必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
Invalid user erp from 42.112.211.52 port 39306
2020-09-03 20:28:56
attack
Invalid user erp from 42.112.211.52 port 39306
2020-09-03 12:14:01
attack
Invalid user erp from 42.112.211.52 port 39306
2020-09-03 04:33:21
attackbotsspam
Aug 28 16:21:24 v22019038103785759 sshd\[19113\]: Invalid user asterisk from 42.112.211.52 port 57889
Aug 28 16:21:24 v22019038103785759 sshd\[19113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52
Aug 28 16:21:26 v22019038103785759 sshd\[19113\]: Failed password for invalid user asterisk from 42.112.211.52 port 57889 ssh2
Aug 28 16:30:24 v22019038103785759 sshd\[19889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52  user=root
Aug 28 16:30:26 v22019038103785759 sshd\[19889\]: Failed password for root from 42.112.211.52 port 11869 ssh2
...
2020-08-29 00:08:50
attack
Lines containing failures of 42.112.211.52
Aug 24 04:26:29 kmh-vmh-003-fsn07 sshd[10353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52  user=r.r
Aug 24 04:26:31 kmh-vmh-003-fsn07 sshd[10353]: Failed password for r.r from 42.112.211.52 port 35634 ssh2
Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Received disconnect from 42.112.211.52 port 35634:11: Bye Bye [preauth]
Aug 24 04:26:32 kmh-vmh-003-fsn07 sshd[10353]: Disconnected from authenticating user r.r 42.112.211.52 port 35634 [preauth]
Aug 24 04:44:55 kmh-vmh-003-fsn07 sshd[12890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52  user=r.r
Aug 24 04:44:57 kmh-vmh-003-fsn07 sshd[12890]: Failed password for r.r from 42.112.211.52 port 23324 ssh2
Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Received disconnect from 42.112.211.52 port 23324:11: Bye Bye [preauth]
Aug 24 04:44:58 kmh-vmh-003-fsn07 sshd[12890]: Dis........
------------------------------
2020-08-24 14:38:32
attackbotsspam
Aug 23 23:01:18 game-panel sshd[11087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52
Aug 23 23:01:20 game-panel sshd[11087]: Failed password for invalid user webmaster from 42.112.211.52 port 34336 ssh2
Aug 23 23:03:11 game-panel sshd[11166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52
2020-08-24 09:14:33
attack
Aug 17 10:30:27 gw1 sshd[6484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52
Aug 17 10:30:29 gw1 sshd[6484]: Failed password for invalid user nci from 42.112.211.52 port 62658 ssh2
...
2020-08-17 14:03:33
attackspambots
Aug 12 14:39:24 ip106 sshd[30954]: Failed password for root from 42.112.211.52 port 31125 ssh2
...
2020-08-12 20:53:18
attackspambots
Failed password for root from 42.112.211.52 port 60136 ssh2
2020-08-08 18:58:52
attackbotsspam
Aug  5 22:37:25 ip40 sshd[15013]: Failed password for root from 42.112.211.52 port 40777 ssh2
...
2020-08-06 05:08:04
attackbots
detected by Fail2Ban
2020-08-05 04:51:22
attackspambots
Invalid user chenjiaze from 42.112.211.52 port 61923
2020-07-31 19:14:51
attackspambots
Invalid user shan from 42.112.211.52 port 48449
2020-07-27 01:10:25
attack
Jul 22 19:46:31 our-server-hostname sshd[20260]: Invalid user tester from 42.112.211.52
Jul 22 19:46:31 our-server-hostname sshd[20260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 19:46:34 our-server-hostname sshd[20260]: Failed password for invalid user tester from 42.112.211.52 port 40514 ssh2
Jul 22 19:58:25 our-server-hostname sshd[22003]: Invalid user testadmin from 42.112.211.52
Jul 22 19:58:25 our-server-hostname sshd[22003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 19:58:27 our-server-hostname sshd[22003]: Failed password for invalid user testadmin from 42.112.211.52 port 44529 ssh2
Jul 22 20:00:50 our-server-hostname sshd[22307]: Invalid user postgre from 42.112.211.52
Jul 22 20:00:51 our-server-hostname sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 20........
-------------------------------
2020-07-26 13:14:13
attackbotsspam
Jul 22 19:46:31 our-server-hostname sshd[20260]: Invalid user tester from 42.112.211.52
Jul 22 19:46:31 our-server-hostname sshd[20260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 19:46:34 our-server-hostname sshd[20260]: Failed password for invalid user tester from 42.112.211.52 port 40514 ssh2
Jul 22 19:58:25 our-server-hostname sshd[22003]: Invalid user testadmin from 42.112.211.52
Jul 22 19:58:25 our-server-hostname sshd[22003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 19:58:27 our-server-hostname sshd[22003]: Failed password for invalid user testadmin from 42.112.211.52 port 44529 ssh2
Jul 22 20:00:50 our-server-hostname sshd[22307]: Invalid user postgre from 42.112.211.52
Jul 22 20:00:51 our-server-hostname sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.211.52 
Jul 22 20........
-------------------------------
2020-07-25 03:15:47
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.211.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61974
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.211.52.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072401 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 03:15:43 CST 2020
;; MSG SIZE  rcvd: 117
HOST信息:
Host 52.211.112.42.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 52.211.112.42.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
93.104.210.230 attackbots
Mail sent to address hacked/leaked from Destructoid
2020-02-07 00:51:28
194.187.249.133 attackspam
Feb  6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.475692\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10430 DF PROTO=TCP SPT=50988 DPT=81 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 
Feb  6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.496229\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10432 DF PROTO=TCP SPT=50991 DPT=8000 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 
Feb  6 14:44:29 debian-2gb-nbg1-2 kernel: \[3255914.509271\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.187.249.133 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=116 ID=10433 DF PROTO=TCP SPT=50992 DPT=8080 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0
2020-02-07 00:23:52
14.250.224.188 attack
Unauthorized connection attempt detected from IP address 14.250.224.188 to port 445
2020-02-07 00:10:15
51.91.20.174 attackspam
Feb  6 15:00:38 web8 sshd\[6210\]: Invalid user vle from 51.91.20.174
Feb  6 15:00:38 web8 sshd\[6210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174
Feb  6 15:00:40 web8 sshd\[6210\]: Failed password for invalid user vle from 51.91.20.174 port 47830 ssh2
Feb  6 15:05:02 web8 sshd\[8437\]: Invalid user hnt from 51.91.20.174
Feb  6 15:05:02 web8 sshd\[8437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174
2020-02-07 00:06:21
222.186.175.216 attackbots
Feb  6 17:44:36 silence02 sshd[4858]: Failed password for root from 222.186.175.216 port 34336 ssh2
Feb  6 17:44:48 silence02 sshd[4858]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 34336 ssh2 [preauth]
Feb  6 17:44:55 silence02 sshd[4883]: Failed password for root from 222.186.175.216 port 56402 ssh2
2020-02-07 00:46:02
128.199.142.138 attack
Feb  6 16:53:11 mout sshd[9890]: Invalid user euj from 128.199.142.138 port 40118
2020-02-07 00:05:03
106.13.234.36 attackspam
Feb  6 03:55:50 hpm sshd\[30047\]: Invalid user abs from 106.13.234.36
Feb  6 03:55:50 hpm sshd\[30047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.36
Feb  6 03:55:52 hpm sshd\[30047\]: Failed password for invalid user abs from 106.13.234.36 port 52685 ssh2
Feb  6 03:59:41 hpm sshd\[30528\]: Invalid user nyi from 106.13.234.36
Feb  6 03:59:41 hpm sshd\[30528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.36
2020-02-07 00:32:45
45.56.78.64 attackspam
Unauthorized connection attempt detected from IP address 45.56.78.64 to port 443
2020-02-07 00:28:18
85.209.0.197 attackspam
From: Firewall Notification System [mailto:do-not-reply@fw-notify.net] 
Sent: February 6, 2020 3:12 AM
To: Admin
Subject: [WARN-856] Portscan detected

