必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): The Corporation for Financing & Promoting Technology

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attack
Invalid user www from 42.116.255.216 port 40699
2019-12-10 21:01:46
attack
Dec  5 01:01:19 mail sshd\[36000\]: Invalid user ftpuser from 42.116.255.216
Dec  5 01:01:19 mail sshd\[36000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
...
2019-12-05 14:03:06
attackspambots
SSH Bruteforce attempt
2019-11-25 00:50:32
attack
2019-11-24T07:29:03.995982stark.klein-stark.info sshd\[21875\]: Invalid user webmaster from 42.116.255.216 port 53692
2019-11-24T07:29:04.004976stark.klein-stark.info sshd\[21875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
2019-11-24T07:29:05.860968stark.klein-stark.info sshd\[21875\]: Failed password for invalid user webmaster from 42.116.255.216 port 53692 ssh2
...
2019-11-24 15:12:15
attackspam
Nov 23 12:09:09 server sshd\[20659\]: Failed password for invalid user martin from 42.116.255.216 port 43038 ssh2
Nov 23 18:30:32 server sshd\[22278\]: Invalid user setup from 42.116.255.216
Nov 23 18:30:32 server sshd\[22278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 
Nov 23 18:30:34 server sshd\[22278\]: Failed password for invalid user setup from 42.116.255.216 port 38914 ssh2
Nov 24 04:27:32 server sshd\[18420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216  user=root
...
2019-11-24 09:30:42
attackspambots
SSH Bruteforce
2019-11-07 14:56:02
attack
2019-11-06T16:03:35.139846abusebot-7.cloudsearch.cf sshd\[21615\]: Invalid user qhsupport from 42.116.255.216 port 53744
2019-11-07 00:07:12
attackspam
$f2bV_matches
2019-11-06 19:49:08
attackbotsspam
SSH Brute Force, server-1 sshd[23681]: Failed password for invalid user ubuntu from 42.116.255.216 port 58867 ssh2
2019-11-06 07:12:24
attackspam
Oct 29 02:02:25 server sshd\[17435\]: Invalid user applmgr from 42.116.255.216
Oct 29 02:02:25 server sshd\[17435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 
Oct 29 02:02:27 server sshd\[17435\]: Failed password for invalid user applmgr from 42.116.255.216 port 40942 ssh2
Oct 29 02:17:53 server sshd\[20871\]: Invalid user ftpuser from 42.116.255.216
Oct 29 02:17:53 server sshd\[20871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 
...
2019-10-29 07:24:34
attackbotsspam
Oct 27 21:26:56 xeon sshd[4772]: Failed password for invalid user smtpuser from 42.116.255.216 port 41416 ssh2
2019-10-28 05:57:51
attackspambots
Invalid user admin from 42.116.255.216 port 33751
2019-10-27 14:21:44
attackspam
Oct 26 07:00:58 mail sshd[7445]: Invalid user ubuntu from 42.116.255.216
...
2019-10-26 13:49:21
attackspambots
Oct 24 15:36:16 vmd17057 sshd\[27634\]: Invalid user ubuntu from 42.116.255.216 port 45429
Oct 24 15:36:16 vmd17057 sshd\[27634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
Oct 24 15:36:18 vmd17057 sshd\[27634\]: Failed password for invalid user ubuntu from 42.116.255.216 port 45429 ssh2
...
2019-10-24 21:58:16
attackbots
Oct 24 10:15:18 gw1 sshd[9271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
Oct 24 10:15:21 gw1 sshd[9271]: Failed password for invalid user support from 42.116.255.216 port 46434 ssh2
...
