42.112.116.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-24 18:25:27

相同子网IP讨论:

IP	类型	评论内容	时间
42.112.116.241	attackspambots	Unauthorized connection attempt detected from IP address 42.112.116.241 to port 23 [J]	2020-02-01 17:01:46
42.112.116.80	attackspam	Unauthorized connection attempt from IP address 42.112.116.80 on Port 445(SMB)	2019-12-24 19:05:14

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.116.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.116.249.			IN	A

;; AUTHORITY SECTION:
.			404	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122400 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 24 18:36:02 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 249.116.112.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 249.116.112.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
14.162.147.47	attackbots	Automatic report - Port Scan Attack	2019-08-15 17:05:14
5.62.41.113	attackspambots	\[2019-08-15 05:13:24\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.113:11771' - Wrong password \[2019-08-15 05:13:24\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-15T05:13:24.358-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2295",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.113/56315",Challenge="775e37d3",ReceivedChallenge="775e37d3",ReceivedHash="eb2cb2e787247a12a977993cb78c6b82" \[2019-08-15 05:22:57\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.113:11661' - Wrong password \[2019-08-15 05:22:57\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-15T05:22:57.786-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8174",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.113/566	2019-08-15 17:23:52
54.37.157.219	attack	Aug 15 06:30:33 MK-Soft-Root2 sshd\[4750\]: Invalid user angelina from 54.37.157.219 port 42824 Aug 15 06:30:33 MK-Soft-Root2 sshd\[4750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.157.219 Aug 15 06:30:35 MK-Soft-Root2 sshd\[4750\]: Failed password for invalid user angelina from 54.37.157.219 port 42824 ssh2 ...	2019-08-15 16:34:29
94.177.231.9	attackspam	/muieblackcat	2019-08-15 16:32:11
173.218.243.137	attackbotsspam	Invalid user mailserver from 173.218.243.137 port 45872	2019-08-15 17:10:12
115.97.6.140	attack	Splunk® : port scan detected: Aug 14 19:22:10 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=115.97.6.140 DST=104.248.11.191 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=345 DF PROTO=TCP SPT=59294 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0	2019-08-15 17:24:35
190.186.170.83	attackspambots	Aug 15 07:21:04 XXX sshd[46054]: Invalid user nscd from 190.186.170.83 port 35030	2019-08-15 17:11:16
94.23.149.25	attackspambots	Aug 15 11:03:46 vps647732 sshd[14236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.149.25 Aug 15 11:03:47 vps647732 sshd[14236]: Failed password for invalid user ken from 94.23.149.25 port 45398 ssh2 ...	2019-08-15 17:14:22
47.254.135.232	attackbotsspam	Automatic report - Banned IP Access	2019-08-15 17:08:00
84.166.126.66	attackbots	Brute forcing RDP port 3389	2019-08-15 17:00:27
107.170.197.223	attackbots	Unauthorised access (Aug 15) SRC=107.170.197.223 LEN=40 PREC=0x20 TTL=239 ID=54321 TCP DPT=3389 WINDOW=65535 SYN	2019-08-15 17:19:08
122.224.55.130	attackbotsspam	2019-08-15T03:39:18.838843abusebot-6.cloudsearch.cf sshd\[27507\]: Invalid user asterisk from 122.224.55.130 port 34492	2019-08-15 16:46:18
5.153.235.2	attack	2019-08-15T04:39:33.113297abusebot-7.cloudsearch.cf sshd\[11862\]: Invalid user wu from 5.153.235.2 port 35500	2019-08-15 16:50:32
138.122.38.129	attack	failed_logins	2019-08-15 17:09:02
218.91.204.182	attackbotsspam	3389BruteforceIDS	2019-08-15 16:30:29

最近上报的IP列表

80.30.20.226	111.230.175.183	183.83.172.216	98.6.160.218
61.31.207.177	90.150.152.98	188.136.170.132	130.137.54.155
220.141.6.41	155.43.248.213	52.59.122.240	27.55.72.173
73.225.160.11	176.29.218.254	103.21.228.103	46.59.108.92
113.88.211.0	43.249.57.230	185.220.100.245	116.110.17.202

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表