114.38.2.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 05:35:11

相同子网IP讨论:

IP	类型	评论内容	时间
114.38.242.221	attackspam	Unauthorised access (Jul 27) SRC=114.38.242.221 LEN=52 TTL=107 ID=29263 DF TCP DPT=445 WINDOW=8192 SYN	2020-07-27 20:17:29
114.38.2.14	attackspambots	Unauthorized connection attempt from IP address 114.38.2.14 on Port 445(SMB)	2020-05-02 20:49:31
114.38.29.28	attackspam	Icarus honeypot on github	2020-03-07 04:33:33
114.38.22.32	attack	unauthorized connection attempt	2020-02-10 21:00:39
114.38.27.73	attackspam	unauthorized connection attempt	2020-01-17 18:07:09
114.38.25.114	attackbotsspam	unauthorized connection attempt	2020-01-15 18:27:12
114.38.247.111	attackspambots	Honeypot attack, port: 445, PTR: 114-38-247-111.dynamic-ip.hinet.net.	2020-01-14 14:08:24
114.38.23.4	attack	UTC: 2019-11-30 port: 23/tcp	2019-12-01 18:46:45
114.38.247.27	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.38.247.27/ TW - 1H : (128) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.38.247.27 CIDR : 114.38.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 ATTACKS DETECTED ASN3462 : 1H - 35 3H - 108 6H - 108 12H - 108 24H - 108 DateTime : 2019-11-13 19:03:22 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-14 05:35:24
114.38.242.137	attackbots	Unauthorized connection attempt from IP address 114.38.242.137 on Port 445(SMB)	2019-11-10 04:20:59
114.38.245.141	attackspam	[portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=8192)(10151156)	2019-10-16 01:45:13
114.38.2.14	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.38.2.14/ TW - 1H : (197) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.38.2.14 CIDR : 114.38.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 11 3H - 31 6H - 63 12H - 103 24H - 191 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-20 00:30:17
114.38.24.129	attackspam	23/tcp [2019-08-16]1pkt	2019-08-16 13:58:47
114.38.26.213	attack	Unauthorised access (Aug 11) SRC=114.38.26.213 LEN=40 PREC=0x20 TTL=50 ID=24799 TCP DPT=23 WINDOW=31176 SYN	2019-08-11 17:25:55
114.38.25.223	attackbotsspam	23/tcp [2019-07-19]1pkt	2019-07-20 05:39:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.38.2.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2694
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.38.2.42.			IN	A

;; AUTHORITY SECTION:
.			466	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 05:35:08 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

42.2.38.114.in-addr.arpa domain name pointer 114-38-2-42.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.2.38.114.in-addr.arpa	name = 114-38-2-42.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.149.103.132	attackspambots	213.149.103.132 - - [06/Sep/2020:16:32:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.149.103.132 - - [06/Sep/2020:16:32:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.149.103.132 - - [06/Sep/2020:16:32:05 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-07 04:01:32
5.188.210.20	attack	0,56-04/05 [bc02/m09] PostRequest-Spammer scoring: luanda01	2020-09-07 03:56:16
157.245.78.30	attackbotsspam	Tried our host z.	2020-09-07 04:04:58
192.144.188.237	attackbots	Sep 6 16:25:54 markkoudstaal sshd[11576]: Failed password for root from 192.144.188.237 port 36384 ssh2 Sep 6 16:52:00 markkoudstaal sshd[18802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.188.237 Sep 6 16:52:02 markkoudstaal sshd[18802]: Failed password for invalid user RPM from 192.144.188.237 port 59210 ssh2 ...	2020-09-07 03:41:37
45.155.205.51	attackbotsspam	Attempted connection to port 56908.	2020-09-07 03:38:39
188.165.169.238	attackspambots	Sep 6 11:13:22 inter-technics sshd[23275]: Invalid user asiforis from 188.165.169.238 port 58546 Sep 6 11:13:22 inter-technics sshd[23275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.169.238 Sep 6 11:13:22 inter-technics sshd[23275]: Invalid user asiforis from 188.165.169.238 port 58546 Sep 6 11:13:24 inter-technics sshd[23275]: Failed password for invalid user asiforis from 188.165.169.238 port 58546 ssh2 Sep 6 11:16:45 inter-technics sshd[23515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.169.238 user=root Sep 6 11:16:47 inter-technics sshd[23515]: Failed password for root from 188.165.169.238 port 34818 ssh2 ...	2020-09-07 03:50:43
142.93.127.16	attack	SSH login attempts.	2020-09-07 03:53:05
200.52.94.190	attack	Honeypot attack, port: 81, PTR: 190.94.52.200.in-addr.arpa.	2020-09-07 03:54:28
104.248.36.187	attackbots	104.248.36.187 - - [06/Sep/2020:13:30:02 -0600] "GET /wp-login.php HTTP/1.1" 301 468 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-07 04:03:51
1.230.226.101	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-09-07 03:43:25
45.148.9.160	attackbots	e-mail spam	2020-09-07 03:45:25
67.209.185.37	attackbotsspam	Sep 6 07:42:37 sshgateway sshd\[18822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.209.185.37.16clouds.com user=root Sep 6 07:42:39 sshgateway sshd\[18822\]: Failed password for root from 67.209.185.37 port 55996 ssh2 Sep 6 07:48:13 sshgateway sshd\[20785\]: Invalid user sandeep from 67.209.185.37 Sep 6 07:48:13 sshgateway sshd\[20785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.209.185.37.16clouds.com	2020-09-07 03:46:13
97.107.132.120	attack	port scan and connect, tcp 8080 (http-proxy)	2020-09-07 04:08:09
192.241.249.226	attackspambots	2020-09-06T19:27:31.341788shield sshd\[15760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.226 user=root 2020-09-06T19:27:33.023808shield sshd\[15760\]: Failed password for root from 192.241.249.226 port 44626 ssh2 2020-09-06T19:31:56.099619shield sshd\[16100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.226 user=root 2020-09-06T19:31:58.157418shield sshd\[16100\]: Failed password for root from 192.241.249.226 port 49152 ssh2 2020-09-06T19:36:22.040264shield sshd\[16406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.226 user=root	2020-09-07 03:51:33
190.205.225.185	attack	Honeypot attack, port: 445, PTR: 190-205-225-185.dyn.dsl.cantv.net.	2020-09-07 03:37:57

最近上报的IP列表

114.116.235.87	103.99.3.185	188.38.37.219	113.246.130.132
94.230.201.73	185.206.224.236	113.185.0.13	191.119.24.206
139.198.186.225	106.201.92.91	144.76.220.101	113.183.91.219
103.228.204.57	112.17.166.159	116.108.0.145	25.130.36.160
109.154.226.172	194.221.202.229	191.246.6.63	121.17.164.15