104.42.2.91 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.42.213.169	attack	Sep 24 22:06:56 abendstille sshd\[12749\]: Invalid user 107 from 104.42.213.169 Sep 24 22:06:56 abendstille sshd\[12749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.213.169 Sep 24 22:06:56 abendstille sshd\[12752\]: Invalid user 107 from 104.42.213.169 Sep 24 22:06:56 abendstille sshd\[12752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.213.169 Sep 24 22:06:58 abendstille sshd\[12749\]: Failed password for invalid user 107 from 104.42.213.169 port 46905 ssh2 ...	2020-09-25 04:09:29
104.42.234.123	attackspambots	May 9 04:55:22 vpn01 sshd[30682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.234.123 May 9 04:55:24 vpn01 sshd[30682]: Failed password for invalid user user from 104.42.234.123 port 60448 ssh2 ...	2020-05-09 13:16:45
104.42.234.123	attackspam	Unauthorized connection attempt detected from IP address 104.42.234.123 to port 7002 [J]	2020-02-23 16:40:12
104.42.234.123	attackspambots	trying to access non-authorized port	2020-02-07 23:03:51
104.42.253.164	attackspam	Feb 1 22:59:59 dedicated sshd[23566]: Invalid user user8 from 104.42.253.164 port 39898	2020-02-02 06:04:15
104.42.253.164	attack	Invalid user ujala from 104.42.253.164 port 53798	2020-02-01 01:03:35
104.42.234.123	attack	Unauthorized connection attempt detected from IP address 104.42.234.123 to port 1433 [J]	2020-01-29 03:43:00
104.42.234.123	attackspam	Unauthorized connection attempt detected from IP address 104.42.234.123 to port 7001 [J]	2020-01-06 01:58:43
104.42.29.236	attackbots	Nov 26 07:30:08 * sshd[18067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.29.236 Nov 26 07:30:10 * sshd[18067]: Failed password for invalid user cetp from 104.42.29.236 port 17344 ssh2	2019-11-26 14:59:23
104.42.25.12	attack	Nov 20 05:26:04 wbs sshd\[14097\]: Invalid user linda from 104.42.25.12 Nov 20 05:26:04 wbs sshd\[14097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.25.12 Nov 20 05:26:06 wbs sshd\[14097\]: Failed password for invalid user linda from 104.42.25.12 port 2048 ssh2 Nov 20 05:30:13 wbs sshd\[14459\]: Invalid user dovecot from 104.42.25.12 Nov 20 05:30:13 wbs sshd\[14459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.25.12	2019-11-21 05:26:44
104.42.25.12	attack	Nov 17 02:11:29 ns381471 sshd[4748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.25.12 Nov 17 02:11:31 ns381471 sshd[4748]: Failed password for invalid user ezis from 104.42.25.12 port 2048 ssh2	2019-11-17 09:41:10
104.42.25.12	attackbotsspam	Nov 3 05:36:17 rotator sshd\[3605\]: Invalid user unborn from 104.42.25.12Nov 3 05:36:19 rotator sshd\[3605\]: Failed password for invalid user unborn from 104.42.25.12 port 25536 ssh2Nov 3 05:41:08 rotator sshd\[4400\]: Invalid user dsddl1ddd23321 from 104.42.25.12Nov 3 05:41:10 rotator sshd\[4400\]: Failed password for invalid user dsddl1ddd23321 from 104.42.25.12 port 25536 ssh2Nov 3 05:46:01 rotator sshd\[5257\]: Invalid user 123456 from 104.42.25.12Nov 3 05:46:03 rotator sshd\[5257\]: Failed password for invalid user 123456 from 104.42.25.12 port 25536 ssh2 ...	2019-11-03 12:47:15
104.42.27.187	attack	Nov 2 05:44:10 unicornsoft sshd\[30631\]: User root from 104.42.27.187 not allowed because not listed in AllowUsers Nov 2 05:44:10 unicornsoft sshd\[30631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.27.187 user=root Nov 2 05:44:12 unicornsoft sshd\[30631\]: Failed password for invalid user root from 104.42.27.187 port 26560 ssh2	2019-11-02 16:43:12
104.42.27.187	attack	2019-10-30 13:06:20,337 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:27:54,342 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:45:44,284 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 14:03:37,791 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 14:21:16,437 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:06:20,337 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:27:54,342 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:45:44,284 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 14:03:37,791 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 14:21:16,437 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 13:06:20,337 fail2ban.actions \[1897\]: NOTICE \[ssh\] Ban 104.42.27.187 2019-10-30 1	2019-11-01 04:13:14
104.42.27.187	attackspam	firewall-block, port(s): 23/tcp	2019-10-29 21:25:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.42.2.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63919
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.42.2.91.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:13:50 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 91.2.42.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 91.2.42.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.132.127.22	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 20:45:00
185.175.93.18	attack	firewall-block, port(s): 4023/tcp, 4033/tcp, 4353/tcp, 4383/tcp, 4663/tcp, 6773/tcp	2019-08-05 20:34:22
178.46.210.185	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=38865)(08050931)	2019-08-05 20:15:33
213.14.216.253	attackbots	Unauthorized connection attempt from IP address 213.14.216.253 on Port 445(SMB)	2019-08-05 20:54:29
134.209.155.245	attackspambots	Port scan attempt detected by AWS-CCS, CTS, India	2019-08-05 20:19:28
165.22.190.0	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=65535)(08050931)	2019-08-05 20:16:23
46.173.92.187	attack	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=8192)(08050931)	2019-08-05 20:27:50
49.248.247.94	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 20:52:06
42.189.100.218	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=8415)(08050931)	2019-08-05 20:28:27
36.230.82.214	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=33429)(08050931)	2019-08-05 20:28:48
178.216.49.102	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 20:56:31
111.125.86.190	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 20:39:48
74.218.191.68	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 20:26:47
189.196.91.122	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 20:44:35
156.221.202.125	attack	[portscan] tcp/23 [TELNET] *(RWIN=34986)(08050931)	2019-08-05 20:46:02

Recently Reported IPs

104.42.181.29	104.42.183.64	104.42.210.191	104.42.182.207
104.42.216.178	104.42.208.253	104.42.223.141	104.42.27.181
104.42.36.52	104.42.198.199	104.42.50.35	104.42.79.71
104.42.61.114	104.43.13.216	104.43.17.202	104.43.141.164
104.43.170.45	104.43.201.97	104.43.209.47	104.43.215.215