42.224.80.91 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.224.80.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.224.80.91.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:38:11 CST 2022
;; MSG SIZE  rcvd: 105

Host info

91.80.224.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
91.80.224.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
209.17.97.10	attackspambots	Port Scan: Events[2] countPorts[2]: 8081 4567 ..	2020-04-16 06:47:21
222.186.175.215	attackspam	Apr 16 00:23:25 server sshd[25608]: Failed none for root from 222.186.175.215 port 42482 ssh2 Apr 16 00:23:28 server sshd[25608]: Failed password for root from 222.186.175.215 port 42482 ssh2 Apr 16 00:23:34 server sshd[25608]: Failed password for root from 222.186.175.215 port 42482 ssh2	2020-04-16 06:34:46
45.143.220.209	attack	[2020-04-15 18:35:13] NOTICE[1170][C-00000bec] chan_sip.c: Call from '' (45.143.220.209:63873) to extension '441205804657' rejected because extension not found in context 'public'. [2020-04-15 18:35:13] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-15T18:35:13.935-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="441205804657",SessionID="0x7f6c081949a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.209/63873",ACLName="no_extension_match" [2020-04-15 18:36:01] NOTICE[1170][C-00000bed] chan_sip.c: Call from '' (45.143.220.209:53912) to extension '00441205804657' rejected because extension not found in context 'public'. [2020-04-15 18:36:01] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-15T18:36:01.172-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441205804657",SessionID="0x7f6c080b4a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.14 ...	2020-04-16 06:39:45
47.5.196.29	attackbots	Apr 15 23:26:12 vpn01 sshd[9150]: Failed password for root from 47.5.196.29 port 34258 ssh2 ...	2020-04-16 06:31:17
113.172.108.122	attack	2020-04-1522:23:391jOoZM-0007M6-BK\<=info@whatsup2013.chH=$localhost$[14.231.120.89]:38750P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3146id=2e3937b5be9540b3906e98cbc0142d0122c85d61dc@whatsup2013.chT="fromCherilyntolaura-luinski"forlaura-luinski@hotmail.comcarlossegovia20@gmail.com2020-04-1522:22:381jOoYP-0007Hw-Jq\<=info@whatsup2013.chH=$localhost$[113.173.179.80]:36581P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3099id=803b8dded5fed4dc4045f35fb84c667a92bbca@whatsup2013.chT="RecentlikefromBranda"forrobertsonkevinjames75@gmail.comjuniorroberts903@gmail.com2020-04-1522:23:501jOoZa-0007OK-IZ\<=info@whatsup2013.chH=213-208-69.netrun.cytanet.com.cy$localhost$[213.7.208.69]:42021P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3097id=a70c16454e65b0bc9bde683bcf08020e3dc7f272@whatsup2013.chT="RecentlikefromDomenica"forjefferypickett@gmail.comluismart18@icloud.com2020-04-1	2020-04-16 06:58:07
106.13.173.12	attack	Invalid user R00T from 106.13.173.12 port 59298	2020-04-16 07:05:58
106.13.211.155	attack	SSH Invalid Login	2020-04-16 06:52:29
140.143.228.227	attackspam	Apr 15 23:35:42 legacy sshd[13970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.228.227 Apr 15 23:35:44 legacy sshd[13970]: Failed password for invalid user sybase from 140.143.228.227 port 35990 ssh2 Apr 15 23:40:54 legacy sshd[14148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.228.227 ...	2020-04-16 06:41:50
111.229.25.67	attack	Lines containing failures of 111.229.25.67 Apr 15 10:43:55 penfold sshd[11934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.25.67 user=r.r Apr 15 10:43:56 penfold sshd[11934]: Failed password for r.r from 111.229.25.67 port 44712 ssh2 Apr 15 10:43:57 penfold sshd[11934]: Received disconnect from 111.229.25.67 port 44712:11: Bye Bye [preauth] Apr 15 10:43:57 penfold sshd[11934]: Disconnected from authenticating user r.r 111.229.25.67 port 44712 [preauth] Apr 15 10:55:32 penfold sshd[13195]: Invalid user deyvys from 111.229.25.67 port 42782 Apr 15 10:55:32 penfold sshd[13195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.25.67 Apr 15 10:55:34 penfold sshd[13195]: Failed password for invalid user deyvys from 111.229.25.67 port 42782 ssh2 Apr 15 10:55:34 penfold sshd[13195]: Received disconnect from 111.229.25.67 port 42782:11: Bye Bye [preauth] Apr 15 10:55:34 penfold ss........ ------------------------------	2020-04-16 06:53:57
142.93.195.15	attackspam	Invalid user yd from 142.93.195.15 port 37296	2020-04-16 07:08:03
58.210.96.156	attackspam	SSH invalid-user multiple login try	2020-04-16 06:52:46
122.192.255.228	attackspambots	Invalid user george from 122.192.255.228 port 11250	2020-04-16 07:05:09
178.154.200.38	attack	[Thu Apr 16 05:48:36.995671 2020] [:error] [pid 6201:tid 140689482336000] [client 178.154.200.38:47080] [client 178.154.200.38] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XpePRFKNto9J2Xe@W6Bm8gAAAtA"] ...	2020-04-16 07:04:14
174.253.160.51	attacknormal	seriously	2020-04-16 07:06:05
222.186.175.169	attack	Apr 16 00:41:50 santamaria sshd\[31632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Apr 16 00:41:52 santamaria sshd\[31632\]: Failed password for root from 222.186.175.169 port 32810 ssh2 Apr 16 00:42:09 santamaria sshd\[31634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root ...	2020-04-16 06:51:23

Recently Reported IPs

46.191.232.71	189.183.82.21	46.161.61.192	23.95.201.111
190.53.44.10	103.80.142.230	189.204.197.247	117.204.148.218
59.33.111.235	14.229.153.52	193.203.9.80	116.95.112.11
47.96.107.191	187.167.198.83	121.132.218.127	39.42.190.47
93.168.129.156	72.175.168.48	89.33.232.55	132.157.66.177