42.117.20.255 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]	2020-02-05 18:24:36
attackspambots	Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]	2020-02-02 02:55:05
attackspambots	Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]	2020-02-01 18:37:09

类型

评论内容

时间

attackbots

Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]

2020-02-05 18:24:36

attackspambots

Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]

2020-02-02 02:55:05

attackspambots

Unauthorized connection attempt detected from IP address 42.117.20.255 to port 23 [J]

2020-02-01 18:37:09

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.20.146	attackspam	firewall-block, port(s): 23/tcp	2020-08-15 03:29:19
42.117.20.106	attackspambots	1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked ...	2020-08-03 01:47:29
42.117.20.103	attackbotsspam	Port probing on unauthorized port 23	2020-08-02 03:40:47
42.117.20.119	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 22:12:51
42.117.20.8	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 21:15:51
42.117.20.181	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-27 00:14:09
42.117.20.158	attackbotsspam	TCP (SYN) 42.117.20.158:55984 -> port 23, len 44	2020-05-26 00:13:31
42.117.20.14	attack	unauthorized connection attempt	2020-02-29 13:44:46
42.117.20.147	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:15:44
42.117.20.188	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:10:43
42.117.20.196	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:07:26
42.117.20.216	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:00:50
42.117.20.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:57:22
42.117.20.46	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:52:26
42.117.20.60	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:49:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.255
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54485
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.255.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020101 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 18:37:02 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 255.20.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 255.20.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
51.77.220.183	attackspam	SSH Brute-Force Attack	2020-03-03 16:57:53
104.238.110.15	attackspambots	C1,WP GET /suche/wp-login.php	2020-03-03 17:01:12
51.254.97.25	attack	Mar 3 13:55:23 gw1 sshd[1468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.97.25 Mar 3 13:55:25 gw1 sshd[1468]: Failed password for invalid user laravel from 51.254.97.25 port 38625 ssh2 ...	2020-03-03 17:09:54
82.102.100.94	attack	trying to access non-authorized port	2020-03-03 17:32:21
115.73.211.104	attackspam	VN_MAINT-VN-VNNIC_<177>1583211206 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 115.73.211.104:64344	2020-03-03 17:36:02
94.191.25.132	attackspam	Mar 3 09:43:30 ns381471 sshd[15977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.25.132 Mar 3 09:43:32 ns381471 sshd[15977]: Failed password for invalid user docker from 94.191.25.132 port 44696 ssh2	2020-03-03 17:34:29
138.68.250.76	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-03 17:11:21
112.206.3.241	attack	Honeypot attack, port: 445, PTR: 112.206.3.241.pldt.net.	2020-03-03 16:53:18
45.77.82.109	attackbots	Mar 2 15:59:38 django sshd[123218]: reveeclipse mapping checking getaddrinfo for 45.77.82.109.vultr.com [45.77.82.109] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 2 15:59:38 django sshd[123218]: Invalid user oracle from 45.77.82.109 Mar 2 15:59:38 django sshd[123218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.82.109 Mar 2 15:59:40 django sshd[123218]: Failed password for invalid user oracle from 45.77.82.109 port 35707 ssh2 Mar 2 15:59:40 django sshd[123219]: Received disconnect from 45.77.82.109: 11: Normal Shutdown Mar 2 16:02:32 django sshd[123437]: reveeclipse mapping checking getaddrinfo for 45.77.82.109.vultr.com [45.77.82.109] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 2 16:02:32 django sshd[123437]: User skygroup from 45.77.82.109 not allowed because not listed in AllowUsers Mar 2 16:02:32 django sshd[123437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.82.109........ -------------------------------	2020-03-03 16:56:32
123.194.80.71	attackbots	Honeypot attack, port: 81, PTR: 123-194-80-71.dynamic.kbronet.com.tw.	2020-03-03 17:31:58
167.114.55.91	attackbots	Mar 3 09:34:06 MK-Soft-VM6 sshd[26798]: Failed password for games from 167.114.55.91 port 44258 ssh2 Mar 3 09:42:46 MK-Soft-VM6 sshd[26899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.55.91 ...	2020-03-03 17:22:33
49.205.208.137	attackspam	20/3/2@23:53:30: FAIL: Alarm-Network address from=49.205.208.137 ...	2020-03-03 17:33:35
177.135.54.9	attackbotsspam	Mar 3 05:54:03 163-172-32-151 sshd[14834]: Invalid user rodomantsev from 177.135.54.9 port 53900 ...	2020-03-03 17:10:42
200.123.208.19	attackspambots	Honeypot attack, port: 445, PTR: scnc4mansrvr.broadbandbelize.com.	2020-03-03 17:29:51
50.63.202.53	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord, en TOTALE INFRACTION avec les Législations Européennes comme Française sur la RGPD, donc à condamner à 750 € par pourriel émis, tout ça pour du PHISHING par une FAUSSE COPIE de Mondial Relay... news1@securletdddo365beatle.com => 52.100.131.104 which send to FALSE web site : https://mcusercontent.com/36b9da6ae9903ff2c6da94399/files/aaa7ef8d-9a16-4775-a4e7-b26a629c6244/Suivi_Colis.zip securletdddo365beatle.com => 50.63.202.53 https://www.mywot.com/scorecard/securletdddo365beatle.com https://en.asytech.cn/check-ip/52.100.131.104 https://en.asytech.cn/check-ip/50.63.202.53 mcusercontent.com => 34.96.122.219 https://www.mywot.com/scorecard/mcusercontent.com https://en.asytech.cn/check-ip/34.96.122.219	2020-03-03 17:26:40

最近上报的IP列表

98.166.97.43	212.81.198.18	196.86.95.192	145.185.114.93
42.7.190.175	192.49.78.1	41.71.21.34	110.243.129.14
13.62.29.146	213.84.40.141	39.108.56.208	64.117.101.81
142.225.2.36	97.213.108.222	39.64.198.10	115.41.165.140
192.49.225.250	27.224.137.148	27.2.90.180	15.165.160.218