42.234.172.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.234.172.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.234.172.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012301 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 03:59:09 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

149.172.234.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.172.234.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.98.50.112	attackbotsspam	srvr2: (mod_security) mod_security (id:920350) triggered by 198.98.50.112 (US/-/tor.your-domain.tld): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/25 15:38:15 [error] 550601#0: 505066 [client 198.98.50.112] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/VWmC"] [unique_id "160104109566.092746"] [ref "o0,11v26,11"], client: 198.98.50.112, [redacted] request: "HEAD /VWmC HTTP/1.1" [redacted]	2020-09-26 03:28:41
200.149.156.146	attackspambots	445/tcp 445/tcp [2020-09-24]2pkt	2020-09-26 03:37:18
37.187.102.226	attackbotsspam	Sep 25 15:42:26 xeon sshd[48267]: Failed password for invalid user student from 37.187.102.226 port 59418 ssh2	2020-09-26 03:26:38
106.13.47.6	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-25T17:25:23Z and 2020-09-25T17:29:27Z	2020-09-26 03:53:20
145.239.95.241	attackbotsspam	Sep 25 21:34:09 db sshd[12059]: Invalid user postgres from 145.239.95.241 port 44968 ...	2020-09-26 03:57:03
222.186.173.226	attackspambots	Sep 25 21:55:52 vps333114 sshd[17775]: Failed password for root from 222.186.173.226 port 32801 ssh2 Sep 25 21:55:54 vps333114 sshd[17775]: Failed password for root from 222.186.173.226 port 32801 ssh2 ...	2020-09-26 03:51:34
3.88.143.237	attack	tcp 2375	2020-09-26 03:35:16
162.243.128.58	attack	TCP port : 9200	2020-09-26 03:36:07
88.86.221.163	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 88.86.221.163 (RU/Russia/f-press.ru): 5 in the last 3600 secs - Thu Aug 23 02:41:57 2018	2020-09-26 03:28:53
182.61.40.124	attackbotsspam	Sep 25 05:22:48 Tower sshd[13482]: Connection from 182.61.40.124 port 48564 on 192.168.10.220 port 22 rdomain "" Sep 25 05:22:51 Tower sshd[13482]: Invalid user zabbix from 182.61.40.124 port 48564 Sep 25 05:22:51 Tower sshd[13482]: error: Could not get shadow information for NOUSER Sep 25 05:22:51 Tower sshd[13482]: Failed password for invalid user zabbix from 182.61.40.124 port 48564 ssh2 Sep 25 05:22:51 Tower sshd[13482]: Received disconnect from 182.61.40.124 port 48564:11: Bye Bye [preauth] Sep 25 05:22:51 Tower sshd[13482]: Disconnected from invalid user zabbix 182.61.40.124 port 48564 [preauth]	2020-09-26 03:39:28
183.54.230.33	attackspambots	Brute force blocker - service: proftpd1 - aantal: 30 - Wed Aug 22 10:00:16 2018	2020-09-26 03:29:15
198.204.252.202	attack	Trying ports that it shouldn't be.	2020-09-26 03:46:35
112.166.133.216	attack	Sep 25 15:24:42 firewall sshd[16861]: Failed password for invalid user test01 from 112.166.133.216 port 40312 ssh2 Sep 25 15:27:50 firewall sshd[17001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.133.216 user=root Sep 25 15:27:53 firewall sshd[17001]: Failed password for root from 112.166.133.216 port 60392 ssh2 ...	2020-09-26 03:26:51
52.242.84.14	attack	Sep 25 21:23:47 sshgateway sshd\[17011\]: Invalid user support from 52.242.84.14 Sep 25 21:23:47 sshgateway sshd\[17011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.242.84.14 Sep 25 21:23:49 sshgateway sshd\[17011\]: Failed password for invalid user support from 52.242.84.14 port 34636 ssh2	2020-09-26 03:28:08
201.172.207.37	attack	Honeypot attack, port: 445, PTR: CableLink207-37.telefonia.InterCable.net.	2020-09-26 03:37:54

最近上报的IP列表

12.230.12.234	6.116.30.123	68.44.18.142	222.225.120.171
193.0.90.242	230.177.125.97	108.110.131.29	219.22.235.252
244.238.22.151	27.185.100.53	19.232.92.66	48.113.147.51
154.236.2.185	53.22.242.155	206.19.132.136	128.105.165.108
254.166.125.11	142.149.168.238	58.66.2.72	160.183.189.253