116.96.42.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 116.96.42.94 on Port 445(SMB)	2020-05-20 21:11:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.96.42.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5926
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.96.42.94.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052000 1800 900 604800 86400

;; Query time: 136 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 21:11:02 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 94.42.96.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.42.96.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.93.119.5	attack	Port probing on unauthorized port 1433	2020-09-26 17:17:43
159.203.66.114	attackbotsspam	Sep 26 18:46:13 web1 sshd[22062]: Invalid user sonos from 159.203.66.114 port 49216 Sep 26 18:46:13 web1 sshd[22062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.66.114 Sep 26 18:46:13 web1 sshd[22062]: Invalid user sonos from 159.203.66.114 port 49216 Sep 26 18:46:16 web1 sshd[22062]: Failed password for invalid user sonos from 159.203.66.114 port 49216 ssh2 Sep 26 18:51:30 web1 sshd[23829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.66.114 user=root Sep 26 18:51:32 web1 sshd[23829]: Failed password for root from 159.203.66.114 port 41430 ssh2 Sep 26 18:55:42 web1 sshd[25282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.66.114 user=root Sep 26 18:55:43 web1 sshd[25282]: Failed password for root from 159.203.66.114 port 52400 ssh2 Sep 26 18:59:39 web1 sshd[26541]: Invalid user rodrigo from 159.203.66.114 port 35138 ...	2020-09-26 17:02:49
195.54.161.58	attackbots	[Tue Sep 22 10:12:29 2020] - DDoS Attack From IP: 195.54.161.58 Port: 56081	2020-09-26 17:01:06
129.28.12.228	attackbots	Invalid user alfred from 129.28.12.228 port 46870	2020-09-26 16:44:53
35.196.132.85	attackspambots	WordPress XMLRPC scan :: 35.196.132.85 0.104 - [26/Sep/2020:04:02:49 0000] www.[censored_1] "GET /xmlrpc.php?action=query	2020-09-26 17:12:04
92.118.161.41	attackbots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-26 16:56:35
212.107.14.27	attack	(sshd) Failed SSH login from 212.107.14.27 (GB/United Kingdom/s0-27.tehnichost.biz): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 00:29:44 server sshd[25540]: Invalid user user11 from 212.107.14.27 port 47916 Sep 26 00:29:46 server sshd[25540]: Failed password for invalid user user11 from 212.107.14.27 port 47916 ssh2 Sep 26 00:33:56 server sshd[26702]: Invalid user developer from 212.107.14.27 port 58342 Sep 26 00:33:58 server sshd[26702]: Failed password for invalid user developer from 212.107.14.27 port 58342 ssh2 Sep 26 00:37:02 server sshd[27608]: Invalid user team2 from 212.107.14.27 port 60604	2020-09-26 16:52:52
45.55.65.92	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 114 proto: tcp cat: Misc Attackbytes: 60	2020-09-26 17:09:55
45.142.120.83	attack	Sep 26 10:41:50 v22019058497090703 postfix/smtpd[5655]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 10:41:52 v22019058497090703 postfix/smtpd[5662]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 10:42:00 v22019058497090703 postfix/smtpd[5633]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-26 16:49:34
64.225.75.212	attackbotsspam	SSH_scan	2020-09-26 17:05:10
5.228.244.23	attack	" "	2020-09-26 16:54:51
162.243.128.97	attackspam	TCP (SYN) 162.243.128.97:53036 -> port 60837, len 44	2020-09-26 16:58:22
111.229.61.82	attackspambots	2020-09-26 10:26:57,262 fail2ban.actions: WARNING [ssh] Ban 111.229.61.82	2020-09-26 16:57:10
46.183.223.106	attack	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=58875 . dstport=443 . (3531)	2020-09-26 17:10:23
222.186.190.2	attackspambots	Sep 26 09:01:14 email sshd\[20849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Sep 26 09:01:17 email sshd\[20849\]: Failed password for root from 222.186.190.2 port 48254 ssh2 Sep 26 09:01:20 email sshd\[20849\]: Failed password for root from 222.186.190.2 port 48254 ssh2 Sep 26 09:01:34 email sshd\[20898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Sep 26 09:01:36 email sshd\[20898\]: Failed password for root from 222.186.190.2 port 52652 ssh2 ...	2020-09-26 17:19:31

Recently Reported IPs

212.109.192.233	187.1.33.42	213.131.187.13	82.211.9.7
59.89.31.160	31.8.161.76	27.64.168.50	24.77.91.77
147.30.217.215	31.43.76.10	213.108.134.117	147.78.66.33
113.190.253.72	78.157.40.134	49.206.22.140	27.72.97.176
183.129.54.89	49.228.171.139	27.67.17.103	183.89.173.158