42.117.20.67 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 42.117.20.67 to port 23	2020-01-01 02:39:30

相同子网IP讨论:

IP	类型	评论内容	时间
42.117.20.146	attackspam	firewall-block, port(s): 23/tcp	2020-08-15 03:29:19
42.117.20.106	attackspambots	1596370021 - 08/02/2020 19:07:01 Host: 42.117.20.106/42.117.20.106 Port: 23 TCP Blocked ...	2020-08-03 01:47:29
42.117.20.103	attackbotsspam	Port probing on unauthorized port 23	2020-08-02 03:40:47
42.117.20.119	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 22:12:51
42.117.20.8	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 21:15:51
42.117.20.181	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-27 00:14:09
42.117.20.158	attackbotsspam	TCP (SYN) 42.117.20.158:55984 -> port 23, len 44	2020-05-26 00:13:31
42.117.20.14	attack	unauthorized connection attempt	2020-02-29 13:44:46
42.117.20.147	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:15:44
42.117.20.188	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:10:43
42.117.20.196	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:07:26
42.117.20.216	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:00:50
42.117.20.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:57:22
42.117.20.46	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:52:26
42.117.20.60	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 23:49:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.20.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40547
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.20.67.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 02:39:27 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 67.20.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 67.20.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
49.235.35.12	attackspam	2019-10-17T05:58:10.569892abusebot-7.cloudsearch.cf sshd\[6861\]: Invalid user sonar from 49.235.35.12 port 55188	2019-10-17 17:56:54
178.62.234.122	attackspambots	Oct 17 01:54:01 debian sshd\[3342\]: Invalid user elga from 178.62.234.122 port 57236 Oct 17 01:54:01 debian sshd\[3342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.234.122 Oct 17 01:54:03 debian sshd\[3342\]: Failed password for invalid user elga from 178.62.234.122 port 57236 ssh2 ...	2019-10-17 17:48:27
119.119.91.66	attack	Automatic report - Port Scan	2019-10-17 17:28:09
58.224.243.99	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-17 17:58:22
89.109.23.190	attack	2019-10-17T09:38:23.902349abusebot-5.cloudsearch.cf sshd\[2881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.109.23.190 user=root	2019-10-17 18:04:18
62.102.148.69	attack	Oct 17 11:02:01 rotator sshd\[25297\]: Invalid user adrienne from 62.102.148.69Oct 17 11:02:03 rotator sshd\[25297\]: Failed password for invalid user adrienne from 62.102.148.69 port 50443 ssh2Oct 17 11:02:06 rotator sshd\[25297\]: Failed password for invalid user adrienne from 62.102.148.69 port 50443 ssh2Oct 17 11:02:09 rotator sshd\[25297\]: Failed password for invalid user adrienne from 62.102.148.69 port 50443 ssh2Oct 17 11:02:12 rotator sshd\[25297\]: Failed password for invalid user adrienne from 62.102.148.69 port 50443 ssh2Oct 17 11:02:14 rotator sshd\[25297\]: Failed password for invalid user adrienne from 62.102.148.69 port 50443 ssh2 ...	2019-10-17 17:40:36
94.176.141.57	attackbotsspam	(Oct 17) LEN=44 TTL=241 ID=31479 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=50379 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=12019 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=40838 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=60602 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=27895 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=43767 DF TCP DPT=23 WINDOW=14600 SYN (Oct 17) LEN=44 TTL=241 ID=35961 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=14958 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=36806 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=63411 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=36251 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=31749 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=55557 DF TCP DPT=23 WINDOW=14600 SYN (Oct 16) LEN=44 TTL=241 ID=60124 DF TCP DPT=23 WINDOW=14600 ...	2019-10-17 18:05:38
104.149.221.230	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/104.149.221.230/ US - 1H : (283) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN40676 IP : 104.149.221.230 CIDR : 104.149.220.0/22 PREFIX COUNT : 1030 UNIQUE IP COUNT : 801536 WYKRYTE ATAKI Z ASN40676 : 1H - 3 3H - 3 6H - 5 12H - 7 24H - 7 DateTime : 2019-10-17 05:48:05 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-17 18:03:49
218.92.0.204	attackbotsspam	$f2bV_matches	2019-10-17 17:33:48
114.134.1.17	attackbots	Oct 17 05:28:20 pl1server postfix/smtpd[16491]: connect from 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17] Oct 17 05:28:22 pl1server postfix/smtpd[16491]: warning: 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17]: SASL PLAIN authentication failed: authentication failure Oct 17 05:28:24 pl1server postfix/smtpd[16491]: disconnect from 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17] Oct 17 05:28:24 pl1server postfix/smtpd[16491]: connect from 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17] Oct 17 05:28:27 pl1server postfix/smtpd[16491]: warning: 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17]: SASL PLAIN authentication failed: authentication failure Oct 17 05:28:28 pl1server postfix/smtpd[16491]: disconnect from 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17] Oct 17 05:28:29 pl1server postfix/smtpd[16491]: connect from 114-134-1-17.dynamic.lightwire.co.nz[114.134.1.17] Oct 17 05:28:32 pl1server postfix/smtpd[16491]: warning: 114-134-1-17.dynamic.lightwir........ -------------------------------	2019-10-17 17:35:31
51.38.112.45	attack	Fail2Ban - SSH Bruteforce Attempt	2019-10-17 18:05:56
124.236.22.54	attackbotsspam	Oct 17 10:01:51 apollo sshd\[29922\]: Failed password for root from 124.236.22.54 port 52674 ssh2Oct 17 10:17:44 apollo sshd\[29991\]: Invalid user web from 124.236.22.54Oct 17 10:17:47 apollo sshd\[29991\]: Failed password for invalid user web from 124.236.22.54 port 56980 ssh2 ...	2019-10-17 17:34:03
188.190.12.32	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2019-10-17 17:54:18
162.243.14.185	attackspambots	Oct 17 07:07:42 SilenceServices sshd[31180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.14.185 Oct 17 07:07:44 SilenceServices sshd[31180]: Failed password for invalid user tequilla from 162.243.14.185 port 58752 ssh2 Oct 17 07:11:25 SilenceServices sshd[32225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.14.185	2019-10-17 17:51:16
106.75.33.66	attackspambots	Oct 17 10:34:50 SilenceServices sshd[23391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.33.66 Oct 17 10:34:51 SilenceServices sshd[23391]: Failed password for invalid user heate from 106.75.33.66 port 43020 ssh2 Oct 17 10:39:06 SilenceServices sshd[24497]: Failed password for root from 106.75.33.66 port 49710 ssh2	2019-10-17 17:55:50

最近上报的IP列表

185.19.177.199	183.141.2.130	115.111.133.46	180.204.160.155
179.95.252.139	171.110.228.62	153.37.144.122	139.180.129.196
123.193.149.201	123.113.21.71	119.250.184.47	119.249.222.19
118.68.0.90	115.216.246.181	114.236.230.115	114.231.4.93
112.103.168.112	110.154.188.209	110.52.29.35	109.191.158.133

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表