42.117.230.82 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 22:55:01

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.230.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3414
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.230.82.			IN	A

;; AUTHORITY SECTION:
.			475	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 22:54:53 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 82.230.117.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 82.230.117.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
49.72.187.154	attack	Lines containing failures of 49.72.187.154 Aug 4 01:32:23 viking sshd[38499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.187.154 user=r.r Aug 4 01:32:25 viking sshd[38499]: Failed password for r.r from 49.72.187.154 port 51805 ssh2 Aug 4 01:32:26 viking sshd[38499]: Received disconnect from 49.72.187.154 port 51805:11: Bye Bye [preauth] Aug 4 01:32:26 viking sshd[38499]: Disconnected from authenticating user r.r 49.72.187.154 port 51805 [preauth] Aug 4 01:39:26 viking sshd[4274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.187.154 user=r.r Aug 4 01:39:28 viking sshd[4274]: Failed password for r.r from 49.72.187.154 port 28634 ssh2 Aug 4 01:39:28 viking sshd[4274]: Received disconnect from 49.72.187.154 port 28634:11: Bye Bye [preauth] Aug 4 01:39:28 viking sshd[4274]: Disconnected from authenticating user r.r 49.72.187.154 port 28634 [preauth] Aug 4 01:41:32 vi........ ------------------------------	2020-08-06 06:12:43
104.248.176.46	attack	Aug 6 01:14:13 mertcangokgoz-v4-main kernel: [282594.480883] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=104.248.176.46 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=39515 PROTO=TCP SPT=58101 DPT=18398 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-06 06:22:20
59.126.1.160	attack	[munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:24 +0200] "POST /[munged]: HTTP/1.1" 200 9968 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:26 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:29 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:31 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:33 +0200] "POST /[munged]: HTTP/1.1" 200 6184 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 59.126.1.160 - - [05/Aug/2020:22:39:35 +0200]	2020-08-06 06:20:26
223.4.66.84	attackbotsspam	2020-08-05T15:39:43.112157morrigan.ad5gb.com sshd[3553452]: Failed password for root from 223.4.66.84 port 11298 ssh2 2020-08-05T15:39:45.490429morrigan.ad5gb.com sshd[3553452]: Disconnected from authenticating user root 223.4.66.84 port 11298 [preauth]	2020-08-06 06:19:43
36.37.115.106	attackspam	2020-08-05T16:16:12.847719morrigan.ad5gb.com sshd[3567136]: Failed password for root from 36.37.115.106 port 47782 ssh2 2020-08-05T16:16:15.292535morrigan.ad5gb.com sshd[3567136]: Disconnected from authenticating user root 36.37.115.106 port 47782 [preauth]	2020-08-06 06:11:18
14.21.7.162	attack	Aug 6 00:03:43 lnxweb61 sshd[7599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162	2020-08-06 06:33:27
70.45.133.188	attack	Aug 5 23:41:20 rancher-0 sshd[822087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.45.133.188 user=root Aug 5 23:41:22 rancher-0 sshd[822087]: Failed password for root from 70.45.133.188 port 36446 ssh2 ...	2020-08-06 06:24:46
106.13.181.242	attack	Aug 5 21:56:07 django-0 sshd[26683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.181.242 user=root Aug 5 21:56:09 django-0 sshd[26683]: Failed password for root from 106.13.181.242 port 53216 ssh2 ...	2020-08-06 06:22:57
81.22.130.54	attackbotsspam	firewall-block, port(s): 5555/tcp	2020-08-06 05:58:45
120.92.109.69	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-08-06 06:14:53
202.28.221.106	attackspambots	Aug 5 18:42:11 vps46666688 sshd[26764]: Failed password for root from 202.28.221.106 port 33804 ssh2 ...	2020-08-06 06:15:49
222.186.31.166	attack	Aug 6 00:19:51 vps sshd[960798]: Failed password for root from 222.186.31.166 port 42908 ssh2 Aug 6 00:19:53 vps sshd[960798]: Failed password for root from 222.186.31.166 port 42908 ssh2 Aug 6 00:19:55 vps sshd[961268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root Aug 6 00:19:57 vps sshd[961268]: Failed password for root from 222.186.31.166 port 30593 ssh2 Aug 6 00:19:59 vps sshd[961268]: Failed password for root from 222.186.31.166 port 30593 ssh2 ...	2020-08-06 06:24:03
191.8.187.245	attackbotsspam	Aug 5 22:44:23 mail sshd[31631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.8.187.245 user=root Aug 5 22:44:25 mail sshd[31631]: Failed password for root from 191.8.187.245 port 56528 ssh2 ...	2020-08-06 05:57:59
46.151.211.66	attackspam	Aug 5 22:36:33 melroy-server sshd[3353]: Failed password for root from 46.151.211.66 port 54986 ssh2 ...	2020-08-06 06:19:13
120.70.103.239	attackspambots	Aug 5 16:52:37 NPSTNNYC01T sshd[22098]: Failed password for root from 120.70.103.239 port 55135 ssh2 Aug 5 16:55:50 NPSTNNYC01T sshd[23140]: Failed password for root from 120.70.103.239 port 49998 ssh2 ...	2020-08-06 06:16:41

最近上报的IP列表

182.105.96.154	138.204.81.13	103.104.127.6	46.1.137.0
123.201.116.145	66.214.214.72	155.195.64.48	179.125.49.162
240.66.253.67	183.83.78.27	116.12.251.135	42.117.213.39
201.211.127.69	125.161.105.226	119.42.67.135	183.171.111.35
48.114.219.29	42.117.213.16	92.46.215.58	222.255.46.42