58.34.185.242 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.34.185.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18305
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;58.34.185.242.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101100 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 12 00:23:32 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

242.185.34.58.in-addr.arpa domain name pointer 242.185.34.58.broad.xw.sh.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.185.34.58.in-addr.arpa	name = 242.185.34.58.broad.xw.sh.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
40.107.77.42	spam	Used since many times by the same "Ribeiro" for SPAM, PHISHING and SCAM on STOLLEN list we don't know where without our agreement, as usual with LIERS and ROBERS !	2020-02-12 15:20:58
222.118.6.208	attackspambots	Feb 12 07:02:06 vmanager6029 sshd\[31264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.118.6.208 user=root Feb 12 07:02:08 vmanager6029 sshd\[31264\]: Failed password for root from 222.118.6.208 port 55760 ssh2 Feb 12 07:11:38 vmanager6029 sshd\[31493\]: Invalid user saiyou from 222.118.6.208 port 45782	2020-02-12 14:19:12
77.119.240.1	attack	Feb 12 07:17:44 mout sshd[20987]: Invalid user 123 from 77.119.240.1 port 35695	2020-02-12 14:24:07
153.36.34.225	attack	MVPower DVR TV Shell Unauthenticated Command Execution Vulnerability, PTR: PTR record not found	2020-02-12 14:24:47
189.109.204.218	attack	Invalid user adj from 189.109.204.218 port 40052	2020-02-12 14:11:43
14.162.30.29	attack	Automatic report - Port Scan Attack	2020-02-12 15:01:43
195.223.211.242	attack	Feb 11 20:13:09 hpm sshd\[19557\]: Invalid user chiara from 195.223.211.242 Feb 11 20:13:09 hpm sshd\[19557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.211.242 Feb 11 20:13:11 hpm sshd\[19557\]: Failed password for invalid user chiara from 195.223.211.242 port 56999 ssh2 Feb 11 20:16:23 hpm sshd\[19954\]: Invalid user uo from 195.223.211.242 Feb 11 20:16:23 hpm sshd\[19954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.211.242	2020-02-12 15:21:58
139.201.241.40	attackspambots	Distributed brute force attack	2020-02-12 15:06:18
159.192.139.125	attack	Feb1205:57:11server6sshd[29292]:refusedconnectfrom159.192.139.125$159.192.139.125$Feb1205:57:11server6sshd[29293]:refusedconnectfrom159.192.139.125$159.192.139.125$Feb1205:57:11server6sshd[29294]:refusedconnectfrom159.192.139.125$159.192.139.125$Feb1205:57:11server6sshd[29295]:refusedconnectfrom159.192.139.125$159.192.139.125$Feb1205:57:19server6sshd[29304]:refusedconnectfrom159.192.139.125$159.192.139.125$	2020-02-12 14:16:51
178.154.171.135	attackspam	[Wed Feb 12 11:57:33.918154 2020] [:error] [pid 28215:tid 140538904831744] [client 178.154.171.135:35595] [client 178.154.171.135] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XkOFvf6AVtTKTbaYjADHbQAAAU0"] ...	2020-02-12 14:06:38
104.152.52.24	attack	104.152.52.24 was recorded 77 times by 2 hosts attempting to connect to the following ports: 10172,161,49156,49193,8333,999,5938,7,497,3269,1604,2222,6653,8080,5986,199,7990,389,136,2424,5000,6690,2080,177,593,660,1270,138,1812,2196,5601,5722,518,1589,2294,27017,1433,8088,6000,49200,49201,7474,9080,1311,65024,647,2379,18092,1701,32771,8222,1434,4243,49153,2000,994,2376,49181,8767,2083,135,1512,8998,9050,1025,8200,500,25,179,8118,9306,9042. Incident counter (4h, 24h, all-time): 77, 77, 416	2020-02-12 15:14:51
122.166.201.197	attackbots	Unauthorized connection attempt detected from IP address 122.166.201.197 to port 8022	2020-02-12 15:11:22
52.187.106.61	attackbotsspam	Feb 12 07:05:20 game-panel sshd[6577]: Failed password for games from 52.187.106.61 port 41706 ssh2 Feb 12 07:09:23 game-panel sshd[6828]: Failed password for root from 52.187.106.61 port 40746 ssh2 Feb 12 07:13:49 game-panel sshd[7004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.187.106.61	2020-02-12 15:21:08
117.51.142.196	attackbots	SSH brutforce	2020-02-12 15:03:54
164.132.145.22	attackspambots	Brute force VPN server	2020-02-12 15:05:01

最近上报的IP列表

34.149.200.14	110.41.1.245	203.229.88.61	46.44.9.221
121.233.204.205	193.202.83.153	42.243.138.96	223.9.121.176
141.98.84.42	137.184.87.145	45.145.131.250	38.52.160.249
84.54.57.204	23.250.121.236	177.188.228.39	144.168.140.95
149.18.29.197	192.186.186.73	149.18.30.126	149.18.58.192