42.119.75.149 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Telecom Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	[portscan] Port scan	2019-10-01 12:51:26

相同子网IP讨论:

IP	类型	评论内容	时间
42.119.75.120	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-28 17:16:34
42.119.75.67	attack	Unauthorized connection attempt detected from IP address 42.119.75.67 to port 23 [J]	2020-02-05 21:24:12
42.119.75.67	attackbots	Unauthorized connection attempt detected from IP address 42.119.75.67 to port 23 [J]	2020-01-31 05:24:08
42.119.75.76	attack	Unauthorized connection attempt detected from IP address 42.119.75.76 to port 23 [J]	2020-01-30 23:56:32
42.119.75.31	attackbotsspam	Telnetd brute force attack detected by fail2ban	2019-10-30 01:10:12
42.119.75.72	attackbots	port scan and connect, tcp 23 (telnet)	2019-10-29 05:09:28
42.119.75.128	attack	port scan and connect, tcp 23 (telnet)	2019-10-23 23:22:22
42.119.75.25	attack	Unauthorised access (Oct 6) SRC=42.119.75.25 LEN=40 TTL=48 ID=44696 TCP DPT=8080 WINDOW=39814 SYN Unauthorised access (Oct 6) SRC=42.119.75.25 LEN=40 TTL=48 ID=43552 TCP DPT=8080 WINDOW=39814 SYN Unauthorised access (Oct 6) SRC=42.119.75.25 LEN=40 TTL=48 ID=60912 TCP DPT=8080 WINDOW=39814 SYN Unauthorised access (Oct 6) SRC=42.119.75.25 LEN=40 TTL=48 ID=50945 TCP DPT=8080 WINDOW=287 SYN	2019-10-07 01:10:08
42.119.75.25	attackspam	(Oct 5) LEN=40 TTL=47 ID=65261 TCP DPT=8080 WINDOW=39814 SYN (Oct 5) LEN=40 TTL=47 ID=51330 TCP DPT=8080 WINDOW=23298 SYN (Oct 5) LEN=40 TTL=47 ID=40892 TCP DPT=8080 WINDOW=39814 SYN (Oct 4) LEN=40 TTL=47 ID=16925 TCP DPT=8080 WINDOW=39814 SYN (Oct 4) LEN=40 TTL=47 ID=53265 TCP DPT=8080 WINDOW=35283 SYN (Oct 4) LEN=40 TTL=47 ID=15828 TCP DPT=8080 WINDOW=287 SYN (Oct 3) LEN=40 TTL=47 ID=10848 TCP DPT=8080 WINDOW=35283 SYN (Oct 3) LEN=40 TTL=47 ID=12964 TCP DPT=8080 WINDOW=23298 SYN (Oct 3) LEN=40 TTL=47 ID=50388 TCP DPT=8080 WINDOW=35283 SYN (Oct 3) LEN=40 TTL=47 ID=14031 TCP DPT=8080 WINDOW=23298 SYN (Oct 2) LEN=40 TTL=47 ID=12066 TCP DPT=8080 WINDOW=35283 SYN (Oct 2) LEN=40 TTL=47 ID=50850 TCP DPT=8080 WINDOW=287 SYN (Oct 2) LEN=40 TTL=47 ID=56638 TCP DPT=8080 WINDOW=23298 SYN (Oct 2) LEN=40 TTL=47 ID=33100 TCP DPT=8080 WINDOW=287 SYN (Oct 1) LEN=40 TTL=47 ID=42434 TCP DPT=8080 WINDOW=35283 SYN (Oct 1) LEN=40 TTL=47 ID=348...	2019-10-05 14:01:50
42.119.75.33	attackspambots	Unauthorised access (Oct 3) SRC=42.119.75.33 LEN=40 TTL=47 ID=32612 TCP DPT=8080 WINDOW=18588 SYN Unauthorised access (Oct 2) SRC=42.119.75.33 LEN=40 TTL=47 ID=25187 TCP DPT=8080 WINDOW=18588 SYN Unauthorised access (Oct 2) SRC=42.119.75.33 LEN=40 TTL=47 ID=11213 TCP DPT=8080 WINDOW=30380 SYN Unauthorised access (Oct 2) SRC=42.119.75.33 LEN=40 TTL=47 ID=34414 TCP DPT=8080 WINDOW=61220 SYN Unauthorised access (Oct 2) SRC=42.119.75.33 LEN=40 TTL=47 ID=12385 TCP DPT=8080 WINDOW=20884 SYN Unauthorised access (Oct 2) SRC=42.119.75.33 LEN=40 TTL=47 ID=541 TCP DPT=8080 WINDOW=20884 SYN Unauthorised access (Oct 1) SRC=42.119.75.33 LEN=40 TTL=47 ID=10615 TCP DPT=8080 WINDOW=61220 SYN Unauthorised access (Oct 1) SRC=42.119.75.33 LEN=40 TTL=47 ID=34640 TCP DPT=8080 WINDOW=61220 SYN	2019-10-03 05:49:23
42.119.75.18	attackbots	Unauthorised access (Oct 1) SRC=42.119.75.18 LEN=40 TTL=47 ID=21481 TCP DPT=8080 WINDOW=42293 SYN Unauthorised access (Oct 1) SRC=42.119.75.18 LEN=40 TTL=47 ID=27621 TCP DPT=8080 WINDOW=13749 SYN Unauthorised access (Oct 1) SRC=42.119.75.18 LEN=40 TTL=47 ID=48053 TCP DPT=8080 WINDOW=42293 SYN Unauthorised access (Oct 1) SRC=42.119.75.18 LEN=40 TTL=47 ID=14772 TCP DPT=8080 WINDOW=7061 SYN	2019-10-01 21:48:40
42.119.75.53	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-01 08:50:19
42.119.75.213	attack	[portscan] tcp/23 [TELNET] *(RWIN=15867)(08041230)	2019-08-05 00:37:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.119.75.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.119.75.149.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100100 1800 900 604800 86400

