42.112.220.126

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	445/tcp [2020-08-31]1pkt	2020-08-31 21:28:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.220.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25981
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.220.126.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083100 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 31 21:28:13 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 126.220.112.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 126.220.112.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
201.184.242.42	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/201.184.242.42/ CO - 1H : (8) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CO NAME ASN : ASN13489 IP : 201.184.242.42 CIDR : 201.184.0.0/15 PREFIX COUNT : 20 UNIQUE IP COUNT : 237568 WYKRYTE ATAKI Z ASN13489 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 3 DateTime : 2019-10-11 05:52:09 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 16:18:06
211.253.25.21	attack	Oct 11 06:33:53 web8 sshd\[5194\]: Invalid user Web@123 from 211.253.25.21 Oct 11 06:33:53 web8 sshd\[5194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.25.21 Oct 11 06:33:55 web8 sshd\[5194\]: Failed password for invalid user Web@123 from 211.253.25.21 port 50329 ssh2 Oct 11 06:38:45 web8 sshd\[7407\]: Invalid user Boca-123 from 211.253.25.21 Oct 11 06:38:45 web8 sshd\[7407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.25.21	2019-10-11 15:56:43
77.247.110.225	attackspambots	\[2019-10-11 03:40:41\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:40:41.599-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1632601148825681012",SessionID="0x7fc3ac35d378",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.225/61260",ACLName="no_extension_match" \[2019-10-11 03:41:18\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:41:18.965-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1178201148236518005",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.225/57991",ACLName="no_extension_match" \[2019-10-11 03:41:43\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:41:43.477-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1632701148825681012",SessionID="0x7fc3ac5226d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.225/58627",	2019-10-11 16:03:52
114.38.1.62	attack	19/10/10@23:52:20: FAIL: IoT-Telnet address from=114.38.1.62 ...	2019-10-11 16:12:44
178.88.115.126	attackbotsspam	Oct 11 06:24:19 vps691689 sshd[11949]: Failed password for root from 178.88.115.126 port 32926 ssh2 Oct 11 06:28:55 vps691689 sshd[12312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.88.115.126 ...	2019-10-11 16:22:14
62.234.73.249	attackbotsspam	Oct 6 11:29:47 kmh-mb-001 sshd[8513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.73.249 user=r.r Oct 6 11:29:49 kmh-mb-001 sshd[8513]: Failed password for r.r from 62.234.73.249 port 41976 ssh2 Oct 6 11:29:49 kmh-mb-001 sshd[8513]: Received disconnect from 62.234.73.249 port 41976:11: Bye Bye [preauth] Oct 6 11:29:49 kmh-mb-001 sshd[8513]: Disconnected from 62.234.73.249 port 41976 [preauth] Oct 6 11:45:56 kmh-mb-001 sshd[9100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.73.249 user=r.r Oct 6 11:45:58 kmh-mb-001 sshd[9100]: Failed password for r.r from 62.234.73.249 port 41790 ssh2 Oct 6 11:45:58 kmh-mb-001 sshd[9100]: Received disconnect from 62.234.73.249 port 41790:11: Bye Bye [preauth] Oct 6 11:45:58 kmh-mb-001 sshd[9100]: Disconnected from 62.234.73.249 port 41790 [preauth] Oct 6 11:50:38 kmh-mb-001 sshd[9241]: pam_unix(sshd:auth): authentication failu........ -------------------------------	2019-10-11 16:21:19
34.80.121.39	attackspambots	Lines containing failures of 34.80.121.39 Oct 8 02:07:17 shared03 sshd[23425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.121.39 user=r.r Oct 8 02:07:19 shared03 sshd[23425]: Failed password for r.r from 34.80.121.39 port 35294 ssh2 Oct 8 02:07:19 shared03 sshd[23425]: Received disconnect from 34.80.121.39 port 35294:11: Bye Bye [preauth] Oct 8 02:07:19 shared03 sshd[23425]: Disconnected from authenticating user r.r 34.80.121.39 port 35294 [preauth] Oct 8 02:20:07 shared03 sshd[26688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.121.39 user=r.r Oct 8 02:20:09 shared03 sshd[26688]: Failed password for r.r from 34.80.121.39 port 47420 ssh2 Oct 8 02:20:09 shared03 sshd[26688]: Received disconnect from 34.80.121.39 port 47420:11: Bye Bye [preauth] Oct 8 02:20:09 shared03 sshd[26688]: Disconnected from authenticating user r.r 34.80.121.39 port 47420 [preauth] Oct 8 ........ ------------------------------	2019-10-11 16:17:37
