189.110.142.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.110.142.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.110.142.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 23:51:46 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

42.142.110.189.in-addr.arpa domain name pointer 189-110-142-42.dsl.telesp.net.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.142.110.189.in-addr.arpa	name = 189-110-142-42.dsl.telesp.net.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
187.190.75.54	attackbotsspam	firewall-block, port(s): 8000/tcp	2019-09-06 19:09:20
1.85.49.202	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 03:48:18,942 INFO [shellcode_manager] (1.85.49.202) no match, writing hexdump (5af1e181fef810fc4f0ebd581e889a86 :1851490) - SMB (Unknown)	2019-09-06 18:56:48
217.62.93.81	attackspam	firewall-block, port(s): 80/tcp	2019-09-06 19:05:37
60.191.149.99	attack	Sep 6 05:47:28 h2177944 kernel: \[618245.254662\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=60.191.149.99 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=22019 DF PROTO=TCP SPT=13320 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 6 05:47:35 h2177944 kernel: \[618251.353028\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=60.191.149.99 DST=85.214.117.9 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=32408 DF PROTO=TCP SPT=13320 DPT=65353 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 6 05:49:56 h2177944 kernel: \[618392.679095\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=60.191.149.99 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=27103 DF PROTO=TCP SPT=16410 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 6 05:49:59 h2177944 kernel: \[618395.666618\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=60.191.149.99 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=480 DF PROTO=TCP SPT=16410 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Sep 6 05:50:05 h2177944 kernel: \[618401.671693\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=60.191.149.99 DST=85	2019-09-06 19:25:22
106.13.60.58	attackspam	Sep 6 09:58:45 mail sshd\[7682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.58 Sep 6 09:58:47 mail sshd\[7682\]: Failed password for invalid user m1n3craft from 106.13.60.58 port 46278 ssh2 Sep 6 10:02:32 mail sshd\[8691\]: Invalid user weblogic123 from 106.13.60.58 port 48866 Sep 6 10:02:32 mail sshd\[8691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.58 Sep 6 10:02:34 mail sshd\[8691\]: Failed password for invalid user weblogic123 from 106.13.60.58 port 48866 ssh2	2019-09-06 19:34:59
163.172.138.255	attackbotsspam	163.172.138.255:35050 - - [05/Sep/2019:12:08:28 +0200] "GET /wp-login.php HTTP/1.1" 404 300	2019-09-06 19:28:49
123.152.187.118	attackspambots	" "	2019-09-06 19:36:52
182.107.102.166	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 02:18:09,249 INFO [amun_request_handler] PortScan Detected on Port: 445 (182.107.102.166)	2019-09-06 18:59:43
159.192.197.3	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 02:16:20,022 INFO [amun_request_handler] PortScan Detected on Port: 445 (159.192.197.3)	2019-09-06 19:37:36
134.119.221.7	attack	\[2019-09-06 05:32:14\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-06T05:32:14.371-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="110072746812112996",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/50386",ACLName="no_extension_match" \[2019-09-06 05:36:44\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-06T05:36:44.417-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="4400346812112996",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/59120",ACLName="no_extension_match" \[2019-09-06 05:41:05\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-06T05:41:05.387-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="2200146812112996",SessionID="0x7f7b30414c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/57546",ACLName="n	2019-09-06 19:10:43
220.180.239.104	attackspam	Sep 6 01:38:39 kapalua sshd\[6247\]: Invalid user minecraft from 220.180.239.104 Sep 6 01:38:39 kapalua sshd\[6247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.180.239.104 Sep 6 01:38:41 kapalua sshd\[6247\]: Failed password for invalid user minecraft from 220.180.239.104 port 60326 ssh2 Sep 6 01:43:10 kapalua sshd\[6787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.180.239.104 user=root Sep 6 01:43:12 kapalua sshd\[6787\]: Failed password for root from 220.180.239.104 port 22842 ssh2	2019-09-06 19:44:51
138.97.246.176	attack	Brute force attack to crack SMTP password (port 25 / 587)	2019-09-06 19:27:48
158.69.220.70	attackbots	Sep 6 13:07:14 mail sshd\[4215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.220.70 Sep 6 13:07:16 mail sshd\[4215\]: Failed password for invalid user proxyuser from 158.69.220.70 port 35878 ssh2 Sep 6 13:11:42 mail sshd\[5060\]: Invalid user sysadmin from 158.69.220.70 port 51240 Sep 6 13:11:42 mail sshd\[5060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.220.70 Sep 6 13:11:45 mail sshd\[5060\]: Failed password for invalid user sysadmin from 158.69.220.70 port 51240 ssh2	2019-09-06 19:34:40
212.227.200.232	attackbots	Sep 6 09:53:52 MK-Soft-VM6 sshd\[11479\]: Invalid user 1234qwer from 212.227.200.232 port 40820 Sep 6 09:53:52 MK-Soft-VM6 sshd\[11479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.227.200.232 Sep 6 09:53:54 MK-Soft-VM6 sshd\[11479\]: Failed password for invalid user 1234qwer from 212.227.200.232 port 40820 ssh2 ...	2019-09-06 19:33:07
185.175.93.18	attackspam	09/06/2019-07:00:38.306810 185.175.93.18 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-06 19:02:09

最近上报的IP列表

38.133.129.14	188.31.236.13	71.180.38.172	237.214.227.16
240.112.224.63	44.113.187.42	249.127.212.132	53.6.161.55
216.236.116.56	5.238.139.199	104.233.116.178	95.32.79.218
209.216.120.199	238.232.225.80	207.215.179.108	162.105.33.53
205.32.81.23	177.170.156.194	87.104.149.104	244.220.160.71