152.182.18 May 24 18:43:30 hpm sshd\[9035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.182.18	2020-05-25 12:58:08
106.52.221.48	attackbots	1590378948 - 05/25/2020 05:55:48 Host: 106.52.221.48/106.52.221.48 Port: 23 TCP Blocked	2020-05-25 12:31:52
123.206.90.149	attackspam	May 25 06:34:21 plex sshd[7231]: Invalid user larry from 123.206.90.149 port 54837	2020-05-25 12:37:34
117.27.88.61	attack	$f2bV_matches	2020-05-25 12:33:46
154.72.199.38	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-05-25 12:55:35
61.177.172.128	attack	2020-05-25T06:52:08.296359sd-86998 sshd[24282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-05-25T06:52:10.764475sd-86998 sshd[24282]: Failed password for root from 61.177.172.128 port 63524 ssh2 2020-05-25T06:52:14.043491sd-86998 sshd[24282]: Failed password for root from 61.177.172.128 port 63524 ssh2 2020-05-25T06:52:08.296359sd-86998 sshd[24282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-05-25T06:52:10.764475sd-86998 sshd[24282]: Failed password for root from 61.177.172.128 port 63524 ssh2 2020-05-25T06:52:14.043491sd-86998 sshd[24282]: Failed password for root from 61.177.172.128 port 63524 ssh2 2020-05-25T06:52:08.296359sd-86998 sshd[24282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-05-25T06:52:10.764475sd-86998 sshd[24282]: Failed password for root from ...	2020-05-25 12:56:00
113.99.163.135	attackbotsspam	3389BruteforceStormFW21	2020-05-25 12:31:07
120.32.40.69	attackspam	/plus/ajax_officebuilding.php?act=key&key=asd%E9%94%A6%27%20uniounionn%20selselectect%201,2,3,md5(1234),5,6,7,8,9%23	2020-05-25 12:33:19

最近上报的IP列表

123.16.134.125	119.30.32.204	119.28.115.130	117.85.147.43
116.140.186.169	114.237.207.176	109.103.66.15	109.97.84.175
106.13.186.188	104.186.40.115	103.73.182.47	95.32.167.170
91.240.98.44	86.136.30.170	80.248.10.237	78.58.181.62
188.227.135.75	77.218.53.5	74.188.140.140	73.125.170.149