42.114.195.118

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=30740 TCP DPT=8080 WINDOW=3485 SYN Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=18364 TCP DPT=8080 WINDOW=2278 SYN Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=26423 TCP DPT=8080 WINDOW=3485 SYN Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=47063 TCP DPT=8080 WINDOW=28294 SYN Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=56226 TCP DPT=8080 WINDOW=58997 SYN Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=53590 TCP DPT=8080 WINDOW=2278 SYN Unauthorised access (Sep 27) SRC=42.114.195.118 LEN=40 TTL=47 ID=56427 TCP DPT=8080 WINDOW=28294 SYN Unauthorised access (Sep 27) SRC=42.114.195.118 LEN=40 TTL=47 ID=56310 TCP DPT=8080 WINDOW=2278 SYN	2019-09-29 07:33:15

类型

评论内容

时间

attackbotsspam

Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=30740 TCP DPT=8080 WINDOW=3485 SYN 
Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=18364 TCP DPT=8080 WINDOW=2278 SYN 
Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=26423 TCP DPT=8080 WINDOW=3485 SYN 
Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=47063 TCP DPT=8080 WINDOW=28294 SYN 
Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=56226 TCP DPT=8080 WINDOW=58997 SYN 
Unauthorised access (Sep 28) SRC=42.114.195.118 LEN=40 TTL=47 ID=53590 TCP DPT=8080 WINDOW=2278 SYN 
Unauthorised access (Sep 27) SRC=42.114.195.118 LEN=40 TTL=47 ID=56427 TCP DPT=8080 WINDOW=28294 SYN 
Unauthorised access (Sep 27) SRC=42.114.195.118 LEN=40 TTL=47 ID=56310 TCP DPT=8080 WINDOW=2278 SYN

2019-09-29 07:33:15

相同子网IP讨论:

