114.231.42.142

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.231.42.212	attack	Sep 2 12:30:34 sshgateway sshd\[9695\]: Invalid user francis from 114.231.42.212 Sep 2 12:30:34 sshgateway sshd\[9695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.231.42.212 Sep 2 12:30:36 sshgateway sshd\[9695\]: Failed password for invalid user francis from 114.231.42.212 port 60911 ssh2	2020-09-02 20:32:16
114.231.42.212	attackspam	reported through recidive - multiple failed attempts(SSH)	2020-09-02 12:27:22
114.231.42.212	attackbots	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-02 05:37:15
114.231.42.212	attack	Aug 31 14:16:34 ns382633 sshd\[7394\]: Invalid user gpx from 114.231.42.212 port 56198 Aug 31 14:16:34 ns382633 sshd\[7394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.231.42.212 Aug 31 14:16:36 ns382633 sshd\[7394\]: Failed password for invalid user gpx from 114.231.42.212 port 56198 ssh2 Aug 31 14:37:16 ns382633 sshd\[10861\]: Invalid user sander from 114.231.42.212 port 55769 Aug 31 14:37:16 ns382633 sshd\[10861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.231.42.212	2020-08-31 20:56:04
114.231.42.212	attackspam	Aug 29 20:24:03 *** sshd[14788]: Invalid user postgres from 114.231.42.212	2020-08-30 06:54:30
114.231.42.74	attackbotsspam	Brute force attempt	2020-08-27 12:32:04
114.231.42.30	attackspam	Attempted Brute Force (dovecot)	2020-08-15 06:46:49
114.231.42.126	attackbots	Aug 6 07:44:53 pixelmemory postfix/smtpd[3311769]: warning: unknown[114.231.42.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 07:45:03 pixelmemory postfix/smtpd[3311769]: warning: unknown[114.231.42.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 07:45:17 pixelmemory postfix/smtpd[3311769]: warning: unknown[114.231.42.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 07:45:35 pixelmemory postfix/smtpd[3311769]: warning: unknown[114.231.42.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 07:45:48 pixelmemory postfix/smtpd[3311769]: warning: unknown[114.231.42.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-06 23:34:38
114.231.42.231	attack	Unauthorized SSH login attempts	2020-08-05 13:49:58
114.231.42.42	attackspambots	2020-07-31T22:11:57.129282suse-nuc sshd[12106]: User root from 114.231.42.42 not allowed because listed in DenyUsers ...	2020-08-01 13:45:12
114.231.42.171	attackspambots	Jun 27 05:18:25 pixelmemory postfix/smtpd[2115191]: warning: unknown[114.231.42.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 05:18:37 pixelmemory postfix/smtpd[2115191]: warning: unknown[114.231.42.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 05:19:00 pixelmemory postfix/smtpd[2120007]: warning: unknown[114.231.42.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 05:19:35 pixelmemory postfix/smtpd[2120007]: warning: unknown[114.231.42.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 05:19:47 pixelmemory postfix/smtpd[2115191]: warning: unknown[114.231.42.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-27 23:29:48
114.231.42.52	attackbotsspam	$f2bV_matches	2020-06-24 20:37:47
114.231.42.236	attackspam	(smtpauth) Failed SMTP AUTH login from 114.231.42.236 (CN/China/236.42.231.114.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs	2020-06-24 17:32:03
114.231.42.209	attack	(smtpauth) Failed SMTP AUTH login from 114.231.42.209 (CN/China/209.42.231.114.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs	2020-06-23 21:14:18
114.231.42.9	attackbotsspam	Jun 8 08:26:02 Host-KEWR-E postfix/smtpd[7713]: lost connection after AUTH from unknown[114.231.42.9] ...	2020-06-08 21:18:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.231.42.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26084
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.231.42.142.			IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040400 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 16:54:23 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 142.42.231.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.42.231.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.239.100.14	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-26 14:55:13
189.112.90.132	attackbotsspam	Aug 26 06:47:31 scw-6657dc sshd[28393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.90.132 Aug 26 06:47:31 scw-6657dc sshd[28393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.90.132 Aug 26 06:47:33 scw-6657dc sshd[28393]: Failed password for invalid user yz from 189.112.90.132 port 44454 ssh2 ...	2020-08-26 14:49:45
