42.97.3.213 - IPInfo

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.97.3.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.97.3.213.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022013000 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 30 23:37:26 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 213.3.97.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.3.97.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.33.137.117	attack	Apr 5 07:04:13 mail sshd[12851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:04:16 mail sshd[12851]: Failed password for root from 179.33.137.117 port 47958 ssh2 Apr 5 07:13:30 mail sshd[27282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:13:32 mail sshd[27282]: Failed password for root from 179.33.137.117 port 43632 ssh2 Apr 5 07:16:51 mail sshd[32573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:16:53 mail sshd[32573]: Failed password for root from 179.33.137.117 port 56684 ssh2 ...	2020-04-05 14:35:58
78.128.113.82	attackbotsspam	IP: 78.128.113.82 Ports affected Simple Mail Transfer (25) Message Submission (587) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS209160 Miti 2000 EOOD Bulgaria (BG) CIDR 78.128.113.0/24 Log Date: 5/04/2020 3:43:06 AM UTC	2020-04-05 14:45:58
45.141.84.29	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 3400 proto: TCP cat: Misc Attack	2020-04-05 14:21:11
154.66.219.20	attack	$f2bV_matches	2020-04-05 14:50:48
2002:b9ea:d8ce::b9ea:d8ce	attackbotsspam	Apr 5 08:04:51 web01.agentur-b-2.de postfix/smtpd[93286]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:04:51 web01.agentur-b-2.de postfix/smtpd[93286]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 5 08:05:09 web01.agentur-b-2.de postfix/smtpd[93286]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:05:09 web01.agentur-b-2.de postfix/smtpd[93286]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 5 08:05:30 web01.agentur-b-2.de postfix/smtpd[90079]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:05:30 web01.agentur-b-2.de postfix/smtpd[90079]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce]	2020-04-05 14:50:30
195.231.3.208	attackbots	Apr 5 06:48:47 web01.agentur-b-2.de postfix/smtpd[80666]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:48:47 web01.agentur-b-2.de postfix/smtpd[80666]: lost connection after AUTH from unknown[195.231.3.208] Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[83978]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[83886]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[83980]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[83979]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[80325]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 06:57:21 web01.agentur-b-2.de postfix/smtpd[83981]: warning: unknown	2020-04-05 14:44:24
45.133.99.8	attackbots	2020-04-05 08:43:33 dovecot_login authenticator failed for $\[45.133.99.8\]$ \[45.133.99.8\]: 535 Incorrect authentication data $set_id=support@nophost.com$ 2020-04-05 08:43:42 dovecot_login authenticator failed for $\[45.133.99.8\]$ \[45.133.99.8\]: 535 Incorrect authentication data 2020-04-05 08:43:53 dovecot_login authenticator failed for $\[45.133.99.8\]$ \[45.133.99.8\]: 535 Incorrect authentication data 2020-04-05 08:43:59 dovecot_login authenticator failed for $\[45.133.99.8\]$ \[45.133.99.8\]: 535 Incorrect authentication data 2020-04-05 08:44:13 dovecot_login authenticator failed for $\[45.133.99.8\]$ \[45.133.99.8\]: 535 Incorrect authentication data	2020-04-05 14:49:06
178.32.221.142	attackbotsspam	Apr 5 08:07:43 vps647732 sshd[21025]: Failed password for root from 178.32.221.142 port 34297 ssh2 ...	2020-04-05 14:29:36
69.163.224.109	attackbotsspam	Automatic report - XMLRPC Attack	2020-04-05 14:04:59
80.211.88.70	attack	5x Failed Password	2020-04-05 14:40:18
180.128.8.6	attack	Apr 5 04:44:42 sshgateway sshd\[21258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.128.8.6 user=root Apr 5 04:44:44 sshgateway sshd\[21258\]: Failed password for root from 180.128.8.6 port 34320 ssh2 Apr 5 04:50:19 sshgateway sshd\[21306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.128.8.6 user=root	2020-04-05 14:09:30
187.85.84.202	attack	Apr 5 05:44:10 mail.srvfarm.net postfix/smtpd[3774074]: NOQUEUE: reject: RCPT from 187-85-84-202.city10.com.br[187.85.84.202]: 554 5.7.1 Service unavailable; Client host [187.85.84.202] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?187.85.84.202; from= to= proto=ESMTP helo=<187-85-84-202.city10.com.br> Apr 5 05:44:11 mail.srvfarm.net postfix/smtpd[3774074]: NOQUEUE: reject: RCPT from 187-85-84-202.city10.com.br[187.85.84.202]: 554 5.7.1 Service unavailable; Client host [187.85.84.202] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?187.85.84.202; from= to= proto=ESMTP helo=<187-85-84-202.city10.com.br> Apr 5 05:44:12 mail.srvfarm.net postfix/smtpd[3774074]: NOQUEUE: reject: RCPT from 187-85-84-202.city10.com.br[187.85.84.202]: 554 5.7.1 Service unavailable; Client host [187.85.84.202] blocked using bl.spamcop.net; Blocked - see https://www.	2020-04-05 14:44:43
123.18.111.109	attackspam	1586058957 - 04/05/2020 05:55:57 Host: 123.18.111.109/123.18.111.109 Port: 445 TCP Blocked	2020-04-05 14:13:12
177.125.164.225	attack	detected by Fail2Ban	2020-04-05 14:12:14
121.15.7.26	attackspam	Apr 5 06:08:33 srv01 sshd[8460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.7.26 user=root Apr 5 06:08:35 srv01 sshd[8460]: Failed password for root from 121.15.7.26 port 59942 ssh2 Apr 5 06:11:02 srv01 sshd[8748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.7.26 user=root Apr 5 06:11:04 srv01 sshd[8748]: Failed password for root from 121.15.7.26 port 49649 ssh2 Apr 5 06:13:47 srv01 sshd[8881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.7.26 user=root Apr 5 06:13:49 srv01 sshd[8881]: Failed password for root from 121.15.7.26 port 39363 ssh2 ...	2020-04-05 14:09:53

Recently Reported IPs

188.142.93.253	71.128.137.60	203.28.154.10	153.63.253.185
227.227.220.119	154.91.113.22	92.52.219.199	48.150.184.239
240.218.175.127	27.231.45.142	138.3.83.21	182.140.163.186
21.253.152.80	88.119.143.209	45.162.56.1	33.125.16.34
144.207.237.34	45.162.58.168	211.234.208.232	76.101.76.196