122.147.42.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: New Century Infocomm Tech. Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	10/15/2019-12:00:33.862574 122.147.42.2 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-16 00:32:38
attackbotsspam	Port Scan: TCP/445	2019-08-05 10:05:10
attack	firewall-block, port(s): 445/tcp	2019-07-03 16:18:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.147.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55539
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.147.42.2.			IN	A

;; AUTHORITY SECTION:
.			3206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061000 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 10 15:58:53 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.42.147.122.in-addr.arpa domain name pointer 122-147-42-2.static.sparqnet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
2.42.147.122.in-addr.arpa	name = 122-147-42-2.static.sparqnet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.248.52.99	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-27 08:56:42
189.178.18.233	attackbots	port 23	2020-06-27 08:49:28
59.27.124.26	attackbotsspam	Jun 26 21:34:38 ws19vmsma01 sshd[243977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.27.124.26 Jun 26 21:34:40 ws19vmsma01 sshd[243977]: Failed password for invalid user xerxes from 59.27.124.26 port 43920 ssh2 ...	2020-06-27 08:35:51
124.165.205.126	attack	Invalid user markc from 124.165.205.126 port 38584	2020-06-27 08:31:54
221.209.17.222	attack	Invalid user zzb from 221.209.17.222 port 47010	2020-06-27 08:42:10
102.141.240.139	attack	20/6/26@15:51:47: FAIL: IoT-Telnet address from=102.141.240.139 ...	2020-06-27 08:26:29
121.227.153.232	attackbotsspam	Jun 27 00:57:29 lnxweb61 sshd[30144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.227.153.232 Jun 27 00:57:30 lnxweb61 sshd[30144]: Failed password for invalid user neo from 121.227.153.232 port 56257 ssh2 Jun 27 01:01:54 lnxweb61 sshd[3441]: Failed password for root from 121.227.153.232 port 49187 ssh2	2020-06-27 08:44:46
46.148.201.206	attackbotsspam	SSH brute force	2020-06-27 08:38:11
52.172.55.105	attack	Scanned 12 times in the last 24 hours on port 22	2020-06-27 08:37:44
118.180.251.9	attackspambots	$f2bV_matches	2020-06-27 08:26:09
78.128.113.109	attackspam	2020-06-27 02:33:14 dovecot_plain authenticator failed for $ip-113-109.4vendeta.com.$ \[78.128.113.109\]: 535 Incorrect authentication data $set_id=webmaster@orogest.it$ 2020-06-27 02:33:26 dovecot_plain authenticator failed for $ip-113-109.4vendeta.com.$ \[78.128.113.109\]: 535 Incorrect authentication data 2020-06-27 02:33:37 dovecot_plain authenticator failed for $ip-113-109.4vendeta.com.$ \[78.128.113.109\]: 535 Incorrect authentication data 2020-06-27 02:33:44 dovecot_plain authenticator failed for $ip-113-109.4vendeta.com.$ \[78.128.113.109\]: 535 Incorrect authentication data 2020-06-27 02:34:00 dovecot_plain authenticator failed for $ip-113-109.4vendeta.com.$ \[78.128.113.109\]: 535 Incorrect authentication data	2020-06-27 08:51:16
194.87.138.4	attackspam	SSH-BruteForce	2020-06-27 08:50:58
193.35.51.13	attack	Jun 27 00:08:10 mailserver postfix/smtps/smtpd[95286]: disconnect from unknown[193.35.51.13] Jun 27 02:21:19 mailserver postfix/smtps/smtpd[96200]: connect from unknown[193.35.51.13] Jun 27 02:21:21 mailserver dovecot: auth-worker(96194): sql([hidden],193.35.51.13): unknown user Jun 27 02:21:23 mailserver postfix/smtps/smtpd[96200]: warning: unknown[193.35.51.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 27 02:21:23 mailserver postfix/smtps/smtpd[96200]: lost connection after AUTH from unknown[193.35.51.13] Jun 27 02:21:23 mailserver postfix/smtps/smtpd[96200]: disconnect from unknown[193.35.51.13] Jun 27 02:21:23 mailserver postfix/smtps/smtpd[96200]: connect from unknown[193.35.51.13] Jun 27 02:21:28 mailserver postfix/smtps/smtpd[96200]: lost connection after AUTH from unknown[193.35.51.13] Jun 27 02:21:28 mailserver postfix/smtps/smtpd[96200]: disconnect from unknown[193.35.51.13] Jun 27 02:21:28 mailserver postfix/smtps/smtpd[96200]: connect from unknown[193.35.51.13]	2020-06-27 08:43:45
189.7.81.29	attack	2020-06-26T22:02:48.308637abusebot-3.cloudsearch.cf sshd[10935]: Invalid user gnuhealth from 189.7.81.29 port 57092 2020-06-26T22:02:48.314415abusebot-3.cloudsearch.cf sshd[10935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.81.29 2020-06-26T22:02:48.308637abusebot-3.cloudsearch.cf sshd[10935]: Invalid user gnuhealth from 189.7.81.29 port 57092 2020-06-26T22:02:50.225123abusebot-3.cloudsearch.cf sshd[10935]: Failed password for invalid user gnuhealth from 189.7.81.29 port 57092 ssh2 2020-06-26T22:06:45.473158abusebot-3.cloudsearch.cf sshd[11044]: Invalid user sean from 189.7.81.29 port 55182 2020-06-26T22:06:45.478948abusebot-3.cloudsearch.cf sshd[11044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.81.29 2020-06-26T22:06:45.473158abusebot-3.cloudsearch.cf sshd[11044]: Invalid user sean from 189.7.81.29 port 55182 2020-06-26T22:06:47.926377abusebot-3.cloudsearch.cf sshd[11044]: Failed pas ...	2020-06-27 08:53:31
81.226.64.21	attackbots	TCP (SYN) 81.226.64.21:62082 -> port 23, len 44	2020-06-27 08:37:20

Recently Reported IPs

172.170.122.202	242.17.120.128	68.183.191.218	201.149.59.134
125.123.142.77	45.221.79.134	112.149.1.106	45.229.50.244
51.38.34.203	40.14.135.157	37.131.196.63	52.19.3.62
122.15.156.57	34.86.214.78	37.146.244.118	168.139.62.111
213.135.9.211	84.52.160.86	12.32.254.97	206.195.103.85