42.228.197.121

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorised access (Aug 28) SRC=42.228.197.121 LEN=40 TTL=49 ID=56258 TCP DPT=8080 WINDOW=39760 SYN Unauthorised access (Aug 26) SRC=42.228.197.121 LEN=40 TTL=49 ID=7913 TCP DPT=8080 WINDOW=29103 SYN	2019-08-29 06:51:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.228.197.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10269
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.228.197.121.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082802 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 06:51:49 CST 2019
;; MSG SIZE  rcvd: 118

Host info

121.197.228.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
121.197.228.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.116.208.72	attack	2020-05-24T20:26:44.795546dmca.cloudsearch.cf sshd[10383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.208.72 user=root 2020-05-24T20:26:46.640046dmca.cloudsearch.cf sshd[10383]: Failed password for root from 14.116.208.72 port 49635 ssh2 2020-05-24T20:29:27.571271dmca.cloudsearch.cf sshd[10723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.208.72 user=root 2020-05-24T20:29:30.128040dmca.cloudsearch.cf sshd[10723]: Failed password for root from 14.116.208.72 port 43856 ssh2 2020-05-24T20:32:01.702327dmca.cloudsearch.cf sshd[10959]: Invalid user admin from 14.116.208.72 port 38078 2020-05-24T20:32:01.708698dmca.cloudsearch.cf sshd[10959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.208.72 2020-05-24T20:32:01.702327dmca.cloudsearch.cf sshd[10959]: Invalid user admin from 14.116.208.72 port 38078 2020-05-24T20:32:03.071444dmca.cloudsearc ...	2020-05-25 04:51:51
94.191.99.243	attack	May 24 15:38:26 Tower sshd[42253]: Connection from 94.191.99.243 port 44984 on 192.168.10.220 port 22 rdomain "" May 24 15:38:29 Tower sshd[42253]: Invalid user geometry from 94.191.99.243 port 44984 May 24 15:38:29 Tower sshd[42253]: error: Could not get shadow information for NOUSER May 24 15:38:29 Tower sshd[42253]: Failed password for invalid user geometry from 94.191.99.243 port 44984 ssh2 May 24 15:38:29 Tower sshd[42253]: Received disconnect from 94.191.99.243 port 44984:11: Bye Bye [preauth] May 24 15:38:29 Tower sshd[42253]: Disconnected from invalid user geometry 94.191.99.243 port 44984 [preauth]	2020-05-25 04:28:06
141.98.81.81	attack	2020-05-24T07:25:34.796098homeassistant sshd[9137]: Failed password for invalid user 1234 from 141.98.81.81 port 34928 ssh2 2020-05-24T20:47:22.728787homeassistant sshd[25452]: Invalid user 1234 from 141.98.81.81 port 51100 2020-05-24T20:47:22.738522homeassistant sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 ...	2020-05-25 04:47:47
150.109.82.109	attackbots	May 24 16:24:58 ny01 sshd[11945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.82.109 May 24 16:25:00 ny01 sshd[11945]: Failed password for invalid user lfp from 150.109.82.109 port 40474 ssh2 May 24 16:32:13 ny01 sshd[13356]: Failed password for root from 150.109.82.109 port 37550 ssh2	2020-05-25 04:39:19
113.137.36.187	attack	2020-05-24T10:52:13.741130morrigan.ad5gb.com sshd[13435]: Invalid user oracle from 113.137.36.187 port 37640 2020-05-24T10:52:15.741527morrigan.ad5gb.com sshd[13435]: Failed password for invalid user oracle from 113.137.36.187 port 37640 ssh2 2020-05-24T10:52:16.871422morrigan.ad5gb.com sshd[13435]: Disconnected from invalid user oracle 113.137.36.187 port 37640 [preauth]	2020-05-25 04:30:19
