必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspambots
Unauthorized connection attempt from IP address 42.112.239.249 on Port 445(SMB)
2019-07-19 14:48:40
相同子网IP讨论:
IP 类型 评论内容 时间
42.112.239.220 attackbotsspam
Unauthorized connection attempt detected from IP address 42.112.239.220 to port 23 [J]
2020-03-01 04:55:28
42.112.239.185 attackbots
B: Magento admin pass /admin/ test (wrong country)
2020-01-12 07:05:23
42.112.239.127 attackspam
Invalid user avanthi from 42.112.239.127 port 51002
2019-08-23 14:55:05
42.112.239.219 attackbotsspam
Unauthorized connection attempt from IP address 42.112.239.219 on Port 445(SMB)
2019-08-13 19:26:14
42.112.239.65 attackspam
[SMB remote code execution attempt: port tcp/445]
[scan/connect: 2 time(s)]
*(RWIN=8192)(08041230)
2019-08-05 00:39:48
42.112.239.42 attackspambots
Lines containing failures of 42.112.239.42
Jul 13 05:53:11 mellenthin postfix/smtpd[14655]: connect from unknown[42.112.239.42]
Jul x@x
Jul 13 05:53:12 mellenthin postfix/smtpd[14655]: lost connection after DATA from unknown[42.112.239.42]
Jul 13 05:53:12 mellenthin postfix/smtpd[14655]: disconnect from unknown[42.112.239.42] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4
Jul 13 16:55:29 mellenthin postfix/smtpd[5662]: connect from unknown[42.112.239.42]
Jul x@x
Jul 13 16:55:30 mellenthin postfix/smtpd[5662]: lost connection after DATA from unknown[42.112.239.42]
Jul 13 16:55:30 mellenthin postfix/smtpd[5662]: disconnect from unknown[42.112.239.42] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=42.112.239.42
2019-07-14 06:15:12
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.239.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44572
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.239.249.			IN	A

;; AUTHORITY SECTION:
.			2344	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 19 14:48:24 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 249.239.112.42.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 249.239.112.42.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
103.133.105.65 attackbotsspam
Sep 29 17:17:02 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
Sep 29 17:17:02 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
Sep 29 17:17:03 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
Sep 29 17:17:03 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
Sep 29 17:17:04 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
Sep 29 17:17:04 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure
...
2020-09-30 00:45:38
212.70.149.68 attackspambots
2020-09-29T18:27:02.325363web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-09-29T18:28:59.316739web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-09-29T18:30:56.350716web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-09-29T18:32:54.307139web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-09-29T18:34:53.152975web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-09-30 00:35:41
165.232.36.54 attack
none
2020-09-30 01:06:14
81.68.126.101 attackspambots
Invalid user mapred from 81.68.126.101 port 54586
2020-09-30 00:31:03
115.159.115.17 attack
$f2bV_matches
2020-09-30 01:01:25
178.128.233.69 attack
$f2bV_matches
2020-09-30 00:45:22
101.36.118.82 attack
Sep 29 00:20:56 ns308116 sshd[30906]: Invalid user ts3 from 101.36.118.82 port 38006
Sep 29 00:20:56 ns308116 sshd[30906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.118.82
Sep 29 00:20:58 ns308116 sshd[30906]: Failed password for invalid user ts3 from 101.36.118.82 port 38006 ssh2
Sep 29 00:24:16 ns308116 sshd[6070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.118.82  user=root
Sep 29 00:24:18 ns308116 sshd[6070]: Failed password for root from 101.36.118.82 port 47684 ssh2
...
2020-09-30 00:40:04
197.211.36.242 attack
Sep 28 22:35:32 mellenthin postfix/smtpd[8990]: NOQUEUE: reject: RCPT from unknown[197.211.36.242]: 554 5.7.1 Service unavailable; Client host [197.211.36.242] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.211.36.242; from= to= proto=ESMTP helo=<[197.211.36.242]>
2020-09-30 00:51:58
121.132.147.238 attack
Port Scan detected!
...
2020-09-30 00:32:53
217.182.169.183 attackspambots
Sep 29 15:18:35 prox sshd[1495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.169.183 
Sep 29 15:18:36 prox sshd[1495]: Failed password for invalid user vpopmail1 from 217.182.169.183 port 46634 ssh2
2020-09-30 00:37:03
185.234.219.11 attack
24 times SMTP brute-force
2020-09-30 00:39:34
51.105.5.16 attackspam
Invalid user marketing from 51.105.5.16 port 55320
2020-09-30 00:53:29
132.232.10.144 attackbots
Invalid user fedora from 132.232.10.144 port 60178
2020-09-30 00:28:40
123.207.85.150 attackspam
2020-09-29T12:28:33.3556771495-001 sshd[9268]: Invalid user webmaster from 123.207.85.150 port 55096
2020-09-29T12:28:34.8436051495-001 sshd[9268]: Failed password for invalid user webmaster from 123.207.85.150 port 55096 ssh2
2020-09-29T12:32:30.5910661495-001 sshd[9437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.85.150  user=root
2020-09-29T12:32:32.6123701495-001 sshd[9437]: Failed password for root from 123.207.85.150 port 59012 ssh2
2020-09-29T12:36:25.8167551495-001 sshd[9567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.85.150  user=root
2020-09-29T12:36:28.0990531495-001 sshd[9567]: Failed password for root from 123.207.85.150 port 34752 ssh2
...
2020-09-30 01:06:42
117.211.60.27 attackbotsspam
Unauthorised access (Sep 29) SRC=117.211.60.27 LEN=40 TTL=45 ID=57654 TCP DPT=23 WINDOW=23932 SYN
2020-09-30 00:55:11

最近上报的IP列表

94.131.219.184 113.172.125.98 93.152.142.30 95.215.159.137
81.33.134.46 185.127.27.222 92.46.83.28 1.54.209.241
124.123.96.63 83.209.248.201 62.183.103.74 162.216.143.176
65.189.1.108 114.40.180.54 103.83.176.136 81.49.201.138
43.230.41.228 172.98.67.37 91.73.225.255 190.79.148.219