42.242.104.112

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.242.104.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.242.104.112.			IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:15:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 112.104.242.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 42.242.104.112.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
145.239.198.218	attackspambots	Feb 2 18:27:01 vtv3 sshd\[512\]: Invalid user virginia from 145.239.198.218 port 51442 Feb 2 18:27:01 vtv3 sshd\[512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.198.218 Feb 2 18:27:02 vtv3 sshd\[512\]: Failed password for invalid user virginia from 145.239.198.218 port 51442 ssh2 Feb 2 18:31:17 vtv3 sshd\[1919\]: Invalid user tarcisio from 145.239.198.218 port 55424 Feb 2 18:31:17 vtv3 sshd\[1919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.198.218 Feb 10 11:44:55 vtv3 sshd\[18062\]: Invalid user aogola from 145.239.198.218 port 33088 Feb 10 11:44:55 vtv3 sshd\[18062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.198.218 Feb 10 11:44:57 vtv3 sshd\[18062\]: Failed password for invalid user aogola from 145.239.198.218 port 33088 ssh2 Feb 10 11:49:41 vtv3 sshd\[19419\]: Invalid user vps from 145.239.198.218 port 52484 Feb 10 11:49:41 vtv3 s	2019-07-29 05:53:49
77.247.110.216	attack	\[2019-07-28 17:54:01\] NOTICE\[2288\] chan_sip.c: Registration from '"100" \' failed for '77.247.110.216:5655' - Wrong password \[2019-07-28 17:54:01\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-28T17:54:01.237-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7ff4d02ab878",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.216/5655",Challenge="501262be",ReceivedChallenge="501262be",ReceivedHash="0a5f69d15097c55c7d72bee0936fbf4f" \[2019-07-28 17:54:01\] NOTICE\[2288\] chan_sip.c: Registration from '"100" \' failed for '77.247.110.216:5655' - Wrong password \[2019-07-28 17:54:01\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-28T17:54:01.333-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7ff4d0376cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/7	2019-07-29 05:55:12
157.44.46.69	attackspambots	C1,WP GET /wp-login.php	2019-07-29 05:10:00
69.3.118.101	attack	SSH Bruteforce @ SigaVPN honeypot	2019-07-29 05:26:14
104.194.11.156	attackbotsspam	Jul 28 17:30:15 ovpn sshd\[22985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.194.11.156 user=root Jul 28 17:30:17 ovpn sshd\[22985\]: Failed password for root from 104.194.11.156 port 37584 ssh2 Jul 28 17:34:24 ovpn sshd\[23735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.194.11.156 user=root Jul 28 17:34:26 ovpn sshd\[23735\]: Failed password for root from 104.194.11.156 port 58486 ssh2 Jul 28 17:38:34 ovpn sshd\[24475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.194.11.156 user=root	2019-07-29 05:32:52
187.109.10.100	attackspam	Jul 28 11:14:29 *** sshd[18236]: User root from 187.109.10.100 not allowed because not listed in AllowUsers	2019-07-29 05:35:26
14.161.0.62	attackbots	proto=tcp . spt=38357 . dpt=25 . (listed on Github Combined on 3 lists ) (644)	2019-07-29 05:10:50
106.12.100.179	attackspam	Jul 28 23:31:07 eventyay sshd[23766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.100.179 Jul 28 23:31:08 eventyay sshd[23766]: Failed password for invalid user 110110 from 106.12.100.179 port 33580 ssh2 Jul 28 23:35:35 eventyay sshd[24754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.100.179 ...	2019-07-29 05:44:30
94.176.128.16	attackbots	Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=26838 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=12025 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=52150 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=27577 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=7809 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=54255 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=29336 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Jul 28) SRC=94.176.128.16 LEN=40 PREC=0x20 TTL=243 ID=45600 DF TCP DPT=23 WINDOW=14600 SYN	2019-07-29 05:19:00
23.229.7.130	attackbots	Jul 28 13:29:23 ns4 sshd[12428]: reveeclipse mapping checking getaddrinfo for nxxxxxxx.forcesys.net [23.229.7.130] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 28 13:29:23 ns4 sshd[12428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.229.7.130 user=r.r Jul 28 13:29:26 ns4 sshd[12428]: Failed password for r.r from 23.229.7.130 port 49182 ssh2 Jul 28 13:29:26 ns4 sshd[12429]: Received disconnect from 23.229.7.130: 11: Bye Bye Jul 28 13:41:39 ns4 sshd[15114]: reveeclipse mapping checking getaddrinfo for nxxxxxxx.forcesys.net [23.229.7.130] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 28 13:41:39 ns4 sshd[15114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.229.7.130 user=r.r Jul 28 13:41:41 ns4 sshd[15114]: Failed password for r.r from 23.229.7.130 port 40274 ssh2 Jul 28 13:41:41 ns4 sshd[15115]: Received disconnect from 23.229.7.130: 11: Bye Bye Jul 28 13:46:13 ns4 sshd[16069]: reveeclipse........ -------------------------------	2019-07-29 05:50:38
80.244.179.6	attackspambots	28.07.2019 21:35:20 SSH access blocked by firewall	2019-07-29 05:54:55
86.122.102.99	attackbots	Automatic report - Port Scan Attack	2019-07-29 05:24:02
185.211.245.198	attackbotsspam	Jul 28 23:38:48 mail postfix/smtps/smtpd\[24295\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 23:38:49 mail postfix/smtpd\[24602\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 23:39:07 mail postfix/smtpd\[22596\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 23:39:07 mail postfix/smtps/smtpd\[24298\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-29 05:46:23
62.84.38.68	attackspambots	utm - spam	2019-07-29 05:36:20
198.56.183.236	attackspambots	Lines containing failures of 198.56.183.236 Jul 28 04:50:07 server-name sshd[5162]: User r.r from 198.56.183.236 not allowed because not listed in AllowUsers Jul 28 04:50:07 server-name sshd[5162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.56.183.236 user=r.r Jul 28 04:50:09 server-name sshd[5162]: Failed password for invalid user r.r from 198.56.183.236 port 34076 ssh2 Jul 28 04:50:09 server-name sshd[5162]: Received disconnect from 198.56.183.236 port 34076:11: Bye Bye [preauth] Jul 28 04:50:09 server-name sshd[5162]: Disconnected from invalid user r.r 198.56.183.236 port 34076 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.56.183.236	2019-07-29 05:34:32

Recently Reported IPs

106.75.136.73	201.150.180.201	14.157.105.33	31.58.203.121
41.206.56.58	78.97.124.98	167.114.177.206	84.54.58.224
218.102.66.174	95.128.46.215	139.196.236.113	91.222.147.56
161.97.120.251	191.103.217.81	182.112.12.78	192.177.160.209
38.7.93.122	62.16.24.241	95.162.181.117	171.255.70.91