必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attack
Automatic report - Port Scan Attack
2020-04-27 20:08:57
相同子网IP讨论:
IP 类型 评论内容 时间
42.3.120.202 attackspam
Automatic report - Banned IP Access
2020-09-25 01:32:06
42.3.120.202 attackspam
Automatic report - Banned IP Access
2020-09-24 17:11:05
42.3.123.244 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 20:28:00
42.3.123.244 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 12:47:05
42.3.123.244 attackbots
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 03:02:15
42.3.125.130 attackbotsspam
Honeypot attack, port: 5555, PTR: 42-3-125-130.static.netvigator.com.
2020-02-10 15:12:57
42.3.12.59 attackspambots
Unauthorized connection attempt detected from IP address 42.3.12.59 to port 81 [J]
2020-02-04 05:55:06
42.3.129.35 attackspambots
Unauthorized connection attempt detected from IP address 42.3.129.35 to port 5555 [J]
2020-02-03 02:06:18
42.3.124.72 attackspambots
" "
2019-10-15 18:31:53
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.12.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.12.12.			IN	A

;; AUTHORITY SECTION:
.			467	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042700 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 20:08:53 CST 2020
;; MSG SIZE  rcvd: 114
HOST信息:
12.12.3.42.in-addr.arpa domain name pointer 42-3-12-012.static.netvigator.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.12.3.42.in-addr.arpa	name = 42-3-12-012.static.netvigator.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
49.232.23.127 attack
2020-05-19T11:33:38.475715scmdmz1 sshd[17097]: Invalid user globalflash from 49.232.23.127 port 41382
2020-05-19T11:33:40.024409scmdmz1 sshd[17097]: Failed password for invalid user globalflash from 49.232.23.127 port 41382 ssh2
2020-05-19T11:36:21.173565scmdmz1 sshd[17422]: Invalid user dx from 49.232.23.127 port 41190
...
2020-05-20 03:45:38
122.51.238.211 attackbotsspam
$f2bV_matches
2020-05-20 03:12:20
82.208.99.54 attackspam
prod8
...
2020-05-20 03:19:42
92.50.249.92 attackbots
May 19 21:09:11 DAAP sshd[1731]: Invalid user puh from 92.50.249.92 port 44310
May 19 21:09:11 DAAP sshd[1731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.249.92
May 19 21:09:11 DAAP sshd[1731]: Invalid user puh from 92.50.249.92 port 44310
May 19 21:09:14 DAAP sshd[1731]: Failed password for invalid user puh from 92.50.249.92 port 44310 ssh2
May 19 21:12:34 DAAP sshd[1764]: Invalid user st from 92.50.249.92 port 41922
...
2020-05-20 03:34:09
39.40.55.101 attackspam
1589881195 - 05/19/2020 11:39:55 Host: 39.40.55.101/39.40.55.101 Port: 445 TCP Blocked
2020-05-20 03:14:09
188.65.91.112 attackspam
Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-05-20 03:15:44
14.18.118.44 attackbots
May 19 11:36:45 vps647732 sshd[8125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.118.44
May 19 11:36:47 vps647732 sshd[8125]: Failed password for invalid user kcc from 14.18.118.44 port 54162 ssh2
...
2020-05-20 03:41:00
80.79.116.133 attackbots
Web form spam
2020-05-20 03:10:32
200.219.235.34 attackspambots
May 20 00:24:59 gw1 sshd[17575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.219.235.34
May 20 00:25:00 gw1 sshd[17575]: Failed password for invalid user pgw from 200.219.235.34 port 46445 ssh2
...
2020-05-20 03:28:04
61.154.90.93 attackspam
Too many failed logins from 61.154.90.93 for facility smtp
2020-05-20 03:23:57
217.61.6.112 attack
2020-05-19T11:35:01.175452scmdmz1 sshd[17237]: Invalid user ead from 217.61.6.112 port 33758
2020-05-19T11:35:03.123256scmdmz1 sshd[17237]: Failed password for invalid user ead from 217.61.6.112 port 33758 ssh2
2020-05-19T11:40:16.403155scmdmz1 sshd[17918]: Invalid user rrb from 217.61.6.112 port 41284
...
2020-05-20 03:09:30
51.91.134.227 attack
May 18 11:40:41 s30-ffm-r02 sshd[32113]: Invalid user shipping from 51.91.134.227
May 18 11:40:41 s30-ffm-r02 sshd[32113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.134.227 
May 18 11:40:43 s30-ffm-r02 sshd[32113]: Failed password for invalid user shipping from 51.91.134.227 port 39544 ssh2
May 18 11:45:19 s30-ffm-r02 sshd[32293]: Invalid user vwr from 51.91.134.227
May 18 11:45:19 s30-ffm-r02 sshd[32293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.134.227 
May 18 11:45:20 s30-ffm-r02 sshd[32293]: Failed password for invalid user vwr from 51.91.134.227 port 59006 ssh2
May 18 11:49:03 s30-ffm-r02 sshd[32410]: Invalid user rcu from 51.91.134.227
May 18 11:49:03 s30-ffm-r02 sshd[32410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.134.227 
May 18 11:49:05 s30-ffm-r02 sshd[32410]: Failed password for invalid user rcu from 51........
-------------------------------
2020-05-20 03:32:36
223.228.163.89 attack
1589881180 - 05/19/2020 11:39:40 Host: 223.228.163.89/223.228.163.89 Port: 445 TCP Blocked
2020-05-20 03:17:08
160.153.154.24 attack
160.153.154.24:39904 - - [18/May/2020:21:02:29 +0200] "GET /phpmyadmin/index.php HTTP/1.1" 403 188
160.153.154.24:39902 - - [18/May/2020:21:02:29 +0200] "GET /phpMyAdmin/index.php HTTP/1.1" 404 301
160.153.154.24:39900 - - [18/May/2020:21:02:29 +0200] "GET /pma/index.php HTTP/1.1" 404 294
2020-05-20 03:16:19
5.189.179.247 attack
5.189.179.247:45988 - - [19/May/2020:09:43:21 +0200] "GET /wp-login.php HTTP/1.1" 404 293
2020-05-20 03:20:14

最近上报的IP列表

81.161.239.7 79.45.105.222 176.250.220.85 114.33.203.69
124.115.85.154 195.56.187.26 111.223.170.222 194.152.206.12
106.13.68.101 93.41.226.58 186.226.0.227 200.89.178.3
178.128.92.117 112.242.109.184 179.191.53.122 128.199.165.126
123.21.112.113 113.173.92.146 123.21.18.15 110.231.248.16