18.221.42.63 - IPInfo

基本信息:

城市(city): Columbus

省份(region): Ohio

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.221.42.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;18.221.42.63.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060900 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 10 01:21:06 CST 2024
;; MSG SIZE  rcvd: 105

HOST信息:

63.42.221.18.in-addr.arpa domain name pointer ec2-18-221-42-63.us-east-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.42.221.18.in-addr.arpa	name = ec2-18-221-42-63.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
79.54.18.135	attackspam	Aug 5 23:26:31 piServer sshd[6963]: Failed password for root from 79.54.18.135 port 60500 ssh2 Aug 5 23:29:28 piServer sshd[7342]: Failed password for root from 79.54.18.135 port 54163 ssh2 ...	2020-08-06 05:52:27
122.51.217.131	attack	firewall-block, port(s): 20273/tcp	2020-08-06 05:56:37
62.112.11.88	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-05T20:11:30Z and 2020-08-05T20:40:32Z	2020-08-06 05:37:34
92.63.197.95	attackspam	34042/tcp 33964/tcp 33985/tcp... [2020-06-06/08-05]832pkt,276pt.(tcp)	2020-08-06 05:57:27
124.95.171.244	attack	Aug 5 22:37:47 hidden sshd[4416]: Failed password for hidden from 124.95.171.244 port 39845 ssh2 Aug 5 22:40:15 hidden sshd[4810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.95.171.244 user=root Aug 5 22:40:17 hidden sshd[4810]: Failed password for hidden from 124.95.171.244 port 58638 ssh2	2020-08-06 05:46:58
78.128.113.116	attackbotsspam	Aug 5 23:28:23 relay postfix/smtpd\[12593\]: warning: unknown\[78.128.113.116\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 5 23:28:41 relay postfix/smtpd\[23147\]: warning: unknown\[78.128.113.116\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 5 23:31:40 relay postfix/smtpd\[18547\]: warning: unknown\[78.128.113.116\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 5 23:31:57 relay postfix/smtpd\[23148\]: warning: unknown\[78.128.113.116\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 5 23:32:47 relay postfix/smtpd\[18547\]: warning: unknown\[78.128.113.116\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-06 05:36:44
93.158.66.44	attackbotsspam	/.git/HEAD	2020-08-06 05:33:59
222.186.175.169	attackbots	Aug 5 23:17:00 server sshd[45400]: Failed none for root from 222.186.175.169 port 5178 ssh2 Aug 5 23:17:01 server sshd[45400]: Failed password for root from 222.186.175.169 port 5178 ssh2 Aug 5 23:17:05 server sshd[45400]: Failed password for root from 222.186.175.169 port 5178 ssh2	2020-08-06 05:24:33
5.188.86.221	attack	SSH Bruteforce Attempt on Honeypot	2020-08-06 05:45:35
193.32.161.143	attack	Port scan: Attack repeated for 24 hours	2020-08-06 05:31:31
101.207.113.73	attackbots	Aug 5 23:11:44 vps639187 sshd\[17865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.207.113.73 user=root Aug 5 23:11:46 vps639187 sshd\[17865\]: Failed password for root from 101.207.113.73 port 34308 ssh2 Aug 5 23:16:12 vps639187 sshd\[18017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.207.113.73 user=root ...	2020-08-06 05:40:59
46.229.168.142	attackspam	[Thu Aug 06 04:05:55.635836 2020] [:error] [pid 7254:tid 139707898152704] [client 46.229.168.142:43486] [client 46.229.168.142] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "XysfL2NhXNCE0wg8XY5ChwAAAIc"] ...	2020-08-06 05:23:11
116.85.56.252	attack	Aug 5 22:22:40 rocket sshd[32459]: Failed password for root from 116.85.56.252 port 34216 ssh2 Aug 5 22:26:31 rocket sshd[619]: Failed password for root from 116.85.56.252 port 54244 ssh2 ...	2020-08-06 05:56:55
12.233.246.99	attackbotsspam	Virus	2020-08-06 05:55:37
163.172.9.10	attack	Port Scan detected! ...	2020-08-06 05:53:30

最近上报的IP列表

219.104.97.31	6.111.63.236	184.248.202.8	39.179.99.198
199.80.252.252	201.186.220.69	158.212.129.110	184.232.182.237
0.168.41.210	167.61.31.224	43.50.217.7	238.168.58.31
15.143.65.197	40.180.129.1	139.97.28.11	230.75.102.161
208.233.66.132	173.74.75.211	255.174.206.71	59.201.88.95