;; Query time: 372 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 12:51:22 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 149.75.119.42.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 149.75.119.42.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
51.178.50.20	attack	Sep 4 04:18:52 scw-6657dc sshd[25541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.20 Sep 4 04:18:52 scw-6657dc sshd[25541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.20 Sep 4 04:18:54 scw-6657dc sshd[25541]: Failed password for invalid user ca from 51.178.50.20 port 41346 ssh2 ...	2020-09-04 13:02:34
49.255.93.10	attack	Invalid user guoman from 49.255.93.10 port 40532	2020-09-04 13:07:37
222.186.175.148	attackspam	Sep 4 05:45:39 rocket sshd[28886]: Failed password for root from 222.186.175.148 port 40378 ssh2 Sep 4 05:45:43 rocket sshd[28886]: Failed password for root from 222.186.175.148 port 40378 ssh2 Sep 4 05:45:47 rocket sshd[28886]: Failed password for root from 222.186.175.148 port 40378 ssh2 ...	2020-09-04 12:46:53
41.45.237.128	attackbots	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-04 13:08:36
114.35.92.207	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-04 13:20:51
120.14.17.78	attackspambots	/%23	2020-09-04 13:03:52
222.186.180.6	attackspam	Sep 4 07:21:17 marvibiene sshd[9188]: Failed password for root from 222.186.180.6 port 37762 ssh2 Sep 4 07:21:22 marvibiene sshd[9188]: Failed password for root from 222.186.180.6 port 37762 ssh2	2020-09-04 13:23:20
201.240.100.21	attack	Sep 3 18:49:54 mellenthin postfix/smtpd[21052]: NOQUEUE: reject: RCPT from unknown[201.240.100.21]: 554 5.7.1 Service unavailable; Client host [201.240.100.21] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/201.240.100.21; from= to= proto=ESMTP helo=	2020-09-04 13:09:05
170.130.187.34	attack	UDP 170.130.187.34:53883 -> port 161, len 71	2020-09-04 13:12:32
190.64.131.130	attackspam	Attempting to exploit via a http POST	2020-09-04 13:13:28
222.186.190.2	attackspambots	2020-09-04T07:13:23.717660ns386461 sshd\[19565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root 2020-09-04T07:13:25.506337ns386461 sshd\[19565\]: Failed password for root from 222.186.190.2 port 21566 ssh2 2020-09-04T07:13:28.902061ns386461 sshd\[19565\]: Failed password for root from 222.186.190.2 port 21566 ssh2 2020-09-04T07:13:33.378647ns386461 sshd\[19565\]: Failed password for root from 222.186.190.2 port 21566 ssh2 2020-09-04T07:13:36.568508ns386461 sshd\[19565\]: Failed password for root from 222.186.190.2 port 21566 ssh2 ...	2020-09-04 13:19:57
139.59.92.19	attack	$f2bV_matches	2020-09-04 13:17:18
188.225.179.86	attack	Dovecot Invalid User Login Attempt.	2020-09-04 13:24:20
185.220.101.205	attack	$f2bV_matches	2020-09-04 13:10:28
185.216.140.240	attackspam	UDP 185.216.140.240:29491 -> port 389, len 79	2020-09-04 12:54:53

最近上报的IP列表

66.219.1.170	2.33.54.37	122.117.121.150	111.255.171.140
172.2.209.19	58.11.120.120	134.209.152.90	162.255.116.68
222.252.25.241	32.224.228.43	175.21.38.169	53.255.218.182
168.88.51.204	210.215.153.250	92.109.119.73	133.183.6.184
64.119.209.115	214.141.118.244	207.46.13.198	134.209.157.149

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表