114.42.68.248 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: TCP/23	2019-09-20 22:43:58

Comments on same subnet:

IP	Type	Details	Datetime
114.42.68.20	attackbots	firewall-block, port(s): 23/tcp	2019-08-27 10:21:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.42.68.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50652
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.42.68.248.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092000 1800 900 604800 86400

;; Query time: 669 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 22:43:52 CST 2019
;; MSG SIZE  rcvd: 117

Host info

248.68.42.114.in-addr.arpa domain name pointer 114-42-68-248.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
248.68.42.114.in-addr.arpa	name = 114-42-68-248.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.183.64.239	attack	1585886220 - 04/03/2020 05:57:00 Host: 180.183.64.239/180.183.64.239 Port: 445 TCP Blocked	2020-04-03 12:04:31
189.112.228.153	attackspambots	Invalid user www from 189.112.228.153 port 43098	2020-04-03 12:25:24
78.128.113.82	attackspam	Apr 3 06:22:39 mail.srvfarm.net postfix/smtps/smtpd[2447099]: warning: unknown[78.128.113.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 06:22:40 mail.srvfarm.net postfix/smtps/smtpd[2447099]: lost connection after AUTH from unknown[78.128.113.82] Apr 3 06:22:51 mail.srvfarm.net postfix/smtps/smtpd[2447101]: lost connection after AUTH from unknown[78.128.113.82] Apr 3 06:22:58 mail.srvfarm.net postfix/smtps/smtpd[2447099]: warning: unknown[78.128.113.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 06:22:58 mail.srvfarm.net postfix/smtps/smtpd[2447099]: lost connection after AUTH from unknown[78.128.113.82]	2020-04-03 12:41:41
209.97.134.82	attackspambots	Apr 3 05:51:56 ns381471 sshd[16109]: Failed password for root from 209.97.134.82 port 45348 ssh2	2020-04-03 12:02:34
208.186.112.103	attackbots	2020-04-03 H=substance.onvacationnow.com \(substance.cbtbtest.com\) \[208.186.112.103\] F=\ rejected RCPT \: Mail not accepted. 208.186.112.103 is listed at a DNSBL. 2020-04-03 H=substance.onvacationnow.com \(substance.cbtbtest.com\) \[208.186.112.103\] F=\ rejected RCPT \: Mail not accepted. 208.186.112.103 is listed at a DNSBL. 2020-04-03 H=substance.onvacationnow.com \(substance.cbtbtest.com\) \[208.186.112.103\] F=\ rejected RCPT \: Mail not accepted. 208.186.112.103 is listed at a DNSBL.	2020-04-03 12:37:58
222.186.15.10	attackspam	Apr 3 09:33:07 gw1 sshd[25578]: Failed password for root from 222.186.15.10 port 46496 ssh2 Apr 3 09:33:09 gw1 sshd[25578]: Failed password for root from 222.186.15.10 port 46496 ssh2 ...	2020-04-03 12:33:55
2.228.151.115	attack	Automatic report - SSH Brute-Force Attack	2020-04-03 11:06:26
222.186.173.238	attackspambots	Apr 3 06:01:25 legacy sshd[2988]: Failed password for root from 222.186.173.238 port 30500 ssh2 Apr 3 06:01:29 legacy sshd[2988]: Failed password for root from 222.186.173.238 port 30500 ssh2 Apr 3 06:01:38 legacy sshd[2988]: Failed password for root from 222.186.173.238 port 30500 ssh2 Apr 3 06:01:38 legacy sshd[2988]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 30500 ssh2 [preauth] ...	2020-04-03 12:03:52
118.101.194.159	attack	Apr 3 05:41:43 ns382633 sshd\[27506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.101.194.159 user=root Apr 3 05:41:45 ns382633 sshd\[27506\]: Failed password for root from 118.101.194.159 port 60606 ssh2 Apr 3 05:52:13 ns382633 sshd\[29488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.101.194.159 user=root Apr 3 05:52:15 ns382633 sshd\[29488\]: Failed password for root from 118.101.194.159 port 51788 ssh2 Apr 3 05:56:35 ns382633 sshd\[30357\]: Invalid user iy from 118.101.194.159 port 45294 Apr 3 05:56:35 ns382633 sshd\[30357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.101.194.159	2020-04-03 12:27:45
37.49.231.127	attack	Apr 3 05:57:05 debian-2gb-nbg1-2 kernel: \[8145266.534866\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.231.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=14259 PROTO=TCP SPT=45939 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-03 12:01:22
159.89.97.23	attackspambots	Apr 3 00:53:54 firewall sshd[14511]: Failed password for invalid user tian from 159.89.97.23 port 43266 ssh2 Apr 3 00:56:23 firewall sshd[14592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.97.23 user=root Apr 3 00:56:25 firewall sshd[14592]: Failed password for root from 159.89.97.23 port 34246 ssh2 ...	2020-04-03 12:36:42
31.202.97.15	attackspam	Apr 3 05:56:41 ns3164893 sshd[24739]: Invalid user pi from 31.202.97.15 port 53498 Apr 3 05:56:41 ns3164893 sshd[24741]: Invalid user pi from 31.202.97.15 port 53504 ...	2020-04-03 12:22:16
122.225.105.173	attack	Apr 3 09:09:40 gw1 sshd[25142]: Failed password for root from 122.225.105.173 port 59024 ssh2 Apr 3 09:14:20 gw1 sshd[25213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.105.173 ...	2020-04-03 12:28:59
125.124.70.22	attack	Apr 2 23:48:14 NPSTNNYC01T sshd[30284]: Failed password for root from 125.124.70.22 port 33252 ssh2 Apr 2 23:52:33 NPSTNNYC01T sshd[30605]: Failed password for root from 125.124.70.22 port 33346 ssh2 ...	2020-04-03 12:11:56
36.155.114.151	attackbotsspam	Apr 3 00:08:10 NPSTNNYC01T sshd[31555]: Failed password for root from 36.155.114.151 port 44632 ssh2 Apr 3 00:12:00 NPSTNNYC01T sshd[32150]: Failed password for root from 36.155.114.151 port 35835 ssh2 ...	2020-04-03 12:18:17

Recently Reported IPs

204.180.122.101	72.56.76.71	50.4.181.23	38.121.115.57
221.61.181.120	36.237.204.143	97.67.59.168	219.55.45.1
3.103.21.12	196.203.189.130	112.191.212.219	36.82.96.158
176.100.179.138	187.42.164.53	214.237.36.147	212.99.23.88
13.221.131.46	29.180.73.191	31.210.170.131	174.69.0.113