42.117.128.240

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 14 07:26:03 vmd46246 kernel: [216143.363128] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 Dec 14 07:26:03 vmd46246 kernel: [216143.420914] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 Dec 14 07:26:03 vmd46246 kernel: [216143.423610] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 ...	2019-12-14 18:19:55

类型

评论内容

时间

attack

Dec 14 07:26:03 vmd46246 kernel: [216143.363128] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 
Dec 14 07:26:03 vmd46246 kernel: [216143.420914] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 
Dec 14 07:26:03 vmd46246 kernel: [216143.423610] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=42.117.128.240 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=13363 PROTO=TCP SPT=50213 DPT=23 WINDOW=61973 RES=0x00 SYN URGP=0 
...

2019-12-14 18:19:55

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.128.198	attack	Port probing on unauthorized port 23	2020-03-17 11:45:28
42.117.128.182	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-31 18:58:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.128.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5179
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.128.240.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121400 1800 900 604800 86400

;; Query time: 302 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 14 18:19:49 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 240.128.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 240.128.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
124.225.69.95	attackbots	Jun 6 14:48:10 PorscheCustomer sshd[4888]: Failed password for root from 124.225.69.95 port 43738 ssh2 Jun 6 14:52:51 PorscheCustomer sshd[4994]: Failed password for root from 124.225.69.95 port 36176 ssh2 ...	2020-06-06 21:33:26
52.72.203.201	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-06 21:22:44
137.226.113.9	attackspambots	port scan and connect, tcp 443 (https)	2020-06-06 21:06:05
123.31.45.35	attackspambots	Jun 6 14:54:49 inter-technics sshd[11249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.45.35 user=root Jun 6 14:54:50 inter-technics sshd[11249]: Failed password for root from 123.31.45.35 port 26446 ssh2 Jun 6 14:59:14 inter-technics sshd[11581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.45.35 user=root Jun 6 14:59:16 inter-technics sshd[11581]: Failed password for root from 123.31.45.35 port 19618 ssh2 Jun 6 15:03:47 inter-technics sshd[12008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.45.35 user=root Jun 6 15:03:48 inter-technics sshd[12008]: Failed password for root from 123.31.45.35 port 12812 ssh2 ...	2020-06-06 21:13:20
85.10.199.185	attack	20 attempts against mh-misbehave-ban on mist	2020-06-06 21:21:28
134.209.12.115	attackspam	Jun 6 09:07:35 NPSTNNYC01T sshd[4566]: Failed password for root from 134.209.12.115 port 42634 ssh2 Jun 6 09:10:58 NPSTNNYC01T sshd[4846]: Failed password for root from 134.209.12.115 port 44888 ssh2 ...	2020-06-06 21:31:11
159.203.27.146	attackbotsspam	Jun 6 15:01:28 OPSO sshd\[28470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.27.146 user=root Jun 6 15:01:29 OPSO sshd\[28470\]: Failed password for root from 159.203.27.146 port 39170 ssh2 Jun 6 15:04:10 OPSO sshd\[28590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.27.146 user=root Jun 6 15:04:12 OPSO sshd\[28590\]: Failed password for root from 159.203.27.146 port 57766 ssh2 Jun 6 15:07:01 OPSO sshd\[28983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.27.146 user=root	2020-06-06 21:30:24
49.233.189.161	attackspam	Jun 6 15:20:37 abendstille sshd\[22369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.189.161 user=root Jun 6 15:20:39 abendstille sshd\[22369\]: Failed password for root from 49.233.189.161 port 56114 ssh2 Jun 6 15:23:07 abendstille sshd\[25021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.189.161 user=root Jun 6 15:23:10 abendstille sshd\[25021\]: Failed password for root from 49.233.189.161 port 60654 ssh2 Jun 6 15:25:48 abendstille sshd\[27671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.189.161 user=root ...	2020-06-06 21:38:15
219.240.99.110	attackspambots	Jun 6 15:16:45 cp sshd[22792]: Failed password for root from 219.240.99.110 port 49806 ssh2 Jun 6 15:16:45 cp sshd[22792]: Failed password for root from 219.240.99.110 port 49806 ssh2	2020-06-06 21:45:40
139.155.71.154	attackspambots	Jun 6 15:23:33 vps647732 sshd[27467]: Failed password for root from 139.155.71.154 port 57224 ssh2 ...	2020-06-06 21:29:00
51.178.41.60	attackbotsspam	Jun 6 14:31:26 [host] sshd[11238]: pam_unix(sshd: Jun 6 14:31:28 [host] sshd[11238]: Failed passwor Jun 6 14:34:54 [host] sshd[11336]: pam_unix(sshd:	2020-06-06 21:06:46
178.213.190.33	attackbots	(mod_security) mod_security (id:210492) triggered by 178.213.190.33 (UA/Ukraine/-): 5 in the last 3600 secs	2020-06-06 21:05:00
200.146.239.217	attackbotsspam	$f2bV_matches	2020-06-06 21:43:33
61.52.139.148	attackbotsspam	Port probing on unauthorized port 23	2020-06-06 21:09:22
183.82.121.34	attackspambots	Jun 6 18:02:17 gw1 sshd[1519]: Failed password for root from 183.82.121.34 port 46609 ssh2 ...	2020-06-06 21:17:48

最近上报的IP列表

7.121.88.10	126.76.72.219	18.184.213.21	177.211.133.163
250.199.33.168	134.118.233.110	106.82.52.113	46.180.192.253
177.128.34.5	137.186.115.87	58.63.125.31	28.149.147.40
18.108.75.13	150.249.7.111	167.112.9.64	221.39.237.252
123.21.243.88	187.208.101.34	39.51.38.64	93.25.138.155