42.2.132.108 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	$f2bV_matches	2020-06-13 19:04:35

相同子网IP讨论:

IP	类型	评论内容	时间
42.2.132.131	attackbotsspam	Bruteforce detected by fail2ban	2020-04-29 20:20:12
42.2.132.131	attackspam	Feb 8 04:06:46 XXX sshd[10564]: Invalid user jvn from 42.2.132.131 port 43384	2020-02-08 13:11:20
42.2.132.131	attack	Jan 26 05:46:20 MainVPS sshd[13796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131 user=root Jan 26 05:46:22 MainVPS sshd[13796]: Failed password for root from 42.2.132.131 port 60990 ssh2 Jan 26 05:51:47 MainVPS sshd[24247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131 user=root Jan 26 05:51:49 MainVPS sshd[24247]: Failed password for root from 42.2.132.131 port 45388 ssh2 Jan 26 05:55:02 MainVPS sshd[30728]: Invalid user raisa from 42.2.132.131 port 47818 ...	2020-01-26 13:15:10

类型

评论内容

时间

42.2.132.131

attackbotsspam

Bruteforce detected by fail2ban

2020-04-29 20:20:12

42.2.132.131

attackspam

Feb  8 04:06:46 XXX sshd[10564]: Invalid user jvn from 42.2.132.131 port 43384

2020-02-08 13:11:20

42.2.132.131

attack

Jan 26 05:46:20 MainVPS sshd[13796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131  user=root
Jan 26 05:46:22 MainVPS sshd[13796]: Failed password for root from 42.2.132.131 port 60990 ssh2
Jan 26 05:51:47 MainVPS sshd[24247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131  user=root
Jan 26 05:51:49 MainVPS sshd[24247]: Failed password for root from 42.2.132.131 port 45388 ssh2
Jan 26 05:55:02 MainVPS sshd[30728]: Invalid user raisa from 42.2.132.131 port 47818
...

2020-01-26 13:15:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.132.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56422
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.132.108.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060800 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 21:25:20 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

108.132.2.42.in-addr.arpa domain name pointer 42-2-132-108.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
108.132.2.42.in-addr.arpa	name = 42-2-132-108.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.77.146.136	attackspam	Aug 19 12:20:20 rpi sshd[25966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.146.136 Aug 19 12:20:22 rpi sshd[25966]: Failed password for invalid user scanner from 51.77.146.136 port 50822 ssh2	2019-08-19 18:41:30
182.253.205.29	attack	[portscan] tcp/139 [NetBIOS Session Service] *(RWIN=1024)(08191236)	2019-08-19 18:43:39
104.131.178.223	attackspambots	F2B jail: sshd. Time: 2019-08-19 10:46:53, Reported by: VKReport	2019-08-19 18:54:17
164.132.119.83	attack	164.132.119.83 - - \[19/Aug/2019:09:39:49 +0200\] "GET / HTTP/1.1" 200 790 "-" "Mozilla/5.0 $compatible\; Googlebot/2.1\; +http://www.google.com/bot.html$" ...	2019-08-19 18:10:21
120.132.61.80	attackspambots	Aug 18 22:33:30 php2 sshd\[7932\]: Invalid user ullar from 120.132.61.80 Aug 18 22:33:30 php2 sshd\[7932\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Aug 18 22:33:32 php2 sshd\[7932\]: Failed password for invalid user ullar from 120.132.61.80 port 57310 ssh2 Aug 18 22:36:55 php2 sshd\[8189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 user=root Aug 18 22:36:57 php2 sshd\[8189\]: Failed password for root from 120.132.61.80 port 16422 ssh2	2019-08-19 19:10:33
104.140.188.30	attackbots	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(08191236)	2019-08-19 18:54:36
52.194.205.34	attackbots	Aug 18 21:54:01 lcdev sshd\[9128\]: Invalid user lx from 52.194.205.34 Aug 18 21:54:01 lcdev sshd\[9128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-194-205-34.ap-northeast-1.compute.amazonaws.com Aug 18 21:54:03 lcdev sshd\[9128\]: Failed password for invalid user lx from 52.194.205.34 port 35280 ssh2 Aug 18 21:58:47 lcdev sshd\[9570\]: Invalid user postgres from 52.194.205.34 Aug 18 21:58:47 lcdev sshd\[9570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-194-205-34.ap-northeast-1.compute.amazonaws.com	2019-08-19 18:23:36
77.247.110.32	attackbotsspam	firewall-block, port(s): 25063/udp	2019-08-19 17:58:19
72.2.6.128	attackbotsspam	Aug 18 23:59:35 aiointranet sshd\[25383\]: Invalid user zhang from 72.2.6.128 Aug 18 23:59:35 aiointranet sshd\[25383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.2.6.128 Aug 18 23:59:37 aiointranet sshd\[25383\]: Failed password for invalid user zhang from 72.2.6.128 port 36656 ssh2 Aug 19 00:03:41 aiointranet sshd\[25787\]: Invalid user vbox from 72.2.6.128 Aug 19 00:03:41 aiointranet sshd\[25787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.2.6.128	2019-08-19 18:13:16
40.73.108.181	attackspambots	Aug 19 12:57:35 plex sshd[331]: Invalid user matilda from 40.73.108.181 port 48122	2019-08-19 19:13:50
134.209.104.186	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-19 18:16:54
104.236.192.6	attack	Aug 18 21:51:33 hiderm sshd\[16589\]: Invalid user ftptest from 104.236.192.6 Aug 18 21:51:33 hiderm sshd\[16589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.192.6 Aug 18 21:51:36 hiderm sshd\[16589\]: Failed password for invalid user ftptest from 104.236.192.6 port 39394 ssh2 Aug 18 21:55:32 hiderm sshd\[16973\]: Invalid user xmas from 104.236.192.6 Aug 18 21:55:32 hiderm sshd\[16973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.192.6	2019-08-19 18:18:08
187.131.252.16	attack	Aug 19 11:00:59 cp sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.131.252.16	2019-08-19 18:21:33
150.95.24.185	attackbots	Aug 19 10:21:59 vps647732 sshd[25678]: Failed password for root from 150.95.24.185 port 9927 ssh2 ...	2019-08-19 19:10:13
138.197.195.52	attack	Aug 19 11:41:31 MainVPS sshd[3254]: Invalid user cyrus from 138.197.195.52 port 54250 Aug 19 11:41:31 MainVPS sshd[3254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 Aug 19 11:41:31 MainVPS sshd[3254]: Invalid user cyrus from 138.197.195.52 port 54250 Aug 19 11:41:33 MainVPS sshd[3254]: Failed password for invalid user cyrus from 138.197.195.52 port 54250 ssh2 Aug 19 11:45:42 MainVPS sshd[3563]: Invalid user sftp from 138.197.195.52 port 44770 ...	2019-08-19 18:52:42

最近上报的IP列表

103.240.37.254	43.243.75.15	134.175.236.42	79.124.62.52
178.187.242.113	171.247.37.138	42.176.20.143	123.59.200.177
157.37.170.128	94.231.14.84	36.231.227.232	115.84.91.143
185.209.0.154	41.111.133.103	34.139.220.170	116.112.45.247
201.110.29.163	157.41.196.18	95.180.69.205	61.223.179.176

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表