42.242.95.164 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	firewall-block, port(s): 37215/tcp	2020-04-18 19:19:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.242.95.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.242.95.164.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 19:19:44 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 164.95.242.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.95.242.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
69.162.124.230	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-17 16:27:20
94.102.48.51	attackspambots	2020-09-17T01:10:44.951513linuxbox-skyline auth[15760]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=sales rhost=94.102.48.51 ...	2020-09-17 16:29:04
181.177.231.27	attackspambots	2020-09-17T01:14:57.835492mail.broermann.family sshd[31026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.angeplast.com 2020-09-17T01:14:57.831304mail.broermann.family sshd[31026]: Invalid user broermann from 181.177.231.27 port 48396 2020-09-17T01:14:59.690860mail.broermann.family sshd[31026]: Failed password for invalid user broermann from 181.177.231.27 port 48396 ssh2 2020-09-17T01:15:01.244683mail.broermann.family sshd[31028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.angeplast.com user=mail 2020-09-17T01:15:03.648237mail.broermann.family sshd[31028]: Failed password for mail from 181.177.231.27 port 48883 ssh2 ...	2020-09-17 16:09:40
185.68.78.166	attackspambots	SSH_scan	2020-09-17 15:59:58
49.232.16.241	attackbots	Found on CINS badguys / proto=6 . srcport=43106 . dstport=11938 . (1113)	2020-09-17 16:14:47
196.216.228.34	attack	2020-09-17T09:42:27.196364afi-git.jinr.ru sshd[31144]: Invalid user ncmdbuser from 196.216.228.34 port 35798 2020-09-17T09:42:27.199790afi-git.jinr.ru sshd[31144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.216.228.34 2020-09-17T09:42:27.196364afi-git.jinr.ru sshd[31144]: Invalid user ncmdbuser from 196.216.228.34 port 35798 2020-09-17T09:42:29.758565afi-git.jinr.ru sshd[31144]: Failed password for invalid user ncmdbuser from 196.216.228.34 port 35798 ssh2 2020-09-17T09:46:56.666153afi-git.jinr.ru sshd[32130]: Invalid user boot from 196.216.228.34 port 47926 ...	2020-09-17 16:36:45
45.227.254.30	attackbotsspam	TCP (SYN) 45.227.254.30:51413 -> port 2022, len 44	2020-09-17 16:02:05
180.247.192.102	attackspambots	Sep 16 16:18:33 XXX sshd[5027]: Invalid user user from 180.247.192.102 port 57679	2020-09-17 16:10:02
118.24.156.184	attack	2020-09-17T14:57:57.155961billing sshd[18051]: Failed password for invalid user matthias from 118.24.156.184 port 47322 ssh2 2020-09-17T15:00:48.025997billing sshd[24597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.156.184 user=root 2020-09-17T15:00:50.144807billing sshd[24597]: Failed password for root from 118.24.156.184 port 41342 ssh2 ...	2020-09-17 16:22:09
128.70.136.244	attack	Trying to access wordpress plugins	2020-09-17 16:25:52
138.68.238.155	attack	138.68.238.155 - - [16/Sep/2020:17:59:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.238.155 - - [16/Sep/2020:18:00:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.238.155 - - [16/Sep/2020:18:00:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1781 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-17 16:01:44
180.71.58.82	attackbots	Sep 17 06:43:20 XXX sshd[10385]: Invalid user teamspeak from 180.71.58.82 port 48889	2020-09-17 16:10:31
49.232.168.32	attackbots	fail2ban -- 49.232.168.32 ...	2020-09-17 16:19:07
178.128.154.242	attackspam	firewall-block, port(s): 11987/tcp	2020-09-17 16:24:09
106.12.173.60	attack	Sep 17 01:17:43 l03 sshd[30637]: Invalid user ubnt from 106.12.173.60 port 43698 ...	2020-09-17 16:28:37

Recently Reported IPs

122.238.28.228	167.172.156.227	178.34.160.149	125.72.45.28
77.244.75.137	103.230.14.62	77.52.179.194	24.248.0.140
167.172.98.89	195.22.26.231	80.94.107.161	119.29.26.222
117.240.14.27	35.221.83.16	45.227.255.190	165.22.223.73
129.28.151.149	31.124.43.68	167.172.148.56	104.251.231.80