必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
点此参与IP信息讨论
类型 评论内容 时间
attackspam 
Telnet Server BruteForce Attack
 2019-09-08 08:49:34
attackspam 
Honeypot attack, port: 23, PTR: PTR record not found
 2019-09-07 04:32:39
相同子网IP讨论:
IP 类型 评论内容 时间
42.117.20.146 attackspam 
firewall-block, port(s): 23/tcp
 2020-08-15 03:29:19
42.117.20.106 attackspambots 
1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked
...
 2020-08-03 01:47:29
42.117.20.103 attackbotsspam 
Port probing on unauthorized port 23
 2020-08-02 03:40:47
42.117.20.119 attackbots 
Telnet/23 MH Probe, Scan, BF, Hack -
 2020-08-01 22:12:51
42.117.20.8 attackbotsspam 
Telnet/23 MH Probe, Scan, BF, Hack -
 2020-08-01 21:15:51
42.117.20.181 attackbots 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-05-27 00:14:09
42.117.20.158 attackbotsspam 
 TCP (SYN) 42.117.20.158:55984 -> port 23, len 44
 2020-05-26 00:13:31
42.117.20.14 attack 
unauthorized connection attempt
 2020-02-29 13:44:46
42.117.20.147 attackbots 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-29 00:15:44
42.117.20.188 attack 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-29 00:10:43
42.117.20.196 attackbotsspam 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-29 00:07:26
42.117.20.216 attack 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-29 00:00:50
42.117.20.222 attack 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-28 23:57:22
42.117.20.46 attackbotsspam 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-28 23:52:26
42.117.20.60 attackspam 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-28 23:49:07
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.176
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11162
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.176.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 04:32:33 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 176.20.117.42.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 176.20.117.42.in-addr.arpa: SERVFAIL
相关IP信息:
42.117.20.169
42.117.20.250
42.117.20.143
42.117.20.226
42.117.20.253
42.117.20.149
42.117.20.196
42.117.20.229
42.117.20.127
42.117.20.245
42.117.20.24
42.117.20.82
42.117.20.83
42.117.20.109
42.117.20.73
42.117.20.116
42.117.20.225
42.117.20.232
42.117.20.52
42.117.20.23
42.117.20.81
42.117.20.214
42.117.20.117
42.117.20.91
42.117.20.88
42.117.20.2
42.117.20.175
42.117.20.201
42.117.20.26
42.117.20.178
42.117.20.147
42.117.20.194
42.117.20.200
42.117.20.87
42.117.20.111
42.117.20.40
42.117.20.160
42.117.20.154
42.117.20.46
42.117.20.19
42.117.20.135
42.117.20.216
42.117.20.156
42.117.20.190
42.117.20.163
42.117.20.3
42.117.20.59
42.117.20.56
42.117.20.115
42.117.20.101
42.117.20.170
42.117.20.236
42.117.20.8
42.117.20.63
42.117.20.120
42.117.20.94
42.117.20.192
42.117.20.252
42.117.20.173
42.117.20.198
42.117.20.5
42.117.20.76
42.117.20.31
42.117.20.205
42.117.20.18
42.117.20.96
42.117.20.204
42.117.20.89
42.117.20.189
42.117.20.231
42.117.20.244
42.117.20.208
42.117.20.13
42.117.20.222
42.117.20.1
42.117.20.62
42.117.20.124
42.117.20.159
42.117.20.239
42.117.20.15
42.117.20.21
42.117.20.69
42.117.20.240
42.117.20.72
42.117.20.146
42.117.20.55
42.117.20.10
42.117.20.53
42.117.20.162
42.117.20.230
42.117.20.79
42.117.20.217
42.117.20.99
42.117.20.238
42.117.20.168
42.117.20.130
42.117.20.29
42.117.20.191
42.117.20.50
42.117.20.54
42.117.20.167
42.117.20.30
42.117.20.80
42.117.20.84
42.117.20.47
42.117.20.172
42.117.20.150
42.117.20.51
42.117.20.251
42.117.20.97
42.117.20.153
42.117.20.48
42.117.20.221
42.117.20.133
42.117.20.49
42.117.20.140
42.117.20.235
42.117.20.123
42.117.20.122
42.117.20.212
42.117.20.199
42.117.20.132
42.117.20.248
42.117.20.241
42.117.20.57
42.117.20.100
42.117.20.98
42.117.20.176
42.117.20.184
42.117.20.6
42.117.20.223
42.117.20.206
42.117.20.131
42.117.20.17
42.117.20.42
42.117.20.193
42.117.20.65
42.117.20.14
42.117.20.112
42.117.20.158
42.117.20.219
42.117.20.185
42.117.20.44
42.117.20.68
42.117.20.180
42.117.20.148
42.117.20.102
42.117.20.246
42.117.20.113
42.117.20.183
42.117.20.107
42.117.20.209
42.117.20.151
42.117.20.171
42.117.20.64
42.117.20.77
42.117.20.38
42.117.20.220
42.117.20.243
42.117.20.114
42.117.20.27
42.117.20.11
42.117.20.66
42.117.20.197
42.117.20.164
42.117.20.157
42.117.20.187
42.117.20.86
42.117.20.104
42.117.20.247
42.117.20.90
42.117.20.74
42.117.20.202
42.117.20.39
42.117.20.179
42.117.20.32
42.117.20.119
42.117.20.22
42.117.20.20
42.117.20.108
42.117.20.152
42.117.20.227
42.117.20.224
42.117.20.103
