110.42.7.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Ningbo Zhuo Zhi Innovation Network Technology Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/110.42.7.12/ CN - 1H : (911) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN136188 IP : 110.42.7.12 CIDR : 110.42.0.0/18 PREFIX COUNT : 87 UNIQUE IP COUNT : 143104 ATTACKS DETECTED ASN136188 : 1H - 6 3H - 9 6H - 9 12H - 9 24H - 9 DateTime : 2019-10-24 22:17:20 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-25 04:44:36

Type

Details

Datetime

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/110.42.7.12/ 
 
 CN - 1H : (911)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN136188 
 
 IP : 110.42.7.12 
 
 CIDR : 110.42.0.0/18 
 
 PREFIX COUNT : 87 
 
 UNIQUE IP COUNT : 143104 
 
 
 ATTACKS DETECTED ASN136188 :  
  1H - 6 
  3H - 9 
  6H - 9 
 12H - 9 
 24H - 9 
 
 DateTime : 2019-10-24 22:17:20 
 
 INFO :  HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN  - data recovery

2019-10-25 04:44:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.42.7.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.42.7.12.			IN	A

;; AUTHORITY SECTION:
.			495	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 04:44:33 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 12.7.42.110.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 12.7.42.110.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.75.61.146	attackbotsspam	Unauthorized connection attempt from IP address 27.75.61.146 on Port 445(SMB)	2020-04-23 23:14:52
188.191.18.129	attackspambots	Invalid user test05 from 188.191.18.129 port 60724	2020-04-23 23:24:21
104.236.22.133	attackspam	Fail2Ban Ban Triggered (2)	2020-04-23 23:41:43
78.128.113.99	attackbots	Apr 23 17:08:55 mail.srvfarm.net postfix/smtps/smtpd[4003429]: warning: unknown[78.128.113.99]: SASL PLAIN authentication failed: Apr 23 17:08:56 mail.srvfarm.net postfix/smtps/smtpd[4003429]: lost connection after AUTH from unknown[78.128.113.99] Apr 23 17:09:02 mail.srvfarm.net postfix/smtps/smtpd[4003434]: lost connection after CONNECT from unknown[78.128.113.99] Apr 23 17:09:03 mail.srvfarm.net postfix/smtps/smtpd[4003446]: lost connection after CONNECT from unknown[78.128.113.99] Apr 23 17:09:06 mail.srvfarm.net postfix/smtps/smtpd[4003429]: lost connection after CONNECT from unknown[78.128.113.99]	2020-04-23 23:42:06
125.160.248.236	attackbots	Automatic report - Port Scan Attack	2020-04-23 23:46:00
125.212.148.183	attackspam	Unauthorized connection attempt from IP address 125.212.148.183 on Port 445(SMB)	2020-04-23 23:35:12
43.227.66.108	attackbotsspam	Bruteforce detected by fail2ban	2020-04-23 23:42:39
54.38.42.63	attackbotsspam	SSH Login Bruteforce	2020-04-23 23:19:52
183.83.129.22	attackbots	Unauthorized connection attempt from IP address 183.83.129.22 on Port 445(SMB)	2020-04-23 23:12:20
139.199.0.28	attack	Found by fail2ban	2020-04-23 23:34:47
78.85.32.38	attackbots	Unauthorized connection attempt from IP address 78.85.32.38 on Port 445(SMB)	2020-04-23 23:33:50
222.186.3.249	attackbotsspam	[MK-VM4] SSH login failed	2020-04-23 23:40:29
110.49.14.233	attackspambots	Unauthorized connection attempt from IP address 110.49.14.233 on Port 445(SMB)	2020-04-23 23:46:51
180.250.124.227	attackbots	Apr 23 15:05:56 game-panel sshd[28647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.124.227 Apr 23 15:05:58 game-panel sshd[28647]: Failed password for invalid user c from 180.250.124.227 port 38530 ssh2 Apr 23 15:11:17 game-panel sshd[28936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.124.227	2020-04-23 23:30:10
185.176.27.14	attack	Apr 23 16:59:07 debian-2gb-nbg1-2 kernel: \[9912896.097094\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=39897 PROTO=TCP SPT=48123 DPT=28788 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-23 23:57:12

Recently Reported IPs

114.84.136.68	116.178.70.16	220.181.160.19	103.88.33.162
103.53.206.74	58.131.210.46	220.194.229.145	121.29.28.23
39.135.165.22	121.198.113.96	223.95.33.161	123.206.120.175
123.59.195.45	111.207.171.224	169.113.122.57	135.249.81.193
2.134.140.45	183.232.54.228	140.116.138.129	183.61.172.92