2019-10-24 13:18:12
attack
Oct 22 00:52:22 server sshd\[6353\]: Failed password for invalid user oracle from 42.116.255.216 port 45138 ssh2
Oct 22 10:35:32 server sshd\[10617\]: Invalid user usuario from 42.116.255.216
Oct 22 10:35:32 server sshd\[10617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 
Oct 22 10:35:34 server sshd\[10617\]: Failed password for invalid user usuario from 42.116.255.216 port 58013 ssh2
Oct 22 21:00:22 server sshd\[2667\]: Invalid user www from 42.116.255.216
Oct 22 21:00:22 server sshd\[2667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 
...
2019-10-23 02:01:53
attack
Oct 21 15:39:42 localhost sshd\[31635\]: Invalid user applmgr from 42.116.255.216 port 40978
Oct 21 15:39:42 localhost sshd\[31635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
Oct 21 15:39:44 localhost sshd\[31635\]: Failed password for invalid user applmgr from 42.116.255.216 port 40978 ssh2
2019-10-21 21:42:06
attackspam
$f2bV_matches
2019-10-16 16:09:56
attackbotsspam
Oct  9 08:15:35 *** sshd[11692]: User root from 42.116.255.216 not allowed because not listed in AllowUsers
2019-10-09 16:31:47
attack
Oct  6 13:59:49 arianus sshd\[31497\]: Unable to negotiate with 42.116.255.216 port 34933: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\]
...
2019-10-06 21:00:20
attackbots
Tried sshing with brute force.
2019-10-06 17:26:13
attackbotsspam
IP attempted unauthorised action
2019-10-03 07:59:37
attackbots
Sep 30 15:39:34 work-partkepr sshd\[6889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216  user=root
Sep 30 15:39:36 work-partkepr sshd\[6889\]: Failed password for root from 42.116.255.216 port 33528 ssh2
...
2019-10-01 00:02:16
attackspam
Invalid user teston from 42.116.255.216 port 58572
2019-08-28 08:31:24
attack
Aug 26 14:56:44 eddieflores sshd\[7900\]: Invalid user school from 42.116.255.216
Aug 26 14:56:44 eddieflores sshd\[7900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
Aug 26 14:56:46 eddieflores sshd\[7900\]: Failed password for invalid user school from 42.116.255.216 port 49191 ssh2
Aug 26 15:05:59 eddieflores sshd\[8803\]: Invalid user guitar from 42.116.255.216
Aug 26 15:05:59 eddieflores sshd\[8803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216
2019-08-27 09:48:55
attack
Reported by AbuseIPDB proxy server.
2019-08-26 07:39:36
attackspam
Aug 23 03:43:01 cvbmail sshd\[5606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216  user=root
Aug 23 03:43:03 cvbmail sshd\[5606\]: Failed password for root from 42.116.255.216 port 48991 ssh2
Aug 23 03:50:13 cvbmail sshd\[5625\]: Invalid user rrrr from 42.116.255.216
2019-08-23 10:32:50
attackspambots
Aug 21 20:02:08 vps sshd\[29257\]: Invalid user fs5 from 42.116.255.216
Aug 21 20:03:26 vps sshd\[29268\]: Invalid user franck from 42.116.255.216
...
2019-08-22 03:05:57
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.255.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63643
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.255.216.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 12 23:00:29 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:
216.255.116.42.in-addr.arpa has no PTR record
NSLOOKUP信息:
;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 216.255.116.42.in-addr.arpa: SERVFAIL

相关IP信息:
最新评论:
IP 类型 评论内容 时间
5.199.130.188 attack
Sep 30 22:57:05 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2Sep 30 22:57:07 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2Sep 30 22:57:09 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2Sep 30 22:57:12 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2Sep 30 22:57:15 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2Sep 30 22:57:18 rotator sshd\[14732\]: Failed password for root from 5.199.130.188 port 44087 ssh2
...
2019-10-01 07:01:35
175.212.215.100 attack
Sep 30 22:57:09 apollo sshd\[31652\]: Invalid user usuario from 175.212.215.100Sep 30 22:57:11 apollo sshd\[31652\]: Failed password for invalid user usuario from 175.212.215.100 port 42886 ssh2Sep 30 22:57:14 apollo sshd\[31652\]: Failed password for invalid user usuario from 175.212.215.100 port 42886 ssh2
...