IP	类型	评论内容	时间
42.114.195.170	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 02:41:52
42.114.195.148	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 01:39:51
42.114.195.39	attackbotsspam	Unauthorized connection attempt detected from IP address 42.114.195.39 to port 23 [J]	2020-01-21 02:49:21
42.114.195.85	attackspambots	Unauthorized connection attempt detected from IP address 42.114.195.85 to port 23 [J]	2020-01-21 02:48:58
42.114.195.85	attack	Unauthorized connection attempt detected from IP address 42.114.195.85 to port 23 [J]	2020-01-20 08:19:28
42.114.195.92	attackspambots	scan z	2020-01-11 21:31:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.195.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8256
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.195.118.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 348 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 07:33:12 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 118.195.114.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 118.195.114.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
121.162.235.44	attackspam	Repeated brute force against a port	2019-11-27 15:48:32
192.144.148.163	attackbots	2019-11-27T06:54:10.034620shield sshd\[18846\]: Invalid user backup from 192.144.148.163 port 42532 2019-11-27T06:54:10.038878shield sshd\[18846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 2019-11-27T06:54:11.621729shield sshd\[18846\]: Failed password for invalid user backup from 192.144.148.163 port 42532 ssh2 2019-11-27T07:01:21.749335shield sshd\[19621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 user=root 2019-11-27T07:01:23.166748shield sshd\[19621\]: Failed password for root from 192.144.148.163 port 46568 ssh2	2019-11-27 15:17:09
116.90.165.26	attack	blacklist	2019-11-27 15:49:08
45.82.153.136	attackbotsspam	Nov 27 08:21:22 relay postfix/smtpd\[28179\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 27 08:21:42 relay postfix/smtpd\[28116\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 27 08:23:11 relay postfix/smtpd\[28179\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 27 08:23:34 relay postfix/smtpd\[26482\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 27 08:24:18 relay postfix/smtpd\[28194\]: warning: unknown\[45.82.153.136\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-27 15:35:47
121.142.111.98	attackspam	SSH bruteforce (Triggered fail2ban)	2019-11-27 15:28:36
176.216.98.61	attackbotsspam	Autoban 176.216.98.61 AUTH/CONNECT	2019-11-27 15:44:58
106.13.103.132	attackbots	Nov 26 00:11:00 django sshd[109585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:11:03 django sshd[109585]: Failed password for r.r from 106.13.103.132 port 44938 ssh2 Nov 26 00:11:03 django sshd[109586]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:16:46 django sshd[110161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 user=r.r Nov 26 00:16:48 django sshd[110161]: Failed password for r.r from 106.13.103.132 port 53288 ssh2 Nov 26 00:16:48 django sshd[110162]: Received disconnect from 106.13.103.132: 11: Bye Bye Nov 26 00:20:48 django sshd[110628]: Invalid user maupas from 106.13.103.132 Nov 26 00:20:48 django sshd[110628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.103.132 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.103.132	2019-11-27 15:40:42
51.89.57.123	attackbots	Nov 27 07:23:22 venus sshd\[8249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.57.123 user=root Nov 27 07:23:24 venus sshd\[8249\]: Failed password for root from 51.89.57.123 port 58586 ssh2 Nov 27 07:29:59 venus sshd\[8329\]: Invalid user saungikar from 51.89.57.123 port 37348 Nov 27 07:29:59 venus sshd\[8329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.57.123 ...	2019-11-27 15:57:58
106.13.132.100	attackspam	Nov 26 21:32:58 php1 sshd\[23139\]: Invalid user behtash from 106.13.132.100 Nov 26 21:32:58 php1 sshd\[23139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.132.100 Nov 26 21:33:00 php1 sshd\[23139\]: Failed password for invalid user behtash from 106.13.132.100 port 47236 ssh2 Nov 26 21:40:39 php1 sshd\[23849\]: Invalid user zarb from 106.13.132.100 Nov 26 21:40:39 php1 sshd\[23849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.132.100	2019-11-27 15:50:59
218.92.0.171	attackbotsspam	Nov 27 08:05:56 tux-35-217 sshd\[16346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Nov 27 08:05:58 tux-35-217 sshd\[16346\]: Failed password for root from 218.92.0.171 port 35437 ssh2 Nov 27 08:06:02 tux-35-217 sshd\[16346\]: Failed password for root from 218.92.0.171 port 35437 ssh2 Nov 27 08:06:05 tux-35-217 sshd\[16346\]: Failed password for root from 218.92.0.171 port 35437 ssh2 ...	2019-11-27 15:15:41
112.85.42.187	attackspambots	Nov 27 08:18:07 srv206 sshd[27678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root Nov 27 08:18:10 srv206 sshd[27678]: Failed password for root from 112.85.42.187 port 17661 ssh2 ...	2019-11-27 15:40:20
46.101.103.207	attackspambots	2019-11-27T07:07:23.988105abusebot-6.cloudsearch.cf sshd\[1388\]: Invalid user mwang from 46.101.103.207 port 48194	2019-11-27 15:31:24
115.146.126.209	attackspam	Nov 27 08:11:16 markkoudstaal sshd[25154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.126.209 Nov 27 08:11:18 markkoudstaal sshd[25154]: Failed password for invalid user suan from 115.146.126.209 port 50756 ssh2 Nov 27 08:19:19 markkoudstaal sshd[25814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.126.209	2019-11-27 15:39:33
74.208.81.84	attack	RDP Bruteforce	2019-11-27 15:51:47
190.129.173.157	attackbotsspam	Nov 27 08:14:25 vps666546 sshd\[24752\]: Invalid user Asd@123321 from 190.129.173.157 port 52465 Nov 27 08:14:25 vps666546 sshd\[24752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.173.157 Nov 27 08:14:27 vps666546 sshd\[24752\]: Failed password for invalid user Asd@123321 from 190.129.173.157 port 52465 ssh2 Nov 27 08:19:19 vps666546 sshd\[24887\]: Invalid user hsugimot from 190.129.173.157 port 35394 Nov 27 08:19:19 vps666546 sshd\[24887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.173.157 ...	2019-11-27 15:24:21

最近上报的IP列表

3.24.104.245	104.144.119.157	193.112.68.108	231.19.71.137
123.206.176.235	92.254.138.45	187.173.142.72	139.155.33.169
189.28.255.231	106.52.57.120	14.241.245.208	116.117.234.195
78.186.52.164	68.64.41.99	96.153.171.168	39.222.186.3
107.153.79.14	10.108.67.94	156.136.226.89	51.207.73.211