42.112.93.237 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-31 04:16:15

相同子网IP讨论:

IP	类型	评论内容	时间
42.112.93.142	attackbotsspam	Unauthorized connection attempt from IP address 42.112.93.142 on Port 445(SMB)	2020-07-15 19:05:53
42.112.93.44	attackspam	Unauthorised access (May 5) SRC=42.112.93.44 LEN=52 TTL=107 ID=21619 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-05 10:46:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.93.237
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33295
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.93.237.			IN	A

;; AUTHORITY SECTION:
.			433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033001 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 04:16:11 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 237.93.112.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 237.93.112.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
122.51.217.131	attackspambots	Feb 5 02:52:50 firewall sshd[29744]: Invalid user upnetBGP from 122.51.217.131 Feb 5 02:52:52 firewall sshd[29744]: Failed password for invalid user upnetBGP from 122.51.217.131 port 52558 ssh2 Feb 5 02:57:01 firewall sshd[29910]: Invalid user uu from 122.51.217.131 ...	2020-02-05 15:23:25
79.137.77.131	attackbotsspam	Feb 4 20:08:46 auw2 sshd\[964\]: Invalid user tesuser from 79.137.77.131 Feb 4 20:08:46 auw2 sshd\[964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.ip-79-137-77.eu Feb 4 20:08:48 auw2 sshd\[964\]: Failed password for invalid user tesuser from 79.137.77.131 port 50140 ssh2 Feb 4 20:11:26 auw2 sshd\[1293\]: Invalid user hamish from 79.137.77.131 Feb 4 20:11:26 auw2 sshd\[1293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.ip-79-137-77.eu	2020-02-05 15:05:01
185.216.140.6	attack	firewall-block, port(s): 8083/tcp	2020-02-05 15:29:47
181.122.239.166	attackspambots	Unauthorized connection attempt detected from IP address 181.122.239.166 to port 80 [J]	2020-02-05 15:52:00
125.162.176.124	attackbotsspam	20/2/4@23:52:13: FAIL: Alarm-SSH address from=125.162.176.124 ...	2020-02-05 15:24:35
195.2.93.162	attack	Port scan on 3 port(s): 3304 4545 61389	2020-02-05 15:35:35
168.232.169.195	attack	IMAP brute force ...	2020-02-05 15:16:17
112.85.42.182	attack	Feb 4 21:35:35 auw2 sshd\[9309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Feb 4 21:35:37 auw2 sshd\[9309\]: Failed password for root from 112.85.42.182 port 24543 ssh2 Feb 4 21:35:47 auw2 sshd\[9309\]: Failed password for root from 112.85.42.182 port 24543 ssh2 Feb 4 21:35:50 auw2 sshd\[9309\]: Failed password for root from 112.85.42.182 port 24543 ssh2 Feb 4 21:35:55 auw2 sshd\[9348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root	2020-02-05 15:48:33
118.98.43.121	attack	Feb 4 23:45:06 debian sshd[4593]: Unable to negotiate with 118.98.43.121 port 57353: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Feb 5 00:38:18 debian sshd[7331]: Unable to negotiate with 118.98.43.121 port 57353: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-02-05 15:08:56
218.92.0.172	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Failed password for root from 218.92.0.172 port 10069 ssh2 Failed password for root from 218.92.0.172 port 10069 ssh2 Failed password for root from 218.92.0.172 port 10069 ssh2 Failed password for root from 218.92.0.172 port 10069 ssh2	2020-02-05 15:31:21
177.5.190.60	attackbotsspam	Feb 5 05:52:13 grey postfix/smtpd\[26510\]: NOQUEUE: reject: RCPT from unknown\[177.5.190.60\]: 554 5.7.1 Service unavailable\; Client host \[177.5.190.60\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=177.5.190.60\; from=\ to=\<20120511145716.18177t1eh8odvik0@mail.ajrg.hu\> proto=ESMTP helo=\<\[177.5.190.60\]\> ...	2020-02-05 15:23:58
103.245.181.2	attackbotsspam	Unauthorized connection attempt detected from IP address 103.245.181.2 to port 2220 [J]	2020-02-05 15:18:52
87.197.126.24	attackbots	Feb 5 06:41:25 srv01 sshd[20149]: Invalid user admin from 87.197.126.24 port 37633 Feb 5 06:41:26 srv01 sshd[20149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.197.126.24 Feb 5 06:41:25 srv01 sshd[20149]: Invalid user admin from 87.197.126.24 port 37633 Feb 5 06:41:28 srv01 sshd[20149]: Failed password for invalid user admin from 87.197.126.24 port 37633 ssh2 Feb 5 06:41:26 srv01 sshd[20149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.197.126.24 Feb 5 06:41:25 srv01 sshd[20149]: Invalid user admin from 87.197.126.24 port 37633 Feb 5 06:41:28 srv01 sshd[20149]: Failed password for invalid user admin from 87.197.126.24 port 37633 ssh2 ...	2020-02-05 15:04:26
49.235.144.143	attackspam	Feb 4 21:07:27 web9 sshd\[27078\]: Invalid user ca from 49.235.144.143 Feb 4 21:07:27 web9 sshd\[27078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 Feb 4 21:07:28 web9 sshd\[27078\]: Failed password for invalid user ca from 49.235.144.143 port 59282 ssh2 Feb 4 21:11:03 web9 sshd\[27590\]: Invalid user caresse from 49.235.144.143 Feb 4 21:11:03 web9 sshd\[27590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143	2020-02-05 15:40:03
175.24.14.69	attack	Unauthorized connection attempt detected from IP address 175.24.14.69 to port 2220 [J]	2020-02-05 15:52:36

最近上报的IP列表

134.176.78.54	104.233.13.234	229.126.173.81	232.247.211.153
139.180.210.42	223.146.138.27	194.74.11.237	213.208.11.180
90.42.20.21	62.192.60.74	97.148.112.186	14.249.160.26
109.136.7.32	45.133.99.8	172.115.181.150	114.82.254.104
50.101.52.165	27.71.204.172	23.21.135.197	117.0.194.41

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表