2019-10-01 07:08:47
54.37.21.211 attackspambots
C1,WP GET /suche/wp-login.php
2019-10-01 06:37:57
81.130.146.18 attackspambots
Sep 30 23:57:40 taivassalofi sshd[63281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.130.146.18
Sep 30 23:57:43 taivassalofi sshd[63281]: Failed password for invalid user support from 81.130.146.18 port 62249 ssh2
...
2019-10-01 06:46:04
91.191.223.207 attack
Oct  1 00:52:10 mail postfix/smtpd\[21232\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  1 00:52:10 mail postfix/smtpd\[24550\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  1 00:52:10 mail postfix/smtpd\[24224\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  1 00:52:10 mail postfix/smtpd\[24549\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-10-01 07:05:58
185.211.245.170 attackspambots
Sep 30 19:03:30 web1 postfix/smtpd[12459]: warning: unknown[185.211.245.170]: SASL LOGIN authentication failed: authentication failure
...
2019-10-01 07:04:35
159.203.201.130 attackbots
09/30/2019-16:58:02.368052 159.203.201.130 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-10-01 06:32:51
142.93.235.214 attack
2019-09-30T22:04:44.382077abusebot-5.cloudsearch.cf sshd\[7778\]: Invalid user mpalin from 142.93.235.214 port 54202
2019-10-01 06:35:30
60.43.188.134 attack
WordPress login Brute force / Web App Attack on client site.
2019-10-01 06:56:19
41.230.162.32 attackbotsspam
Port Scan: TCP/443
2019-10-01 06:38:59
113.141.28.106 attack
Sep 30 11:23:25 tdfoods sshd\[26011\]: Invalid user user from 113.141.28.106
Sep 30 11:23:25 tdfoods sshd\[26011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.28.106
Sep 30 11:23:27 tdfoods sshd\[26011\]: Failed password for invalid user user from 113.141.28.106 port 24516 ssh2
Sep 30 11:27:06 tdfoods sshd\[26323\]: Invalid user user from 113.141.28.106
Sep 30 11:27:06 tdfoods sshd\[26323\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.28.106
2019-10-01 06:35:48
206.189.137.113 attackspambots
SSH Bruteforce
2019-10-01 06:36:31
103.99.209.32 attackspambots
Oct  1 00:37:14 vps647732 sshd[22058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.99.209.32
Oct  1 00:37:17 vps647732 sshd[22058]: Failed password for invalid user bkupexec from 103.99.209.32 port 34904 ssh2
...
2019-10-01 06:43:40
49.88.112.85 attack
2019-09-30T22:59:54.892801abusebot-6.cloudsearch.cf sshd\[18866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85  user=root
2019-10-01 07:01:04
222.127.99.45 attackspam
Sep 30 12:44:36 eddieflores sshd\[20416\]: Invalid user admin from 222.127.99.45
Sep 30 12:44:36 eddieflores sshd\[20416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.99.45
Sep 30 12:44:37 eddieflores sshd\[20416\]: Failed password for invalid user admin from 222.127.99.45 port 60470 ssh2
Sep 30 12:49:31 eddieflores sshd\[20860\]: Invalid user baidu from 222.127.99.45
Sep 30 12:49:31 eddieflores sshd\[20860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.99.45
2019-10-01 06:58:59

最近上报的IP列表

27.216.162.230 176.132.54.56 217.36.9.33 216.255.51.237
123.171.2.222 54.92.115.5 89.231.48.206 55.235.133.31
103.89.91.73 36.231.227.197 231.162.142.193 170.98.140.171
240.217.167.102 73.155.16.238 204.223.7.110 154.208.72.205
1.141.124.72 65.26.15.234 8.223.144.21 78.29.178.222