211.142.96.13 - IPInfo

Basic Info

City: Zhengzhou

Region: Henan

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.142.96.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19063
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.142.96.13.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Fri Jan 03 03:21:00 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 13.96.142.211.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 13.96.142.211.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.146.204.105	attackspambots	Unauthorized connection attempt from IP address 200.146.204.105 on Port 445(SMB)	2020-03-07 10:07:39
98.148.155.183	attack	fail2ban - Attack against Apache (too many 404s)	2020-03-07 13:21:32
51.158.162.242	attack	Mar 7 12:09:26 webhost01 sshd[32180]: Failed password for root from 51.158.162.242 port 54486 ssh2 Mar 7 12:16:08 webhost01 sshd[32345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.162.242 ...	2020-03-07 13:19:31
68.183.213.193	attack	68.183.213.193 - - \[07/Mar/2020:05:58:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 7556 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.213.193 - - \[07/Mar/2020:05:58:35 +0100\] "POST /wp-login.php HTTP/1.0" 200 7381 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.213.193 - - \[07/Mar/2020:05:58:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 7376 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-03-07 13:23:54
54.36.54.24	attack	Mar 7 05:58:42 ArkNodeAT sshd\[1213\]: Invalid user testuser from 54.36.54.24 Mar 7 05:58:42 ArkNodeAT sshd\[1213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.54.24 Mar 7 05:58:44 ArkNodeAT sshd\[1213\]: Failed password for invalid user testuser from 54.36.54.24 port 36340 ssh2	2020-03-07 13:18:51
64.225.9.173	attack	Mar 7 05:51:38 lnxded64 sshd[32544]: Failed password for root from 64.225.9.173 port 59042 ssh2 Mar 7 05:59:03 lnxded64 sshd[1715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.9.173 Mar 7 05:59:05 lnxded64 sshd[1715]: Failed password for invalid user lao from 64.225.9.173 port 51090 ssh2	2020-03-07 13:03:50
51.83.104.120	attackbotsspam	Mar 7 07:52:06 server sshd\[4142\]: Invalid user itsupport from 51.83.104.120 Mar 7 07:52:06 server sshd\[4142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 Mar 7 07:52:08 server sshd\[4142\]: Failed password for invalid user itsupport from 51.83.104.120 port 37066 ssh2 Mar 7 07:58:54 server sshd\[5207\]: Invalid user sysop from 51.83.104.120 Mar 7 07:58:54 server sshd\[5207\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 ...	2020-03-07 13:08:53
88.249.166.39	attackspam	Honeypot attack, port: 5555, PTR: 88.249.166.39.static.ttnet.com.tr.	2020-03-07 13:14:23
222.186.42.136	attackspambots	Mar 7 06:20:59 dcd-gentoo sshd[18198]: User root from 222.186.42.136 not allowed because none of user's groups are listed in AllowGroups Mar 7 06:21:02 dcd-gentoo sshd[18198]: error: PAM: Authentication failure for illegal user root from 222.186.42.136 Mar 7 06:20:59 dcd-gentoo sshd[18198]: User root from 222.186.42.136 not allowed because none of user's groups are listed in AllowGroups Mar 7 06:21:02 dcd-gentoo sshd[18198]: error: PAM: Authentication failure for illegal user root from 222.186.42.136 Mar 7 06:20:59 dcd-gentoo sshd[18198]: User root from 222.186.42.136 not allowed because none of user's groups are listed in AllowGroups Mar 7 06:21:02 dcd-gentoo sshd[18198]: error: PAM: Authentication failure for illegal user root from 222.186.42.136 Mar 7 06:21:02 dcd-gentoo sshd[18198]: Failed keyboard-interactive/pam for invalid user root from 222.186.42.136 port 50818 ssh2 ...	2020-03-07 13:23:31
218.92.0.179	attackbotsspam	Mar 7 03:08:50 sd-53420 sshd\[18564\]: User root from 218.92.0.179 not allowed because none of user's groups are listed in AllowGroups Mar 7 03:08:51 sd-53420 sshd\[18564\]: Failed none for invalid user root from 218.92.0.179 port 49823 ssh2 Mar 7 03:08:51 sd-53420 sshd\[18564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Mar 7 03:08:53 sd-53420 sshd\[18564\]: Failed password for invalid user root from 218.92.0.179 port 49823 ssh2 Mar 7 03:08:57 sd-53420 sshd\[18564\]: Failed password for invalid user root from 218.92.0.179 port 49823 ssh2 ...	2020-03-07 10:14:08
123.195.99.9	attack	Mar 6 16:03:20 wbs sshd\[19891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123-195-99-9.dynamic.kbronet.com.tw user=root Mar 6 16:03:22 wbs sshd\[19891\]: Failed password for root from 123.195.99.9 port 55472 ssh2 Mar 6 16:09:21 wbs sshd\[20471\]: Invalid user oracle from 123.195.99.9 Mar 6 16:09:21 wbs sshd\[20471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123-195-99-9.dynamic.kbronet.com.tw Mar 6 16:09:23 wbs sshd\[20471\]: Failed password for invalid user oracle from 123.195.99.9 port 33106 ssh2	2020-03-07 10:16:02
206.189.239.103	attackbots	$f2bV_matches	2020-03-07 13:24:57
51.77.147.51	attack	2020-03-07T05:00:20.927997ns386461 sshd\[17890\]: Invalid user sunshine from 51.77.147.51 port 46474 2020-03-07T05:00:20.932536ns386461 sshd\[17890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.ip-51-77-147.eu 2020-03-07T05:00:22.726456ns386461 sshd\[17890\]: Failed password for invalid user sunshine from 51.77.147.51 port 46474 ssh2 2020-03-07T05:58:52.176273ns386461 sshd\[6201\]: Invalid user webuser from 51.77.147.51 port 59956 2020-03-07T05:58:52.181036ns386461 sshd\[6201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.ip-51-77-147.eu ...	2020-03-07 13:11:34
51.75.67.69	attackbots	Mar 7 05:49:45 dev0-dcde-rnet sshd[23060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.67.69 Mar 7 05:49:47 dev0-dcde-rnet sshd[23060]: Failed password for invalid user 123QWEASD789 from 51.75.67.69 port 60036 ssh2 Mar 7 05:58:56 dev0-dcde-rnet sshd[23082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.67.69	2020-03-07 13:09:07
37.49.226.137	attackspambots	Mar 7 06:25:33 debian-2gb-nbg1-2 kernel: \[5817895.292550\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.226.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54321 PROTO=TCP SPT=60947 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0	2020-03-07 13:28:24

Recently Reported IPs

104.209.178.147	117.205.84.8	211.231.139.189	156.211.3.119
1.57.235.170	116.185.52.88	17.30.122.161	116.255.166.2
73.59.205.237	222.163.160.140	109.15.75.48	155.196.24.65
158.106.16.198	116.72.235.1	110.206.157.112	180.201.83.103
181.107.210.74	203.89.158.92	173.209.159.248	68.240.116.238