42.91.28.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.91.28.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.91.28.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 20:32:49 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 45.28.91.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.28.91.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.93.83.130	attack	Unauthorized connection attempt from IP address 111.93.83.130 on Port 445(SMB)	2019-11-29 02:58:22
218.92.0.170	attackbots	Nov 28 20:12:09 dcd-gentoo sshd[31253]: User root from 218.92.0.170 not allowed because none of user's groups are listed in AllowGroups Nov 28 20:12:11 dcd-gentoo sshd[31253]: error: PAM: Authentication failure for illegal user root from 218.92.0.170 Nov 28 20:12:09 dcd-gentoo sshd[31253]: User root from 218.92.0.170 not allowed because none of user's groups are listed in AllowGroups Nov 28 20:12:11 dcd-gentoo sshd[31253]: error: PAM: Authentication failure for illegal user root from 218.92.0.170 Nov 28 20:12:09 dcd-gentoo sshd[31253]: User root from 218.92.0.170 not allowed because none of user's groups are listed in AllowGroups Nov 28 20:12:11 dcd-gentoo sshd[31253]: error: PAM: Authentication failure for illegal user root from 218.92.0.170 Nov 28 20:12:11 dcd-gentoo sshd[31253]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.170 port 38321 ssh2 ...	2019-11-29 03:17:58
212.232.34.180	attackspam	Automatic report - Port Scan Attack	2019-11-29 02:40:28
159.65.102.98	attack	fail2ban honeypot	2019-11-29 03:11:29
71.120.220.158	attack	2019-11-26T14:40:01.736811static.108.197.76.144.clients.your-server.de sshd[30272]: Invalid user pi from 71.120.220.158 2019-11-26T14:40:01.836074static.108.197.76.144.clients.your-server.de sshd[30274]: Invalid user pi from 71.120.220.158 2019-11-26T14:40:01.845149static.108.197.76.144.clients.your-server.de sshd[30272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.120.220.158 2019-11-26T14:40:01.954302static.108.197.76.144.clients.your-server.de sshd[30274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.120.220.158 2019-11-26T14:40:03.847306static.108.197.76.144.clients.your-server.de sshd[30272]: Failed password for invalid user pi from 71.120.220.158 port 51082 ssh2 2019-11-26T14:40:03.956333static.108.197.76.144.clients.your-server.de sshd[30274]: Failed password for invalid user pi from 71.120.220.158 port 51088 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2019-11-29 02:45:14
78.128.113.124	attackspambots	Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: lost connection after AUTH from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: disconnect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:14 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure ........ -------------------------------	2019-11-29 03:06:39
104.248.27.238	attack	104.248.27.238 - - \[28/Nov/2019:19:01:54 +0100\] "POST /wp-login.php HTTP/1.0" 200 7411 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.27.238 - - \[28/Nov/2019:19:01:55 +0100\] "POST /wp-login.php HTTP/1.0" 200 7226 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 104.248.27.238 - - \[28/Nov/2019:19:01:56 +0100\] "POST /wp-login.php HTTP/1.0" 200 7223 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-29 02:42:53
14.207.15.240	attackbotsspam	scan r	2019-11-29 02:44:17
187.113.154.208	attackspambots	Automatic report - Port Scan Attack	2019-11-29 02:40:51
178.46.160.203	attackspambots	Nov 28 17:31:43 auth-worker(16363): Info: sql(mobobmen-minsk@htcd.gov.by,178.46.160.203,): Password mismatch (given password: Minskmobobmen2020) Nov 28 17:31:43 auth: Info: checkpassword(mobobmen-minsk@htcd.gov.by,178.46.160.203,): Login failed (status=1) Nov 28 17:31:45 imap-login: Info: Disconnected (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=178.46.160.203, lip=192.168.216.3, TLS	2019-11-29 03:04:44
178.93.33.105	attackspambots	Nov 28 15:23:49 mxgate1 postfix/postscreen[9658]: CONNECT from [178.93.33.105]:47698 to [176.31.12.44]:25 Nov 28 15:23:49 mxgate1 postfix/dnsblog[9660]: addr 178.93.33.105 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 28 15:23:49 mxgate1 postfix/dnsblog[9660]: addr 178.93.33.105 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 28 15:23:49 mxgate1 postfix/dnsblog[9670]: addr 178.93.33.105 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 28 15:23:49 mxgate1 postfix/dnsblog[9871]: addr 178.93.33.105 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 28 15:23:49 mxgate1 postfix/dnsblog[9661]: addr 178.93.33.105 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 28 15:23:49 mxgate1 postfix/postscreen[9658]: PREGREET 36 after 0.18 from [178.93.33.105]:47698: EHLO 105-33-93-178.pool.ukrtel.net Nov 28 15:23:49 mxgate1 postfix/postscreen[9658]: DNSBL rank 5 for [178.93.33.105]:47698 Nov x@x Nov 28 15:23:50 mxgate1 postfix/postscreen[9658]: HANGUP after 0.63 fr........ -------------------------------	2019-11-29 03:11:03
185.176.27.246	attackbotsspam	firewall-block, port(s): 33407/tcp, 33411/tcp, 33418/tcp, 33421/tcp, 33424/tcp, 33425/tcp, 33426/tcp, 33432/tcp, 33436/tcp, 33441/tcp, 33447/tcp	2019-11-29 02:43:39
109.184.5.177	attackbotsspam	Unauthorized connection attempt from IP address 109.184.5.177 on Port 445(SMB)	2019-11-29 03:21:38
79.0.139.41	attackbotsspam	Unauthorized connection attempt from IP address 79.0.139.41 on Port 445(SMB)	2019-11-29 03:03:18
183.129.50.17	attackbotsspam	SASL Brute Force	2019-11-29 03:18:54

Recently Reported IPs

3.0.145.72	55.197.196.233	229.240.104.243	209.159.210.17
44.55.13.116	224.108.88.1	227.208.61.20	132.93.142.219
206.77.165.201	239.31.63.159	185.249.74.143	245.173.189.205
189.57.154.50	157.246.25.68	201.87.133.117	108.227.125.163
241.18.226.196	65.253.55.63	141.197.30.105	121.137.52.132