42.117.20.158 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	TCP (SYN) 42.117.20.158:55984 -> port 23, len 44	2020-05-26 00:13:31

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.20.146	attackspam	firewall-block, port(s): 23/tcp	2020-08-15 03:29:19
42.117.20.106	attackspambots	1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked ...	2020-08-03 01:47:29
42.117.20.103	attackbotsspam	Port probing on unauthorized port 23	2020-08-02 03:40:47
42.117.20.119	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 22:12:51
42.117.20.8	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 21:15:51
42.117.20.181	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-27 00:14:09
42.117.20.14	attack	unauthorized connection attempt	2020-02-29 13:44:46
42.117.20.147	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:15:44
42.117.20.188	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:10:43
42.117.20.196	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:07:26
42.117.20.216	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:00:50
42.117.20.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:57:22
42.117.20.46	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:52:26
42.117.20.60	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:49:07
42.117.20.94	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:47:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27720
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.158.			IN	A

;; AUTHORITY SECTION:
.			466	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052500 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 26 00:13:25 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 158.20.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 158.20.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
202.129.197.26	attackbots	Unauthorized connection attempt from IP address 202.129.197.26 on Port 445(SMB)	2020-03-19 07:22:48
113.172.192.48	attack	Unauthorized connection attempt from IP address 113.172.192.48 on Port 445(SMB)	2020-03-19 07:22:01
182.74.133.117	attack	SSH Invalid Login	2020-03-19 07:04:52
112.64.170.178	attackbotsspam	Mar 19 00:15:40 SilenceServices sshd[10428]: Failed password for root from 112.64.170.178 port 16391 ssh2 Mar 19 00:18:49 SilenceServices sshd[831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.170.178 Mar 19 00:18:51 SilenceServices sshd[831]: Failed password for invalid user andoria from 112.64.170.178 port 24473 ssh2	2020-03-19 07:22:29
80.187.140.26	attack	(mod_security) mod_security (id:350202) triggered by 80.187.140.26 (DE/Germany/tmo-140-26.customers.d1-online.com): 10 in the last 3600 secs	2020-03-19 06:53:29
162.243.14.185	attackspambots	Invalid user a from 162.243.14.185 port 56298	2020-03-19 07:08:55
122.228.19.79	attackbotsspam	18.03.2020 22:26:36 Connection to port 49153 blocked by firewall	2020-03-19 07:12:11
165.227.179.138	attack	(sshd) Failed SSH login from 165.227.179.138 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 18 23:03:27 amsweb01 sshd[14067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root Mar 18 23:03:29 amsweb01 sshd[14067]: Failed password for root from 165.227.179.138 port 47620 ssh2 Mar 18 23:11:52 amsweb01 sshd[14894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root Mar 18 23:11:54 amsweb01 sshd[14894]: Failed password for root from 165.227.179.138 port 37354 ssh2 Mar 18 23:15:05 amsweb01 sshd[15364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 user=root	2020-03-19 07:18:55
182.23.1.163	attack	(sshd) Failed SSH login from 182.23.1.163 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 18 23:03:13 elude sshd[18093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.1.163 user=root Mar 18 23:03:15 elude sshd[18093]: Failed password for root from 182.23.1.163 port 39382 ssh2 Mar 18 23:12:09 elude sshd[18634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.1.163 user=root Mar 18 23:12:12 elude sshd[18634]: Failed password for root from 182.23.1.163 port 44098 ssh2 Mar 18 23:15:25 elude sshd[18807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.1.163 user=root	2020-03-19 06:50:17
95.170.151.147	attackbotsspam	Unauthorized connection attempt from IP address 95.170.151.147 on Port 445(SMB)	2020-03-19 06:50:43
31.50.42.158	attackspam	SQL Injection attack	2020-03-19 07:28:53
139.59.18.215	attackspam	$f2bV_matches	2020-03-19 07:23:45
37.224.46.18	attack	Invalid user prova from 37.224.46.18 port 49304	2020-03-19 07:12:52
180.76.110.70	attackbots	DATE:2020-03-18 23:15:27, IP:180.76.110.70, PORT:ssh SSH brute force auth (docker-dc)	2020-03-19 06:57:18
165.22.191.129	attackspambots	165.22.191.129 - - [18/Mar/2020:23:15:01 +0100] "GET /wp-login.php HTTP/1.1" 200 5807 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.191.129 - - [18/Mar/2020:23:15:03 +0100] "POST /wp-login.php HTTP/1.1" 200 6586 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.191.129 - - [18/Mar/2020:23:15:04 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-19 07:21:00

最近上报的IP列表

4.56.44.201	132.214.238.13	14.251.215.183	2.147.45.27
81.218.111.110	14.242.179.50	165.227.72.153	193.107.201.77
2601:6c0:c006:4bd0:ddc7:a230:a4ce:9adf	144.91.87.170	36.99.207.206	200.233.250.50
49.204.183.117	14.248.82.166	224.96.27.198	122.227.189.198
59.90.235.129	217.141.115.150	95.49.31.142	188.162.65.65

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表