42.112.211.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user erp from 42.112.211.52 port 39306	2020-09-03 20:28:56
attack	Invalid user erp from 42.112.211.52 port 39306	2020-09-03 12:14:01
attack	Invalid user erp from 42.112.211.52 port 39306	2020-09-03 04:33:21
attackbotsspam	Aug 28 16:21:24 v22019038103785759 sshd\[19113\]: Invalid user asterisk from 42.112.211.52 port 57889 Aug 28 16:21:24 v22019038103785759 sshd\[19113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Aug 28 16:21:26 v22019038103785759 sshd\[19113\]: Failed password for invalid user asterisk from 42.112.211.52 port 57889 ssh2 Aug 28 16:30:24 v22019038103785759 sshd\[19889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 user=root Aug 28 16:30:26 v22019038103785759 sshd\[19889\]: Failed password for root from 42.112.211.52 port 11869 ssh2 ...	2020-08-29 00:08:50
attack	Lines containing failures of 42.112.211.52 Aug 24 04:26:29 kmh-vmh-003-fsn07 sshd[10353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 user=r.r Aug 24 04:26:31 kmh-vmh-003-fsn07 sshd[10353]: Failed password for r.r from 42.112.211.52 port 35634 ssh2 Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Received disconnect from 42.112.211.52 port 35634:11: Bye Bye [preauth] Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Disconnected from authenticating user r.r 42.112.211.52 port 35634 [preauth] Aug 24 04:44:55 kmh-vmh-003-fsn07 sshd[12890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 user=r.r Aug 24 04:44:57 kmh-vmh-003-fsn07 sshd[12890]: Failed password for r.r from 42.112.211.52 port 23324 ssh2 Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Received disconnect from 42.112.211.52 port 23324:11: Bye Bye [preauth] Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Dis........ ------------------------------	2020-08-24 14:38:32
attackbotsspam	Aug 23 23:01:18 game-panel sshd[11087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Aug 23 23:01:20 game-panel sshd[11087]: Failed password for invalid user webmaster from 42.112.211.52 port 34336 ssh2 Aug 23 23:03:11 game-panel sshd[11166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52	2020-08-24 09:14:33
attack	Aug 17 10:30:27 gw1 sshd[6484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Aug 17 10:30:29 gw1 sshd[6484]: Failed password for invalid user nci from 42.112.211.52 port 62658 ssh2 ...	2020-08-17 14:03:33
attackspambots	Aug 12 14:39:24 ip106 sshd[30954]: Failed password for root from 42.112.211.52 port 31125 ssh2 ...	2020-08-12 20:53:18
attackspambots	Failed password for root from 42.112.211.52 port 60136 ssh2	2020-08-08 18:58:52
attackbotsspam	Aug 5 22:37:25 ip40 sshd[15013]: Failed password for root from 42.112.211.52 port 40777 ssh2 ...	2020-08-06 05:08:04
attackbots	detected by Fail2Ban	2020-08-05 04:51:22
attackspambots	Invalid user chenjiaze from 42.112.211.52 port 61923	2020-07-31 19:14:51
attackspambots	Invalid user shan from 42.112.211.52 port 48449	2020-07-27 01:10:25
attack	Jul 22 19:46:31 our-server-hostname sshd[20260]: Invalid user tester from 42.112.211.52 Jul 22 19:46:31 our-server-hostname sshd[20260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 19:46:34 our-server-hostname sshd[20260]: Failed password for invalid user tester from 42.112.211.52 port 40514 ssh2 Jul 22 19:58:25 our-server-hostname sshd[22003]: Invalid user testadmin from 42.112.211.52 Jul 22 19:58:25 our-server-hostname sshd[22003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 19:58:27 our-server-hostname sshd[22003]: Failed password for invalid user testadmin from 42.112.211.52 port 44529 ssh2 Jul 22 20:00:50 our-server-hostname sshd[22307]: Invalid user postgre from 42.112.211.52 Jul 22 20:00:51 our-server-hostname sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 20........ -------------------------------	2020-07-26 13:14:13
attackbotsspam	Jul 22 19:46:31 our-server-hostname sshd[20260]: Invalid user tester from 42.112.211.52 Jul 22 19:46:31 our-server-hostname sshd[20260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 19:46:34 our-server-hostname sshd[20260]: Failed password for invalid user tester from 42.112.211.52 port 40514 ssh2 Jul 22 19:58:25 our-server-hostname sshd[22003]: Invalid user testadmin from 42.112.211.52 Jul 22 19:58:25 our-server-hostname sshd[22003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 19:58:27 our-server-hostname sshd[22003]: Failed password for invalid user testadmin from 42.112.211.52 port 44529 ssh2 Jul 22 20:00:50 our-server-hostname sshd[22307]: Invalid user postgre from 42.112.211.52 Jul 22 20:00:51 our-server-hostname sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 Jul 22 20........ -------------------------------	2020-07-25 03:15:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.211.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61974
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.211.52.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072401 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 03:15:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 52.211.112.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 52.211.112.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
