42.118.242.189

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Oct 11 18:42:13 v2202009116398126984 sshd[2503456]: Invalid user tc from 42.118.242.189 port 38456 ...	2020-10-12 03:26:02
attack	<6 unauthorized SSH connections	2020-10-11 19:19:43
attack	SSH Brute Force	2020-09-26 07:08:26
attackbots	[f2b] sshd bruteforce, retries: 1	2020-09-26 00:17:30
attack	Sep 24 20:07:29 eddieflores sshd\[727\]: Invalid user mongodb from 42.118.242.189 Sep 24 20:07:29 eddieflores sshd\[727\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Sep 24 20:07:31 eddieflores sshd\[727\]: Failed password for invalid user mongodb from 42.118.242.189 port 54030 ssh2 Sep 24 20:11:56 eddieflores sshd\[1224\]: Invalid user ubuntu from 42.118.242.189 Sep 24 20:11:56 eddieflores sshd\[1224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189	2020-09-25 15:53:24
attackspam	Sep 14 07:55:25 email sshd\[10982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Sep 14 07:55:28 email sshd\[10982\]: Failed password for root from 42.118.242.189 port 45400 ssh2 Sep 14 07:58:19 email sshd\[11496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Sep 14 07:58:21 email sshd\[11496\]: Failed password for root from 42.118.242.189 port 54410 ssh2 Sep 14 08:01:10 email sshd\[12020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root ...	2020-09-14 16:13:46
attackspambots	Sep 9 10:02:47 firewall sshd[22715]: Invalid user admin from 42.118.242.189 Sep 9 10:02:48 firewall sshd[22715]: Failed password for invalid user admin from 42.118.242.189 port 44148 ssh2 Sep 9 10:06:28 firewall sshd[22821]: Invalid user packer from 42.118.242.189 ...	2020-09-10 01:54:22
attack	Invalid user test from 42.118.242.189 port 34510	2020-09-05 03:44:40
attackspam	Time: Fri Sep 4 07:01:04 2020 -0400 IP: 42.118.242.189 (VN/Vietnam/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 06:54:47 pv-11-ams1 sshd[18957]: Invalid user student from 42.118.242.189 port 60934 Sep 4 06:54:50 pv-11-ams1 sshd[18957]: Failed password for invalid user student from 42.118.242.189 port 60934 ssh2 Sep 4 06:58:28 pv-11-ams1 sshd[19186]: Invalid user website from 42.118.242.189 port 51436 Sep 4 06:58:30 pv-11-ams1 sshd[19186]: Failed password for invalid user website from 42.118.242.189 port 51436 ssh2 Sep 4 07:00:59 pv-11-ams1 sshd[19358]: Invalid user lixiang from 42.118.242.189 port 60026	2020-09-04 19:14:22
attackspambots	2020-08-22T16:57:08+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-23 00:10:04
attackspam	Aug 21 11:48:28 hosting sshd[24604]: Invalid user daniel from 42.118.242.189 port 54004 ...	2020-08-21 16:53:23
attackbots	Aug 17 16:11:53 sso sshd[8561]: Failed password for root from 42.118.242.189 port 58054 ssh2 Aug 17 16:16:35 sso sshd[9120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 ...	2020-08-17 23:06:45
attackspambots	Aug 16 16:05:11 [host] sshd[12689]: pam_unix(sshd: Aug 16 16:05:13 [host] sshd[12689]: Failed passwor Aug 16 16:10:08 [host] sshd[13145]: Invalid user y	2020-08-16 22:55:11
attackbotsspam	Aug 8 14:55:38 piServer sshd[27628]: Failed password for root from 42.118.242.189 port 40592 ssh2 Aug 8 14:58:31 piServer sshd[27874]: Failed password for root from 42.118.242.189 port 50044 ssh2 ...	2020-08-09 02:46:26
attackspam	2020-07-31T06:11:31.991834linuxbox-skyline sshd[119933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root 2020-07-31T06:11:34.395057linuxbox-skyline sshd[119933]: Failed password for root from 42.118.242.189 port 42478 ssh2 ...	2020-07-31 20:18:54
