42.116.68.133 - IPInfo

基本信息:

城市(city): Da Nang

省份(region): Da Nang

国家(country): Vietnam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): The Corporation for Financing & Promoting Technology

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 42.116.68.133 on Port 445(SMB)	2019-08-20 01:30:05

相同子网IP讨论:

IP	类型	评论内容	时间
42.116.68.34	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-30 21:45:54
42.116.68.142	attackspambots	Unauthorized connection attempt from IP address 42.116.68.142 on Port 445(SMB)	2019-10-26 01:34:08
42.116.68.18	attack	Aug 16 16:17:39 thevastnessof sshd[16462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.68.18 ...	2019-08-17 00:41:09

类型

评论内容

时间

42.116.68.34

attackspam

Honeypot attack, port: 445, PTR: PTR record not found

2019-12-30 21:45:54

42.116.68.142

attackspambots

Unauthorized connection attempt from IP address 42.116.68.142 on Port 445(SMB)

2019-10-26 01:34:08

42.116.68.18

attack

Aug 16 16:17:39 thevastnessof sshd[16462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.68.18
...

2019-08-17 00:41:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.68.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64536
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.68.133.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 01:29:45 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 133.68.116.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 133.68.116.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
187.162.40.149	attackspam	Automatic report - Port Scan Attack	2020-07-10 07:27:55
78.42.135.89	attackspambots	$f2bV_matches	2020-07-10 07:58:09
45.252.249.73	attack	2020-07-09T23:15:40.702356abusebot-4.cloudsearch.cf sshd[17515]: Invalid user git from 45.252.249.73 port 52966 2020-07-09T23:15:40.707555abusebot-4.cloudsearch.cf sshd[17515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 2020-07-09T23:15:40.702356abusebot-4.cloudsearch.cf sshd[17515]: Invalid user git from 45.252.249.73 port 52966 2020-07-09T23:15:42.615453abusebot-4.cloudsearch.cf sshd[17515]: Failed password for invalid user git from 45.252.249.73 port 52966 ssh2 2020-07-09T23:19:12.488374abusebot-4.cloudsearch.cf sshd[17560]: Invalid user sendil from 45.252.249.73 port 51948 2020-07-09T23:19:12.497152abusebot-4.cloudsearch.cf sshd[17560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 2020-07-09T23:19:12.488374abusebot-4.cloudsearch.cf sshd[17560]: Invalid user sendil from 45.252.249.73 port 51948 2020-07-09T23:19:14.841965abusebot-4.cloudsearch.cf sshd[17560]: Failed pas ...	2020-07-10 07:55:21
5.188.62.14	attack	SSH Bruteforce on Honeypot	2020-07-10 07:30:32
176.107.182.236	attackspam	1,37-03/29 [bc01/m16] PostRequest-Spammer scoring: Durban01	2020-07-10 07:44:07
190.17.64.151	attackbots	2020-07-09 15:08:06.644814-0500 localhost smtpd[46002]: NOQUEUE: reject: RCPT from 151-64-17-190.fibertel.com.ar[190.17.64.151]: 554 5.7.1 Service unavailable; Client host [190.17.64.151] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/190.17.64.151; from= to= proto=ESMTP helo=<151-64-17-190.fibertel.com.ar>	2020-07-10 08:01:00
222.186.175.150	attackspam	Jul 10 01:25:09 vpn01 sshd[5641]: Failed password for root from 222.186.175.150 port 26896 ssh2 Jul 10 01:25:22 vpn01 sshd[5641]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 26896 ssh2 [preauth] ...	2020-07-10 07:26:11
153.35.93.36	attackspam	Jul 10 00:47:04 ns382633 sshd\[2451\]: Invalid user Gyorgyi from 153.35.93.36 port 36827 Jul 10 00:47:04 ns382633 sshd\[2451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.93.36 Jul 10 00:47:06 ns382633 sshd\[2451\]: Failed password for invalid user Gyorgyi from 153.35.93.36 port 36827 ssh2 Jul 10 00:59:15 ns382633 sshd\[4282\]: Invalid user tribles from 153.35.93.36 port 57190 Jul 10 00:59:15 ns382633 sshd\[4282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.93.36	2020-07-10 07:31:02
98.226.177.114	attackspam	SSH/22 MH Probe, BF, Hack -	2020-07-10 07:37:48
112.49.38.10	attack	Jul 9 22:48:25 h2779839 sshd[9472]: Invalid user yyg from 112.49.38.10 port 56708 Jul 9 22:48:25 h2779839 sshd[9472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.49.38.10 Jul 9 22:48:25 h2779839 sshd[9472]: Invalid user yyg from 112.49.38.10 port 56708 Jul 9 22:48:27 h2779839 sshd[9472]: Failed password for invalid user yyg from 112.49.38.10 port 56708 ssh2 Jul 9 22:52:07 h2779839 sshd[9537]: Invalid user alex from 112.49.38.10 port 52446 Jul 9 22:52:07 h2779839 sshd[9537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.49.38.10 Jul 9 22:52:07 h2779839 sshd[9537]: Invalid user alex from 112.49.38.10 port 52446 Jul 9 22:52:09 h2779839 sshd[9537]: Failed password for invalid user alex from 112.49.38.10 port 52446 ssh2 Jul 9 22:55:47 h2779839 sshd[9704]: Invalid user isabelle from 112.49.38.10 port 51430 ...	2020-07-10 07:56:09
129.204.147.84	attackspam	2020-07-09T23:30:48.681175shield sshd\[7634\]: Invalid user songyl from 129.204.147.84 port 40954 2020-07-09T23:30:48.691074shield sshd\[7634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.147.84 2020-07-09T23:30:50.590860shield sshd\[7634\]: Failed password for invalid user songyl from 129.204.147.84 port 40954 ssh2 2020-07-09T23:37:25.245397shield sshd\[9828\]: Invalid user tradana from 129.204.147.84 port 53790 2020-07-09T23:37:25.253564shield sshd\[9828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.147.84	2020-07-10 07:50:24
125.35.92.130	attack	Total attacks: 2	2020-07-10 07:39:44
192.35.169.34	attack	TCP (SYN) 192.35.169.34:40933 -> port 8087, len 44	2020-07-10 07:52:24
91.212.213.93	attackbotsspam	REQUESTED PAGE: /xmlrpc.php	2020-07-10 07:29:54
58.233.240.94	attackbotsspam	Jul 9 20:08:25 ws12vmsma01 sshd[15467]: Invalid user http from 58.233.240.94 Jul 9 20:08:27 ws12vmsma01 sshd[15467]: Failed password for invalid user http from 58.233.240.94 port 54194 ssh2 Jul 9 20:15:34 ws12vmsma01 sshd[16698]: Invalid user huey from 58.233.240.94 ...	2020-07-10 07:51:10

最近上报的IP列表

147.99.41.1	204.142.167.86	60.197.56.60	171.1.193.69
114.245.127.77	14.139.105.79	50.165.214.35	185.70.186.99
106.108.39.196	195.140.27.207	106.164.50.243	165.108.146.137
107.24.243.205	176.215.236.42	131.136.54.83	210.112.10.100
190.1.166.31	93.47.202.47	99.69.34.92	80.103.223.182