42.101.44.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): Heilongjiang

国家(country): China

运营商(isp): Heilongjiang Telecom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Trying ports that it shouldn't be.	2019-12-27 04:38:05

相同子网IP讨论:

IP	类型	评论内容	时间
42.101.44.20	attackspambots	Found on CINS badguys / proto=6 . srcport=58446 . dstport=6379 . (3559)	2020-09-21 03:41:23
42.101.44.20	attack	Found on CINS badguys / proto=6 . srcport=58446 . dstport=6379 . (3559)	2020-09-20 19:51:15
42.101.44.158	attackbotsspam	"fail2ban match"	2020-07-10 04:44:19
42.101.44.158	attackbots	Jun 20 17:08:46 pve1 sshd[30166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 Jun 20 17:08:48 pve1 sshd[30166]: Failed password for invalid user zy from 42.101.44.158 port 32894 ssh2 ...	2020-06-20 23:54:45
42.101.44.158	attack	May 26 03:24:35 ajax sshd[19460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 May 26 03:24:37 ajax sshd[19460]: Failed password for invalid user andres from 42.101.44.158 port 59819 ssh2	2020-05-26 11:05:55
42.101.44.158	attackbotsspam	(sshd) Failed SSH login from 42.101.44.158 (CN/China/-): 5 in the last 3600 secs	2020-05-23 02:05:37
42.101.44.158	attack	Invalid user kpuser from 42.101.44.158 port 59403	2020-05-15 06:29:55
42.101.44.158	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-05-02 08:19:27
42.101.44.158	attackbots	Apr 29 18:07:15 ovh sshd[2762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158	2020-04-30 02:46:57
42.101.44.158	attackspam	"fail2ban match"	2020-04-24 14:17:21
42.101.44.158	attackbotsspam	Apr 20 10:36:21 r.ca sshd[13372]: Failed password for admin from 42.101.44.158 port 60975 ssh2	2020-04-20 23:32:36
42.101.44.158	attack	Apr 16 22:24:23 srv01 sshd[2206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 user=root Apr 16 22:24:25 srv01 sshd[2206]: Failed password for root from 42.101.44.158 port 59662 ssh2 Apr 16 22:29:20 srv01 sshd[2503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 user=postgres Apr 16 22:29:23 srv01 sshd[2503]: Failed password for postgres from 42.101.44.158 port 57003 ssh2 Apr 16 22:34:21 srv01 sshd[2871]: Invalid user admin from 42.101.44.158 port 54351 ...	2020-04-17 04:49:45
42.101.44.158	attack	Apr 11 14:20:34 pve sshd[14135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 Apr 11 14:20:36 pve sshd[14135]: Failed password for invalid user dmakena from 42.101.44.158 port 50284 ssh2 Apr 11 14:25:54 pve sshd[22986]: Failed password for root from 42.101.44.158 port 48247 ssh2	2020-04-11 20:51:34
42.101.44.116	attack	Sep 20 18:28:04 php1 sshd\[14254\]: Invalid user ek from 42.101.44.116 Sep 20 18:28:04 php1 sshd\[14254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.116 Sep 20 18:28:05 php1 sshd\[14254\]: Failed password for invalid user ek from 42.101.44.116 port 54705 ssh2 Sep 20 18:32:06 php1 sshd\[14764\]: Invalid user qwerty from 42.101.44.116 Sep 20 18:32:06 php1 sshd\[14764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.116	2019-09-21 12:36:41
42.101.44.154	attackbotsspam	Time: Tue Sep 10 08:08:45 2019 -0300 IP: 42.101.44.154 (CN/China/-) Failures: 15 (cpanel) Interval: 3600 seconds Blocked: Permanent Block	2019-09-10 20:50:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.101.44.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33092
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.101.44.14.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122601 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 04:38:02 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 14.44.101.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.44.101.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.114.192.162	attackbotsspam	Aug 11 16:09:14 SilenceServices sshd[19030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.192.162 Aug 11 16:09:16 SilenceServices sshd[19030]: Failed password for invalid user tomcat from 167.114.192.162 port 30611 ssh2 Aug 11 16:13:19 SilenceServices sshd[22102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.192.162	2019-08-11 22:20:05