182.253.115.90	attack	Aug 26 04:39:18 shivevps sshd[22378]: Bad protocol version identification '\024' from 182.253.115.90 port 35738 Aug 26 04:40:22 shivevps sshd[24076]: Bad protocol version identification '\024' from 182.253.115.90 port 59515 Aug 26 04:44:18 shivevps sshd[30961]: Bad protocol version identification '\024' from 182.253.115.90 port 36814 ...	2020-08-26 14:50:08
200.152.78.48	attackbots	Aug 26 04:41:22 shivevps sshd[25597]: Bad protocol version identification '\024' from 200.152.78.48 port 46120 Aug 26 04:43:57 shivevps sshd[30319]: Bad protocol version identification '\024' from 200.152.78.48 port 51877 Aug 26 04:44:20 shivevps sshd[31081]: Bad protocol version identification '\024' from 200.152.78.48 port 52854 ...	2020-08-26 14:52:05
47.33.161.231	attackspam	Aug 25 23:53:33 aragorn sshd[28267]: Invalid user admin from 47.33.161.231 Aug 25 23:53:34 aragorn sshd[28269]: Invalid user admin from 47.33.161.231 Aug 25 23:53:35 aragorn sshd[28273]: Invalid user admin from 47.33.161.231 Aug 25 23:53:36 aragorn sshd[28275]: Invalid user admin from 47.33.161.231 ...	2020-08-26 15:13:38
117.141.92.110	attackspam	Aug 26 04:39:59 shivevps sshd[23465]: Bad protocol version identification '\024' from 117.141.92.110 port 33030 Aug 26 04:43:01 shivevps sshd[28562]: Bad protocol version identification '\024' from 117.141.92.110 port 32028 Aug 26 04:52:54 shivevps sshd[3963]: Bad protocol version identification '\024' from 117.141.92.110 port 33450 ...	2020-08-26 14:44:32
117.239.149.94	attackbots	[Wed Aug 26 10:53:34.803560 2020] [:error] [pid 30543:tid 139707031746304] [client 117.239.149.94:63017] [client 117.239.149.94] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/manager/html"] [unique_id "X0XcviXBG@3tAFpdD8koaAAAAnY"] ...	2020-08-26 15:14:11
23.129.64.202	attackspam	Trolling for resource vulnerabilities	2020-08-26 14:45:00
46.9.167.197	attack	Invalid user ernesto from 46.9.167.197 port 56123	2020-08-26 15:14:23
201.143.32.82	attackbots	Aug 26 04:41:21 shivevps sshd[25593]: Bad protocol version identification '\024' from 201.143.32.82 port 46987 Aug 26 04:42:21 shivevps sshd[26698]: Bad protocol version identification '\024' from 201.143.32.82 port 47921 Aug 26 04:42:23 shivevps sshd[26801]: Bad protocol version identification '\024' from 201.143.32.82 port 47951 Aug 26 04:42:55 shivevps sshd[28325]: Bad protocol version identification '\024' from 201.143.32.82 port 48447 ...	2020-08-26 14:51:50
124.128.158.37	attackbots	Aug 26 08:22:47 PorscheCustomer sshd[19481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.128.158.37 Aug 26 08:22:48 PorscheCustomer sshd[19481]: Failed password for invalid user b2 from 124.128.158.37 port 12994 ssh2 Aug 26 08:28:21 PorscheCustomer sshd[19585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.128.158.37 ...	2020-08-26 14:43:56
195.154.46.252	attackspam	Aug 26 04:42:23 shivevps sshd[26797]: Bad protocol version identification '\024' from 195.154.46.252 port 38440 Aug 26 04:43:32 shivevps sshd[29313]: Bad protocol version identification '\024' from 195.154.46.252 port 56473 Aug 26 04:44:01 shivevps sshd[30493]: Bad protocol version identification '\024' from 195.154.46.252 port 37974 Aug 26 04:44:46 shivevps sshd[31792]: Bad protocol version identification '\024' from 195.154.46.252 port 36648 ...	2020-08-26 15:02:24
134.17.94.158	attackbotsspam	Aug 26 05:09:22 game-panel sshd[13773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.17.94.158 Aug 26 05:09:25 game-panel sshd[13773]: Failed password for invalid user test2 from 134.17.94.158 port 25299 ssh2 Aug 26 05:13:23 game-panel sshd[13921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.17.94.158	2020-08-26 15:11:38
185.220.103.9	attackbots	Aug 26 04:44:17 shivevps sshd[30870]: Bad protocol version identification '\024' from 185.220.103.9 port 44650 Aug 26 04:44:22 shivevps sshd[31094]: Bad protocol version identification '\024' from 185.220.103.9 port 46468 Aug 26 04:44:23 shivevps sshd[31158]: Bad protocol version identification '\024' from 185.220.103.9 port 46946 ...	2020-08-26 15:12:41
202.5.48.135	attack	Aug 26 04:40:40 shivevps sshd[24405]: Bad protocol version identification '\024' from 202.5.48.135 port 33287 Aug 26 04:43:48 shivevps sshd[29936]: Bad protocol version identification '\024' from 202.5.48.135 port 38531 Aug 26 04:43:49 shivevps sshd[29969]: Bad protocol version identification '\024' from 202.5.48.135 port 38585 Aug 26 04:43:53 shivevps sshd[30119]: Bad protocol version identification '\024' from 202.5.48.135 port 38752 ...	2020-08-26 14:58:00

Recently Reported IPs

114.231.42.13	114.231.42.144	114.231.42.187	114.231.42.229
114.231.42.56	114.231.42.87	114.231.45.103	114.231.45.152
114.231.45.166	114.231.45.18	114.231.45.213	114.231.45.248
114.231.45.83	114.231.46.109	114.231.46.136	114.231.46.243
114.231.46.244	114.231.46.39	114.231.46.74	114.231.55.203