117.92.242.71 - IPInfo

Basic Info

City: Nanjing

Region: Jiangsu

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	badbot	2019-11-24 03:00:40

Comments on same subnet:

IP	Type	Details	Datetime
117.92.242.153	attackspambots	Port probing on unauthorized port 5555	2020-05-15 08:44:15
117.92.242.79	attackspam	Unauthorized connection attempt detected from IP address 117.92.242.79 to port 23 [J]	2020-01-21 03:28:37
117.92.242.79	attackbots	Unauthorized connection attempt detected from IP address 117.92.242.79 to port 23 [T]	2020-01-20 07:11:02

Type

Details

Datetime

117.92.242.153

attackspambots

Port probing on unauthorized port 5555

2020-05-15 08:44:15

117.92.242.79

attackspam

Unauthorized connection attempt detected from IP address 117.92.242.79 to port 23 [J]

2020-01-21 03:28:37

117.92.242.79

attackbots

Unauthorized connection attempt detected from IP address 117.92.242.79 to port 23 [T]

2020-01-20 07:11:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.92.242.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.92.242.71.			IN	A

;; AUTHORITY SECTION:
.			257	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112301 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 24 03:00:35 CST 2019
;; MSG SIZE  rcvd: 117

Host info

71.242.92.117.in-addr.arpa domain name pointer 71.242.92.117.broad.lyg.js.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.242.92.117.in-addr.arpa	name = 71.242.92.117.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.138.74.32	attack	From: "UltraMax Testosterone Enhancer" <0UNSmQ@ziggo.nl> Subject: Lausige Erektionen? Nie wieder! Date: Thu, 17 Sep 2020 05:48:56 +0200	2020-09-19 17:29:50
195.69.222.175	attack	TCP (SYN) 195.69.222.175:42876 -> port 16585, len 44	2020-09-19 17:18:27
46.101.206.76	attackspam	Fail2Ban Ban Triggered (2)	2020-09-19 17:14:05
163.172.61.214	attack	Sep 19 10:36:27 piServer sshd[17602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 Sep 19 10:36:29 piServer sshd[17602]: Failed password for invalid user its from 163.172.61.214 port 38336 ssh2 Sep 19 10:42:05 piServer sshd[18154]: Failed password for root from 163.172.61.214 port 43903 ssh2 ...	2020-09-19 16:49:33
206.189.72.161	attack	5x Failed Password	2020-09-19 17:24:48
171.232.247.59	attackbotsspam	Automatic report - Banned IP Access	2020-09-19 16:56:33
52.203.153.231	attackbots	52.203.153.231 - - [19/Sep/2020:09:51:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2221 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.203.153.231 - - [19/Sep/2020:09:51:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2147 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.203.153.231 - - [19/Sep/2020:09:51:28 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-19 17:21:55
212.21.66.6	attackbotsspam	$f2bV_matches	2020-09-19 16:59:11
122.51.92.116	attackspam	Sep 19 10:07:08 ovpn sshd\[22634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.92.116 user=root Sep 19 10:07:10 ovpn sshd\[22634\]: Failed password for root from 122.51.92.116 port 52822 ssh2 Sep 19 10:13:06 ovpn sshd\[24077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.92.116 user=root Sep 19 10:13:08 ovpn sshd\[24077\]: Failed password for root from 122.51.92.116 port 39424 ssh2 Sep 19 10:15:49 ovpn sshd\[24787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.92.116 user=root	2020-09-19 17:20:27
51.79.52.2	attackbots	Sep 19 05:18:41 mout sshd[12278]: Disconnected from authenticating user root 51.79.52.2 port 50310 [preauth] Sep 19 05:26:58 mout sshd[13343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.52.2 user=root Sep 19 05:27:00 mout sshd[13343]: Failed password for root from 51.79.52.2 port 36402 ssh2	2020-09-19 17:16:00
149.200.181.126	attackbotsspam	Telnet Server BruteForce Attack	2020-09-19 17:00:35
122.115.57.174	attack	Sep 19 09:36:10 inter-technics sshd[29267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.115.57.174 user=root Sep 19 09:36:12 inter-technics sshd[29267]: Failed password for root from 122.115.57.174 port 45106 ssh2 Sep 19 09:40:28 inter-technics sshd[29701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.115.57.174 user=root Sep 19 09:40:31 inter-technics sshd[29701]: Failed password for root from 122.115.57.174 port 40690 ssh2 Sep 19 09:44:47 inter-technics sshd[29937]: Invalid user admin from 122.115.57.174 port 36432 ...	2020-09-19 17:20:02
37.187.7.95	attack	Sep 19 10:38:56 ns381471 sshd[3314]: Failed password for root from 37.187.7.95 port 52688 ssh2	2020-09-19 17:20:56
101.224.166.13	attackspam	Sep 19 02:42:22 vserver sshd\[24533\]: Failed password for root from 101.224.166.13 port 17057 ssh2Sep 19 02:45:31 vserver sshd\[24556\]: Failed password for root from 101.224.166.13 port 39547 ssh2Sep 19 02:48:35 vserver sshd\[24598\]: Failed password for root from 101.224.166.13 port 62048 ssh2Sep 19 02:51:37 vserver sshd\[24636\]: Invalid user oracle from 101.224.166.13 ...	2020-09-19 17:11:35
178.33.216.187	attackbots	2020-09-19T07:18:00.091522abusebot-6.cloudsearch.cf sshd[15900]: Invalid user ftpuser from 178.33.216.187 port 47794 2020-09-19T07:18:00.097465abusebot-6.cloudsearch.cf sshd[15900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=onion2.hosting.ovh.web-et-solutions.com 2020-09-19T07:18:00.091522abusebot-6.cloudsearch.cf sshd[15900]: Invalid user ftpuser from 178.33.216.187 port 47794 2020-09-19T07:18:02.707899abusebot-6.cloudsearch.cf sshd[15900]: Failed password for invalid user ftpuser from 178.33.216.187 port 47794 ssh2 2020-09-19T07:21:35.309473abusebot-6.cloudsearch.cf sshd[15912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=onion2.hosting.ovh.web-et-solutions.com user=root 2020-09-19T07:21:37.761249abusebot-6.cloudsearch.cf sshd[15912]: Failed password for root from 178.33.216.187 port 52209 ssh2 2020-09-19T07:25:12.143025abusebot-6.cloudsearch.cf sshd[16058]: pam_unix(sshd:auth): authentication ...	2020-09-19 16:59:59

Recently Reported IPs

183.237.223.164	27.202.56.162	188.218.225.242	196.101.43.176
103.98.150.231	85.242.241.118	90.213.137.121	156.212.97.166
193.181.233.5	112.113.52.202	114.105.168.20	3.147.14.14
84.88.186.4	90.0.20.114	188.4.41.160	32.46.68.173
124.229.3.252	62.162.213.114	50.66.112.215	31.45.51.141