111.255.18.211	attackbots	Honeypot attack, port: 23, PTR: 111-255-18-211.dynamic-ip.hinet.net.	2019-08-11 22:22:21
165.227.67.64	attackbotsspam	Aug 11 09:40:48 lnxweb61 sshd[15511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.67.64 Aug 11 09:40:50 lnxweb61 sshd[15511]: Failed password for invalid user paulo from 165.227.67.64 port 35542 ssh2 Aug 11 09:49:31 lnxweb61 sshd[23568]: Failed password for root from 165.227.67.64 port 46880 ssh2	2019-08-11 22:17:37
125.25.54.4	attackspambots	Aug 11 20:48:33 localhost sshd[750]: Invalid user ozzy from 125.25.54.4 port 9657 Aug 11 20:48:33 localhost sshd[750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.25.54.4 Aug 11 20:48:33 localhost sshd[750]: Invalid user ozzy from 125.25.54.4 port 9657 Aug 11 20:48:34 localhost sshd[750]: Failed password for invalid user ozzy from 125.25.54.4 port 9657 ssh2 ...	2019-08-11 22:18:09
200.54.242.46	attackspambots	Aug 11 12:22:41 microserver sshd[59365]: Invalid user ddgrid from 200.54.242.46 port 33095 Aug 11 12:22:41 microserver sshd[59365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Aug 11 12:22:44 microserver sshd[59365]: Failed password for invalid user ddgrid from 200.54.242.46 port 33095 ssh2 Aug 11 12:27:38 microserver sshd[59997]: Invalid user docker from 200.54.242.46 port 56499 Aug 11 12:27:38 microserver sshd[59997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Aug 11 12:41:45 microserver sshd[61878]: Invalid user user from 200.54.242.46 port 41768 Aug 11 12:41:45 microserver sshd[61878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Aug 11 12:41:47 microserver sshd[61878]: Failed password for invalid user user from 200.54.242.46 port 41768 ssh2 Aug 11 12:46:39 microserver sshd[62517]: Invalid user peg from 200.54.242.46 port 36467 Aug 11	2019-08-11 22:12:48
120.197.97.27	attackspam	53413/udp 53413/udp 53413/udp... [2019-06-10/08-11]1212pkt,1pt.(udp)	2019-08-11 22:08:56
123.24.206.39	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:13:39,597 INFO [amun_request_handler] PortScan Detected on Port: 445 (123.24.206.39)	2019-08-11 22:25:14
116.49.86.12	attackspam	23/tcp 23/tcp [2019-08-07/11]2pkt	2019-08-11 21:53:00
42.58.105.117	attackspam	firewall-block, port(s): 23/tcp	2019-08-11 21:51:52
206.235.255.12	attack	2019-08-11T19:09:57.994863enmeeting.mahidol.ac.th sshd\[27190\]: User root from 206.235.255.12 not allowed because not listed in AllowUsers 2019-08-11T19:09:58.117863enmeeting.mahidol.ac.th sshd\[27190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.235.255.12 user=root 2019-08-11T19:10:00.024811enmeeting.mahidol.ac.th sshd\[27190\]: Failed password for invalid user root from 206.235.255.12 port 46915 ssh2 ...	2019-08-11 22:01:42
71.6.233.89	attackbots	49152/tcp 5443/tcp 8080/tcp... [2019-07-04/08-10]6pkt,6pt.(tcp)	2019-08-11 22:10:32
212.100.149.202	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 07:25:12,332 INFO [shellcode_manager] (212.100.149.202) no match, writing hexdump (b54a1b092e29ff1c872d8bc769376fd9 :2252963) - MS17010 (EternalBlue)	2019-08-11 22:02:52
125.26.165.163	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:17:29,660 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.26.165.163)	2019-08-11 22:06:38
122.255.11.213	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:16:42,511 INFO [amun_request_handler] PortScan Detected on Port: 445 (122.255.11.213)	2019-08-11 22:11:24
5.63.151.123	attackbotsspam	5001/tcp 10255/tcp 17/udp... [2019-06-15/08-11]9pkt,7pt.(tcp),2pt.(udp)	2019-08-11 22:15:19

最近上报的IP列表

14.33.64.209	99.123.223.225	177.244.236.179	232.46.33.238
118.69.224.213	173.222.14.178	55.70.25.171	27.152.112.182
214.115.226.234	168.244.129.19	156.199.191.204	184.141.78.177
33.167.8.86	211.88.140.232	95.27.101.243	148.117.222.6
194.167.195.232	104.142.89.179	68.42.154.110	142.213.210.17