142.93.132.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-29 07:31:55

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.132.221	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-30 05:51:26
142.93.132.221	attack	Found on CINS badguys / proto=6 . srcport=45085 . dstport=2375 . (745)	2020-09-29 22:02:58
142.93.132.221	attack	Port scanning [2 denied]	2020-09-29 14:19:04
142.93.132.119	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-04-23 03:32:10
142.93.132.119	attackspam	Apr 17 17:51:11 h2034429 sshd[32346]: Invalid user ou from 142.93.132.119 Apr 17 17:51:11 h2034429 sshd[32346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.132.119 Apr 17 17:51:13 h2034429 sshd[32346]: Failed password for invalid user ou from 142.93.132.119 port 42424 ssh2 Apr 17 17:51:13 h2034429 sshd[32346]: Received disconnect from 142.93.132.119 port 42424:11: Bye Bye [preauth] Apr 17 17:51:13 h2034429 sshd[32346]: Disconnected from 142.93.132.119 port 42424 [preauth] Apr 17 18:01:08 h2034429 sshd[32535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.132.119 user=r.r Apr 17 18:01:09 h2034429 sshd[32535]: Failed password for r.r from 142.93.132.119 port 38812 ssh2 Apr 17 18:01:09 h2034429 sshd[32535]: Received disconnect from 142.93.132.119 port 38812:11: Bye Bye [preauth] Apr 17 18:01:09 h2034429 sshd[32535]: Disconnected from 142.93.132.119 port 38812 [preauth] ........ ---------------------------------	2020-04-18 04:24:40
142.93.132.21	attackspam	...	2020-02-02 04:09:35
142.93.132.21	attack	465/tcp 587/tcp... [2019-10-11/22]36pkt,3pt.(tcp)	2019-10-23 07:25:56
142.93.132.28	attackbotsspam	142.93.132.28 - - [18/Oct/2019:12:41:32 +0300] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 142.93.132.28 - - [18/Oct/2019:12:41:32 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 142.93.132.28 - - [18/Oct/2019:12:41:32 +0300] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 142.93.132.28 - - [18/Oct/2019:12:41:32 +0300] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" ...	2019-10-18 21:44:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.132.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5650
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.132.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082802 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 07:31:50 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

