56.17.42.140 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.17.42.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;56.17.42.140.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 18:02:35 CST 2025
;; MSG SIZE  rcvd: 105

Host info

b'Host 140.42.17.56.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 56.17.42.140.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.69.11.118	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 15:25:51,327 INFO [shellcode_manager] (177.69.11.118) no match, writing hexdump (c7d243a32fc126f5c2ecc211ef11ac61 :2209382) - MS17010 (EternalBlue)	2019-07-05 08:56:46
112.91.58.238	attack	Brute force attack stopped by firewall	2019-07-05 09:31:15
206.189.165.94	attackbots	Jul 5 01:12:04 dev0-dcde-rnet sshd[1717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.165.94 Jul 5 01:12:06 dev0-dcde-rnet sshd[1717]: Failed password for invalid user feng from 206.189.165.94 port 47268 ssh2 Jul 5 01:16:12 dev0-dcde-rnet sshd[1734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.165.94	2019-07-05 09:25:20
23.30.117.166	attackbotsspam	Jul 5 00:54:54 server sshd[25773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.30.117.166 ...	2019-07-05 09:20:20
207.180.213.165	attack	[FriJul0500:54:15.6830242019][:error][pid30129:tid47793932609280][client207.180.213.165:42402][client207.180.213.165]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\<\\|script\\|\>\)"atARGS:domain.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"317"][id"347147"][rev"1"][msg"Atomicorp.comWAFRules:Wordpressadmin-ajaxXSSattack"][data"admin-ajax.php"][severity"CRITICAL"][hostname"csimpianti.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XR6Dl3QVfPMVd40K0Kq6uAAAAI8"][FriJul0500:54:29.2602602019][:error][pid30126:tid47793845114624][client207.180.213.165:44432][client207.180.213.165]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"miglaa\?_"atARGS:action.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"60"][id"334072"][rev"5"][msg"Atomicorp.comWAFRules:CVE-2019-6703Attackblocked"][severity"ALERT"][hostname"csimpianti.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XR6Dpe65Hmoz83hNYWYLZQAAAQY"][FriJul0500:54:29.	2019-07-05 09:14:47
139.59.149.183	attack	Jul 5 00:59:38 tux-35-217 sshd\[3536\]: Invalid user long from 139.59.149.183 port 42946 Jul 5 00:59:38 tux-35-217 sshd\[3536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.149.183 Jul 5 00:59:39 tux-35-217 sshd\[3536\]: Failed password for invalid user long from 139.59.149.183 port 42946 ssh2 Jul 5 01:01:48 tux-35-217 sshd\[3547\]: Invalid user oracle from 139.59.149.183 port 55693 Jul 5 01:01:48 tux-35-217 sshd\[3547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.149.183 ...	2019-07-05 08:57:20
111.230.8.40	attackbotsspam	Jul 5 01:15:17 dedicated sshd[19393]: Invalid user dev from 111.230.8.40 port 57076	2019-07-05 09:36:17
60.191.38.77	attackbots	Probing for /login	2019-07-05 09:29:26
185.142.236.34	attackspam	9981/tcp 3000/tcp 5060/udp... [2019-05-04/07-04]405pkt,203pt.(tcp),37pt.(udp)	2019-07-05 09:21:05
113.140.48.156	attackbots	Brute force attack stopped by firewall	2019-07-05 09:37:24
51.77.140.36	attack	Jul 5 02:48:30 giegler sshd[1368]: Invalid user a4abroad from 51.77.140.36 port 55144	2019-07-05 08:54:47
213.168.177.145	attack	scan z	2019-07-05 09:23:19
122.93.235.10	attackspam	Jul 5 06:10:20 tanzim-HP-Z238-Microtower-Workstation sshd\[14126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.93.235.10 user=root Jul 5 06:10:22 tanzim-HP-Z238-Microtower-Workstation sshd\[14126\]: Failed password for root from 122.93.235.10 port 59689 ssh2 Jul 5 06:10:38 tanzim-HP-Z238-Microtower-Workstation sshd\[14176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.93.235.10 user=root ...	2019-07-05 08:52:28
94.176.76.74	attackbotsspam	(Jul 5) LEN=40 TTL=244 ID=21252 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=356 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=36595 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=65090 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=13021 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=56803 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=31130 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=14710 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=60629 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=8457 DF TCP DPT=23 WINDOW=14600 SYN (Jul 3) LEN=40 TTL=244 ID=118 DF TCP DPT=23 WINDOW=14600 SYN (Jul 3) LEN=40 TTL=244 ID=63569 DF TCP DPT=23 WINDOW=14600 SYN (Jul 3) LEN=40 TTL=244 ID=18957 DF TCP DPT=23 WINDOW=14600 SYN (Jul 3) LEN=40 TTL=244 ID=15382 DF TCP DPT=23 WINDOW=14600 SYN (Jul 3) LEN=40 TTL=244 ID=32018 DF TCP DPT=23 WINDOW=14600 SYN ...	2019-07-05 09:02:06
128.199.52.45	attackbotsspam	Jul 5 01:51:03 server01 sshd\[32477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 user=root Jul 5 01:51:04 server01 sshd\[32477\]: Failed password for root from 128.199.52.45 port 48400 ssh2 Jul 5 01:55:19 server01 sshd\[32503\]: Invalid user desop from 128.199.52.45 ...	2019-07-05 08:56:07

Recently Reported IPs

122.181.213.77	15.42.195.219	157.127.197.76	146.82.58.76
152.206.3.70	212.120.187.86	193.52.51.140	150.112.231.18
117.74.1.64	191.15.150.227	197.237.168.172	145.50.242.146
65.99.253.108	131.167.34.48	236.56.223.5	196.135.65.32
213.43.210.80	52.229.173.178	67.94.98.255	152.127.207.47