36.34.14.42 - IPInfo

Basic Info

City: unknown

Region: Anhui

Country: China

Internet Service Provider: China Unicom Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 36.34.14.42 to port 6656 [T]	2020-01-27 04:54:32

Comments on same subnet:

IP	Type	Details	Datetime
36.34.148.122	attack	Unauthorized connection attempt detected from IP address 36.34.148.122 to port 23 [T]	2020-05-20 14:19:15
36.34.14.192	attackbots	Unauthorized connection attempt detected from IP address 36.34.14.192 to port 6656 [T]	2020-01-30 15:27:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.34.14.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31932
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;36.34.14.42.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012601 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 04:54:29 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 42.14.34.36.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.14.34.36.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.88.76.66	attackbotsspam	2019-08-08 07:14:27 H=(logosexpress.it) [103.88.76.66]:48463 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-08 07:14:28 H=(logosexpress.it) [103.88.76.66]:48463 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3, 127.0.0.11) (https://www.spamhaus.org/query/ip/103.88.76.66) 2019-08-08 07:14:28 H=(logosexpress.it) [103.88.76.66]:48463 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3, 127.0.0.11) (https://www.spamhaus.org/query/ip/103.88.76.66) ...	2019-08-09 04:06:09
95.161.235.227	attackspambots	Unauthorised access (Aug 8) SRC=95.161.235.227 LEN=52 TTL=113 ID=25315 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-09 03:50:51
195.154.200.43	attackspambots	$f2bV_matches	2019-08-09 03:38:59
36.26.113.50	attackbots	Aug 8 19:13:02 ubuntu-2gb-nbg1-dc3-1 sshd[12742]: Failed password for root from 36.26.113.50 port 57503 ssh2 Aug 8 19:13:07 ubuntu-2gb-nbg1-dc3-1 sshd[12742]: error: maximum authentication attempts exceeded for root from 36.26.113.50 port 57503 ssh2 [preauth] ...	2019-08-09 03:25:56
85.93.20.170	attack	Caught in portsentry honeypot	2019-08-09 03:19:43
93.37.177.212	attackspambots	IP: 93.37.177.212 ASN: AS12874 Fastweb Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 8/08/2019 11:56:58 AM UTC	2019-08-09 03:17:57
218.92.0.198	attack	2019-08-08T12:49:08.342453abusebot-7.cloudsearch.cf sshd\[10066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root	2019-08-09 04:02:16
185.100.87.190	attack	Aug 8 20:35:23 staklim-malang postfix/smtpd[31588]: lost connection after CONNECT from unknown[185.100.87.190] ...	2019-08-09 04:01:15
89.133.62.227	attackbots	Aug 8 18:56:55 areeb-Workstation sshd\[29591\]: Invalid user hei from 89.133.62.227 Aug 8 18:56:55 areeb-Workstation sshd\[29591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.62.227 Aug 8 18:56:57 areeb-Workstation sshd\[29591\]: Failed password for invalid user hei from 89.133.62.227 port 59819 ssh2 ...	2019-08-09 04:03:12
111.223.73.20	attackspambots	Aug 8 12:07:25 TORMINT sshd\[8309\]: Invalid user teamspeak from 111.223.73.20 Aug 8 12:07:25 TORMINT sshd\[8309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.223.73.20 Aug 8 12:07:27 TORMINT sshd\[8309\]: Failed password for invalid user teamspeak from 111.223.73.20 port 50458 ssh2 ...	2019-08-09 03:19:19
123.20.169.112	attackspam	Aug 8 13:56:00 [munged] sshd[12041]: Invalid user admin from 123.20.169.112 port 53179 Aug 8 13:56:00 [munged] sshd[12041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.20.169.112	2019-08-09 03:38:28
195.154.189.51	attackbotsspam	Aug 8 21:50:50 vps647732 sshd[30710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.189.51 Aug 8 21:50:52 vps647732 sshd[30710]: Failed password for invalid user adsl from 195.154.189.51 port 43158 ssh2 ...	2019-08-09 04:00:19
185.21.100.118	attackbots	Aug 8 19:01:39 ip-172-31-62-245 sshd\[21350\]: Invalid user yan from 185.21.100.118\ Aug 8 19:01:41 ip-172-31-62-245 sshd\[21350\]: Failed password for invalid user yan from 185.21.100.118 port 60568 ssh2\ Aug 8 19:05:48 ip-172-31-62-245 sshd\[21377\]: Failed password for root from 185.21.100.118 port 55308 ssh2\ Aug 8 19:11:16 ip-172-31-62-245 sshd\[21468\]: Invalid user eric from 185.21.100.118\ Aug 8 19:11:18 ip-172-31-62-245 sshd\[21468\]: Failed password for invalid user eric from 185.21.100.118 port 50612 ssh2\	2019-08-09 03:21:31
24.35.200.123	attackspambots	Honeypot hit.	2019-08-09 03:34:21
54.36.149.16	attack	Fake Crawler by OVH SAS. Robots ignored. Identified & Blocked by Drupal Firewall_	2019-08-09 03:56:27

Recently Reported IPs

201.182.34.202	65.224.188.209	108.138.173.253	185.251.219.61
64.6.23.66	110.50.71.30	195.240.59.167	149.167.16.51
183.166.249.109	42.239.241.143	111.138.84.32	89.175.194.252
183.166.124.41	221.255.98.95	87.136.17.218	202.134.115.245
95.232.77.244	183.161.224.206	222.94.135.37	97.37.164.210