243.194.42.213

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 243.194.42.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18425
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;243.194.42.213.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030701 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 08 05:05:16 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 213.42.194.243.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.42.194.243.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
190.15.203.50	attack	Invalid user scj from 190.15.203.50 port 43682	2020-09-02 12:44:51
104.236.124.45	attackspambots	Sep 1 22:48:03 XXX sshd[4243]: Invalid user ts3 from 104.236.124.45 port 60112	2020-09-02 12:40:26
103.228.183.10	attackbots	$f2bV_matches	2020-09-02 13:21:32
49.145.104.168	attackspambots	Automatic report - XMLRPC Attack	2020-09-02 13:20:03
206.189.38.105	attackspambots	2020-09-02T07:59:28.451109afi-git.jinr.ru sshd[24613]: Failed password for root from 206.189.38.105 port 50584 ssh2 2020-09-02T08:02:49.949132afi-git.jinr.ru sshd[25362]: Invalid user user from 206.189.38.105 port 43564 2020-09-02T08:02:49.952208afi-git.jinr.ru sshd[25362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.38.105 2020-09-02T08:02:49.949132afi-git.jinr.ru sshd[25362]: Invalid user user from 206.189.38.105 port 43564 2020-09-02T08:02:51.606790afi-git.jinr.ru sshd[25362]: Failed password for invalid user user from 206.189.38.105 port 43564 ssh2 ...	2020-09-02 13:08:04
103.25.251.233	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 13:19:26
222.186.175.169	attack	Sep 2 06:51:38 MainVPS sshd[3342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Sep 2 06:51:40 MainVPS sshd[3342]: Failed password for root from 222.186.175.169 port 40084 ssh2 Sep 2 06:51:52 MainVPS sshd[3342]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 40084 ssh2 [preauth] Sep 2 06:51:38 MainVPS sshd[3342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Sep 2 06:51:40 MainVPS sshd[3342]: Failed password for root from 222.186.175.169 port 40084 ssh2 Sep 2 06:51:52 MainVPS sshd[3342]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 40084 ssh2 [preauth] Sep 2 06:51:56 MainVPS sshd[3936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Sep 2 06:51:58 MainVPS sshd[3936]: Failed password for root from 222.186.175.169 port 43826 ss	2020-09-02 12:59:30
5.170.166.158	attackspam	Port probing on unauthorized port 445	2020-09-02 12:46:51
222.186.42.7	attack	2020-09-02T06:47[Censored Hostname] sshd[11732]: Failed password for root from 222.186.42.7 port 30055 ssh2 2020-09-02T06:47[Censored Hostname] sshd[11732]: Failed password for root from 222.186.42.7 port 30055 ssh2 2020-09-02T06:47[Censored Hostname] sshd[11732]: Failed password for root from 222.186.42.7 port 30055 ssh2[...]	2020-09-02 12:47:26
124.158.12.202	attackbots	124.158.12.202 - - \[02/Sep/2020:03:07:22 +0200\] "POST /wp-login.php HTTP/1.0" 200 2797 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 124.158.12.202 - - \[02/Sep/2020:03:07:26 +0200\] "POST /wp-login.php HTTP/1.0" 200 2796 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 124.158.12.202 - - \[02/Sep/2020:03:07:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 2770 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-09-02 13:10:51
218.92.0.224	attackspam	$f2bV_matches	2020-09-02 13:15:02
182.162.104.153	attackbots	Failed password for invalid user cactiuser from 182.162.104.153 port 50376 ssh2	2020-09-02 12:45:06
118.24.158.42	attack	Sep 2 02:51:45 rancher-0 sshd[1395543]: Invalid user gerardo from 118.24.158.42 port 53916 ...	2020-09-02 12:45:21
111.72.194.235	attack	Sep 1 21:15:55 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:07 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:23 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:42 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:53 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-02 13:04:33
158.174.128.79	attackspam	srvr2: (mod_security) mod_security (id:920350) triggered by 158.174.128.79 (SE/-/h-128-79.A328.priv.bahnhof.se): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/01 18:48:07 [error] 479384#0: 483202 [client 158.174.128.79] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159897888786.898155"] [ref "o0,14v21,14"], client: 158.174.128.79, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-02 12:52:14

最近上报的IP列表

66.243.18.249	191.201.96.112	171.185.54.163	240.190.22.159
120.99.116.192	210.28.201.230	148.26.102.170	60.225.226.195
35.243.1.195	239.59.100.156	91.172.72.113	113.69.52.177
66.5.159.53	118.86.113.159	204.201.37.250	173.198.176.11
159.247.115.92	165.65.82.112	21.68.67.140	240.76.140.69