42.117.20.44 - IPInfo

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 42.117.20.44 to port 23 [J]	2020-02-06 06:07:51

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.20.146	attackspam	firewall-block, port(s): 23/tcp	2020-08-15 03:29:19
42.117.20.106	attackspambots	1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked ...	2020-08-03 01:47:29
42.117.20.103	attackbotsspam	Port probing on unauthorized port 23	2020-08-02 03:40:47
42.117.20.119	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 22:12:51
42.117.20.8	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 21:15:51
42.117.20.181	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-27 00:14:09
42.117.20.158	attackbotsspam	TCP (SYN) 42.117.20.158:55984 -> port 23, len 44	2020-05-26 00:13:31
42.117.20.14	attack	unauthorized connection attempt	2020-02-29 13:44:46
42.117.20.147	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:15:44
42.117.20.188	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:10:43
42.117.20.196	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:07:26
42.117.20.216	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:00:50
42.117.20.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:57:22
42.117.20.46	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:52:26
42.117.20.60	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:49:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25020
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.44.			IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020501 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 06:07:48 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 44.20.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 44.20.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
185.176.27.42	attackbotsspam	09/30/2019-08:42:06.202087 185.176.27.42 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-30 21:12:49
92.118.38.36	attackbots	Sep 30 14:55:55 mail postfix/smtpd\[13753\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 14:56:44 mail postfix/smtpd\[13893\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 14:57:09 mail postfix/smtpd\[13901\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-30 21:00:58
144.217.90.68	attackbotsspam	$f2bV_matches	2019-09-30 20:38:23
36.66.188.183	attack	Sep 30 14:17:19 vpn01 sshd[5410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.188.183 Sep 30 14:17:21 vpn01 sshd[5410]: Failed password for invalid user test from 36.66.188.183 port 40804 ssh2 ...	2019-09-30 20:56:53
3.227.52.158	attack	Message ID Created at: Sun, Sep 29, 2019 at 5:25 PM (Delivered after 19941 seconds) From: Serexin Male Enhancement To: Subject: Serexin - Stronger erections enough to drive your partner crazy! SPF: PASS with IP 3.227.52.158	2019-09-30 21:10:53
148.70.81.36	attackspambots	Sep 30 14:10:16 v22019058497090703 sshd[1410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.81.36 Sep 30 14:10:18 v22019058497090703 sshd[1410]: Failed password for invalid user oracle from 148.70.81.36 port 58052 ssh2 Sep 30 14:17:04 v22019058497090703 sshd[1900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.81.36 ...	2019-09-30 21:14:21
151.80.37.18	attackbotsspam	Sep 30 14:08:15 rotator sshd\[17630\]: Invalid user user from 151.80.37.18Sep 30 14:08:17 rotator sshd\[17630\]: Failed password for invalid user user from 151.80.37.18 port 35146 ssh2Sep 30 14:12:54 rotator sshd\[18483\]: Invalid user mdnsd from 151.80.37.18Sep 30 14:12:56 rotator sshd\[18483\]: Failed password for invalid user mdnsd from 151.80.37.18 port 47396 ssh2Sep 30 14:17:28 rotator sshd\[19373\]: Invalid user christine from 151.80.37.18Sep 30 14:17:31 rotator sshd\[19373\]: Failed password for invalid user christine from 151.80.37.18 port 59614 ssh2 ...	2019-09-30 20:42:24
168.232.129.175	attackspambots	(sshd) Failed SSH login from 168.232.129.175 (BR/Brazil/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 12:17:20 andromeda sshd[24961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.129.175 user=root Sep 30 12:17:22 andromeda sshd[24961]: Failed password for root from 168.232.129.175 port 33919 ssh2 Sep 30 12:17:24 andromeda sshd[24961]: Failed password for root from 168.232.129.175 port 33919 ssh2	2019-09-30 20:48:36
152.89.210.243	attack	152.89.210.243 has been banned for [spam] ...	2019-09-30 21:25:32
35.220.138.116	attack	Sep 30 14:40:18 mail sshd\[11459\]: Failed password for invalid user nils from 35.220.138.116 port 42902 ssh2 Sep 30 14:45:09 mail sshd\[12185\]: Invalid user ix from 35.220.138.116 port 55824 Sep 30 14:45:09 mail sshd\[12185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.220.138.116 Sep 30 14:45:11 mail sshd\[12185\]: Failed password for invalid user ix from 35.220.138.116 port 55824 ssh2 Sep 30 14:49:56 mail sshd\[12909\]: Invalid user sharepoint from 35.220.138.116 port 40510	2019-09-30 21:03:51
158.69.63.54	attackbots	Sep 30 15:09:57 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2Sep 30 15:10:00 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2Sep 30 15:10:03 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2Sep 30 15:10:06 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2Sep 30 15:10:09 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2Sep 30 15:10:13 rotator sshd\[28447\]: Failed password for root from 158.69.63.54 port 35734 ssh2 ...	2019-09-30 21:22:56
115.238.236.74	attackspambots	Sep 30 10:50:57 vtv3 sshd\[29608\]: Invalid user fedora from 115.238.236.74 port 56978 Sep 30 10:50:57 vtv3 sshd\[29608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Sep 30 10:50:59 vtv3 sshd\[29608\]: Failed password for invalid user fedora from 115.238.236.74 port 56978 ssh2 Sep 30 10:57:01 vtv3 sshd\[430\]: Invalid user prueba from 115.238.236.74 port 1062 Sep 30 10:57:01 vtv3 sshd\[430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Sep 30 11:10:13 vtv3 sshd\[7453\]: Invalid user temp from 115.238.236.74 port 27190 Sep 30 11:10:13 vtv3 sshd\[7453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Sep 30 11:10:15 vtv3 sshd\[7453\]: Failed password for invalid user temp from 115.238.236.74 port 27190 ssh2 Sep 30 11:14:34 vtv3 sshd\[9450\]: Invalid user guest from 115.238.236.74 port 37710 Sep 30 11:14:34 vtv3 sshd\[9450\]: pam_u	2019-09-30 20:52:18
60.184.138.9	attack	Automated reporting of SSH Vulnerability scanning	2019-09-30 20:45:12
140.143.17.156	attack	Sep 30 14:14:31 ns37 sshd[8566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.156 Sep 30 14:14:32 ns37 sshd[8566]: Failed password for invalid user ul from 140.143.17.156 port 41516 ssh2 Sep 30 14:17:39 ns37 sshd[8718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.156	2019-09-30 20:43:33
41.60.232.97	attackbotsspam	$f2bV_matches	2019-09-30 20:36:35

最近上报的IP列表

37.46.39.47	31.215.143.67	223.149.1.117	220.132.82.203
219.154.43.26	210.222.210.23	198.58.8.39	197.237.226.196
197.82.204.85	196.200.97.27	192.184.90.241	242.181.130.202
147.140.139.181	190.237.1.228	10.213.211.19	190.177.99.48
184.182.255.227	64.163.240.101	83.232.0.90	101.130.198.68