142.67.130.47 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.67.130.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.67.130.47.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 14:44:06 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

47.130.67.142.in-addr.arpa domain name pointer host-142-67-130-47.public.eastlink.ca.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
47.130.67.142.in-addr.arpa	name = host-142-67-130-47.public.eastlink.ca.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
37.59.123.166	attack	SSH brute-force attempt	2020-05-14 03:18:30
192.241.151.77	attackbots	192.241.151.77 - - [13/May/2020:14:32:50 +0200] "GET /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.241.151.77 - - [13/May/2020:14:32:51 +0200] "POST /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.241.151.77 - - [13/May/2020:14:32:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-14 03:16:02
89.106.108.212	attackspam	Brute force SMTP login attempted. ...	2020-05-14 03:03:51
178.79.32.15	attack	May 13 14:33:03 server postfix/smtpd[11079]: NOQUEUE: reject: RCPT from unknown[178.79.32.15]: 554 5.7.1 Service unavailable; Client host [178.79.32.15] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/178.79.32.15 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[178.79.32.15]>	2020-05-14 03:02:39
91.137.251.1	attackspambots	May 13 14:14:13 mail.srvfarm.net postfix/smtps/smtpd[553477]: warning: unknown[91.137.251.1]: SASL PLAIN authentication failed: May 13 14:14:13 mail.srvfarm.net postfix/smtps/smtpd[553477]: lost connection after AUTH from unknown[91.137.251.1] May 13 14:18:52 mail.srvfarm.net postfix/smtps/smtpd[553477]: warning: unknown[91.137.251.1]: SASL PLAIN authentication failed: May 13 14:18:52 mail.srvfarm.net postfix/smtps/smtpd[553477]: lost connection after AUTH from unknown[91.137.251.1] May 13 14:19:42 mail.srvfarm.net postfix/smtps/smtpd[553681]: warning: unknown[91.137.251.1]: SASL PLAIN authentication failed:	2020-05-14 02:52:18
158.69.170.5	attackbots	May 13 16:45:20 ns382633 sshd\[6315\]: Invalid user ubuntu from 158.69.170.5 port 49568 May 13 16:45:20 ns382633 sshd\[6315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.170.5 May 13 16:45:22 ns382633 sshd\[6315\]: Failed password for invalid user ubuntu from 158.69.170.5 port 49568 ssh2 May 13 16:50:36 ns382633 sshd\[7346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.170.5 user=root May 13 16:50:38 ns382633 sshd\[7346\]: Failed password for root from 158.69.170.5 port 41164 ssh2	2020-05-14 02:37:54
116.111.12.236	attackbots	20/5/13@09:08:57: FAIL: Alarm-Network address from=116.111.12.236 20/5/13@09:08:57: FAIL: Alarm-Network address from=116.111.12.236 ...	2020-05-14 02:38:19
113.212.160.18	attackbots	May 13 14:10:30 mail.srvfarm.net postfix/smtps/smtpd[553711]: warning: unknown[113.212.160.18]: SASL PLAIN authentication failed: May 13 14:10:30 mail.srvfarm.net postfix/smtps/smtpd[553711]: lost connection after AUTH from unknown[113.212.160.18] May 13 14:11:41 mail.srvfarm.net postfix/smtps/smtpd[553714]: warning: unknown[113.212.160.18]: SASL PLAIN authentication failed: May 13 14:11:41 mail.srvfarm.net postfix/smtps/smtpd[553714]: lost connection after AUTH from unknown[113.212.160.18] May 13 14:15:43 mail.srvfarm.net postfix/smtps/smtpd[553680]: warning: unknown[113.212.160.18]: SASL PLAIN authentication failed:	2020-05-14 02:49:32
159.65.144.36	attackspambots	May 13 20:09:13 plex sshd[29695]: Invalid user geobox from 159.65.144.36 port 37170	2020-05-14 02:47:48
200.66.82.250	attackbots	web-1 [ssh] SSH Attack	2020-05-14 03:12:19
83.97.20.35	attackbots	Port scan on 5 port(s): 11 789 3780 4949 6667	2020-05-14 02:35:31
152.136.39.46	attackbotsspam	2020-05-13T16:44:51.825071vps751288.ovh.net sshd\[22846\]: Invalid user admin from 152.136.39.46 port 35254 2020-05-13T16:44:51.835742vps751288.ovh.net sshd\[22846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.39.46 2020-05-13T16:44:54.235737vps751288.ovh.net sshd\[22846\]: Failed password for invalid user admin from 152.136.39.46 port 35254 ssh2 2020-05-13T16:50:59.065578vps751288.ovh.net sshd\[22884\]: Invalid user viktor from 152.136.39.46 port 41826 2020-05-13T16:50:59.074444vps751288.ovh.net sshd\[22884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.39.46	2020-05-14 03:09:11
158.101.29.207	attackbots	SSH brute-force: detected 10 distinct usernames within a 24-hour window.	2020-05-14 03:15:48
191.53.194.74	attackspambots	May 13 14:27:06 mail.srvfarm.net postfix/smtps/smtpd[553711]: warning: unknown[191.53.194.74]: SASL PLAIN authentication failed: May 13 14:27:07 mail.srvfarm.net postfix/smtps/smtpd[553711]: lost connection after AUTH from unknown[191.53.194.74] May 13 14:29:44 mail.srvfarm.net postfix/smtpd[553606]: warning: unknown[191.53.194.74]: SASL PLAIN authentication failed: May 13 14:29:45 mail.srvfarm.net postfix/smtpd[553606]: lost connection after AUTH from unknown[191.53.194.74] May 13 14:31:10 mail.srvfarm.net postfix/smtpd[556030]: warning: unknown[191.53.194.74]: SASL PLAIN authentication failed:	2020-05-14 02:42:35
54.36.150.89	attackspam	[Thu May 14 00:05:19.059881 2020] [:error] [pid 32715:tid 140411486693120] [client 54.36.150.89:36366] [client 54.36.150.89] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "AhrefsBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: AhrefsBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; ahrefsbot/6.1; +http://ahrefs.com/robot/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/1509-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpa ...	2020-05-14 02:38:35

最近上报的IP列表

194.122.18.146	203.133.154.84	250.102.217.152	142.119.247.136
66.255.15.193	254.136.21.255	180.148.153.209	196.248.134.244
252.174.72.123	23.22.26.43	46.173.158.162	213.134.159.96
84.108.247.66	115.115.109.224	184.209.232.228	82.28.204.255
126.239.237.11	145.81.225.254	150.205.4.234	241.128.25.215