123.20.240.49 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): VNPT Corp

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
123.20.240.161	attackbotsspam	1594093605 - 07/07/2020 05:46:45 Host: 123.20.240.161/123.20.240.161 Port: 445 TCP Blocked	2020-07-07 20:01:23
123.20.240.253	attack	Unauthorized connection attempt from IP address 123.20.240.253 on Port 445(SMB)	2020-05-07 21:46:39

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.20.240.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65334
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.20.240.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 18 09:39:00 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 49.240.20.123.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 49.240.20.123.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.26.40.243	attack	Jul 23 00:44:47 MK-Soft-VM6 sshd\[2392\]: Invalid user applmgr from 85.26.40.243 port 58226 Jul 23 00:44:47 MK-Soft-VM6 sshd\[2392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.26.40.243 Jul 23 00:44:49 MK-Soft-VM6 sshd\[2392\]: Failed password for invalid user applmgr from 85.26.40.243 port 58226 ssh2 ...	2019-07-23 08:50:01
54.36.148.215	attackspambots	Automatic report - Banned IP Access	2019-07-23 09:08:38
81.22.45.252	attack	Jul 23 02:49:28 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=27745 PROTO=TCP SPT=43974 DPT=12103 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-07-23 09:18:35
88.35.102.54	attack	2019-07-23T02:41:54.211264cavecanem sshd[30758]: Invalid user device from 88.35.102.54 port 57620 2019-07-23T02:41:54.213957cavecanem sshd[30758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.35.102.54 2019-07-23T02:41:54.211264cavecanem sshd[30758]: Invalid user device from 88.35.102.54 port 57620 2019-07-23T02:41:55.789152cavecanem sshd[30758]: Failed password for invalid user device from 88.35.102.54 port 57620 ssh2 2019-07-23T02:45:59.717190cavecanem sshd[3913]: Invalid user xy from 88.35.102.54 port 49354 2019-07-23T02:45:59.719768cavecanem sshd[3913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.35.102.54 2019-07-23T02:45:59.717190cavecanem sshd[3913]: Invalid user xy from 88.35.102.54 port 49354 2019-07-23T02:46:01.595717cavecanem sshd[3913]: Failed password for invalid user xy from 88.35.102.54 port 49354 ssh2 2019-07-23T02:50:11.646919cavecanem sshd[9745]: Invalid user appadmin from 88. ...	2019-07-23 08:54:29
95.168.191.224	attack	Jul 11 15:26:23 localhost postfix/smtpd[5137]: lost connection after CONNECT from unknown[95.168.191.224] Jul 11 15:26:38 localhost postfix/smtpd[5137]: lost connection after RCPT from unknown[95.168.191.224] Jul 11 17:07:13 localhost postfix/smtpd[11653]: lost connection after CONNECT from unknown[95.168.191.224] Jul 11 17:07:18 localhost postfix/smtpd[11653]: lost connection after RCPT from unknown[95.168.191.224] Jul 11 17:07:25 localhost postfix/smtpd[9783]: lost connection after RCPT from unknown[95.168.191.224] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.168.191.224	2019-07-23 09:00:34
190.52.32.187	attackspam	Jul 23 00:52:09 mxgate1 postfix/postscreen[30933]: CONNECT from [190.52.32.187]:45729 to [176.31.12.44]:25 Jul 23 00:52:09 mxgate1 postfix/dnsblog[31002]: addr 190.52.32.187 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 23 00:52:09 mxgate1 postfix/dnsblog[31002]: addr 190.52.32.187 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 23 00:52:09 mxgate1 postfix/dnsblog[30999]: addr 190.52.32.187 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 23 00:52:09 mxgate1 postfix/dnsblog[31003]: addr 190.52.32.187 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 23 00:52:10 mxgate1 postfix/dnsblog[31000]: addr 190.52.32.187 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 23 00:52:11 mxgate1 postfix/postscreen[30933]: PREGREET 14 after 1.2 from [190.52.32.187]:45729: EHLO luss.hostname Jul 23 00:52:11 mxgate1 postfix/postscreen[30933]: DNSBL rank 5 for [190.52.32.187]:45729 Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.52.32.187	2019-07-23 09:17:44