93.104.210.230	attackbots	Mail sent to address hacked/leaked from Destructoid	2020-02-07 00:51:28
194.187.249.133	attackspam	Feb 6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.475692\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10430 DF PROTO=TCP SPT=50988 DPT=81 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Feb 6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.496229\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10432 DF PROTO=TCP SPT=50991 DPT=8000 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Feb 6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.509271\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10433 DF PROTO=TCP SPT=50992 DPT=8080 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2020-02-07 00:23:52
14.250.224.188	attack	Unauthorized connection attempt detected from IP address 14.250.224.188 to port 445	2020-02-07 00:10:15
51.91.20.174	attackspam	Feb 6 15:00:38 web8 sshd\[6210\]: Invalid user vle from 51.91.20.174 Feb 6 15:00:38 web8 sshd\[6210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 Feb 6 15:00:40 web8 sshd\[6210\]: Failed password for invalid user vle from 51.91.20.174 port 47830 ssh2 Feb 6 15:05:02 web8 sshd\[8437\]: Invalid user hnt from 51.91.20.174 Feb 6 15:05:02 web8 sshd\[8437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174	2020-02-07 00:06:21
222.186.175.216	attackbots	Feb 6 17:44:36 silence02 sshd[4858]: Failed password for root from 222.186.175.216 port 34336 ssh2 Feb 6 17:44:48 silence02 sshd[4858]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 34336 ssh2 [preauth] Feb 6 17:44:55 silence02 sshd[4883]: Failed password for root from 222.186.175.216 port 56402 ssh2	2020-02-07 00:46:02
128.199.142.138	attack	Feb 6 16:53:11 mout sshd[9890]: Invalid user euj from 128.199.142.138 port 40118	2020-02-07 00:05:03
106.13.234.36	attackspam	Feb 6 03:55:50 hpm sshd\[30047\]: Invalid user abs from 106.13.234.36 Feb 6 03:55:50 hpm sshd\[30047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.36 Feb 6 03:55:52 hpm sshd\[30047\]: Failed password for invalid user abs from 106.13.234.36 port 52685 ssh2 Feb 6 03:59:41 hpm sshd\[30528\]: Invalid user nyi from 106.13.234.36 Feb 6 03:59:41 hpm sshd\[30528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.36	2020-02-07 00:32:45
45.56.78.64	attackspam	Unauthorized connection attempt detected from IP address 45.56.78.64 to port 443	2020-02-07 00:28:18
85.209.0.197	attackspam	From: Firewall Notification System [mailto:do-not-reply@fw-notify.net] Sent: February 6, 2020 3:12 AM To: Admin Subject: [WARN-856] Portscan detected A portscan was detected. Details about the event: Time.............: 2020-02-06 03:11:47 Source IP address: 85.209.0.197	2020-02-07 00:24:50
192.241.233.240	attackbotsspam	Unauthorised access (Feb 6) SRC=192.241.233.240 LEN=40 TTL=240 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2020-02-07 00:25:11
106.54.253.41	attackspam	Feb 6 16:49:23 legacy sshd[28653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41 Feb 6 16:49:24 legacy sshd[28653]: Failed password for invalid user err from 106.54.253.41 port 45588 ssh2 Feb 6 16:54:12 legacy sshd[29061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41 ...	2020-02-07 00:20:49
103.20.188.18	attack	Feb 6 06:34:15 web1 sshd\[30708\]: Invalid user qeh from 103.20.188.18 Feb 6 06:34:15 web1 sshd\[30708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18 Feb 6 06:34:17 web1 sshd\[30708\]: Failed password for invalid user qeh from 103.20.188.18 port 46402 ssh2 Feb 6 06:38:03 web1 sshd\[31064\]: Invalid user lo from 103.20.188.18 Feb 6 06:38:03 web1 sshd\[31064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18	2020-02-07 00:49:40
106.54.81.174	attack	Feb 6 14:54:47 powerpi2 sshd[16063]: Invalid user kab from 106.54.81.174 port 58906 Feb 6 14:54:49 powerpi2 sshd[16063]: Failed password for invalid user kab from 106.54.81.174 port 58906 ssh2 Feb 6 14:59:28 powerpi2 sshd[16492]: Invalid user oqt from 106.54.81.174 port 57410 ...	2020-02-07 00:28:58
54.37.158.218	attackbotsspam	2020-02-06T16:22:28.954321 sshd[9628]: Invalid user gkk from 54.37.158.218 port 41746 2020-02-06T16:22:28.966332 sshd[9628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.218 2020-02-06T16:22:28.954321 sshd[9628]: Invalid user gkk from 54.37.158.218 port 41746 2020-02-06T16:22:31.008083 sshd[9628]: Failed password for invalid user gkk from 54.37.158.218 port 41746 ssh2 2020-02-06T16:25:24.330549 sshd[9719]: Invalid user yhh from 54.37.158.218 port 56355 ...	2020-02-07 00:05:34
112.85.42.172	attackspam	Feb 6 17:39:12 jane sshd[27751]: Failed password for root from 112.85.42.172 port 51511 ssh2 Feb 6 17:39:16 jane sshd[27751]: Failed password for root from 112.85.42.172 port 51511 ssh2 ...	2020-02-07 00:40:46

最近上报的IP列表

213.195.222.127	201.55.142.15	188.92.214.203	188.92.209.147
179.125.115.182	179.61.94.70	179.49.15.246	45.6.174.221
177.154.72.24	177.23.77.111	143.208.250.99	31.185.98.202
138.36.193.20	103.198.80.76	87.249.157.216	196.0.113.182
191.53.252.58	191.53.250.126	191.37.8.149	189.126.169.158