244.40.126.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 244.40.126.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;244.40.126.42.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024100201 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 03 03:55:46 CST 2024
;; MSG SIZE  rcvd: 106

HOST信息:

Host 42.126.40.244.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.126.40.244.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.199.106.127	attackspambots	Aug 7 21:25:11 lnxmysql61 sshd[14522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.106.127	2019-08-08 03:35:56
165.22.243.223	attackbotsspam	Aug 8 00:48:53 areeb-Workstation sshd\[9657\]: Invalid user linux from 165.22.243.223 Aug 8 00:48:53 areeb-Workstation sshd\[9657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.243.223 Aug 8 00:48:55 areeb-Workstation sshd\[9657\]: Failed password for invalid user linux from 165.22.243.223 port 48932 ssh2 ...	2019-08-08 03:35:11
112.85.42.238	attack	Aug 7 21:33:25 dcd-gentoo sshd[29739]: User root from 112.85.42.238 not allowed because none of user's groups are listed in AllowGroups Aug 7 21:33:27 dcd-gentoo sshd[29739]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 Aug 7 21:33:25 dcd-gentoo sshd[29739]: User root from 112.85.42.238 not allowed because none of user's groups are listed in AllowGroups Aug 7 21:33:27 dcd-gentoo sshd[29739]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 Aug 7 21:33:25 dcd-gentoo sshd[29739]: User root from 112.85.42.238 not allowed because none of user's groups are listed in AllowGroups Aug 7 21:33:27 dcd-gentoo sshd[29739]: error: PAM: Authentication failure for illegal user root from 112.85.42.238 Aug 7 21:33:27 dcd-gentoo sshd[29739]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.238 port 28262 ssh2 ...	2019-08-08 03:42:05
36.71.169.51	attackspambots	Automatic report - Port Scan Attack	2019-08-08 03:06:21
118.89.215.182	attackspambots	[WedAug0719:45:13.2643862019][:error][pid2911:tid139738488141568][client118.89.215.182:27268][client118.89.215.182]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"81.17.25.236"][uri"/App.php"][unique_id"XUsOKU05zO2tJVstc8H8UQAAAQA"][WedAug0719:45:14.5227552019][:error][pid2908:tid139738361095936][client118.89.215.182:27671][client118.89.215.182]ModSecurity:Accessdeniedwithcode403\(phase2\).Matc	2019-08-08 02:52:09
185.40.41.28	attack	[portscan] Port scan	2019-08-08 03:39:22
122.248.38.28	attack	Aug 7 18:47:11 MK-Soft-VM7 sshd\[8705\]: Invalid user mar from 122.248.38.28 port 48532 Aug 7 18:47:11 MK-Soft-VM7 sshd\[8705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.248.38.28 Aug 7 18:47:13 MK-Soft-VM7 sshd\[8705\]: Failed password for invalid user mar from 122.248.38.28 port 48532 ssh2 ...	2019-08-08 03:41:39
202.80.219.120	attack	Wordpress attack	2019-08-08 02:54:31
165.227.150.158	attackbots	Aug 7 15:08:14 vps200512 sshd\[17054\]: Invalid user webmaster from 165.227.150.158 Aug 7 15:08:14 vps200512 sshd\[17054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.150.158 Aug 7 15:08:16 vps200512 sshd\[17054\]: Failed password for invalid user webmaster from 165.227.150.158 port 15571 ssh2 Aug 7 15:12:31 vps200512 sshd\[17164\]: Invalid user plagscan from 165.227.150.158 Aug 7 15:12:31 vps200512 sshd\[17164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.150.158	2019-08-08 03:23:35
121.149.168.193	attackbots	Aug 7 19:43:24 vps647732 sshd[7385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.168.193 Aug 7 19:43:25 vps647732 sshd[7385]: Failed password for invalid user diana from 121.149.168.193 port 52688 ssh2 ...	2019-08-08 03:36:30
88.99.145.83	attackbots	Only those who intend to destroy a site makes "all day" attempts like this below, so if this ip appears on your website block immediately 88.99.0.0/16 is high risk: 88.99.145.83 - - [07/Aug/2019:02:25:08 -0300] "GET / HTTP/1.1/403/9/ 88.99.145.83/07/08/2019 12:35/9/error 403/GET/HTTP/1.1/	2019-08-08 03:32:36
49.88.112.56	attackbotsspam	Aug 7 19:44:38 tux-35-217 sshd\[18371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.56 user=root Aug 7 19:44:40 tux-35-217 sshd\[18371\]: Failed password for root from 49.88.112.56 port 10309 ssh2 Aug 7 19:44:43 tux-35-217 sshd\[18371\]: Failed password for root from 49.88.112.56 port 10309 ssh2 Aug 7 19:44:45 tux-35-217 sshd\[18371\]: Failed password for root from 49.88.112.56 port 10309 ssh2 ...	2019-08-08 03:07:56
188.120.236.44	attack	DATE:2019-08-07 20:44:12, IP:188.120.236.44, PORT:5900 VNC brute force auth on honeypot server (honey-neo-dc)	2019-08-08 03:45:27
187.1.25.220	attackspam	Aug 7 19:42:12 xeon postfix/smtpd[15806]: warning: unknown[187.1.25.220]: SASL PLAIN authentication failed: authentication failure	2019-08-08 03:24:43
177.20.168.234	attack	Aug 7 19:45:26 v22018076622670303 sshd\[18962\]: Invalid user sniffer from 177.20.168.234 port 59179 Aug 7 19:45:26 v22018076622670303 sshd\[18962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.20.168.234 Aug 7 19:45:28 v22018076622670303 sshd\[18962\]: Failed password for invalid user sniffer from 177.20.168.234 port 59179 ssh2 ...	2019-08-08 02:48:34

最近上报的IP列表

218.72.105.106	206.146.4.115	174.139.101.214	201.46.100.110
61.22.79.212	100.241.120.90	52.62.17.191	163.219.81.245
52.50.36.234	181.246.119.99	145.47.94.98	19.90.144.199
19.31.43.107	232.126.117.86	54.217.15.118	192.12.16.135
234.252.158.98	149.51.36.202	2003:e0:171f:3300:5823:e98c:8c57:1024	229.7.232.36