A portscan was detected. Details about the event:
Time.............: 2020-02-06 03:11:47
Source IP address: 85.209.0.197
2020-02-07 00:24:50
192.241.233.240 attackbotsspam
Unauthorised access (Feb  6) SRC=192.241.233.240 LEN=40 TTL=240 ID=54321 TCP DPT=8080 WINDOW=65535 SYN
2020-02-07 00:25:11
106.54.253.41 attackspam
Feb  6 16:49:23 legacy sshd[28653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41
Feb  6 16:49:24 legacy sshd[28653]: Failed password for invalid user err from 106.54.253.41 port 45588 ssh2
Feb  6 16:54:12 legacy sshd[29061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41
...
2020-02-07 00:20:49
103.20.188.18 attack
Feb  6 06:34:15 web1 sshd\[30708\]: Invalid user qeh from 103.20.188.18
Feb  6 06:34:15 web1 sshd\[30708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18
Feb  6 06:34:17 web1 sshd\[30708\]: Failed password for invalid user qeh from 103.20.188.18 port 46402 ssh2
Feb  6 06:38:03 web1 sshd\[31064\]: Invalid user lo from 103.20.188.18
Feb  6 06:38:03 web1 sshd\[31064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18
2020-02-07 00:49:40
106.54.81.174 attack
Feb  6 14:54:47 powerpi2 sshd[16063]: Invalid user kab from 106.54.81.174 port 58906
Feb  6 14:54:49 powerpi2 sshd[16063]: Failed password for invalid user kab from 106.54.81.174 port 58906 ssh2
Feb  6 14:59:28 powerpi2 sshd[16492]: Invalid user oqt from 106.54.81.174 port 57410
...
2020-02-07 00:28:58
54.37.158.218 attackbotsspam
2020-02-06T16:22:28.954321  sshd[9628]: Invalid user gkk from 54.37.158.218 port 41746
2020-02-06T16:22:28.966332  sshd[9628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.218
2020-02-06T16:22:28.954321  sshd[9628]: Invalid user gkk from 54.37.158.218 port 41746
2020-02-06T16:22:31.008083  sshd[9628]: Failed password for invalid user gkk from 54.37.158.218 port 41746 ssh2
2020-02-06T16:25:24.330549  sshd[9719]: Invalid user yhh from 54.37.158.218 port 56355
...
2020-02-07 00:05:34
112.85.42.172 attackspam
Feb  6 17:39:12 jane sshd[27751]: Failed password for root from 112.85.42.172 port 51511 ssh2
Feb  6 17:39:16 jane sshd[27751]: Failed password for root from 112.85.42.172 port 51511 ssh2
...
2020-02-07 00:40:46

最近上报的IP列表

213.195.222.127 201.55.142.15 188.92.214.203 188.92.209.147
179.125.115.182 179.61.94.70 179.49.15.246 45.6.174.221
177.154.72.24 177.23.77.111 143.208.250.99 31.185.98.202
138.36.193.20 103.198.80.76 87.249.157.216 196.0.113.182
191.53.252.58 191.53.250.126 191.37.8.149 189.126.169.158