86.3.214.50	attack	Brute force attempt	2019-10-11 15:45:04
106.13.165.94	attackspambots	Oct 11 08:41:39 v22019058497090703 sshd[1817]: Failed password for root from 106.13.165.94 port 59704 ssh2 Oct 11 08:46:00 v22019058497090703 sshd[2165]: Failed password for root from 106.13.165.94 port 38220 ssh2 ...	2019-10-11 16:12:14
176.107.133.97	attack	Oct 7 06:37:35 mailrelay sshd[18651]: Invalid user Utilisateur from 176.107.133.97 port 52510 Oct 7 06:37:35 mailrelay sshd[18651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.133.97 Oct 7 06:37:37 mailrelay sshd[18651]: Failed password for invalid user Utilisateur from 176.107.133.97 port 52510 ssh2 Oct 7 06:37:37 mailrelay sshd[18651]: Received disconnect from 176.107.133.97 port 52510:11: Bye Bye [preauth] Oct 7 06:37:37 mailrelay sshd[18651]: Disconnected from 176.107.133.97 port 52510 [preauth] Oct 7 06:41:45 mailrelay sshd[18672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.133.97 user=r.r Oct 7 06:41:48 mailrelay sshd[18672]: Failed password for r.r from 176.107.133.97 port 36222 ssh2 Oct 7 07:42:28 mailrelay sshd[20062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.133.97 user=r.r Oct 7 07:42:30 mai........ -------------------------------	2019-10-11 16:02:43
91.229.74.250	attackspambots	[portscan] Port scan	2019-10-11 16:10:26
46.38.144.17	attack	Oct 11 09:54:55 webserver postfix/smtpd\[23007\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 09:56:12 webserver postfix/smtpd\[23096\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 09:57:29 webserver postfix/smtpd\[23007\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 09:58:45 webserver postfix/smtpd\[23007\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 10:00:00 webserver postfix/smtpd\[23096\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-11 16:09:27
93.149.79.247	attackspam	Oct 7 00:09:56 kmh-wsh-001-nbg03 sshd[4374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.149.79.247 user=r.r Oct 7 00:09:58 kmh-wsh-001-nbg03 sshd[4374]: Failed password for r.r from 93.149.79.247 port 45845 ssh2 Oct 7 00:09:58 kmh-wsh-001-nbg03 sshd[4374]: Received disconnect from 93.149.79.247 port 45845:11: Bye Bye [preauth] Oct 7 00:09:58 kmh-wsh-001-nbg03 sshd[4374]: Disconnected from 93.149.79.247 port 45845 [preauth] Oct 7 00:35:11 kmh-wsh-001-nbg03 sshd[5305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.149.79.247 user=r.r Oct 7 00:35:13 kmh-wsh-001-nbg03 sshd[5305]: Failed password for r.r from 93.149.79.247 port 51953 ssh2 Oct 7 00:35:13 kmh-wsh-001-nbg03 sshd[5305]: Received disconnect from 93.149.79.247 port 51953:11: Bye Bye [preauth] Oct 7 00:35:13 kmh-wsh-001-nbg03 sshd[5305]: Disconnected from 93.149.79.247 port 51953 [preauth] Oct 7 00:46:02 kmh-wsh-........ -------------------------------	2019-10-11 15:55:22
222.186.175.167	attack	2019-10-11T10:06:22.3539131240 sshd\[15741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root 2019-10-11T10:06:24.1980121240 sshd\[15741\]: Failed password for root from 222.186.175.167 port 5352 ssh2 2019-10-11T10:06:28.4903681240 sshd\[15741\]: Failed password for root from 222.186.175.167 port 5352 ssh2 ...	2019-10-11 16:11:36
91.121.205.83	attack	Oct 10 18:48:48 sachi sshd\[22723\]: Invalid user Hotdog@2017 from 91.121.205.83 Oct 10 18:48:48 sachi sshd\[22723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=telecharge5.vega5.fr Oct 10 18:48:49 sachi sshd\[22723\]: Failed password for invalid user Hotdog@2017 from 91.121.205.83 port 59808 ssh2 Oct 10 18:55:49 sachi sshd\[23322\]: Invalid user Citroen from 91.121.205.83 Oct 10 18:55:49 sachi sshd\[23322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=telecharge5.vega5.fr	2019-10-11 16:22:56

最近上报的IP列表

110.249.36.193	2.136.228.219	103.72.168.51	52.165.159.195
197.36.165.2	218.86.22.219	120.142.100.34	85.104.197.39
138.36.108.46	201.106.62.165	105.235.96.39	34.119.253.152
144.11.156.158	39.17.48.35	158.208.221.51	181.251.161.86
51.170.99.160	59.90.43.198	146.218.176.1	10.160.119.87