42.239.97.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 42.239.97.22 to port 23 [J]	2020-01-29 19:36:15

Comments on same subnet:

IP	Type	Details	Datetime
42.239.97.169	attackspambots	Unauthorized connection attempt detected from IP address 42.239.97.169 to port 23 [J]	2020-01-27 05:18:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.97.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.239.97.22.			IN	A

;; AUTHORITY SECTION:
.			122	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 19:36:10 CST 2020
;; MSG SIZE  rcvd: 116

Host info

22.97.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.97.239.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.182.89.30	attackspambots	Sep 14 11:06:35 icinga sshd[15709]: Failed password for root from 67.182.89.30 port 60760 ssh2 Sep 14 11:06:46 icinga sshd[15709]: error: maximum authentication attempts exceeded for root from 67.182.89.30 port 60760 ssh2 [preauth] ...	2019-09-14 17:08:18
91.205.168.56	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:32:46,578 INFO [amun_request_handler] PortScan Detected on Port: 445 (91.205.168.56)	2019-09-14 16:36:57
93.29.187.145	attackspam	Sep 14 08:54:52 web8 sshd\[23020\]: Invalid user administracion from 93.29.187.145 Sep 14 08:54:52 web8 sshd\[23020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145 Sep 14 08:54:54 web8 sshd\[23020\]: Failed password for invalid user administracion from 93.29.187.145 port 41850 ssh2 Sep 14 08:58:55 web8 sshd\[24845\]: Invalid user nas from 93.29.187.145 Sep 14 08:58:55 web8 sshd\[24845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.29.187.145	2019-09-14 17:11:34
157.230.112.34	attackbots	Invalid user sadan from 157.230.112.34 port 46142	2019-09-14 17:14:08
51.91.249.144	attackbots	Sep 14 10:44:35 SilenceServices sshd[2193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.249.144 Sep 14 10:44:37 SilenceServices sshd[2193]: Failed password for invalid user albtentac from 51.91.249.144 port 40492 ssh2 Sep 14 10:48:26 SilenceServices sshd[3609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.249.144	2019-09-14 16:58:19
184.82.186.113	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:30:53,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (184.82.186.113)	2019-09-14 16:46:03
37.187.248.39	attackbots	Sep 14 10:26:03 meumeu sshd[22367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.248.39 Sep 14 10:26:05 meumeu sshd[22367]: Failed password for invalid user temp from 37.187.248.39 port 40324 ssh2 Sep 14 10:30:07 meumeu sshd[22831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.248.39 ...	2019-09-14 16:37:28
166.62.121.223	attackbots	166.62.121.223 - - [14/Sep/2019:09:43:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.121.223 - - [14/Sep/2019:09:43:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.121.223 - - [14/Sep/2019:09:43:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.121.223 - - [14/Sep/2019:09:43:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.121.223 - - [14/Sep/2019:09:43:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.121.223 - - [14/Sep/2019:09:43:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-14 17:02:54
186.194.201.79	attackspam	Automatic report - Port Scan Attack	2019-09-14 17:15:51
182.253.251.87	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:32:31,151 INFO [amun_request_handler] PortScan Detected on Port: 445 (182.253.251.87)	2019-09-14 16:40:52
178.33.185.70	attackspam	$f2bV_matches	2019-09-14 17:09:25
51.77.201.36	attack	Sep 13 22:17:55 kapalua sshd\[25977\]: Invalid user tomcat from 51.77.201.36 Sep 13 22:17:55 kapalua sshd\[25977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-77-201.eu Sep 13 22:17:57 kapalua sshd\[25977\]: Failed password for invalid user tomcat from 51.77.201.36 port 45516 ssh2 Sep 13 22:21:41 kapalua sshd\[26412\]: Invalid user leonidas from 51.77.201.36 Sep 13 22:21:41 kapalua sshd\[26412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-77-201.eu	2019-09-14 16:49:25
5.88.188.77	attackspam	fail2ban	2019-09-14 17:29:02
5.135.135.116	attackbots	Sep 14 05:03:10 TORMINT sshd\[31984\]: Invalid user andra from 5.135.135.116 Sep 14 05:03:10 TORMINT sshd\[31984\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116 Sep 14 05:03:12 TORMINT sshd\[31984\]: Failed password for invalid user andra from 5.135.135.116 port 42511 ssh2 ...	2019-09-14 17:04:10
158.69.210.117	attackspam	Sep 13 22:31:14 auw2 sshd\[15704\]: Invalid user american from 158.69.210.117 Sep 13 22:31:14 auw2 sshd\[15704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.ip-158-69-210.net Sep 13 22:31:16 auw2 sshd\[15704\]: Failed password for invalid user american from 158.69.210.117 port 50662 ssh2 Sep 13 22:35:33 auw2 sshd\[16127\]: Invalid user nobody4 from 158.69.210.117 Sep 13 22:35:33 auw2 sshd\[16127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.ip-158-69-210.net	2019-09-14 16:43:12

Recently Reported IPs

122.242.59.59	119.142.213.91	118.70.36.140	117.94.236.161
117.68.244.191	117.67.126.65	4.70.37.252	67.94.234.225
90.20.250.167	117.64.254.136	140.176.186.160	116.22.30.70
203.133.93.89	116.18.229.252	198.191.161.126	115.224.223.191
170.26.179.221	10.184.170.243	214.10.171.195	152.182.149.134