attackbots	Jul 29 12:07:28 vlre-nyc-1 sshd\[5729\]: Invalid user liuguihua from 42.118.242.189 Jul 29 12:07:28 vlre-nyc-1 sshd\[5729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Jul 29 12:07:29 vlre-nyc-1 sshd\[5729\]: Failed password for invalid user liuguihua from 42.118.242.189 port 38552 ssh2 Jul 29 12:13:50 vlre-nyc-1 sshd\[5873\]: Invalid user zgb from 42.118.242.189 Jul 29 12:13:50 vlre-nyc-1 sshd\[5873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 ...	2020-07-29 20:41:49
attack	Jul 12 14:51:41 jane sshd[31678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Jul 12 14:51:42 jane sshd[31678]: Failed password for invalid user tianhj from 42.118.242.189 port 52834 ssh2 ...	2020-07-13 00:23:40
attack	Invalid user oracle from 42.118.242.189 port 43374	2020-06-28 15:03:32
attackbotsspam	Jun 26 18:49:35 rush sshd[15555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Jun 26 18:49:37 rush sshd[15555]: Failed password for invalid user seth from 42.118.242.189 port 59264 ssh2 Jun 26 18:52:49 rush sshd[15632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 ...	2020-06-27 03:02:27
attackspambots	Jun 13 06:50:30 prox sshd[15123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Jun 13 06:50:32 prox sshd[15123]: Failed password for invalid user ftpuser from 42.118.242.189 port 38450 ssh2	2020-06-13 13:33:23
attackbotsspam	Jun 7 14:05:36 vps sshd[39214]: Failed password for root from 42.118.242.189 port 60618 ssh2 Jun 7 14:06:25 vps sshd[42281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Jun 7 14:06:27 vps sshd[42281]: Failed password for root from 42.118.242.189 port 42412 ssh2 Jun 7 14:07:14 vps sshd[45290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Jun 7 14:07:16 vps sshd[45290]: Failed password for root from 42.118.242.189 port 52434 ssh2 ...	2020-06-07 22:28:17
attack	" "	2020-05-31 19:01:16
attackbotsspam	May 16 04:44:17 electroncash sshd[12948]: Invalid user fx from 42.118.242.189 port 48410 May 16 04:44:18 electroncash sshd[12948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 May 16 04:44:17 electroncash sshd[12948]: Invalid user fx from 42.118.242.189 port 48410 May 16 04:44:19 electroncash sshd[12948]: Failed password for invalid user fx from 42.118.242.189 port 48410 ssh2 May 16 04:49:17 electroncash sshd[14288]: Invalid user scan from 42.118.242.189 port 55652 ...	2020-05-16 17:16:08
attackbotsspam	Apr 29 19:24:43 host sshd[13188]: Invalid user antena from 42.118.242.189 port 49202 ...	2020-04-30 03:43:07
attackspambots	Apr 15 07:17:05: Invalid user zte from 42.118.242.189 port 36020	2020-04-16 06:04:39
attackspambots	Apr 5 19:49:53 webhost01 sshd[32689]: Failed password for root from 42.118.242.189 port 56962 ssh2 ...	2020-04-05 21:09:06
attackspambots	Brute-force attempt banned	2020-03-26 18:23:57
attack	$f2bV_matches	2020-03-23 03:28:41
attackbots	2020-03-19T14:45:15.346895shield sshd\[3623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root 2020-03-19T14:45:16.873836shield sshd\[3623\]: Failed password for root from 42.118.242.189 port 43474 ssh2 2020-03-19T14:47:45.636481shield sshd\[4444\]: Invalid user openbravo from 42.118.242.189 port 58724 2020-03-19T14:47:45.645368shield sshd\[4444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 2020-03-19T14:47:47.435910shield sshd\[4444\]: Failed password for invalid user openbravo from 42.118.242.189 port 58724 ssh2	2020-03-19 22:48:43
