56.96.9.142 - IPInfo

Basic Info

City: Raleigh

Region: North Carolina

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.96.9.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1787
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;56.96.9.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 00:18:26 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 142.9.96.56.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 142.9.96.56.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.225.76.195	attackspam	Unauthorized connection attempt from IP address 165.225.76.195 on Port 445(SMB)	2020-07-16 23:03:31
71.6.146.130	attackspam	Unauthorized connection attempt detected from IP address 71.6.146.130 to port 2762	2020-07-16 23:13:56
23.100.18.141	attack	IP attempted unauthorised action	2020-07-16 23:16:58
123.25.78.6	attackspambots	Unauthorized connection attempt from IP address 123.25.78.6 on Port 445(SMB)	2020-07-16 23:06:26
122.14.195.58	attackbots	Jul 16 16:19:05 vps639187 sshd\[4471\]: Invalid user lebesgue from 122.14.195.58 port 35026 Jul 16 16:19:05 vps639187 sshd\[4471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.195.58 Jul 16 16:19:07 vps639187 sshd\[4471\]: Failed password for invalid user lebesgue from 122.14.195.58 port 35026 ssh2 ...	2020-07-16 23:14:43
51.75.142.122	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-16T13:41:02Z and 2020-07-16T13:48:41Z	2020-07-16 23:28:47
77.220.140.53	attack	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-16 23:27:48
218.92.0.208	attack	Jul 16 16:50:52 server sshd[9436]: Failed password for root from 218.92.0.208 port 48558 ssh2 Jul 16 16:50:55 server sshd[9436]: Failed password for root from 218.92.0.208 port 48558 ssh2 Jul 16 16:50:59 server sshd[9436]: Failed password for root from 218.92.0.208 port 48558 ssh2	2020-07-16 23:24:19
106.13.182.26	attackbotsspam	2020-07-16T14:33:03.074983mail.csmailer.org sshd[21695]: Failed password for ftp from 106.13.182.26 port 38376 ssh2 2020-07-16T14:37:09.962211mail.csmailer.org sshd[22017]: Invalid user git from 106.13.182.26 port 50022 2020-07-16T14:37:09.965436mail.csmailer.org sshd[22017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.182.26 2020-07-16T14:37:09.962211mail.csmailer.org sshd[22017]: Invalid user git from 106.13.182.26 port 50022 2020-07-16T14:37:12.048789mail.csmailer.org sshd[22017]: Failed password for invalid user git from 106.13.182.26 port 50022 ssh2 ...	2020-07-16 23:26:25
167.172.119.104	attack	Jul 16 10:50:42 NPSTNNYC01T sshd[10822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.119.104 Jul 16 10:50:44 NPSTNNYC01T sshd[10822]: Failed password for invalid user lgy from 167.172.119.104 port 36788 ssh2 Jul 16 10:55:05 NPSTNNYC01T sshd[11079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.119.104 ...	2020-07-16 23:00:51
206.189.213.130	attack	WordPress logging hack	2020-07-16 23:10:20
104.238.38.156	attackspam	[2020-07-16 10:47:46] NOTICE[1277][C-00000235] chan_sip.c: Call from '' (104.238.38.156:49513) to extension '0000000000000011972595725668' rejected because extension not found in context 'public'. [2020-07-16 10:47:46] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-16T10:47:46.270-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000000000000011972595725668",SessionID="0x7f17540de808",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/104.238.38.156/49513",ACLName="no_extension_match" [2020-07-16 10:52:34] NOTICE[1277][C-00000237] chan_sip.c: Call from '' (104.238.38.156:58695) to extension '00000000000000011972595725668' rejected because extension not found in context 'public'. [2020-07-16 10:52:34] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-16T10:52:34.428-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00000000000000011972595725668",SessionID="0x7f17540de808",LocalAddre ...	2020-07-16 22:56:19
119.28.227.159	attack	(sshd) Failed SSH login from 119.28.227.159 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 16 15:43:48 grace sshd[7527]: Invalid user duke from 119.28.227.159 port 58192 Jul 16 15:43:50 grace sshd[7527]: Failed password for invalid user duke from 119.28.227.159 port 58192 ssh2 Jul 16 15:46:46 grace sshd[8117]: Invalid user aki from 119.28.227.159 port 39254 Jul 16 15:46:48 grace sshd[8117]: Failed password for invalid user aki from 119.28.227.159 port 39254 ssh2 Jul 16 15:48:52 grace sshd[8187]: Invalid user eki from 119.28.227.159 port 36824	2020-07-16 23:13:31
192.3.194.169	attackbots	Jul 15 03:06:57 tux2 sshd[9325]: reveeclipse mapping checking getaddrinfo for 192-3-194-169-host.colocrossing.com [192.3.194.169] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 15 03:06:57 tux2 sshd[9325]: Invalid user Fake from 192.3.194.169 Jul 15 03:06:57 tux2 sshd[9325]: Received disconnect from 192.3.194.169: 11: Bye Bye [preauth] Jul 15 03:06:58 tux2 sshd[9327]: reveeclipse mapping checking getaddrinfo for 192-3-194-169-host.colocrossing.com [192.3.194.169] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 15 03:06:58 tux2 sshd[9327]: Invalid user admin from 192.3.194.169 Jul 15 03:06:58 tux2 sshd[9327]: Received disconnect from 192.3.194.169: 11: Bye Bye [preauth] Jul 15 03:06:58 tux2 sshd[9329]: reveeclipse mapping checking getaddrinfo for 192-3-194-169-host.colocrossing.com [192.3.194.169] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 15 03:06:59 tux2 sshd[9329]: Received disconnect from 192.3.194.169: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=	2020-07-16 23:40:45
111.229.237.58	attack	Jul 16 16:57:46 OPSO sshd\[11025\]: Invalid user elk from 111.229.237.58 port 43046 Jul 16 16:57:46 OPSO sshd\[11025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.237.58 Jul 16 16:57:48 OPSO sshd\[11025\]: Failed password for invalid user elk from 111.229.237.58 port 43046 ssh2 Jul 16 17:02:07 OPSO sshd\[12216\]: Invalid user vc from 111.229.237.58 port 56308 Jul 16 17:02:07 OPSO sshd\[12216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.237.58	2020-07-16 23:15:08

Recently Reported IPs

40.117.159.61	73.186.125.88	212.142.183.122	81.170.94.86
77.7.67.132	151.54.59.76	123.209.113.149	151.152.201.86
113.112.81.245	60.230.103.114	97.202.173.53	41.121.230.118
61.170.6.205	182.14.115.157	179.176.135.51	77.236.222.155
211.155.81.109	84.27.50.109	65.68.185.92	2.41.240.177