42.119.223.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	1590840559 - 05/30/2020 14:09:19 Host: 42.119.223.130/42.119.223.130 Port: 445 TCP Blocked	2020-05-31 01:19:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.119.223.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49751
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.119.223.130.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020053000 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 31 01:19:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.223.119.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 130.223.119.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
112.91.185.78	attackbotsspam	Unauthorised access (Jul 28) SRC=112.91.185.78 LEN=44 TTL=237 ID=48531 TCP DPT=1433 WINDOW=1024 SYN	2020-07-28 17:58:30
125.132.73.28	attackspam	Invalid user tiny from 125.132.73.28 port 51818	2020-07-28 18:07:32
185.232.65.195	attackbotsspam	UDP 185.232.65.195:54208 -> port 19, len 29	2020-07-28 17:56:43
93.174.93.25	attackbots	Jul 28 10:46:32 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.25, lip=185.118.197.126, session= Jul 28 10:47:03 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.25, lip=185.118.197.126, session= Jul 28 10:47:28 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.25, lip=185.118.197.126, session= Jul 28 10:48:06 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.25, lip=185.118.197.126, session= Jul 28 10:49:17 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.25, lip=	2020-07-28 17:48:01
62.210.194.7	attackbotsspam	Jul 28 08:56:50 mail.srvfarm.net postfix/smtpd[2422361]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 28 08:58:52 mail.srvfarm.net postfix/smtpd[2422361]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 28 08:59:56 mail.srvfarm.net postfix/smtpd[2422830]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 28 09:01:07 mail.srvfarm.net postfix/smtpd[2429154]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 28 09:02:14 mail.srvfarm.net postfix/smtpd[2429115]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7]	2020-07-28 17:48:53
109.195.19.43	attack	109.195.19.43 - - [28/Jul/2020:09:41:42 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 109.195.19.43 - - [28/Jul/2020:10:03:43 +0200] "POST /xmlrpc.php HTTP/1.1" 403 12590 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-28 18:05:13
103.205.5.158	attackbots	Port scan: Attack repeated for 24 hours	2020-07-28 18:06:04
172.82.239.21	attackspambots	Jul 28 08:56:51 mail.srvfarm.net postfix/smtpd[2422828]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Jul 28 08:58:53 mail.srvfarm.net postfix/smtpd[2422829]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Jul 28 08:59:57 mail.srvfarm.net postfix/smtpd[2422828]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Jul 28 09:01:08 mail.srvfarm.net postfix/smtpd[2429136]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Jul 28 09:02:15 mail.srvfarm.net postfix/smtpd[2438844]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21]	2020-07-28 17:46:11
211.155.95.246	attackspambots	TCP (SYN) 211.155.95.246:48418 -> port 32655, len 44	2020-07-28 17:54:40
186.216.91.7	attackbotsspam	Jul 28 05:16:32 mail.srvfarm.net postfix/smtps/smtpd[2338002]: warning: unknown[186.216.91.7]: SASL PLAIN authentication failed: Jul 28 05:16:33 mail.srvfarm.net postfix/smtps/smtpd[2338002]: lost connection after AUTH from unknown[186.216.91.7] Jul 28 05:19:29 mail.srvfarm.net postfix/smtps/smtpd[2353459]: warning: unknown[186.216.91.7]: SASL PLAIN authentication failed: Jul 28 05:19:30 mail.srvfarm.net postfix/smtps/smtpd[2353459]: lost connection after AUTH from unknown[186.216.91.7] Jul 28 05:25:42 mail.srvfarm.net postfix/smtps/smtpd[2336590]: warning: unknown[186.216.91.7]: SASL PLAIN authentication failed:	2020-07-28 17:42:55
160.16.101.57	attackspam	SSH Login Bruteforce	2020-07-28 17:33:47
103.25.134.147	attackbots	Jul 28 05:00:08 mail.srvfarm.net postfix/smtpd[2325907]: warning: unknown[103.25.134.147]: SASL PLAIN authentication failed: Jul 28 05:00:08 mail.srvfarm.net postfix/smtpd[2325907]: lost connection after AUTH from unknown[103.25.134.147] Jul 28 05:03:10 mail.srvfarm.net postfix/smtpd[2327642]: warning: unknown[103.25.134.147]: SASL PLAIN authentication failed: Jul 28 05:03:10 mail.srvfarm.net postfix/smtpd[2327642]: lost connection after AUTH from unknown[103.25.134.147] Jul 28 05:09:00 mail.srvfarm.net postfix/smtps/smtpd[2353295]: warning: unknown[103.25.134.147]: SASL PLAIN authentication failed:	2020-07-28 17:52:51
175.144.198.13	attackspambots	Attempting to exploit via a http POST	2020-07-28 17:40:52
222.186.180.142	attackspam	Jul 28 11:53:15 santamaria sshd\[7416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.142 user=root Jul 28 11:53:17 santamaria sshd\[7416\]: Failed password for root from 222.186.180.142 port 38462 ssh2 Jul 28 11:53:23 santamaria sshd\[7418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.142 user=root ...	2020-07-28 18:02:40
45.224.161.99	attackbots	Jul 28 05:25:27 mail.srvfarm.net postfix/smtps/smtpd[2335259]: warning: unknown[45.224.161.99]: SASL PLAIN authentication failed: Jul 28 05:25:28 mail.srvfarm.net postfix/smtps/smtpd[2335259]: lost connection after AUTH from unknown[45.224.161.99] Jul 28 05:25:43 mail.srvfarm.net postfix/smtps/smtpd[2353295]: warning: unknown[45.224.161.99]: SASL PLAIN authentication failed: Jul 28 05:25:43 mail.srvfarm.net postfix/smtps/smtpd[2353295]: lost connection after AUTH from unknown[45.224.161.99] Jul 28 05:30:21 mail.srvfarm.net postfix/smtps/smtpd[2336590]: warning: unknown[45.224.161.99]: SASL PLAIN authentication failed:	2020-07-28 17:50:24

最近上报的IP列表

160.54.171.23	190.103.181.243	1.38.50.238	159.127.147.123
115.104.227.95	100.72.85.125	179.134.90.207	145.157.106.44
82.105.92.29	192.144.186.22	153.143.233.15	149.152.100.23
244.25.68.148	185.63.253.50	110.37.217.122	36.73.65.57
61.187.149.133	81.92.61.179	37.75.7.173	177.188.174.73