170.130.187.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): ServerHub

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Found on Binary Defense / proto=6 . srcport=50042 . dstport=5432 . (3324)	2020-09-25 08:36:29
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-08-02 00:40:34
attackspam	Unauthorized connection attempt detected from IP address 170.130.187.42 to port 21	2020-07-04 23:58:02
attackspam	Unauthorized connection attempt detected from IP address 170.130.187.42 to port 5900	2020-05-27 01:26:36
attackspam	Automatic report - Banned IP Access	2020-05-21 02:07:32
attackbots	Port scan(s) denied	2020-04-24 07:27:09
attack	9160/tcp 69/tcp 23/tcp... [2020-02-07/04-03]36pkt,13pt.(tcp),1pt.(udp)	2020-04-04 09:59:22
attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-03-11 06:01:29
attackbots	Automatic report - Banned IP Access	2020-02-26 07:45:07
attackbotsspam	Unauthorized connection attempt detected from IP address 170.130.187.42 to port 21	2020-01-24 01:36:42
attackspam	Unauthorized connection attempt detected from IP address 170.130.187.42 to port 8444 [J]	2020-01-21 13:59:35
attackspam	TCP 3389 (RDP)	2019-12-16 23:36:34
attackspam	Honeypot hit.	2019-12-08 06:11:22
attackbotsspam	1433/tcp 21/tcp 88/tcp... [2019-09-22/11-22]31pkt,10pt.(tcp),1pt.(udp)	2019-11-23 09:28:05
attack	Scanning random ports - tries to find possible vulnerable services	2019-11-03 07:46:33
attackspam	31.08.2019 01:38:34 Connection to port 3389 blocked by firewall	2019-08-31 13:11:57
attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-14 08:32:34
attack	161/udp 88/tcp 1433/tcp... [2019-06-13/08-11]24pkt,12pt.(tcp),1pt.(udp)	2019-08-12 09:49:13
attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-08 07:57:33
attack	17.07.2019 16:36:19 Connection to port 5432 blocked by firewall	2019-07-18 02:43:11
attack	Portscan or hack attempt detected by psad/fwsnort	2019-07-16 06:21:43
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-15 23:33:12

相同子网IP讨论:

IP	类型	评论内容	时间
170.130.187.14	attack	TCP (SYN) 170.130.187.14:62942 -> port 23, len 44	2020-10-06 07:12:36
170.130.187.14	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-05 23:27:51
170.130.187.14	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-05 15:26:56
170.130.187.38	attackspambots	Found on Binary Defense / proto=6 . srcport=57831 . dstport=5060 . (3769)	2020-10-05 06:59:38
170.130.187.38	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-04 23:06:00
170.130.187.38	attackspam	5060/tcp 161/udp 21/tcp... [2020-08-04/10-03]28pkt,7pt.(tcp),1pt.(udp)	2020-10-04 14:51:41
170.130.187.2	attackbots	TCP (SYN) 170.130.187.2:60674 -> port 3389, len 44	2020-10-01 07:32:28
170.130.187.38	attackbots	TCP (SYN) 170.130.187.38:65150 -> port 3306, len 44	2020-10-01 07:32:10
170.130.187.2	attack	TCP (SYN) 170.130.187.2:62860 -> port 21, len 44	2020-10-01 00:01:04
170.130.187.38	attackspam	Icarus honeypot on github	2020-10-01 00:00:42
170.130.187.22	attackspam	TCP (SYN) 170.130.187.22:61709 -> port 5900, len 44	2020-09-25 09:27:42
170.130.187.6	attackbotsspam	Found on Binary Defense / proto=6 . srcport=54214 . dstport=1433 . (3341)	2020-09-25 07:00:19
170.130.187.6	attack	Hit honeypot r.	2020-09-24 23:48:13
170.130.187.30	attackspambots	Hit honeypot r.	2020-09-24 22:32:48
170.130.187.14	attackbotsspam	" "	2020-09-24 20:36:53

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 170.130.187.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47178
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;170.130.187.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 15:40:40 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 42.187.130.170.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 42.187.130.170.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
190.92.79.175	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 190.92.79.175 (HN/Honduras/190-92-79-175.reverse.cablecolor.hn): 5 in the last 3600 secs - Sun Jan 6 20:17:40 2019	2020-02-07 07:26:23
85.175.101.60	attackspambots	Attempts against SMTP/SSMTP	2020-02-07 07:13:47
181.123.9.3	attackspam	sshd jail - ssh hack attempt	2020-02-07 07:31:45
114.107.5.251	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 114.107.5.251 (CN/China/-): 5 in the last 3600 secs - Wed Apr 11 15:43:29 2018	2020-02-07 07:16:40
81.93.86.149	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 81.93.86.149 (BA/Bosnia and Herzegovina/-): 5 in the last 3600 secs - Fri Jan 4 16:21:57 2019	2020-02-07 07:46:01
114.239.127.106	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 114.239.127.106 (CN/China/-): 5 in the last 3600 secs - Mon Apr 9 14:18:44 2018	2020-02-07 07:21:21
124.163.73.180	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 124.163.73.180 (CN/China/180.73.163.124.adsl-pool.sx.cn): 5 in the last 3600 secs - Mon Apr 9 14:19:17 2018	2020-02-07 07:19:22
175.149.221.55	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 175.149.221.55 (CN/China/-): 5 in the last 3600 secs - Wed Apr 11 10:32:25 2018	2020-02-07 07:18:08
103.207.36.50	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 103.207.36.50 (VN/Vietnam/-): 5 in the last 3600 secs - Thu Apr 12 23:11:13 2018	2020-02-07 07:05:12
59.115.58.105	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 59.115.58.105 (TW/Taiwan/59-115-58-105.dynamic-ip.hinet.net): 5 in the last 3600 secs - Sat Jan 5 02:39:34 2019	2020-02-07 07:43:04
117.91.220.53	attack	lfd: (smtpauth) Failed SMTP AUTH login from 117.91.220.53 (CN/China/-): 5 in the last 3600 secs - Thu Apr 12 01:21:29 2018	2020-02-07 07:11:19
101.71.28.72	attack	Fail2Ban - SSH Bruteforce Attempt	2020-02-07 07:40:18
80.82.78.100	attack	80.82.78.100 was recorded 25 times by 12 hosts attempting to connect to the following ports: 3,50323,49. Incident counter (4h, 24h, all-time): 25, 144, 17550	2020-02-07 07:09:43
1.191.152.158	attackbotsspam	CN_APNIC-HM_<177>1581018919 [1:2403306:55163] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 4 [Classification: Misc Attack] [Priority: 2] {TCP} 1.191.152.158:40778	2020-02-07 07:41:48
123.21.235.127	attackspam	Brute force attempt	2020-02-07 07:19:41

最近上报的IP列表

94.232.185.242	14.248.82.75	138.47.173.207	125.112.175.88
206.212.244.202	152.254.243.181	160.41.236.86	186.85.44.112
113.190.232.117	24.115.127.220	171.240.241.105	118.173.103.4
58.182.213.76	120.77.168.69	191.241.243.213	25.141.199.207
165.199.70.119	28.165.92.104	240e:344:800:82d:4424:4ebf:980c:e048	152.5.195.45