21.242.37.254 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.242.37.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.242.37.254.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 12:28:43 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 254.37.242.21.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 254.37.242.21.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
148.72.209.9	attackspambots	Website hacking attempt: Wordpress admin access [wp-login.php]	2020-08-10 00:50:34
31.43.13.185	attack	(mod_security) mod_security (id:920350) triggered by 31.43.13.185 (UA/Ukraine/31-43-13-185.dks.com.ua): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 14:09:47 [error] 297426#0: 2 [client 31.43.13.185] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159697498716.317200"] [ref "o0,14v21,14"], client: 31.43.13.185, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-10 01:00:35
59.127.131.106	attackbots	TCP (SYN) 59.127.131.106:50191 -> port 23, len 40	2020-08-10 00:44:27
60.51.17.33	attack	Aug 9 18:12:15 vmd26974 sshd[11572]: Failed password for root from 60.51.17.33 port 60496 ssh2 ...	2020-08-10 01:15:48
139.59.18.197	attack	Aug 9 18:25:49 eventyay sshd[5833]: Failed password for root from 139.59.18.197 port 54334 ssh2 Aug 9 18:27:43 eventyay sshd[5858]: Failed password for root from 139.59.18.197 port 51740 ssh2 ...	2020-08-10 00:43:17
46.161.27.75	attack	TCP (SYN) 46.161.27.75:52647 -> port 6464, len 44	2020-08-10 00:46:51
113.170.96.68	attack	$f2bV_matches	2020-08-10 00:54:27
114.67.88.76	attackbotsspam	SSH Brute Force	2020-08-10 00:52:19
106.12.220.84	attackbotsspam	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-10 00:52:49
37.187.7.95	attackbots	Failed password for root from 37.187.7.95 port 56604 ssh2	2020-08-10 01:19:33
118.25.53.252	attack	Aug 9 15:17:49 abendstille sshd\[17466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root Aug 9 15:17:52 abendstille sshd\[17466\]: Failed password for root from 118.25.53.252 port 53694 ssh2 Aug 9 15:23:10 abendstille sshd\[22520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root Aug 9 15:23:12 abendstille sshd\[22520\]: Failed password for root from 118.25.53.252 port 45306 ssh2 Aug 9 15:25:40 abendstille sshd\[25111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252 user=root ...	2020-08-10 00:39:26
91.191.209.94	attackspambots	2020-08-09 17:34:12 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=bid@hosting1.no-server.de$ 2020-08-09 17:34:20 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=bid@hosting1.no-server.de$ 2020-08-09 17:34:39 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=admind@hosting1.no-server.de$ 2020-08-09 17:34:50 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=admind@hosting1.no-server.de$ 2020-08-09 17:34:57 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=admind@hosting1.no-server.de$ 2020-08-09 17:34:59 dovecot_login authenticator failed for $User$ \[91.191.209.94\]: 535 Incorrect authentication data $set_id=admind@hosting1.no-server.de$ ...	2020-08-10 00:46:23
114.231.110.35	attackspam	CN CN/China/- Failures: 5 smtpauth	2020-08-10 00:48:57
94.125.122.90	attack	Bruteforce detected by fail2ban	2020-08-10 00:44:01
141.98.9.161	attackbotsspam	Aug 9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503 Aug 9 18:26:12 inter-technics sshd[14470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.161 Aug 9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503 Aug 9 18:26:14 inter-technics sshd[14470]: Failed password for invalid user admin from 141.98.9.161 port 36503 ssh2 Aug 9 18:26:33 inter-technics sshd[14520]: Invalid user ubnt from 141.98.9.161 port 36419 ...	2020-08-10 01:01:22

最近上报的IP列表

96.42.197.88	207.154.184.106	131.139.32.111	22.253.126.183
237.158.159.31	231.140.88.18	137.76.204.169	192.145.79.116
8.169.165.158	46.125.246.203	215.162.142.43	131.143.239.129
24.83.161.51	89.249.88.190	5.182.131.183	233.70.37.79
169.170.166.15	238.242.239.54	135.152.73.178	119.143.6.133