123.21.231.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	1597580536 - 08/16/2020 14:22:16 Host: 123.21.231.42/123.21.231.42 Port: 445 TCP Blocked ...	2020-08-17 01:35:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.21.231.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39085
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.21.231.42.			IN	A

;; AUTHORITY SECTION:
.			152	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081601 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 17 01:35:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.231.21.123.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.231.21.123.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.56.11.236	attackbots	Sep 28 11:42:25 marvibiene sshd[8278]: Invalid user lx from 218.56.11.236 port 45449 Sep 28 11:42:25 marvibiene sshd[8278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.11.236 Sep 28 11:42:25 marvibiene sshd[8278]: Invalid user lx from 218.56.11.236 port 45449 Sep 28 11:42:28 marvibiene sshd[8278]: Failed password for invalid user lx from 218.56.11.236 port 45449 ssh2	2020-09-28 22:29:07
194.180.224.115	attackbotsspam	Sep 28 13:54:31 XXXXXX sshd[13725]: Invalid user user from 194.180.224.115 port 53094	2020-09-28 22:03:43
116.52.1.211	attackspambots	(sshd) Failed SSH login from 116.52.1.211 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 13:58:12 server2 sshd[13054]: Invalid user ca from 116.52.1.211 port 6680 Sep 28 13:58:14 server2 sshd[13054]: Failed password for invalid user ca from 116.52.1.211 port 6680 ssh2 Sep 28 14:08:42 server2 sshd[14880]: Invalid user test1 from 116.52.1.211 port 5410 Sep 28 14:08:44 server2 sshd[14880]: Failed password for invalid user test1 from 116.52.1.211 port 5410 ssh2 Sep 28 14:14:03 server2 sshd[15959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.1.211 user=root	2020-09-28 22:36:34
192.35.168.89	attackbotsspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-28 22:36:52
45.6.63.64	attackspambots	SSH Honeypot -> SSH Bruteforce / Login	2020-09-28 22:06:22
208.86.161.102	attack	Sep 27 17:38:38 firewall sshd[18332]: Invalid user admin from 208.86.161.102 Sep 27 17:38:41 firewall sshd[18332]: Failed password for invalid user admin from 208.86.161.102 port 42240 ssh2 Sep 27 17:38:47 firewall sshd[18339]: Invalid user admin from 208.86.161.102 ...	2020-09-28 22:07:37
106.12.110.157	attackspambots	Time: Sat Sep 26 16:56:56 2020 +0000 IP: 106.12.110.157 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 26 16:24:43 activeserver sshd[2052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.157 user=root Sep 26 16:24:45 activeserver sshd[2052]: Failed password for root from 106.12.110.157 port 26444 ssh2 Sep 26 16:52:27 activeserver sshd[30204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.157 user=root Sep 26 16:52:29 activeserver sshd[30204]: Failed password for root from 106.12.110.157 port 29307 ssh2 Sep 26 16:56:54 activeserver sshd[7619]: Invalid user readonly from 106.12.110.157 port 43222	2020-09-28 22:16:15
68.183.229.218	attackspam	Sep 28 16:16:40 host1 sshd[647249]: Failed password for invalid user test from 68.183.229.218 port 47682 ssh2 Sep 28 16:21:05 host1 sshd[647547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 user=root Sep 28 16:21:07 host1 sshd[647547]: Failed password for root from 68.183.229.218 port 54676 ssh2 Sep 28 16:21:05 host1 sshd[647547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 user=root Sep 28 16:21:07 host1 sshd[647547]: Failed password for root from 68.183.229.218 port 54676 ssh2 ...	2020-09-28 22:40:11
188.166.254.95	attack	188.166.254.95 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 28 08:35:58 server5 sshd[20934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.177.20.50 user=root Sep 28 08:36:00 server5 sshd[20934]: Failed password for root from 116.177.20.50 port 13263 ssh2 Sep 28 08:44:37 server5 sshd[24537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.254.95 user=root Sep 28 08:37:00 server5 sshd[21320]: Failed password for root from 5.196.1.250 port 50848 ssh2 Sep 28 08:38:55 server5 sshd[22150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.62.150 user=root Sep 28 08:38:57 server5 sshd[22150]: Failed password for root from 129.226.62.150 port 35530 ssh2 IP Addresses Blocked: 116.177.20.50 (CN/China/-)	2020-09-28 22:31:37
167.71.134.241	attack	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-28 22:41:11
167.114.24.187	attackbotsspam	ET SCAN Suspicious inbound to PostgreSQL port 5432 - port: 5432 proto: tcp cat: Potentially Bad Trafficbytes: 74	2020-09-28 22:23:24
180.76.174.39	attackspambots	Sep 28 00:05:43 web9 sshd\[11845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.174.39 user=root Sep 28 00:05:45 web9 sshd\[11845\]: Failed password for root from 180.76.174.39 port 50742 ssh2 Sep 28 00:08:58 web9 sshd\[12254\]: Invalid user alex from 180.76.174.39 Sep 28 00:08:58 web9 sshd\[12254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.174.39 Sep 28 00:09:00 web9 sshd\[12254\]: Failed password for invalid user alex from 180.76.174.39 port 59608 ssh2	2020-09-28 22:27:49
46.37.188.139	attackbots	Sep 28 14:11:05 ajax sshd[3640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.37.188.139 Sep 28 14:11:06 ajax sshd[3640]: Failed password for invalid user julien from 46.37.188.139 port 37342 ssh2	2020-09-28 22:37:33
193.112.126.64	attack	$f2bV_matches	2020-09-28 22:09:37
103.84.71.237	attackbotsspam	Invalid user nut from 103.84.71.237 port 37211	2020-09-28 22:19:16

最近上报的IP列表

121.207.115.122	209.141.59.224	188.131.137.235	120.244.109.68
135.23.251.14	121.40.198.129	137.74.213.142	193.34.172.241
68.183.111.135	170.253.0.134	103.136.185.108	192.0.101.158
84.17.56.152	190.45.100.142	180.208.70.27	58.219.243.139
113.132.200.205	128.50.255.120	65.206.29.19	72.74.59.237