42.117.20.33
42.117.20.70
42.117.20.136
42.117.20.254
42.117.20.195
42.117.20.85
42.117.20.213
42.117.20.67
42.117.20.145
42.117.20.41
42.117.20.36
42.117.20.128
42.117.20.129
42.117.20.75
42.117.20.93
42.117.20.45
42.117.20.249
42.117.20.12
42.117.20.203
42.117.20.218
42.117.20.134
42.117.20.71
42.117.20.177
42.117.20.118
42.117.20.207
42.117.20.4
42.117.20.186
42.117.20.155
42.117.20.92
42.117.20.237
42.117.20.9
42.117.20.165
42.117.20.16
42.117.20.139
42.117.20.242
42.117.20.211
42.117.20.137
42.117.20.188
42.117.20.138
42.117.20.144
42.117.20.125
42.117.20.181
42.117.20.7
42.117.20.61
42.117.20.210
42.117.20.166
42.117.20.43
42.117.20.37
42.117.20.141
42.117.20.126
42.117.20.215
42.117.20.35
42.117.20.34
42.117.20.110
42.117.20.58
42.117.20.233
42.117.20.142
42.117.20.182
42.117.20.105
42.117.20.28
42.117.20.121
42.117.20.161
42.117.20.25
42.117.20.234
42.117.20.106
42.117.20.60
42.117.20.78
42.117.20.95
42.117.20.174
42.117.20.228
最新评论:
IP 类型 评论内容 时间
120.31.71.238 attack 
Aug 10 06:05:35 ip-172-31-61-156 sshd[5587]: Failed password for root from 120.31.71.238 port 58732 ssh2
Aug 10 06:11:19 ip-172-31-61-156 sshd[5990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.31.71.238  user=root
Aug 10 06:11:21 ip-172-31-61-156 sshd[5990]: Failed password for root from 120.31.71.238 port 37228 ssh2
Aug 10 06:11:19 ip-172-31-61-156 sshd[5990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.31.71.238  user=root
Aug 10 06:11:21 ip-172-31-61-156 sshd[5990]: Failed password for root from 120.31.71.238 port 37228 ssh2
...
 2020-08-10 14:35:31
107.170.131.23 attackbots 
B: Abusive ssh attack
 2020-08-10 15:01:55
14.215.165.131 attackspam 
2020-08-10T08:17:33.119383centos sshd[14466]: Failed password for root from 14.215.165.131 port 40568 ssh2
2020-08-10T08:19:30.079838centos sshd[14873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.165.131  user=root
2020-08-10T08:19:31.420689centos sshd[14873]: Failed password for root from 14.215.165.131 port 46978 ssh2
...
 2020-08-10 15:03:14
103.70.125.243 attackspam 
Autoban   103.70.125.243 AUTH/CONNECT
 2020-08-10 14:57:43
52.177.165.30 attack 
Tried to connect to TCP Port on PC
 2020-08-10 14:47:08
140.143.200.251 attackbots 
2020-08-10T08:01:10.380458ks3355764 sshd[7540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251  user=root
2020-08-10T08:01:12.378809ks3355764 sshd[7540]: Failed password for root from 140.143.200.251 port 58442 ssh2
...
 2020-08-10 15:11:09
124.30.44.214 attackbotsspam 
$f2bV_matches
 2020-08-10 14:41:11
222.252.34.170 attackbots 
IP 222.252.34.170 attacked honeypot on port: 1433 at 8/9/2020 8:53:08 PM
 2020-08-10 14:45:05
178.128.123.155 attackbots 
Automatic report - Banned IP Access
 2020-08-10 15:08:19
31.129.47.167 attack 
Email rejected due to spam filtering
 2020-08-10 15:18:44
187.214.27.117 attack 
Automatic report - Port Scan Attack
 2020-08-10 15:00:19
178.32.123.99 attackbotsspam 
Aug 10 05:53:43 buvik sshd[8012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.123.99
Aug 10 05:53:45 buvik sshd[8012]: Failed password for invalid user admin from 178.32.123.99 port 50310 ssh2
Aug 10 05:53:45 buvik sshd[8014]: Invalid user admin from 178.32.123.99
...
 2020-08-10 14:50:18
198.27.80.123 attackbots 
198.27.80.123 - - [10/Aug/2020:08:56:09 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
198.27.80.123 - - [10/Aug/2020:08:56:10 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
198.27.80.123 - - [10/Aug/2020:08:56:17 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
198.27.80.123 - - [10/Aug/2020:08:56:25 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
198.27.80.123 - - [10/Aug/2020:08:56:27 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar
...
 2020-08-10 15:19:09
185.100.87.190 attack 
Hacking
 2020-08-10 14:48:58
116.62.147.109 attackspambots 
(mod_security) mod_security (id:920350) triggered by 116.62.147.109 (CN/-/-): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/10 05:53:10 [error] 445087#0: *59085 [client 116.62.147.109] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159703159028.686758"] [ref "o0,17v21,17"], client: 116.62.147.109, [redacted] request: "GET / HTTP/1.1" [redacted]
 2020-08-10 15:16:42

最近上报的IP列表

74.241.106.34 190.39.39.47 123.15.129.33 131.145.125.91
76.177.28.124 66.249.175.75 153.190.100.39 149.91.99.140
13.119.5.103 86.166.35.196 1.121.167.82 156.175.114.116
141.26.219.186 189.151.149.240 61.0.42.24 105.234.236.9
193.253.203.147 106.251.158.238 225.130.68.223 148.244.51.113