42.117.20.103 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Port probing on unauthorized port 23	2020-08-02 03:40:47

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.20.146	attackspam	firewall-block, port(s): 23/tcp	2020-08-15 03:29:19
42.117.20.106	attackspambots	1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked ...	2020-08-03 01:47:29
42.117.20.119	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 22:12:51
42.117.20.8	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 21:15:51
42.117.20.181	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-27 00:14:09
42.117.20.158	attackbotsspam	TCP (SYN) 42.117.20.158:55984 -> port 23, len 44	2020-05-26 00:13:31
42.117.20.14	attack	unauthorized connection attempt	2020-02-29 13:44:46
42.117.20.147	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:15:44
42.117.20.188	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:10:43
42.117.20.196	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:07:26
42.117.20.216	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:00:50
42.117.20.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:57:22
42.117.20.46	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:52:26
42.117.20.60	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:49:07
42.117.20.94	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:47:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1591
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.103.			IN	A

;; AUTHORITY SECTION:
.			176	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080101 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 02 03:40:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 103.20.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 103.20.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
94.177.242.77	attack	Oct 14 22:23:37 OPSO sshd\[29493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.242.77 user=root Oct 14 22:23:40 OPSO sshd\[29493\]: Failed password for root from 94.177.242.77 port 47702 ssh2 Oct 14 22:27:29 OPSO sshd\[30203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.242.77 user=root Oct 14 22:27:31 OPSO sshd\[30203\]: Failed password for root from 94.177.242.77 port 59050 ssh2 Oct 14 22:31:27 OPSO sshd\[30988\]: Invalid user waynek from 94.177.242.77 port 42168 Oct 14 22:31:27 OPSO sshd\[30988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.242.77	2019-10-15 05:53:06
95.90.142.55	attackbotsspam	Oct 14 22:40:17 XXX sshd[62345]: Invalid user ofsaa from 95.90.142.55 port 36428	2019-10-15 05:52:35
67.174.104.7	attackspam	Oct 14 14:45:15 lvpxxxxxxx88-92-201-20 sshd[11391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-174-104-7.hsd1.co.comcast.net user=r.r Oct 14 14:45:18 lvpxxxxxxx88-92-201-20 sshd[11391]: Failed password for r.r from 67.174.104.7 port 37410 ssh2 Oct 14 14:45:18 lvpxxxxxxx88-92-201-20 sshd[11391]: Received disconnect from 67.174.104.7: 11: Bye Bye [preauth] Oct 14 14:50:22 lvpxxxxxxx88-92-201-20 sshd[11441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-174-104-7.hsd1.co.comcast.net Oct 14 14:50:24 lvpxxxxxxx88-92-201-20 sshd[11441]: Failed password for invalid user sexi from 67.174.104.7 port 57932 ssh2 Oct 14 14:50:24 lvpxxxxxxx88-92-201-20 sshd[11441]: Received disconnect from 67.174.104.7: 11: Bye Bye [preauth] Oct 14 14:54:34 lvpxxxxxxx88-92-201-20 sshd[11470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-174-104-7.hsd1.co.c........ -------------------------------	2019-10-15 06:10:22
178.64.252.75	attack	Oct 14 21:50:50 imap-login: Info: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=178.64.252.75, lip=192.168.100.101, session=\\ Oct 14 21:51:15 imap-login: Info: Disconnected \(auth failed, 1 attempts in 12 secs\): user=\, method=PLAIN, rip=178.64.252.75, lip=192.168.100.101, session=\\ Oct 14 21:51:16 imap-login: Info: Disconnected \(no auth attempts in 0 secs\): user=\<\>, rip=178.64.252.75, lip=192.168.100.101, session=\\ Oct 14 21:51:17 imap-login: Info: Disconnected \(auth failed, 1 attempts in 12 secs\): user=\, method=PLAIN, rip=178.64.252.75, lip=192.168.100.101, session=\\ Oct 14 21:51:41 imap-login: Info: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=178.64.252.75, lip=192.168.100.101, session=\<0h4GMuSU0gCyQPxL\>\ Oct 14 21:51:53 imap-login: Info: Disconnected \(auth failed	2019-10-15 05:53:37
