42.245.11.117 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.245.11.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31866
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.245.11.117.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 05:45:49 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 117.11.245.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.11.245.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.87.236.78	attackbotsspam	firewall-block, port(s): 23/tcp	2019-09-30 19:34:16
198.245.50.81	attackspam	Sep 30 13:34:08 root sshd[26298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.50.81 Sep 30 13:34:10 root sshd[26298]: Failed password for invalid user dnsadrc from 198.245.50.81 port 57612 ssh2 Sep 30 13:38:27 root sshd[26362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.50.81 ...	2019-09-30 19:47:20
113.187.70.197	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 30-09-2019 04:50:12.	2019-09-30 19:31:03
31.13.129.204	attackbots	2019-09-30T11:06:20.053570lon01.zurich-datacenter.net sshd\[6336\]: Invalid user test from 31.13.129.204 port 37059 2019-09-30T11:06:20.059199lon01.zurich-datacenter.net sshd\[6336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.13.129.204 2019-09-30T11:06:22.479388lon01.zurich-datacenter.net sshd\[6336\]: Failed password for invalid user test from 31.13.129.204 port 37059 ssh2 2019-09-30T11:11:25.262674lon01.zurich-datacenter.net sshd\[6441\]: Invalid user telsoft from 31.13.129.204 port 56961 2019-09-30T11:11:25.268635lon01.zurich-datacenter.net sshd\[6441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.13.129.204 ...	2019-09-30 19:17:19
157.230.209.220	attackbotsspam	2019-09-30T11:17:03.174260hub.schaetter.us sshd\[3538\]: Invalid user weblogic from 157.230.209.220 port 37328 2019-09-30T11:17:03.186433hub.schaetter.us sshd\[3538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=odoova.com 2019-09-30T11:17:05.679488hub.schaetter.us sshd\[3538\]: Failed password for invalid user weblogic from 157.230.209.220 port 37328 ssh2 2019-09-30T11:20:41.872311hub.schaetter.us sshd\[3586\]: Invalid user admin from 157.230.209.220 port 49798 2019-09-30T11:20:41.883969hub.schaetter.us sshd\[3586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=odoova.com ...	2019-09-30 19:45:31
37.49.230.31	attack	[portscan] udp/123 [NTP] *(RWIN=-)(09300929)	2019-09-30 19:04:26
223.206.238.87	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 30-09-2019 04:50:15.	2019-09-30 19:26:29
106.13.140.110	attackbots	Sep 30 07:28:39 vtv3 sshd\[24270\]: Invalid user peuser from 106.13.140.110 port 51160 Sep 30 07:28:39 vtv3 sshd\[24270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.110 Sep 30 07:28:41 vtv3 sshd\[24270\]: Failed password for invalid user peuser from 106.13.140.110 port 51160 ssh2 Sep 30 07:32:56 vtv3 sshd\[26382\]: Invalid user ys from 106.13.140.110 port 55702 Sep 30 07:32:56 vtv3 sshd\[26382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.110 Sep 30 07:44:53 vtv3 sshd\[32201\]: Invalid user sangka from 106.13.140.110 port 41084 Sep 30 07:44:53 vtv3 sshd\[32201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.110 Sep 30 07:44:55 vtv3 sshd\[32201\]: Failed password for invalid user sangka from 106.13.140.110 port 41084 ssh2 Sep 30 07:49:11 vtv3 sshd\[1971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruse	2019-09-30 19:45:43
164.132.225.151	attack	Sep 30 11:41:22 heissa sshd\[11915\]: Invalid user yue from 164.132.225.151 port 49132 Sep 30 11:41:22 heissa sshd\[11915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-164-132-225.eu Sep 30 11:41:23 heissa sshd\[11915\]: Failed password for invalid user yue from 164.132.225.151 port 49132 ssh2 Sep 30 11:44:55 heissa sshd\[12469\]: Invalid user nr from 164.132.225.151 port 41128 Sep 30 11:44:55 heissa sshd\[12469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-164-132-225.eu	2019-09-30 19:11:44
186.209.74.108	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-30 19:30:13
198.46.240.155	attackbotsspam	CloudCIX Reconnaissance Scan Detected, PTR: 198-46-240-155-host.colocrossing.com.	2019-09-30 19:47:32
183.131.110.103	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 30-09-2019 04:50:14.	2019-09-30 19:26:50
62.173.149.19	attackbots	\[2019-09-30 01:58:47\] NOTICE\[1948\] chan_sip.c: Registration from '"236"\' failed for '62.173.149.19:25043' - Wrong password \[2019-09-30 01:58:47\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-30T01:58:47.037-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="236",SessionID="0x7f1e1c528f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.149.19/25043",Challenge="0ca7ca94",ReceivedChallenge="0ca7ca94",ReceivedHash="bfe9055faf3463cfbf7288a63fa237d0" \[2019-09-30 02:01:07\] NOTICE\[1948\] chan_sip.c: Registration from '"85"\' failed for '62.173.149.19:25027' - Wrong password \[2019-09-30 02:01:07\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-30T02:01:07.825-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="85",SessionID="0x7f1e1c667f98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173	2019-09-30 19:07:29
27.105.103.3	attack	Sep 30 13:03:30 markkoudstaal sshd[4742]: Failed password for root from 27.105.103.3 port 57454 ssh2 Sep 30 13:08:07 markkoudstaal sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.105.103.3 Sep 30 13:08:09 markkoudstaal sshd[5139]: Failed password for invalid user www from 27.105.103.3 port 41130 ssh2	2019-09-30 19:18:34
156.220.26.188	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/156.220.26.188/ EG - 1H : (88) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 156.220.26.188 CIDR : 156.220.0.0/18 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 4 3H - 14 6H - 26 12H - 46 24H - 73 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-30 19:43:04

Recently Reported IPs

218.215.158.7	226.53.23.222	106.78.83.190	54.63.179.152
135.106.110.58	175.157.130.147	194.3.175.125	200.238.225.51
47.194.39.118	153.208.38.225	146.78.201.183	84.39.35.92
77.22.250.102	195.171.194.146	122.150.46.7	150.126.48.245
167.223.212.108	112.165.90.188	34.240.199.87	33.155.66.77