242.62.12.193 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 242.62.12.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;242.62.12.193.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 03:44:29 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 193.12.62.242.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.12.62.242.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
220.93.231.73	attack	Invalid user pi from 220.93.231.73 port 37446	2020-09-22 02:15:21
165.22.53.207	attack	165.22.53.207 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 21 13:00:23 jbs1 sshd[9436]: Failed password for root from 84.178.177.212 port 37514 ssh2 Sep 21 13:00:08 jbs1 sshd[9193]: Failed password for root from 200.35.194.138 port 55938 ssh2 Sep 21 12:59:45 jbs1 sshd[8720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.17 user=root Sep 21 12:59:47 jbs1 sshd[8720]: Failed password for root from 104.248.130.17 port 56742 ssh2 Sep 21 12:59:53 jbs1 sshd[8829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.53.207 user=root Sep 21 12:59:55 jbs1 sshd[8829]: Failed password for root from 165.22.53.207 port 38076 ssh2 IP Addresses Blocked: 84.178.177.212 (DE/Germany/-) 200.35.194.138 (VE/Venezuela/-) 104.248.130.17 (DE/Germany/-)	2020-09-22 02:14:08
138.68.95.204	attackbots	Sep 22 03:05:54 web1 sshd[20763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.95.204 user=root Sep 22 03:05:57 web1 sshd[20763]: Failed password for root from 138.68.95.204 port 54236 ssh2 Sep 22 03:11:51 web1 sshd[24270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.95.204 user=root Sep 22 03:11:52 web1 sshd[24270]: Failed password for root from 138.68.95.204 port 57818 ssh2 Sep 22 03:15:13 web1 sshd[25517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.95.204 user=root Sep 22 03:15:16 web1 sshd[25517]: Failed password for root from 138.68.95.204 port 36558 ssh2 Sep 22 03:18:46 web1 sshd[26688]: Invalid user postmaster from 138.68.95.204 port 43548 Sep 22 03:18:46 web1 sshd[26688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.95.204 Sep 22 03:18:46 web1 sshd[26688]: Invalid user postma ...	2020-09-22 03:04:20
195.58.38.143	attackspambots	2020-09-21T15:22:05.259644hostname sshd[114057]: Failed password for invalid user john from 195.58.38.143 port 50504 ssh2 ...	2020-09-22 02:40:20
49.88.112.114	attackspambots	[MK-VM2] SSH login failed	2020-09-22 03:01:02
52.187.65.64	attack	52.187.65.64 - - \[21/Sep/2020:14:29:47 +0200\] "POST /wp-login.php HTTP/1.0" 200 8786 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 52.187.65.64 - - \[21/Sep/2020:14:29:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 8612 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 52.187.65.64 - - \[21/Sep/2020:14:29:52 +0200\] "POST /wp-login.php HTTP/1.0" 200 8607 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-22 03:08:53
37.46.133.220	attackspambots	20 attempts against mh-misbehave-ban on tree	2020-09-22 02:55:14
188.166.240.30	attackspambots	(sshd) Failed SSH login from 188.166.240.30 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 12:37:30 server sshd[6710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.240.30 user=root Sep 21 12:37:32 server sshd[6710]: Failed password for root from 188.166.240.30 port 56988 ssh2 Sep 21 12:45:48 server sshd[7483]: Invalid user hadoop from 188.166.240.30 Sep 21 12:45:48 server sshd[7483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.240.30 Sep 21 12:45:50 server sshd[7483]: Failed password for invalid user hadoop from 188.166.240.30 port 47878 ssh2	2020-09-22 02:49:41
92.222.92.237	attackbotsspam	92.222.92.237 - - [21/Sep/2020:18:28:11 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 92.222.92.237 - - [21/Sep/2020:18:28:11 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 92.222.92.237 - - [21/Sep/2020:18:28:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-22 03:02:14
117.2.181.37	attackspambots	Honeypot attack, port: 5555, PTR: localhost.	2020-09-22 02:15:38
170.150.241.202	attackbots	Sep 20 18:58:18 mail sshd[18396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.241.202 Sep 20 18:58:20 mail sshd[18396]: Failed password for invalid user 666666 from 170.150.241.202 port 34997 ssh2 ...	2020-09-22 02:45:52
112.254.55.131	attackspambots	[Sun Sep 20 23:58:02.153212 2020] [:error] [pid 23423:tid 140118059661056] [client 112.254.55.131:39665] [client 112.254.55.131] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1041"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/setup.cgi"] [unique_id "AAAAAKyLvmllluV-tW9b4QAAAC0"] ...	2020-09-22 02:59:45
71.11.208.97	attackbots	(sshd) Failed SSH login from 71.11.208.97 (US/United States/071-011-208-097.res.spectrum.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 12:58:08 internal2 sshd[3257]: Invalid user admin from 71.11.208.97 port 41818 Sep 20 12:58:08 internal2 sshd[3271]: Invalid user admin from 71.11.208.97 port 41830 Sep 20 12:58:09 internal2 sshd[3278]: Invalid user admin from 71.11.208.97 port 41841	2020-09-22 02:52:42
106.13.161.17	attackspam	[f2b] sshd bruteforce, retries: 1	2020-09-22 02:43:22
198.199.91.245	attackspambots	Triggered by Fail2Ban at Ares web server	2020-09-22 02:48:01

最近上报的IP列表

225.47.126.83	245.203.60.160	223.95.255.66	185.50.29.128
249.119.252.207	156.161.209.74	201.237.101.191	169.113.209.216
86.52.189.112	87.91.225.161	64.38.166.238	251.95.69.141
74.60.3.218	180.179.34.65	214.28.209.239	194.85.106.74
150.247.75.123	9.236.10.79	83.181.249.15	246.8.225.156