1.192.158.42 - IPInfo

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.192.158.132	attack	Port Scan: TCP/445	2019-09-16 05:33:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.192.158.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.192.158.42.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051800 1800 900 604800 86400

;; Query time: 243 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 19 01:41:43 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 42.158.192.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.158.192.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.39.22.105	attack	Oct 27 12:05:04 lvpxxxxxxx88-92-201-20 sshd[25015]: Failed password for r.r from 54.39.22.105 port 59170 ssh2 Oct 27 12:05:04 lvpxxxxxxx88-92-201-20 sshd[25015]: Received disconnect from 54.39.22.105: 11: Bye Bye [preauth] Oct 27 12:11:42 lvpxxxxxxx88-92-201-20 sshd[25199]: Failed password for r.r from 54.39.22.105 port 58506 ssh2 Oct 27 12:11:42 lvpxxxxxxx88-92-201-20 sshd[25199]: Received disconnect from 54.39.22.105: 11: Bye Bye [preauth] Oct 27 12:15:20 lvpxxxxxxx88-92-201-20 sshd[25254]: Failed password for r.r from 54.39.22.105 port 41996 ssh2 Oct 27 12:15:21 lvpxxxxxxx88-92-201-20 sshd[25254]: Received disconnect from 54.39.22.105: 11: Bye Bye [preauth] Oct 27 12:19:08 lvpxxxxxxx88-92-201-20 sshd[25324]: Failed password for invalid user odroid from 54.39.22.105 port 53752 ssh2 Oct 27 12:19:08 lvpxxxxxxx88-92-201-20 sshd[25324]: Received disconnect from 54.39.22.105: 11: Bye Bye [preauth] Oct 27 12:22:47 lvpxxxxxxx88-92-201-20 sshd[25452]: Failed password for r.r ........ -------------------------------	2019-10-28 00:08:37
74.125.71.108	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-27 23:48:39
217.68.223.123	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 00:11:34
217.68.223.120	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 00:12:33
66.102.1.108	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-27 23:49:24
217.68.223.180	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 00:04:13
217.68.222.67	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 00:22:20
81.192.159.130	attackbotsspam	2019-10-27T15:00:57.341460abusebot.cloudsearch.cf sshd\[7014\]: Invalid user pi from 81.192.159.130 port 45246	2019-10-27 23:41:16
217.68.223.176	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 00:05:07
217.68.223.95	attackbots	slow and persistent scanner	2019-10-27 23:50:50
184.185.2.32	attackspam	(imapd) Failed IMAP login from 184.185.2.32 (US/United States/-): 1 in the last 3600 secs	2019-10-28 00:21:31
217.68.223.242	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-27 23:58:50
104.131.111.64	attackbots	Oct 27 13:21:49 apollo sshd\[18060\]: Failed password for root from 104.131.111.64 port 49725 ssh2Oct 27 13:32:15 apollo sshd\[18117\]: Invalid user ms from 104.131.111.64Oct 27 13:32:16 apollo sshd\[18117\]: Failed password for invalid user ms from 104.131.111.64 port 54862 ssh2 ...	2019-10-28 00:08:08
49.76.53.98	attack	Oct 27 07:51:16 esmtp postfix/smtpd[12845]: lost connection after AUTH from unknown[49.76.53.98] Oct 27 07:51:18 esmtp postfix/smtpd[12840]: lost connection after AUTH from unknown[49.76.53.98] Oct 27 07:51:21 esmtp postfix/smtpd[12845]: lost connection after AUTH from unknown[49.76.53.98] Oct 27 07:51:28 esmtp postfix/smtpd[12840]: lost connection after AUTH from unknown[49.76.53.98] Oct 27 07:51:29 esmtp postfix/smtpd[12845]: lost connection after AUTH from unknown[49.76.53.98] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.76.53.98	2019-10-28 00:16:33
144.122.219.230	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-10-27 23:52:31

Recently Reported IPs

217.72.182.234	1.192.242.127	1.193.244.171	1.193.245.176
1.193.246.228	1.193.246.66	1.193.247.47	1.196.177.11
1.196.177.136	1.196.177.181	1.196.177.82	1.196.182.180
1.197.10.61	1.197.11.127	1.197.16.107	1.197.178.33
1.197.178.56	1.197.204.73	1.198.108.227	1.198.108.86