81.4.242.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
81.4.242.5	attackbotsspam	Unauthorized connection attempt detected from IP address 81.4.242.5 to port 23 [T]	2020-08-16 18:27:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.4.242.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50293
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.4.242.142.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:45:14 CST 2022
;; MSG SIZE  rcvd: 105

Host info

142.242.4.81.in-addr.arpa domain name pointer 81-4-242-142.dyn.nn.ttknn.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.242.4.81.in-addr.arpa	name = 81-4-242-142.dyn.nn.ttknn.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.45.77.43	attackspam	wp-login Wordpress vulnerability	2020-06-23 21:39:36
186.113.18.109	attackspambots	$f2bV_matches	2020-06-23 21:31:02
184.22.43.226	attackspam	Jun 23 03:39:32 nbi-636 sshd[28414]: Invalid user ba from 184.22.43.226 port 54204 Jun 23 03:39:32 nbi-636 sshd[28414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.43.226 Jun 23 03:39:34 nbi-636 sshd[28414]: Failed password for invalid user ba from 184.22.43.226 port 54204 ssh2 Jun 23 03:39:36 nbi-636 sshd[28414]: Received disconnect from 184.22.43.226 port 54204:11: Bye Bye [preauth] Jun 23 03:39:36 nbi-636 sshd[28414]: Disconnected from invalid user ba 184.22.43.226 port 54204 [preauth] Jun 23 03:44:02 nbi-636 sshd[28958]: Invalid user webmaster from 184.22.43.226 port 55292 Jun 23 03:44:02 nbi-636 sshd[28958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.43.226 Jun 23 03:44:04 nbi-636 sshd[28958]: Failed password for invalid user webmaster from 184.22.43.226 port 55292 ssh2 Jun 23 03:44:05 nbi-636 sshd[28958]: Received disconnect from 184.22.43.226 port 55292:11: By........ -------------------------------	2020-06-23 21:13:07
192.241.210.68	attackspam	Port Scan detected! ...	2020-06-23 21:32:50
91.214.176.228	attackbotsspam	Jun 23 02:39:55 srv05 sshd[27940]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:39:57 srv05 sshd[27940]: Failed password for invalid user sandbox from 91.214.176.228 port 57618 ssh2 Jun 23 02:39:57 srv05 sshd[27940]: Received disconnect from 91.214.176.228: 11: Bye Bye [preauth] Jun 23 02:55:38 srv05 sshd[28899]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:55:40 srv05 sshd[28899]: Failed password for invalid user wch from 91.214.176.228 port 38898 ssh2 Jun 23 02:55:40 srv05 sshd[28899]: Received disconnect from 91.214.176.228: 11: Bye Bye [preauth] Jun 23 02:58:38 srv05 sshd[29080]: reveeclipse mapping checking getaddrinfo for 228.rubinplus.net [91.214.176.228] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 23 02:58:38 srv05 sshd[29080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser........ -------------------------------	2020-06-23 21:01:32
196.52.43.105	attackbots	TCP (SYN) 196.52.43.105:62649 -> port 888, len 44	2020-06-23 21:34:10
114.231.42.209	attack	(smtpauth) Failed SMTP AUTH login from 114.231.42.209 (CN/China/209.42.231.114.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs	2020-06-23 21:14:18
184.105.139.94	attackspambots	Jun 23 14:08:31 debian-2gb-nbg1-2 kernel: \[15172782.294708\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=184.105.139.94 DST=195.201.40.59 LEN=125 TOS=0x00 PREC=0x00 TTL=52 ID=23737 DF PROTO=UDP SPT=40653 DPT=1900 LEN=105	2020-06-23 21:12:30
185.39.11.38	attack	TCP (SYN) 185.39.11.38:47147 -> port 25419, len 44	2020-06-23 21:41:23
213.55.77.131	attack	Fail2Ban Ban Triggered	2020-06-23 21:14:47
37.252.188.130	attackbots	Jun 23 13:59:47 ajax sshd[24076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.188.130 Jun 23 13:59:49 ajax sshd[24076]: Failed password for invalid user clz from 37.252.188.130 port 50566 ssh2	2020-06-23 21:11:39
137.74.173.182	attack	2020-06-23T13:34:41.015349shield sshd\[15167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=aula.madridemprende.es user=root 2020-06-23T13:34:42.476664shield sshd\[15167\]: Failed password for root from 137.74.173.182 port 36250 ssh2 2020-06-23T13:37:52.167532shield sshd\[15858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=aula.madridemprende.es user=root 2020-06-23T13:37:54.321140shield sshd\[15858\]: Failed password for root from 137.74.173.182 port 35736 ssh2 2020-06-23T13:41:03.107889shield sshd\[16393\]: Invalid user alex from 137.74.173.182 port 35338	2020-06-23 21:46:54
111.229.252.207	attack	Jun 23 14:55:09 OPSO sshd\[5905\]: Invalid user waldo from 111.229.252.207 port 40746 Jun 23 14:55:09 OPSO sshd\[5905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.252.207 Jun 23 14:55:11 OPSO sshd\[5905\]: Failed password for invalid user waldo from 111.229.252.207 port 40746 ssh2 Jun 23 14:56:29 OPSO sshd\[6098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.252.207 user=root Jun 23 14:56:31 OPSO sshd\[6098\]: Failed password for root from 111.229.252.207 port 52732 ssh2	2020-06-23 21:06:16
193.122.162.184	attackbotsspam	Jun 23 14:55:00 localhost sshd\[22980\]: Invalid user nfs from 193.122.162.184 Jun 23 14:55:00 localhost sshd\[22980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.162.184 Jun 23 14:55:02 localhost sshd\[22980\]: Failed password for invalid user nfs from 193.122.162.184 port 48612 ssh2 Jun 23 14:58:02 localhost sshd\[23174\]: Invalid user aboss from 193.122.162.184 Jun 23 14:58:02 localhost sshd\[23174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.162.184 ...	2020-06-23 21:10:12
107.189.10.42	attackbotsspam	Automatic report - Banned IP Access	2020-06-23 21:24:12

Recently Reported IPs

181.57.97.189	41.39.10.31	123.9.114.185	124.158.160.179
195.245.194.5	189.129.91.59	180.247.146.72	18.117.29.189
125.41.189.153	112.117.17.153	45.237.119.13	78.158.178.120
195.139.240.44	51.15.231.196	82.102.255.84	219.156.172.79
61.164.72.118	103.25.47.77	131.196.93.27	208.113.130.137