116.6.92.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	May 18 10:22:21 server sshd\[175571\]: Invalid user tecnico from 116.6.92.42 May 18 10:22:21 server sshd\[175571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.6.92.42 May 18 10:22:23 server sshd\[175571\]: Failed password for invalid user tecnico from 116.6.92.42 port 2361 ssh2 ...	2019-07-17 12:28:22

Type

Details

Datetime

attackbotsspam

May 18 10:22:21 server sshd\[175571\]: Invalid user tecnico from 116.6.92.42
May 18 10:22:21 server sshd\[175571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.6.92.42
May 18 10:22:23 server sshd\[175571\]: Failed password for invalid user tecnico from 116.6.92.42 port 2361 ssh2
...

2019-07-17 12:28:22

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.6.92.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3639
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.6.92.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 17 01:40:37 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 42.92.6.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 42.92.6.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.229.112.15	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 75 - port: 15944 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:36:59
62.171.161.187	attackspam	TCP (SYN) 62.171.161.187:50957 -> port 81, len 44	2020-08-27 02:23:47
50.237.128.182	attackspambots	Port Scan ...	2020-08-27 02:24:34
193.27.228.172	attack	Port-scan: detected 212 distinct ports within a 24-hour window.	2020-08-27 02:30:20
45.227.255.204	attackbotsspam	ET SCAN Potential SSH Scan - port: 22 proto: tcp cat: Attempted Information Leakbytes: 370	2020-08-27 02:41:24
45.129.33.8	attackspambots	TCP (SYN) 45.129.33.8:48683 -> port 31984, len 44	2020-08-27 02:13:20
194.26.29.135	attackbotsspam	Port-scan: detected 204 distinct ports within a 24-hour window.	2020-08-27 02:29:26
45.145.66.22	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 31987 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:10:35
45.129.33.45	attack	ET DROP Dshield Block Listed Source group 1 - port: 11919 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:42:24
141.98.81.150	attackbotsspam	TCP (SYN) 141.98.81.150:53450 -> port 1080, len 60	2020-08-27 02:32:04
169.255.4.8	attackbots	SMB login attempts with user administrator.	2020-08-27 02:18:00
92.63.196.3	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 3326 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:18:56
91.229.112.16	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 75 - port: 16936 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:19:48
104.248.80.221	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-27 02:34:38
106.12.209.81	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 92 - port: 22700 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:34:13

Recently Reported IPs

180.211.158.26	67.152.218.6	221.229.162.169	118.69.191.110
176.104.0.78	200.87.27.59	217.16.12.208	78.87.83.182
109.94.189.70	59.120.54.125	159.78.185.72	175.118.49.239
202.21.126.107	216.137.3.111	139.255.119.154	182.253.94.69
118.143.85.51	185.70.180.66	189.126.192.106	58.56.96.26