42.114.1.219 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-03-12 18:44:22

相同子网IP讨论:

IP	类型	评论内容	时间
42.114.12.225	attack	Unauthorized connection attempt from IP address 42.114.12.225 on Port 445(SMB)	2020-09-01 18:47:23
42.114.112.213	attackbotsspam	1598732822 - 08/29/2020 22:27:02 Host: 42.114.112.213/42.114.112.213 Port: 445 TCP Blocked	2020-08-30 05:43:45
42.114.162.107	attackspambots	1598616236 - 08/28/2020 14:03:56 Host: 42.114.162.107/42.114.162.107 Port: 445 TCP Blocked	2020-08-29 02:13:34
42.114.113.98	attackspambots	Unauthorized connection attempt from IP address 42.114.113.98 on Port 445(SMB)	2020-08-13 20:22:35
42.114.126.120	attackbots	Port probing on unauthorized port 23	2020-08-13 01:48:07
42.114.195.170	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 02:41:52
42.114.195.148	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 01:39:51
42.114.162.15	attack	1594439408 - 07/11/2020 05:50:08 Host: 42.114.162.15/42.114.162.15 Port: 445 TCP Blocked	2020-07-11 18:27:05
42.114.150.19	attack	TCP (SYN) 42.114.150.19:24377 -> port 23, len 44	2020-07-09 19:36:07
42.114.162.87	attackbots	1593847074 - 07/04/2020 09:17:54 Host: 42.114.162.87/42.114.162.87 Port: 445 TCP Blocked	2020-07-04 18:53:32
42.114.170.212	attackbots	Jun 28 05:53:44 debian-2gb-nbg1-2 kernel: \[15575073.274730\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=42.114.170.212 DST=195.201.40.59 LEN=130 TOS=0x00 PREC=0x00 TTL=112 ID=47779 PROTO=UDP SPT=52231 DPT=58592 LEN=110	2020-06-28 15:01:21
42.114.12.86	attackbots	Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB)	2020-06-17 01:02:57
42.114.170.55	attackbotsspam	1591588018 - 06/08/2020 05:46:58 Host: 42.114.170.55/42.114.170.55 Port: 445 TCP Blocked	2020-06-08 19:06:25
42.114.182.94	attack	445/tcp 445/tcp [2020-06-08]2pkt	2020-06-08 13:39:36
42.114.121.152	attack	kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-06-04 12:09:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.1.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.1.219.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 18:44:19 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 219.1.114.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 219.1.114.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
54.38.92.35	attack	Mar 10 09:37:06 nginx sshd[19285]: Connection from 54.38.92.35 port 60000 on 10.23.102.80 port 22 Mar 10 09:37:06 nginx sshd[19285]: Did not receive identification string from 54.38.92.35	2020-03-10 16:52:39
104.248.58.71	attack	Mar 10 08:11:25 amit sshd\[25907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.58.71 user=root Mar 10 08:11:26 amit sshd\[25907\]: Failed password for root from 104.248.58.71 port 53124 ssh2 Mar 10 08:16:34 amit sshd\[28375\]: Invalid user dev from 104.248.58.71 Mar 10 08:16:34 amit sshd\[28375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.58.71 ...	2020-03-10 17:24:33
222.186.129.236	attackspam	VNC authentication failed from 222.186.129.236	2020-03-10 16:50:53
113.183.138.140	attackspambots	1583812188 - 03/10/2020 04:49:48 Host: 113.183.138.140/113.183.138.140 Port: 445 TCP Blocked	2020-03-10 17:04:17
27.72.30.214	attackspam	DATE:2020-03-10 04:47:05, IP:27.72.30.214, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-10 16:53:09
223.247.223.194	attack	Mar 10 04:56:09 vps46666688 sshd[8174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 Mar 10 04:56:10 vps46666688 sshd[8174]: Failed password for invalid user debian-spamd from 223.247.223.194 port 57132 ssh2 ...	2020-03-10 16:53:31
162.243.98.66	attack	ssh brute force	2020-03-10 17:03:31
110.45.155.101	attack	DATE:2020-03-10 08:55:50, IP:110.45.155.101, PORT:ssh SSH brute force auth (docker-dc)	2020-03-10 17:22:23
110.137.83.86	attack	1583812179 - 03/10/2020 04:49:39 Host: 110.137.83.86/110.137.83.86 Port: 445 TCP Blocked	2020-03-10 17:09:02
92.118.38.42	attackspambots	2020-03-10 10:03:19 dovecot_login authenticator failed for $User$ \[92.118.38.42\]: 535 Incorrect authentication data $set_id=nbryant@no-server.de$ 2020-03-10 10:03:27 dovecot_login authenticator failed for $User$ \[92.118.38.42\]: 535 Incorrect authentication data $set_id=nbryant@no-server.de$ 2020-03-10 10:03:28 dovecot_login authenticator failed for $User$ \[92.118.38.42\]: 535 Incorrect authentication data $set_id=nbryant@no-server.de$ 2020-03-10 10:03:31 dovecot_login authenticator failed for $User$ \[92.118.38.42\]: 535 Incorrect authentication data $set_id=nbryant@no-server.de$ 2020-03-10 10:03:40 dovecot_login authenticator failed for $User$ \[92.118.38.42\]: 535 Incorrect authentication data $set_id=nalexander@no-server.de$ ...	2020-03-10 17:10:58
114.40.254.97	attackbots	unauthorized connection attempt	2020-03-10 16:46:31
49.231.182.35	attackbots	$f2bV_matches_ltvn	2020-03-10 17:05:07
195.54.166.249	attackbots	Mar 10 09:57:32 debian-2gb-nbg1-2 kernel: \[6089800.360695\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.166.249 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=38329 PROTO=TCP SPT=58557 DPT=22422 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-10 17:13:20
185.228.233.103	attack	Brute force attempt	2020-03-10 16:48:14
42.119.7.37	attackspambots	Automatic report - Port Scan Attack	2020-03-10 17:13:56

最近上报的IP列表

129.211.15.146	223.150.218.85	171.114.101.248	116.102.168.3
185.243.216.47	91.201.243.238	36.79.222.242	103.140.238.187
61.19.183.48	49.49.251.116	2400:6180:100:d0::8f2:5001	180.76.152.18
125.162.117.231	125.24.70.123	36.72.213.119	200.59.189.122
185.248.140.184	212.125.185.17	189.133.232.140	93.157.144.85

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表