42.248.31.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.248.31.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.248.31.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 18:54:54 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

Host 2.31.248.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.31.248.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
186.122.149.144	attackbots	Feb 1 07:19:23 cp sshd[21620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.149.144	2020-02-01 15:11:30
49.145.229.80	attackspambots	1580532948 - 02/01/2020 05:55:48 Host: 49.145.229.80/49.145.229.80 Port: 445 TCP Blocked	2020-02-01 15:09:27
51.89.125.114	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-01 14:48:35
114.67.84.229	attack	$f2bV_matches	2020-02-01 15:11:49
191.31.21.82	attack	$f2bV_matches	2020-02-01 15:07:53
180.250.22.66	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-01 15:23:34
123.148.244.246	attackspam	123.148.244.246 - - \[01/Feb/2020:06:35:07 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 536 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/63.0.3239.132 Safari/537.36" 123.148.244.246 - - \[01/Feb/2020:06:35:07 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 536 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/63.0.3239.132 Safari/537.36" 123.148.244.246 - - \[01/Feb/2020:06:35:09 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 536 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/63.0.3239.132 Safari/537.36"	2020-02-01 14:59:49
106.13.233.178	attack	3x Failed Password	2020-02-01 14:51:20
152.136.55.139	attackspambots	Unauthorized connection attempt detected from IP address 152.136.55.139 to port 2220 [J]	2020-02-01 15:18:38
213.150.206.88	attackspambots	Feb 1 06:49:55 mout sshd[3421]: Invalid user pass from 213.150.206.88 port 38542	2020-02-01 14:48:21
54.189.136.220	attackbotsspam	[SatFeb0107:25:14.1276712020][:error][pid21394:tid47092707886848][client54.189.136.220:49888][client54.189.136.220]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"mail.be-ex.it"][uri"/.env"][unique_id"XjUZyiljTv-5Y0c4-MdVwQAAAI0"][SatFeb0107:26:42.4897452020][:error][pid21463:tid47092624688896][client54.189.136.220:51102][client54.189.136.220]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.con	2020-02-01 14:51:52
157.230.55.177	attackbotsspam	WordPress wp-login brute force :: 157.230.55.177 0.288 - [01/Feb/2020:04:55:44 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-02-01 15:11:09
5.104.108.18	attack	Unauthorized connection attempt detected from IP address 5.104.108.18 to port 2220 [J]	2020-02-01 15:27:43
52.243.42.115	attack	Invalid user deeptendu from 52.243.42.115 port 42332	2020-02-01 15:13:43
200.127.21.133	attackbotsspam	Feb 1 11:00:30 gw1 sshd[5094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.127.21.133 Feb 1 11:00:32 gw1 sshd[5094]: Failed password for invalid user ts3srv from 200.127.21.133 port 43016 ssh2 ...	2020-02-01 14:50:39

最近上报的IP列表

48.94.189.74	251.73.228.6	65.134.107.96	189.161.55.85
47.177.247.191	130.108.39.255	188.244.228.233	169.174.8.158
239.161.235.47	152.167.241.168	159.252.216.221	23.108.86.98
184.159.56.221	196.118.229.50	79.175.159.169	253.47.3.206
188.202.186.31	8.46.65.217	120.44.62.142	99.141.246.181