81.170.239.2	attack	81.170.239.2 - - \[24/May/2020:22:31:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 6052 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 81.170.239.2 - - \[24/May/2020:22:31:56 +0200\] "POST /wp-login.php HTTP/1.0" 200 5872 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 81.170.239.2 - - \[24/May/2020:22:31:58 +0200\] "POST /wp-login.php HTTP/1.0" 200 5865 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-25 04:54:24
14.29.215.48	attackspam	Automatic report - Banned IP Access	2020-05-25 04:39:44
177.43.236.178	attackspambots	May 24 22:27:53 localhost sshd\[2347\]: Invalid user dolores from 177.43.236.178 May 24 22:27:53 localhost sshd\[2347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 May 24 22:27:55 localhost sshd\[2347\]: Failed password for invalid user dolores from 177.43.236.178 port 44608 ssh2 May 24 22:32:05 localhost sshd\[2597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 user=root May 24 22:32:07 localhost sshd\[2597\]: Failed password for root from 177.43.236.178 port 49716 ssh2 ...	2020-05-25 04:44:04
178.128.217.135	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-25 04:55:46
211.97.81.137	attackbotsspam	2020-05-24T19:23:02.700403abusebot.cloudsearch.cf sshd[2781]: Invalid user dominic from 211.97.81.137 port 46342 2020-05-24T19:23:02.705085abusebot.cloudsearch.cf sshd[2781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 2020-05-24T19:23:02.700403abusebot.cloudsearch.cf sshd[2781]: Invalid user dominic from 211.97.81.137 port 46342 2020-05-24T19:23:04.856084abusebot.cloudsearch.cf sshd[2781]: Failed password for invalid user dominic from 211.97.81.137 port 46342 ssh2 2020-05-24T19:26:39.638431abusebot.cloudsearch.cf sshd[3040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 user=root 2020-05-24T19:26:41.578910abusebot.cloudsearch.cf sshd[3040]: Failed password for root from 211.97.81.137 port 37458 ssh2 2020-05-24T19:30:09.959214abusebot.cloudsearch.cf sshd[3265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 user=root ...	2020-05-25 04:32:31
89.97.218.142	attack	$f2bV_matches	2020-05-25 04:51:26
174.138.48.152	attackspambots	May 24 22:25:39 electroncash sshd[25064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 user=root May 24 22:25:41 electroncash sshd[25064]: Failed password for root from 174.138.48.152 port 51024 ssh2 May 24 22:28:53 electroncash sshd[25967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 user=root May 24 22:28:55 electroncash sshd[25967]: Failed password for root from 174.138.48.152 port 39728 ssh2 May 24 22:32:13 electroncash sshd[26889]: Invalid user admin from 174.138.48.152 port 56676 ...	2020-05-25 04:40:15
1.196.116.199	attackspambots	1590352319 - 05/24/2020 22:31:59 Host: 1.196.116.199/1.196.116.199 Port: 445 TCP Blocked	2020-05-25 04:56:56
222.186.180.6	attackspambots	May 24 22:34:51 ncomp sshd[25519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root May 24 22:34:54 ncomp sshd[25519]: Failed password for root from 222.186.180.6 port 15932 ssh2 May 24 22:34:57 ncomp sshd[25519]: Failed password for root from 222.186.180.6 port 15932 ssh2 May 24 22:34:51 ncomp sshd[25519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root May 24 22:34:54 ncomp sshd[25519]: Failed password for root from 222.186.180.6 port 15932 ssh2 May 24 22:34:57 ncomp sshd[25519]: Failed password for root from 222.186.180.6 port 15932 ssh2	2020-05-25 04:42:00
106.13.189.158	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-05-25 04:54:51

Recently Reported IPs

192.48.9.211	61.210.253.157	3.211.92.193	203.129.213.98
116.106.148.175	202.52.146.45	104.27.171.94	149.56.129.8
74.208.126.33	180.126.50.198	194.58.102.241	106.52.166.242
13.84.49.43	201.190.218.95	187.111.222.197	39.98.162.233
45.231.185.199	186.206.136.203	140.224.142.7	115.75.226.227