42.132.93.142.in-addr.arpa domain name pointer min-do-nl-07-16-24004-b-dev.binaryedge.ninja.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
42.132.93.142.in-addr.arpa	name = min-do-nl-07-16-24004-b-dev.binaryedge.ninja.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.82.231	attackspambots	Sep 28 08:41:13 fhem-rasp sshd[13400]: Invalid user usuario from 106.13.82.231 port 43570 ...	2020-09-28 19:18:42
115.159.106.132	attackbotsspam	Time: Mon Sep 28 08:54:21 2020 +0000 IP: 115.159.106.132 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 08:25:38 1 sshd[4455]: Invalid user userftp from 115.159.106.132 port 33680 Sep 28 08:25:39 1 sshd[4455]: Failed password for invalid user userftp from 115.159.106.132 port 33680 ssh2 Sep 28 08:49:59 1 sshd[5128]: Invalid user jinzhenj from 115.159.106.132 port 47898 Sep 28 08:50:01 1 sshd[5128]: Failed password for invalid user jinzhenj from 115.159.106.132 port 47898 ssh2 Sep 28 08:54:17 1 sshd[5241]: Did not receive identification string from 115.159.106.132 port 48638	2020-09-28 18:57:08
51.83.110.20	attack	Sep 28 09:57:10 ift sshd\[59393\]: Failed password for root from 51.83.110.20 port 59866 ssh2Sep 28 10:01:36 ift sshd\[60341\]: Invalid user bot2 from 51.83.110.20Sep 28 10:01:38 ift sshd\[60341\]: Failed password for invalid user bot2 from 51.83.110.20 port 42786 ssh2Sep 28 10:06:14 ift sshd\[60837\]: Invalid user openstack from 51.83.110.20Sep 28 10:06:16 ift sshd\[60837\]: Failed password for invalid user openstack from 51.83.110.20 port 53942 ssh2 ...	2020-09-28 19:20:47
139.155.9.86	attackspambots	Sep 28 00:08:14 george sshd[7561]: Invalid user gituser from 139.155.9.86 port 50696 Sep 28 00:08:14 george sshd[7561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.9.86 Sep 28 00:08:16 george sshd[7561]: Failed password for invalid user gituser from 139.155.9.86 port 50696 ssh2 Sep 28 00:11:37 george sshd[7727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.9.86 user=root Sep 28 00:11:38 george sshd[7727]: Failed password for root from 139.155.9.86 port 55682 ssh2 ...	2020-09-28 18:54:09
82.196.9.161	attack	Invalid user internet from 82.196.9.161 port 35600	2020-09-28 18:46:37
59.127.152.203	attack	Invalid user pippo from 59.127.152.203 port 46174	2020-09-28 19:22:48
183.109.124.137	attackspam	2020-09-28T12:56:34.591651paragon sshd[474653]: Invalid user mukesh from 183.109.124.137 port 23368 2020-09-28T12:56:34.595802paragon sshd[474653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.124.137 2020-09-28T12:56:34.591651paragon sshd[474653]: Invalid user mukesh from 183.109.124.137 port 23368 2020-09-28T12:56:36.235677paragon sshd[474653]: Failed password for invalid user mukesh from 183.109.124.137 port 23368 ssh2 2020-09-28T12:58:11.356031paragon sshd[474667]: Invalid user Redistoor from 183.109.124.137 port 36268 ...	2020-09-28 19:08:09
37.221.182.180	attackbotsspam	Sep 27 22:48:56 master sshd[30333]: Failed password for invalid user admin from 37.221.182.180 port 54378 ssh2 Sep 27 22:49:01 master sshd[30337]: Failed password for invalid user admin from 37.221.182.180 port 54379 ssh2	2020-09-28 19:07:52
51.83.42.212	attackspam	2020-09-28T06:26:44.546626mail.thespaminator.com sshd[30770]: Invalid user jordan from 51.83.42.212 port 60602 2020-09-28T06:26:47.947736mail.thespaminator.com sshd[30770]: Failed password for invalid user jordan from 51.83.42.212 port 60602 ssh2 ...	2020-09-28 19:10:56
120.53.246.226	attack	Sep 28 12:37:10 srv-ubuntu-dev3 sshd[73397]: Invalid user ts3user from 120.53.246.226 Sep 28 12:37:10 srv-ubuntu-dev3 sshd[73397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.246.226 Sep 28 12:37:10 srv-ubuntu-dev3 sshd[73397]: Invalid user ts3user from 120.53.246.226 Sep 28 12:37:12 srv-ubuntu-dev3 sshd[73397]: Failed password for invalid user ts3user from 120.53.246.226 port 59456 ssh2 Sep 28 12:40:55 srv-ubuntu-dev3 sshd[73837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.246.226 user=root Sep 28 12:40:57 srv-ubuntu-dev3 sshd[73837]: Failed password for root from 120.53.246.226 port 43156 ssh2 Sep 28 12:44:46 srv-ubuntu-dev3 sshd[74288]: Invalid user apps from 120.53.246.226 Sep 28 12:44:46 srv-ubuntu-dev3 sshd[74288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.246.226 Sep 28 12:44:46 srv-ubuntu-dev3 sshd[74288]: Invalid user apps ...	2020-09-28 18:51:30
91.144.162.118	attackbotsspam	Triggered by Fail2Ban at Ares web server	2020-09-28 18:49:00
182.162.17.51	attackbotsspam	Automatic report - Banned IP Access	2020-09-28 19:08:38
109.194.166.11	attackbotsspam	Sep 28 01:49:55 game-panel sshd[28232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.166.11 Sep 28 01:49:57 game-panel sshd[28232]: Failed password for invalid user vbox from 109.194.166.11 port 45906 ssh2 Sep 28 01:52:30 game-panel sshd[28411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.166.11	2020-09-28 19:09:37
175.205.111.109	attack	$f2bV_matches	2020-09-28 19:16:30
106.75.247.206	attackbotsspam	Sep 28 06:12:59 nextcloud sshd\[2398\]: Invalid user template from 106.75.247.206 Sep 28 06:12:59 nextcloud sshd\[2398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.247.206 Sep 28 06:13:01 nextcloud sshd\[2398\]: Failed password for invalid user template from 106.75.247.206 port 48630 ssh2	2020-09-28 19:24:00

最近上报的IP列表

146.196.65.53	41.33.39.221	41.193.31.24	80.211.245.183
177.155.93.220	18.191.66.14	62.234.144.135	212.59.17.180
203.81.134.221	216.169.110.222	209.251.19.199	224.101.203.125
190.210.7.1	206.189.76.64	66.84.95.95	116.208.202.62
66.84.95.104	190.111.239.219	66.84.89.109	121.27.204.195