187.17.174.122	attackbotsspam	Jul 22 20:34:54 vps200512 sshd\[8780\]: Invalid user tf2mgeserver from 187.17.174.122 Jul 22 20:34:54 vps200512 sshd\[8780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.17.174.122 Jul 22 20:34:55 vps200512 sshd\[8780\]: Failed password for invalid user tf2mgeserver from 187.17.174.122 port 60678 ssh2 Jul 22 20:40:30 vps200512 sshd\[8988\]: Invalid user test from 187.17.174.122 Jul 22 20:40:30 vps200512 sshd\[8988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.17.174.122	2019-07-23 08:49:46
103.72.163.222	attack	Jul 23 02:28:36 * sshd[30261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.72.163.222 Jul 23 02:28:39 * sshd[30261]: Failed password for invalid user tempuser from 103.72.163.222 port 7590 ssh2	2019-07-23 09:05:34
78.42.135.211	attackbotsspam	Jul 23 02:52:07 vps647732 sshd[10204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.42.135.211 Jul 23 02:52:09 vps647732 sshd[10204]: Failed password for invalid user luke from 78.42.135.211 port 53956 ssh2 ...	2019-07-23 08:55:58
190.153.55.14	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 19:21:49,240 INFO [shellcode_manager] (190.153.55.14) no match, writing hexdump (24b77ed65dba3eee153e688e96530450 :2065137) - MS17010 (EternalBlue)	2019-07-23 09:31:29
106.12.214.21	attack	Jul 22 22:59:21 vayu sshd[562985]: Invalid user test from 106.12.214.21 Jul 22 22:59:21 vayu sshd[562985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.21 Jul 22 22:59:24 vayu sshd[562985]: Failed password for invalid user test from 106.12.214.21 port 40984 ssh2 Jul 22 22:59:24 vayu sshd[562985]: Received disconnect from 106.12.214.21: 11: Bye Bye [preauth] Jul 22 23:10:09 vayu sshd[571691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.21 user=r.r Jul 22 23:10:11 vayu sshd[571691]: Failed password for r.r from 106.12.214.21 port 37380 ssh2 Jul 22 23:10:11 vayu sshd[571691]: Received disconnect from 106.12.214.21: 11: Bye Bye [preauth] Jul 22 23:10:59 vayu sshd[572197]: Invalid user sinus from 106.12.214.21 Jul 22 23:10:59 vayu sshd[572197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.21 Jul 22 23:11:00 vayu........ -------------------------------	2019-07-23 09:15:45
151.1.232.195	attack	SSH Bruteforce	2019-07-23 08:59:34
217.112.128.9	attackspam	Postfix RBL failed	2019-07-23 08:56:56
112.169.9.150	attackbotsspam	Jul 23 02:40:32 s64-1 sshd[21634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.9.150 Jul 23 02:40:34 s64-1 sshd[21634]: Failed password for invalid user xian from 112.169.9.150 port 53674 ssh2 Jul 23 02:45:44 s64-1 sshd[21694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.9.150 ...	2019-07-23 08:55:37
45.32.5.101	attack	Jul 22 21:18:07 plusreed sshd[27198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.5.101 user=nobody Jul 22 21:18:09 plusreed sshd[27198]: Failed password for nobody from 45.32.5.101 port 42740 ssh2 ...	2019-07-23 09:18:53

最近上报的IP列表

125.72.70.46	116.102.177.37	114.29.116.206	77.247.88.202
61.159.239.197	49.88.226.169	42.115.49.47	197.2.197.156
190.40.184.216	110.44.123.86	102.152.30.234	45.4.253.171
190.163.80.130	189.4.74.183	168.167.50.143	216.218.206.83
185.12.179.207	74.207.247.210	172.104.65.226	142.93.242.65