attackbots	2020-03-08T00:27:55.473364vps751288.ovh.net sshd\[21037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root 2020-03-08T00:27:57.600213vps751288.ovh.net sshd\[21037\]: Failed password for root from 42.118.242.189 port 56236 ssh2 2020-03-08T00:32:45.263523vps751288.ovh.net sshd\[21052\]: Invalid user deploy from 42.118.242.189 port 35102 2020-03-08T00:32:45.271938vps751288.ovh.net sshd\[21052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 2020-03-08T00:32:47.208352vps751288.ovh.net sshd\[21052\]: Failed password for invalid user deploy from 42.118.242.189 port 35102 ssh2	2020-03-08 08:26:42

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.118.242.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62151
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.118.242.189.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 21:43:43 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 189.242.118.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.242.118.42.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
157.230.57.112	attackspam	firewall-block, port(s): 2668/tcp	2019-08-09 17:40:15
101.2.154.147	attack	23/tcp 23/tcp 23/tcp [2019-08-09]3pkt	2019-08-09 17:00:57
209.150.146.33	attackspam	445/tcp [2019-08-09]1pkt	2019-08-09 17:11:50
89.46.107.166	attack	xmlrpc attack	2019-08-09 17:09:43
46.252.205.162	attackbots	xmlrpc attack	2019-08-09 16:59:12
181.22.114.22	attack	Brute force attempt	2019-08-09 17:06:06
114.237.109.89	attackbots	$f2bV_matches	2019-08-09 17:04:05
27.116.53.132	attackbotsspam	Web Probe / Attack	2019-08-09 16:56:07
74.12.189.89	attackspam	9000/tcp [2019-08-09]1pkt	2019-08-09 16:54:35
117.218.197.250	attack	firewall-block, port(s): 445/tcp	2019-08-09 17:54:09
103.65.182.29	attack	Aug 9 12:42:37 yabzik sshd[9443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.65.182.29 Aug 9 12:42:40 yabzik sshd[9443]: Failed password for invalid user jules from 103.65.182.29 port 35817 ssh2 Aug 9 12:48:15 yabzik sshd[11084]: Failed password for root from 103.65.182.29 port 58328 ssh2	2019-08-09 17:54:38
86.56.81.242	attackbotsspam	2019-08-09T08:41:12.664487hub.schaetter.us sshd\[19426\]: Invalid user wade from 86.56.81.242 2019-08-09T08:41:12.701760hub.schaetter.us sshd\[19426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-86-56-81-242.cust.telecolumbus.net 2019-08-09T08:41:13.505489hub.schaetter.us sshd\[19428\]: Invalid user wade from 86.56.81.242 2019-08-09T08:41:13.543188hub.schaetter.us sshd\[19428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-86-56-81-242.cust.telecolumbus.net 2019-08-09T08:41:14.608419hub.schaetter.us sshd\[19426\]: Failed password for invalid user wade from 86.56.81.242 port 55943 ssh2 ...	2019-08-09 17:19:57
157.55.39.6	attack	Automatic report - Banned IP Access	2019-08-09 16:52:41
181.189.128.2	attackspam	445/tcp [2019-08-09]1pkt	2019-08-09 16:51:32
103.125.190.108	attackspam	>20 unauthorized SSH connections	2019-08-09 17:05:41

最近上报的IP列表

192.236.160.81	104.245.93.67	217.112.128.70	63.88.23.206
62.210.79.57	193.111.78.56	41.193.122.77	45.125.193.123
221.204.232.43	216.246.49.112	91.149.210.144	212.253.26.225
159.89.131.55	220.142.170.215	103.103.131.3	187.163.103.127
190.213.218.32	35.198.246.47	146.255.74.86	69.94.136.234