114.42.68.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	firewall-block, port(s): 23/tcp	2019-08-27 10:21:27

相同子网IP讨论:

IP	类型	评论内容	时间
114.42.68.248	attack	Port Scan: TCP/23	2019-09-20 22:43:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.42.68.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5728
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.42.68.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 10:21:22 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

20.68.42.114.in-addr.arpa domain name pointer 114-42-68-20.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
20.68.42.114.in-addr.arpa	name = 114-42-68-20.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.57.24.21	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2020-02-03 22:08:24
201.243.202.243	attackbots	DATE:2020-02-03 14:29:30, IP:201.243.202.243, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2020-02-03 22:23:38
222.79.184.36	attackspambots	2020-02-03T13:23:41.986648abusebot-2.cloudsearch.cf sshd[13534]: Invalid user desarrollo from 222.79.184.36 port 46862 2020-02-03T13:23:41.995106abusebot-2.cloudsearch.cf sshd[13534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.79.184.36 2020-02-03T13:23:41.986648abusebot-2.cloudsearch.cf sshd[13534]: Invalid user desarrollo from 222.79.184.36 port 46862 2020-02-03T13:23:44.310277abusebot-2.cloudsearch.cf sshd[13534]: Failed password for invalid user desarrollo from 222.79.184.36 port 46862 ssh2 2020-02-03T13:29:29.561096abusebot-2.cloudsearch.cf sshd[13860]: Invalid user ko from 222.79.184.36 port 45568 2020-02-03T13:29:29.567364abusebot-2.cloudsearch.cf sshd[13860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.79.184.36 2020-02-03T13:29:29.561096abusebot-2.cloudsearch.cf sshd[13860]: Invalid user ko from 222.79.184.36 port 45568 2020-02-03T13:29:31.656638abusebot-2.cloudsearch.cf sshd[13860 ...	2020-02-03 22:21:03
113.172.115.209	attackbots	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-02-03 22:21:34
147.91.209.151	attack	2020-02-02T02:29:56.514Z CLOSE host=147.91.209.151 port=55312 fd=4 time=20.013 bytes=22 ...	2020-02-03 22:39:42
158.69.204.172	attackspam	Unauthorized connection attempt detected from IP address 158.69.204.172 to port 2220 [J]	2020-02-03 22:07:31
62.57.185.94	attackbots	Feb 3 14:29:38 grey postfix/smtpd\[28904\]: NOQUEUE: reject: RCPT from 62.57.185.94.dyn.user.ono.com\[62.57.185.94\]: 554 5.7.1 Service unavailable\; Client host \[62.57.185.94\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?62.57.185.94\; from=\ to=\ proto=ESMTP helo=\<62.57.185.94.dyn.user.ono.com\> ...	2020-02-03 22:10:36
112.30.117.22	attack	Unauthorized connection attempt detected from IP address 112.30.117.22 to port 2220 [J]	2020-02-03 22:10:53
36.155.112.131	attackbots	Feb 2 19:06:59 new sshd[13002]: Failed password for invalid user user6 from 36.155.112.131 port 44812 ssh2 Feb 2 19:07:00 new sshd[13002]: Received disconnect from 36.155.112.131: 11: Bye Bye [preauth] Feb 2 19:36:51 new sshd[20662]: Connection closed by 36.155.112.131 [preauth] Feb 2 19:38:33 new sshd[21671]: Failed password for invalid user icinga from 36.155.112.131 port 59823 ssh2 Feb 2 19:38:33 new sshd[21671]: Received disconnect from 36.155.112.131: 11: Bye Bye [preauth] Feb 2 19:42:00 new sshd[22877]: Failed password for invalid user catalog from 36.155.112.131 port 41910 ssh2 Feb 2 19:42:00 new sshd[22877]: Received disconnect from 36.155.112.131: 11: Bye Bye [preauth] Feb 2 19:45:06 new sshd[23487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.112.131 user=r.r Feb 2 19:45:07 new sshd[23487]: Failed password for r.r from 36.155.112.131 port 52230 ssh2 Feb 2 19:45:08 new sshd[23487]: Received disconnec........ -------------------------------	2020-02-03 22:19:30
178.128.114.106	attackspam	Feb 3 04:30:02 hpm sshd\[15312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.114.106 user=root Feb 3 04:30:04 hpm sshd\[15312\]: Failed password for root from 178.128.114.106 port 39766 ssh2 Feb 3 04:35:30 hpm sshd\[15562\]: Invalid user tian from 178.128.114.106 Feb 3 04:35:31 hpm sshd\[15562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.114.106 Feb 3 04:35:32 hpm sshd\[15562\]: Failed password for invalid user tian from 178.128.114.106 port 41446 ssh2	2020-02-03 22:41:08
39.45.159.80	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-03 22:32:16
223.17.15.231	attack	Honeypot attack, port: 5555, PTR: 231-15-17-223-on-nets.com.	2020-02-03 22:15:15
87.248.173.4	attack	trying to access non-authorized port	2020-02-03 21:57:58
115.159.3.52	attack	Unauthorized connection attempt detected from IP address 115.159.3.52 to port 2220 [J]	2020-02-03 22:31:53
218.92.0.200	attackbotsspam	2020-02-03T09:10:24.331659vostok sshd\[27449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root \| Triggered by Fail2Ban at Vostok web server	2020-02-03 22:25:23

最近上报的IP列表

116.196.80.104	107.170.138.54	190.145.7.42	81.184.103.145
50.63.12.204	179.154.45.189	203.189.206.109	83.243.72.173
112.153.213.135	77.247.108.205	2001:41d0:1000:e68::	58.56.117.130
5.8.37.228	121.241.244.93	167.71.217.70	123.24.131.28
115.59.7.45	103.121.18.122	76.183.84.74	130.61.27.145