162.223.89.190	attackbotsspam	Oct 14 11:54:55 hpm sshd\[4862\]: Invalid user nwes from 162.223.89.190 Oct 14 11:54:55 hpm sshd\[4862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.223.89.190 Oct 14 11:54:56 hpm sshd\[4862\]: Failed password for invalid user nwes from 162.223.89.190 port 45572 ssh2 Oct 14 11:59:01 hpm sshd\[5201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.223.89.190 user=root Oct 14 11:59:03 hpm sshd\[5201\]: Failed password for root from 162.223.89.190 port 58334 ssh2	2019-10-15 06:14:54
154.120.242.70	attackspambots	Invalid user ftpuser from 154.120.242.70 port 34502	2019-10-15 06:00:33
144.217.166.92	attack	Triggered by Fail2Ban at Vostok web server	2019-10-15 06:23:46
222.186.180.8	attack	Oct 15 00:07:58 srv206 sshd[29604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Oct 15 00:08:00 srv206 sshd[29604]: Failed password for root from 222.186.180.8 port 16298 ssh2 ...	2019-10-15 06:08:14
67.225.176.232	attackspam	abcdata-sys.de:80 67.225.176.232 - - \[14/Oct/2019:21:55:43 +0200\] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "Poster" www.goldgier.de 67.225.176.232 \[14/Oct/2019:21:55:45 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4484 "-" "Poster"	2019-10-15 06:19:54
180.166.30.54	attack	10/14/2019-21:56:13.368665 180.166.30.54 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-15 06:05:06
106.12.27.130	attackbotsspam	Oct 14 21:52:34 vtv3 sshd\[25307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.130 user=root Oct 14 21:52:36 vtv3 sshd\[25307\]: Failed password for root from 106.12.27.130 port 42464 ssh2 Oct 14 21:59:19 vtv3 sshd\[28400\]: Invalid user laraht from 106.12.27.130 port 35766 Oct 14 21:59:19 vtv3 sshd\[28400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.130 Oct 14 21:59:21 vtv3 sshd\[28400\]: Failed password for invalid user laraht from 106.12.27.130 port 35766 ssh2 Oct 14 22:13:03 vtv3 sshd\[3009\]: Invalid user oracle from 106.12.27.130 port 44300 Oct 14 22:13:03 vtv3 sshd\[3009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.130 Oct 14 22:13:05 vtv3 sshd\[3009\]: Failed password for invalid user oracle from 106.12.27.130 port 44300 ssh2 Oct 14 22:17:47 vtv3 sshd\[5421\]: Invalid user canna from 106.12.27.130 port 56584 Oct 14 22:17:47 vtv	2019-10-15 06:02:29
98.213.58.68	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-10-15 06:01:23
222.186.175.216	attackspam	Oct 14 19:08:39 firewall sshd[2381]: Failed password for root from 222.186.175.216 port 52096 ssh2 Oct 14 19:08:39 firewall sshd[2381]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 52096 ssh2 [preauth] Oct 14 19:08:39 firewall sshd[2381]: Disconnecting: Too many authentication failures [preauth] ...	2019-10-15 06:12:43
222.186.173.183	attackspambots	Oct 14 21:52:06 ip-172-31-1-72 sshd\[6989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Oct 14 21:52:08 ip-172-31-1-72 sshd\[6989\]: Failed password for root from 222.186.173.183 port 31814 ssh2 Oct 14 21:52:35 ip-172-31-1-72 sshd\[6995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Oct 14 21:52:38 ip-172-31-1-72 sshd\[6995\]: Failed password for root from 222.186.173.183 port 37034 ssh2 Oct 14 21:53:09 ip-172-31-1-72 sshd\[7007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root	2019-10-15 05:56:58
51.254.114.105	attackspam	2019-10-14T21:33:41.833159abusebot-2.cloudsearch.cf sshd\[32567\]: Invalid user sa from 51.254.114.105 port 36046	2019-10-15 05:50:17

最近上报的IP列表

196.42.173.32	222.134.3.217	218.157.178.231	12.121.93.32
141.252.115.2	180.209.36.218	187.19.248.124	42.116.240.77
125.162.57.7	77.18.123.45	30.23.155.227	220.231.127.5
249.59.117.215	62.198.92.207	183.74.83.186	61.2.171.212
115.211.195.108	25.223.126.115	242.185.135.245	42.117.183.250

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表