142.93.42.24 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - XMLRPC Attack	2020-01-30 09:50:37

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.42.177	attackspambots	2020-04-04T02:21:49.277758linuxbox-skyline sshd[44769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.42.177 user=root 2020-04-04T02:21:51.255638linuxbox-skyline sshd[44769]: Failed password for root from 142.93.42.177 port 46495 ssh2 ...	2020-04-04 16:36:26
142.93.42.177	attack	detected by Fail2Ban	2020-04-01 09:34:29
142.93.42.177	attack	Mar 29 19:32:47 firewall sshd[28503]: Invalid user user from 142.93.42.177 Mar 29 19:32:48 firewall sshd[28503]: Failed password for invalid user user from 142.93.42.177 port 37671 ssh2 Mar 29 19:36:51 firewall sshd[28741]: Invalid user ircbot from 142.93.42.177 ...	2020-03-30 07:30:54
142.93.42.177	attack	Brute force attempt	2020-03-30 02:24:14
142.93.42.177	attack	2020-03-26T01:28:35.732140vps751288.ovh.net sshd\[17612\]: Invalid user kevin from 142.93.42.177 port 56422 2020-03-26T01:28:35.747306vps751288.ovh.net sshd\[17612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.42.177 2020-03-26T01:28:37.788630vps751288.ovh.net sshd\[17612\]: Failed password for invalid user kevin from 142.93.42.177 port 56422 ssh2 2020-03-26T01:37:19.838841vps751288.ovh.net sshd\[17673\]: Invalid user telnetd from 142.93.42.177 port 50708 2020-03-26T01:37:19.849580vps751288.ovh.net sshd\[17673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.42.177	2020-03-26 09:02:41
142.93.42.177	attackbots	Invalid user md from 142.93.42.177 port 45599	2020-03-22 02:31:04
142.93.42.92	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-07-17 22:20:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.42.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.42.24.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013000 1800 900 604800 86400

;; Query time: 164 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 09:50:33 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 24.42.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 24.42.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.131.82.99	attackspam	2019-09-13T21:23:25.407024abusebot-3.cloudsearch.cf sshd\[6966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99 user=root	2019-09-14 05:33:57
81.177.49.160	attackbots	Port Scan: TCP/443	2019-09-14 05:21:03
92.119.179.70	attackbots	SSH-bruteforce attempts	2019-09-14 05:37:06
109.105.0.147	attackspam	Sep 13 18:27:56 Ubuntu-1404-trusty-64-minimal sshd\[28305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.105.0.147 user=root Sep 13 18:27:58 Ubuntu-1404-trusty-64-minimal sshd\[28305\]: Failed password for root from 109.105.0.147 port 37546 ssh2 Sep 13 18:36:02 Ubuntu-1404-trusty-64-minimal sshd\[2760\]: Invalid user ts3server from 109.105.0.147 Sep 13 18:36:03 Ubuntu-1404-trusty-64-minimal sshd\[2760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.105.0.147 Sep 13 18:36:04 Ubuntu-1404-trusty-64-minimal sshd\[2760\]: Failed password for invalid user ts3server from 109.105.0.147 port 47494 ssh2	2019-09-14 04:57:32
142.93.251.1	attackbots	Sep 13 23:19:06 eventyay sshd[9043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1 Sep 13 23:19:08 eventyay sshd[9043]: Failed password for invalid user rust from 142.93.251.1 port 32806 ssh2 Sep 13 23:23:32 eventyay sshd[9125]: Failed password for root from 142.93.251.1 port 50628 ssh2 ...	2019-09-14 05:30:05
216.250.125.110	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-13 10:50:00,174 INFO [amun_request_handler] PortScan Detected on Port: 445 (216.250.125.110)	2019-09-14 05:18:18
117.215.39.156	attack	Unauthorised access (Sep 14) SRC=117.215.39.156 LEN=40 TOS=0x08 TTL=50 ID=13277 TCP DPT=23 WINDOW=51703 SYN	2019-09-14 05:33:00
157.230.214.150	attack	$f2bV_matches	2019-09-14 05:10:27
77.81.234.139	attackbotsspam	Sep 13 22:35:14 bouncer sshd\[20338\]: Invalid user 1qaz2wsx from 77.81.234.139 port 56662 Sep 13 22:35:14 bouncer sshd\[20338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.234.139 Sep 13 22:35:17 bouncer sshd\[20338\]: Failed password for invalid user 1qaz2wsx from 77.81.234.139 port 56662 ssh2 ...	2019-09-14 05:07:08
166.62.125.130	attack	WordPress brute force	2019-09-14 05:18:52
185.62.85.150	attack	Sep 13 23:18:42 markkoudstaal sshd[4753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.85.150 Sep 13 23:18:45 markkoudstaal sshd[4753]: Failed password for invalid user ts3server from 185.62.85.150 port 37594 ssh2 Sep 13 23:23:18 markkoudstaal sshd[5193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.85.150	2019-09-14 05:38:14
148.70.246.130	attackspambots	Unauthorized SSH login attempts	2019-09-14 05:14:15
122.160.96.175	attack	[portscan] Port scan	2019-09-14 05:09:23
81.171.58.72	attack	\[2019-09-13 16:41:25\] NOTICE\[20685\] chan_sip.c: Registration from '\' failed for '81.171.58.72:56754' - Wrong password \[2019-09-13 16:41:25\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-13T16:41:25.281-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9143",SessionID="0x7f8a6c255a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.58.72/56754",Challenge="376670ac",ReceivedChallenge="376670ac",ReceivedHash="434faa32ad2bc81725ec401c7deb8fbf" \[2019-09-13 16:41:44\] NOTICE\[20685\] chan_sip.c: Registration from '\' failed for '81.171.58.72:64344' - Wrong password \[2019-09-13 16:41:44\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-13T16:41:44.033-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7429",SessionID="0x7f8a6c830888",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.5	2019-09-14 05:06:40
203.69.6.190	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-09-14 05:24:15

最近上报的IP列表

116.11.158.230	5.237.29.180	201.210.9.235	51.79.84.92
41.148.30.2	180.150.7.159	121.199.37.87	113.180.7.255
220.181.108.94	73.32.140.239	188.35.21.217	106.12.117.161
213.118.227.234	176.113.115.83	122.51.69.124	158.199.72.24
35.153.47.222	14.139.171.130	118.232.206.75	45.180.121.54