180.180.42.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): TOT Public Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 180.180.42.14 to port 83 [J]	2020-01-21 01:44:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.180.42.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12601
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.180.42.14.			IN	A

;; AUTHORITY SECTION:
.			496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012001 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 01:44:44 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

14.42.180.180.in-addr.arpa domain name pointer node-8b2.pool-180-180.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.42.180.180.in-addr.arpa	name = node-8b2.pool-180-180.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.180.20	attack	2019-10-01T06:08:25.486761abusebot.cloudsearch.cf sshd\[31432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.20 user=root	2019-10-01 14:11:52
144.217.89.55	attackbots	Oct 1 05:53:16 dedicated sshd[5669]: Invalid user ts-dev from 144.217.89.55 port 54490	2019-10-01 13:47:11
3.17.181.193	attack	Oct 1 11:11:35 areeb-Workstation sshd[11885]: Failed password for root from 3.17.181.193 port 57340 ssh2 Oct 1 11:15:40 areeb-Workstation sshd[12652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.17.181.193 ...	2019-10-01 13:53:05
198.108.67.77	attack	" "	2019-10-01 14:10:06
187.12.181.106	attack	Oct 1 06:59:39 [host] sshd[12972]: Invalid user teste from 187.12.181.106 Oct 1 06:59:39 [host] sshd[12972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.12.181.106 Oct 1 06:59:41 [host] sshd[12972]: Failed password for invalid user teste from 187.12.181.106 port 39568 ssh2	2019-10-01 13:49:21
185.216.140.180	attack	(Oct 1) LEN=40 TTL=249 ID=34207 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=36665 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=21433 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=21181 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=30729 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=57566 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=43086 TCP DPT=3306 WINDOW=1024 SYN (Oct 1) LEN=40 TTL=249 ID=58496 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=44784 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=31709 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=19862 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=35758 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=19119 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=17379 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ID=5268 TCP DPT=3306 WINDOW=1024 SYN (Sep 30) LEN=40 TTL=249 ...	2019-10-01 14:10:34
129.204.22.64	attackspambots	Oct 1 01:54:57 xtremcommunity sshd\[55917\]: Invalid user qh from 129.204.22.64 port 43560 Oct 1 01:54:57 xtremcommunity sshd\[55917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.22.64 Oct 1 01:54:59 xtremcommunity sshd\[55917\]: Failed password for invalid user qh from 129.204.22.64 port 43560 ssh2 Oct 1 02:00:18 xtremcommunity sshd\[56060\]: Invalid user mai from 129.204.22.64 port 55490 Oct 1 02:00:18 xtremcommunity sshd\[56060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.22.64 ...	2019-10-01 14:08:29
192.3.209.173	attack	Oct 1 06:54:38 icinga sshd[24323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.209.173 Oct 1 06:54:40 icinga sshd[24323]: Failed password for invalid user ddd from 192.3.209.173 port 55726 ssh2 ...	2019-10-01 13:53:37
51.38.128.94	attackbotsspam	Brute SSH	2019-10-01 14:07:13
86.101.56.141	attack	Oct 1 07:06:20 vps01 sshd[32751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.101.56.141 Oct 1 07:06:22 vps01 sshd[32751]: Failed password for invalid user bofinet from 86.101.56.141 port 41768 ssh2	2019-10-01 13:49:52
125.177.17.175	attackspambots	Sep 30 19:26:45 web1 sshd\[7288\]: Invalid user \(OL\> from 125.177.17.175 Sep 30 19:26:45 web1 sshd\[7288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.177.17.175 Sep 30 19:26:47 web1 sshd\[7288\]: Failed password for invalid user \(OL\> from 125.177.17.175 port 39340 ssh2 Sep 30 19:31:37 web1 sshd\[7692\]: Invalid user qwe123 from 125.177.17.175 Sep 30 19:31:37 web1 sshd\[7692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.177.17.175	2019-10-01 13:57:49
221.132.17.81	attackbotsspam	Invalid user rodney from 221.132.17.81 port 43462	2019-10-01 14:23:26
34.76.24.54	attackbots	34.76.24.54 - - [18/Sep/2019:15:37:49 +0800] "GET / HTTP/1.1" 403 - "-" "Python/3.6 aiohttp/3.6.0" 34.76.24.54 - - [18/Sep/2019:15:37:49 +0800] "GET / HTTP/1.1" 403 - "-" "Python/3.6 aiohttp/3.6.0" 34.76.24.54 - - [18/Sep/2019:15:37:50 +0800] "GET / HTTP/1.1" 403 - "-" "Python/3.6 aiohttp/3.6.0" 34.76.24.54 - - [18/Sep/2019:15:37:53 +0800] "GET /util/login.aspx HTTP/1.1" 404 1073 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:52.0) Gecko/20100101 Firefox/52.0" 34.76.24.54 - - [18/Sep/2019:15:37:55 +0800] "GET /magento_version HTTP/1.1" 404 1073 "-"	2019-10-01 14:03:03
208.90.161.194	attack	Unauthorised access (Oct 1) SRC=208.90.161.194 LEN=40 TTL=238 ID=6222 TCP DPT=445 WINDOW=1024 SYN	2019-10-01 14:01:44
220.132.221.85	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/220.132.221.85/ TW - 1H : (226) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 220.132.221.85 CIDR : 220.132.192.0/18 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 23 3H - 53 6H - 66 12H - 96 24H - 158 DateTime : 2019-10-01 05:53:01 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-01 13:56:21

最近上报的IP列表

49.234.196.225	49.212.128.149	6.6.13.120	49.88.172.52
147.82.151.93	47.103.124.195	43.240.21.179	42.117.20.162
42.116.211.162	42.114.187.236	27.20.243.121	18.190.118.53
14.204.59.89	223.97.176.229	222.84.169.138	222.81.232.126
221.228.203.174	220.169.63.94	218.72.194.83	180.5.161.147