42.112.239.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 42.112.239.249 on Port 445(SMB)	2019-07-19 14:48:40

相同子网IP讨论:

IP	类型	评论内容	时间
42.112.239.220	attackbotsspam	Unauthorized connection attempt detected from IP address 42.112.239.220 to port 23 [J]	2020-03-01 04:55:28
42.112.239.185	attackbots	B: Magento admin pass /admin/ test (wrong country)	2020-01-12 07:05:23
42.112.239.127	attackspam	Invalid user avanthi from 42.112.239.127 port 51002	2019-08-23 14:55:05
42.112.239.219	attackbotsspam	Unauthorized connection attempt from IP address 42.112.239.219 on Port 445(SMB)	2019-08-13 19:26:14
42.112.239.65	attackspam	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=8192)(08041230)	2019-08-05 00:39:48
42.112.239.42	attackspambots	Lines containing failures of 42.112.239.42 Jul 13 05:53:11 mellenthin postfix/smtpd[14655]: connect from unknown[42.112.239.42] Jul x@x Jul 13 05:53:12 mellenthin postfix/smtpd[14655]: lost connection after DATA from unknown[42.112.239.42] Jul 13 05:53:12 mellenthin postfix/smtpd[14655]: disconnect from unknown[42.112.239.42] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Jul 13 16:55:29 mellenthin postfix/smtpd[5662]: connect from unknown[42.112.239.42] Jul x@x Jul 13 16:55:30 mellenthin postfix/smtpd[5662]: lost connection after DATA from unknown[42.112.239.42] Jul 13 16:55:30 mellenthin postfix/smtpd[5662]: disconnect from unknown[42.112.239.42] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.112.239.42	2019-07-14 06:15:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.239.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44572
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.239.249.			IN	A

;; AUTHORITY SECTION:
.			2344	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 19 14:48:24 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 249.239.112.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 249.239.112.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
103.133.105.65	attackbotsspam	Sep 29 17:17:02 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Sep 29 17:17:02 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Sep 29 17:17:03 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Sep 29 17:17:03 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Sep 29 17:17:04 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Sep 29 17:17:04 ns308116 postfix/smtpd[18885]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure ...	2020-09-30 00:45:38
212.70.149.68	attackspambots	2020-09-29T18:27:02.325363web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-29T18:28:59.316739web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-29T18:30:56.350716web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-29T18:32:54.307139web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-29T18:34:53.152975web.dutchmasterserver.nl postfix/smtps/smtpd[530287]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-30 00:35:41
165.232.36.54	attack	none	2020-09-30 01:06:14
81.68.126.101	attackspambots	Invalid user mapred from 81.68.126.101 port 54586	2020-09-30 00:31:03
115.159.115.17	attack	$f2bV_matches	2020-09-30 01:01:25
178.128.233.69	attack	$f2bV_matches	2020-09-30 00:45:22
101.36.118.82	attack	Sep 29 00:20:56 ns308116 sshd[30906]: Invalid user ts3 from 101.36.118.82 port 38006 Sep 29 00:20:56 ns308116 sshd[30906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.118.82 Sep 29 00:20:58 ns308116 sshd[30906]: Failed password for invalid user ts3 from 101.36.118.82 port 38006 ssh2 Sep 29 00:24:16 ns308116 sshd[6070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.118.82 user=root Sep 29 00:24:18 ns308116 sshd[6070]: Failed password for root from 101.36.118.82 port 47684 ssh2 ...	2020-09-30 00:40:04
197.211.36.242	attack	Sep 28 22:35:32 mellenthin postfix/smtpd[8990]: NOQUEUE: reject: RCPT from unknown[197.211.36.242]: 554 5.7.1 Service unavailable; Client host [197.211.36.242] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.211.36.242; from= to= proto=ESMTP helo=<[197.211.36.242]>	2020-09-30 00:51:58
121.132.147.238	attack	Port Scan detected! ...	2020-09-30 00:32:53
217.182.169.183	attackspambots	Sep 29 15:18:35 prox sshd[1495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.169.183 Sep 29 15:18:36 prox sshd[1495]: Failed password for invalid user vpopmail1 from 217.182.169.183 port 46634 ssh2	2020-09-30 00:37:03
185.234.219.11	attack	24 times SMTP brute-force	2020-09-30 00:39:34
51.105.5.16	attackspam	Invalid user marketing from 51.105.5.16 port 55320	2020-09-30 00:53:29
132.232.10.144	attackbots	Invalid user fedora from 132.232.10.144 port 60178	2020-09-30 00:28:40
123.207.85.150	attackspam	2020-09-29T12:28:33.3556771495-001 sshd[9268]: Invalid user webmaster from 123.207.85.150 port 55096 2020-09-29T12:28:34.8436051495-001 sshd[9268]: Failed password for invalid user webmaster from 123.207.85.150 port 55096 ssh2 2020-09-29T12:32:30.5910661495-001 sshd[9437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.85.150 user=root 2020-09-29T12:32:32.6123701495-001 sshd[9437]: Failed password for root from 123.207.85.150 port 59012 ssh2 2020-09-29T12:36:25.8167551495-001 sshd[9567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.85.150 user=root 2020-09-29T12:36:28.0990531495-001 sshd[9567]: Failed password for root from 123.207.85.150 port 34752 ssh2 ...	2020-09-30 01:06:42
117.211.60.27	attackbotsspam	Unauthorised access (Sep 29) SRC=117.211.60.27 LEN=40 TTL=45 ID=57654 TCP DPT=23 WINDOW=23932 SYN	2020-09-30 00:55:11

最近上报的IP列表

94.131.219.184	113.172.125.98	93.152.142.30	95.215.159.137
81.33.134.46	185.127.27.222	92.46.83.28	1.54.209.241
124.123.96.63	83.209.248.201	62.183.103.74	162.216.143.176
65.189.1.108	114.40.180.54	103.83.176.136	81.49.201.138
43.230.41.228	172.98.67.37	91.73.225.255	190.79.148.219

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表