必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspambots
Unauthorised access (Nov 17) SRC=42.116.114.140 LEN=52 TTL=107 ID=22407 DF TCP DPT=445 WINDOW=8192 SYN
2019-11-18 00:06:53
相同子网IP讨论:
IP 类型 评论内容 时间
42.116.114.48 attackbotsspam
port scan and connect, tcp 23 (telnet)
2020-02-28 00:17:43
42.116.114.246 attackbotsspam
Unauthorized connection attempt from IP address 42.116.114.246 on Port 445(SMB)
2019-12-19 03:52:20
42.116.114.149 attackspam
Unauthorised access (Oct 31) SRC=42.116.114.149 LEN=52 TTL=112 ID=24426 DF TCP DPT=445 WINDOW=8192 SYN
2019-10-31 16:52:29
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.114.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58780
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.114.140.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111700 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 18 00:06:48 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 140.114.116.42.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 140.114.116.42.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
166.175.184.45 attackbots
Brute forcing email accounts
2020-10-13 20:25:13
92.63.196.47 attackbots
Oct 13 13:27:01 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=92.63.196.47 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=55977 PROTO=TCP SPT=42318 DPT=12544 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 13:48:33 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=92.63.196.47 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=62391 PROTO=TCP SPT=42318 DPT=13022 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 14:16:36 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=92.63.196.47 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=5227 PROTO=TCP SPT=42318 DPT=13021 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 14:17:36 *hidden* kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=92.63.196.47 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=53984 PROTO=TCP SPT=42318 DPT=13032 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 14
...
2020-10-13 20:35:57
180.249.165.62 attackbotsspam
1602535370 - 10/12/2020 22:42:50 Host: 180.249.165.62/180.249.165.62 Port: 445 TCP Blocked
...
2020-10-13 20:24:28
138.197.222.97 attackbots
 TCP (SYN) 138.197.222.97:50619 -> port 5149, len 44
2020-10-13 20:15:35
178.33.67.12 attackbotsspam
2020-10-11T00:08:40.358089kitsunetech sshd[30692]: Invalid user hdfs from 178.33.67.12 port 52798
2020-10-13 20:32:41
134.122.95.213 attack
5x Failed Password
2020-10-13 20:14:03
94.127.144.179 attack
Dovecot Invalid User Login Attempt.
2020-10-13 20:14:57
112.85.42.231 attackbotsspam
Oct 13 14:53:21 dignus sshd[26876]: Failed password for root from 112.85.42.231 port 20010 ssh2
Oct 13 14:53:24 dignus sshd[26876]: Failed password for root from 112.85.42.231 port 20010 ssh2
Oct 13 14:53:28 dignus sshd[26876]: Failed password for root from 112.85.42.231 port 20010 ssh2
Oct 13 14:53:31 dignus sshd[26876]: Failed password for root from 112.85.42.231 port 20010 ssh2
Oct 13 14:53:34 dignus sshd[26876]: Failed password for root from 112.85.42.231 port 20010 ssh2
...
2020-10-13 19:55:41
80.82.64.73 attackspambots
[MultiHost/MultiPort scan (8)] tcp/110, tcp/135, tcp/143, tcp/20, tcp/21, tcp/22, tcp/23, tcp/81
[scan/connect: 10 time(s)]
*(RWIN=1024)(10130956)
2020-10-13 20:01:42
80.82.70.178 attack
2020-10-13 06:50:47.102295-0500  localhost screensharingd[56326]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 80.82.70.178 :: Type: VNC DES
2020-10-13 20:40:20
61.54.189.57 attackspam
DATE:2020-10-12 22:39:49, IP:61.54.189.57, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)
2020-10-13 20:17:43
161.35.45.62 attackspam
2020-10-13T10:09:17.424165server.espacesoutien.com sshd[16795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.45.62  user=root
2020-10-13T10:09:19.919878server.espacesoutien.com sshd[16795]: Failed password for root from 161.35.45.62 port 38252 ssh2
2020-10-13T10:11:42.636808server.espacesoutien.com sshd[17385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.45.62  user=root
2020-10-13T10:11:44.371826server.espacesoutien.com sshd[17385]: Failed password for root from 161.35.45.62 port 49524 ssh2
...
2020-10-13 20:05:20
167.248.133.18 attackspambots
 TCP (SYN) 167.248.133.18:20910 -> port 2323, len 44
2020-10-13 20:33:04
49.232.3.125 attackbotsspam
Invalid user sheba from 49.232.3.125 port 42776
2020-10-13 20:14:30
103.49.243.238 attack
SSH login attempts.
2020-10-13 20:33:59

最近上报的IP列表

78.131.55.54 103.224.187.124 59.41.145.214 118.121.204.10
115.59.29.27 27.105.241.143 223.127.67.195 117.86.50.240
185.153.197.161 59.115.82.90 190.98.101.170 187.19.6.23
183.89.237.103 45.224.105.217 210.86.173.254 116.72.82.157
183.136.106.166 101.80.113.223 200.236.119.141 113.111.55.0