42.114.1.219 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-03-12 18:44:22

相同子网IP讨论:

IP	类型	评论内容	时间
42.114.12.225	attack	Unauthorized connection attempt from IP address 42.114.12.225 on Port 445(SMB)	2020-09-01 18:47:23
42.114.112.213	attackbotsspam	1598732822 - 08/29/2020 22:27:02 Host: 42.114.112.213/42.114.112.213 Port: 445 TCP Blocked	2020-08-30 05:43:45
42.114.162.107	attackspambots	1598616236 - 08/28/2020 14:03:56 Host: 42.114.162.107/42.114.162.107 Port: 445 TCP Blocked	2020-08-29 02:13:34
42.114.113.98	attackspambots	Unauthorized connection attempt from IP address 42.114.113.98 on Port 445(SMB)	2020-08-13 20:22:35
42.114.126.120	attackbots	Port probing on unauthorized port 23	2020-08-13 01:48:07
42.114.195.170	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 02:41:52
42.114.195.148	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 01:39:51
42.114.162.15	attack	1594439408 - 07/11/2020 05:50:08 Host: 42.114.162.15/42.114.162.15 Port: 445 TCP Blocked	2020-07-11 18:27:05
42.114.150.19	attack	TCP (SYN) 42.114.150.19:24377 -> port 23, len 44	2020-07-09 19:36:07
42.114.162.87	attackbots	1593847074 - 07/04/2020 09:17:54 Host: 42.114.162.87/42.114.162.87 Port: 445 TCP Blocked	2020-07-04 18:53:32
42.114.170.212	attackbots	Jun 28 05:53:44 debian-2gb-nbg1-2 kernel: \[15575073.274730\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=42.114.170.212 DST=195.201.40.59 LEN=130 TOS=0x00 PREC=0x00 TTL=112 ID=47779 PROTO=UDP SPT=52231 DPT=58592 LEN=110	2020-06-28 15:01:21
42.114.12.86	attackbots	Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB)	2020-06-17 01:02:57
42.114.170.55	attackbotsspam	1591588018 - 06/08/2020 05:46:58 Host: 42.114.170.55/42.114.170.55 Port: 445 TCP Blocked	2020-06-08 19:06:25
42.114.182.94	attack	445/tcp 445/tcp [2020-06-08]2pkt	2020-06-08 13:39:36
42.114.121.152	attack	kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-06-04 12:09:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.1.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.1.219.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 18:44:19 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 219.1.114.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 219.1.114.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
91.151.136.191	attackbotsspam	Unauthorized connection attempt from IP address 91.151.136.191 on Port 445(SMB)	2020-04-23 05:10:29
200.231.192.242	attackbotsspam	Unauthorized connection attempt from IP address 200.231.192.242 on Port 445(SMB)	2020-04-23 04:56:06
69.162.98.67	attackspambots	Unauthorized connection attempt from IP address 69.162.98.67 on Port 445(SMB)	2020-04-23 04:32:32
114.237.109.24	attackbots	SpamScore above: 10.0	2020-04-23 05:07:37
186.233.166.205	attack	2020-04-22T15:55:31.4298931495-001 sshd[58021]: Invalid user postgres from 186.233.166.205 port 14773 2020-04-22T15:55:33.5960191495-001 sshd[58021]: Failed password for invalid user postgres from 186.233.166.205 port 14773 ssh2 2020-04-22T16:00:08.2152301495-001 sshd[58216]: Invalid user cm from 186.233.166.205 port 43569 2020-04-22T16:00:08.2184771495-001 sshd[58216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.233.166.205 2020-04-22T16:00:08.2152301495-001 sshd[58216]: Invalid user cm from 186.233.166.205 port 43569 2020-04-22T16:00:10.4069851495-001 sshd[58216]: Failed password for invalid user cm from 186.233.166.205 port 43569 ssh2 ...	2020-04-23 05:11:20
132.232.68.138	attackspam	$f2bV_matches	2020-04-23 05:05:52
95.168.94.79	attackspambots	MVPower DVR Shell Unauthenticated Command Execution Vulnerability	2020-04-23 05:02:25
54.36.54.24	attackspambots	Apr 22 20:15:29 localhost sshd\[3977\]: Invalid user git_user from 54.36.54.24 port 53804 Apr 22 20:15:29 localhost sshd\[3977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.54.24 Apr 22 20:15:32 localhost sshd\[3977\]: Failed password for invalid user git_user from 54.36.54.24 port 53804 ssh2 ...	2020-04-23 04:53:47
213.96.91.54	attack	Unauthorized connection attempt from IP address 213.96.91.54 on Port 445(SMB)	2020-04-23 04:50:08
98.100.250.202	attackspam	Apr 22 22:10:53 roki-contabo sshd\[28817\]: Invalid user admin from 98.100.250.202 Apr 22 22:10:53 roki-contabo sshd\[28817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.100.250.202 Apr 22 22:10:56 roki-contabo sshd\[28817\]: Failed password for invalid user admin from 98.100.250.202 port 53474 ssh2 Apr 22 22:15:37 roki-contabo sshd\[28921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.100.250.202 user=root Apr 22 22:15:39 roki-contabo sshd\[28921\]: Failed password for root from 98.100.250.202 port 52364 ssh2 ...	2020-04-23 04:45:36
200.122.237.227	attackspambots	Unauthorized connection attempt from IP address 200.122.237.227 on Port 445(SMB)	2020-04-23 04:52:17
164.77.117.10	attackbots	Apr 22 22:07:19 ns392434 sshd[1115]: Invalid user xc from 164.77.117.10 port 54218 Apr 22 22:07:19 ns392434 sshd[1115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.77.117.10 Apr 22 22:07:19 ns392434 sshd[1115]: Invalid user xc from 164.77.117.10 port 54218 Apr 22 22:07:21 ns392434 sshd[1115]: Failed password for invalid user xc from 164.77.117.10 port 54218 ssh2 Apr 22 22:11:54 ns392434 sshd[1437]: Invalid user olimex from 164.77.117.10 port 35624 Apr 22 22:11:54 ns392434 sshd[1437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.77.117.10 Apr 22 22:11:54 ns392434 sshd[1437]: Invalid user olimex from 164.77.117.10 port 35624 Apr 22 22:11:56 ns392434 sshd[1437]: Failed password for invalid user olimex from 164.77.117.10 port 35624 ssh2 Apr 22 22:15:46 ns392434 sshd[1626]: Invalid user lr from 164.77.117.10 port 37534	2020-04-23 04:33:13
110.235.250.209	attackbots	Automatic report - Port Scan Attack	2020-04-23 05:06:37
106.12.161.86	attack	$f2bV_matches	2020-04-23 05:06:53
61.91.35.98	attackspambots	(imapd) Failed IMAP login from 61.91.35.98 (TH/Thailand/61-91-35-98.static.asianet.co.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 23 00:45:30 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=61.91.35.98, lip=5.63.12.44, TLS, session=	2020-04-23 04:47:54

最近上报的IP列表

129.211.15.146	223.150.218.85	171.114.101.248	116.102.168.3
185.243.216.47	91.201.243.238	36.79.222.242	103.140.238.187
61.19.183.48	49.49.251.116	2400:6180:100:d0::8f2:5001	180.76.152.18
125.162.117.231	125.24.70.123	36.72.213.119	200.59.189.122
185.248.140.184	212.125.185.17	189.133.232.140	93.157.144.85

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表