42.239.104.96 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	23/tcp [2019-11-16]1pkt	2019-11-17 00:42:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.104.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.239.104.96.			IN	A

;; AUTHORITY SECTION:
.			388	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111600 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 17 00:42:25 CST 2019
;; MSG SIZE  rcvd: 117

Host info

96.104.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
96.104.239.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.190.96.146	attack	2020-04-01 UTC: (2x) - nproc,root	2020-04-02 17:58:33
129.211.62.194	attack	2020-04-02T02:04:43.980409linuxbox-skyline sshd[38019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.62.194 user=root 2020-04-02T02:04:46.676959linuxbox-skyline sshd[38019]: Failed password for root from 129.211.62.194 port 42504 ssh2 ...	2020-04-02 18:17:32
91.220.53.217	attackspambots	$f2bV_matches	2020-04-02 17:41:35
45.122.221.210	attackbots	Invalid user ra from 45.122.221.210 port 40266	2020-04-02 18:00:07
59.63.212.100	attack	Apr 2 01:12:14 roadrisk sshd[14760]: Failed password for invalid user ak from 59.63.212.100 port 45708 ssh2 Apr 2 01:12:15 roadrisk sshd[14760]: Received disconnect from 59.63.212.100: 11: Bye Bye [preauth] Apr 2 01:24:19 roadrisk sshd[15058]: Failed password for invalid user ak from 59.63.212.100 port 42148 ssh2 Apr 2 01:24:19 roadrisk sshd[15058]: Received disconnect from 59.63.212.100: 11: Bye Bye [preauth] Apr 2 01:27:24 roadrisk sshd[15131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.212.100 user=r.r Apr 2 01:27:26 roadrisk sshd[15131]: Failed password for r.r from 59.63.212.100 port 34012 ssh2 Apr 2 01:27:26 roadrisk sshd[15131]: Received disconnect from 59.63.212.100: 11: Bye Bye [preauth] Apr 2 01:30:18 roadrisk sshd[15217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.212.100 user=r.r Apr 2 01:30:19 roadrisk sshd[15217]: Failed password for r.r from 59........ -------------------------------	2020-04-02 18:08:58
159.65.12.204	attack	Apr 1 23:46:01 s158375 sshd[20552]: Failed password for root from 159.65.12.204 port 59464 ssh2	2020-04-02 18:20:30
180.76.120.86	attack	Apr 1 20:25:34 sachi sshd\[3737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.120.86 user=root Apr 1 20:25:36 sachi sshd\[3737\]: Failed password for root from 180.76.120.86 port 57534 ssh2 Apr 1 20:30:13 sachi sshd\[4058\]: Invalid user test from 180.76.120.86 Apr 1 20:30:13 sachi sshd\[4058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.120.86 Apr 1 20:30:14 sachi sshd\[4058\]: Failed password for invalid user test from 180.76.120.86 port 56754 ssh2	2020-04-02 18:19:08
121.23.182.2	attackbotsspam	(ftpd) Failed FTP login from 121.23.182.2 (CN/China/-): 10 in the last 3600 secs	2020-04-02 18:13:52
180.76.54.123	attack	(sshd) Failed SSH login from 180.76.54.123 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 11:58:53 ubnt-55d23 sshd[24180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.54.123 user=root Apr 2 11:58:56 ubnt-55d23 sshd[24180]: Failed password for root from 180.76.54.123 port 38713 ssh2	2020-04-02 18:12:23
182.43.134.224	attackspambots	Tried sshing with brute force.	2020-04-02 18:02:28
46.161.161.164	attack	Port probing on unauthorized port 445	2020-04-02 17:55:47
114.223.86.24	attack	CN China - Failures: 20 ftpd	2020-04-02 18:15:54
221.231.113.90	attack	Unauthorized connection attempt detected from IP address 221.231.113.90 to port 1433 [T]	2020-04-02 18:06:32
192.241.175.48	attackspam	SSH bruteforce (Triggered fail2ban)	2020-04-02 18:10:07
212.51.148.162	attackbots	Apr 2 11:12:41 ourumov-web sshd\[495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.51.148.162 user=root Apr 2 11:12:44 ourumov-web sshd\[495\]: Failed password for root from 212.51.148.162 port 38181 ssh2 Apr 2 11:19:15 ourumov-web sshd\[966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.51.148.162 user=root ...	2020-04-02 17:54:23

Recently Reported IPs

186.195.119.28	134.209.252.173	103.86.111.158	236.166.80.6
168.194.154.110	125.78.174.77	101.204.204.187	157.50.234.198
82.78.228.71	216.245.56.190	201.249.9.179	85.142.44.198
222.223.208.30	223.1.27.39	177.195.60.177	201.239.24.81
45.85.35.160	106.13.31.93	122.114.50.156	2.187.188.184