147.50.42.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CS Loxinfo Public Company Limited

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	20/3/31@23:54:32: FAIL: Alarm-Network address from=147.50.42.2 20/3/31@23:54:32: FAIL: Alarm-Network address from=147.50.42.2 ...	2020-04-01 13:48:00

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.50.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.50.42.2.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 13:47:51 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 2.42.50.147.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.42.50.147.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.234.73.249	attackspambots	Nov 4 00:43:06 keyhelp sshd[17488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.73.249 user=r.r Nov 4 00:43:08 keyhelp sshd[17488]: Failed password for r.r from 62.234.73.249 port 52260 ssh2 Nov 4 00:43:08 keyhelp sshd[17488]: Received disconnect from 62.234.73.249 port 52260:11: Bye Bye [preauth] Nov 4 00:43:08 keyhelp sshd[17488]: Disconnected from 62.234.73.249 port 52260 [preauth] Nov 4 00:56:24 keyhelp sshd[20277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.73.249 user=r.r Nov 4 00:56:26 keyhelp sshd[20277]: Failed password for r.r from 62.234.73.249 port 33918 ssh2 Nov 4 00:56:26 keyhelp sshd[20277]: Received disconnect from 62.234.73.249 port 33918:11: Bye Bye [preauth] Nov 4 00:56:26 keyhelp sshd[20277]: Disconnected from 62.234.73.249 port 33918 [preauth] Nov 4 01:05:18 keyhelp sshd[21403]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2019-11-04 16:12:25
153.3.232.177	attackbots	Nov 4 14:10:41 webhost01 sshd[17366]: Failed password for root from 153.3.232.177 port 35926 ssh2 ...	2019-11-04 16:05:23
202.179.75.153	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-04 15:46:41
59.145.221.103	attack	Nov 4 08:33:00 minden010 sshd[30488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 Nov 4 08:33:02 minden010 sshd[30488]: Failed password for invalid user jabber from 59.145.221.103 port 45949 ssh2 Nov 4 08:38:11 minden010 sshd[3771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 ...	2019-11-04 15:41:45
106.12.181.184	attackspam	Nov 4 08:12:42 markkoudstaal sshd[13668]: Failed password for root from 106.12.181.184 port 49124 ssh2 Nov 4 08:17:33 markkoudstaal sshd[14216]: Failed password for root from 106.12.181.184 port 59300 ssh2	2019-11-04 15:52:07
72.52.207.133	attack	72.52.207.133 - - \[04/Nov/2019:06:30:06 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 72.52.207.133 - - \[04/Nov/2019:06:30:06 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-04 16:12:10
77.55.237.162	attack	Nov 4 06:31:01 *** sshd[12728]: User root from 77.55.237.162 not allowed because not listed in AllowUsers	2019-11-04 16:11:48
119.207.126.21	attack	Lines containing failures of 119.207.126.21 Nov 4 01:24:38 shared11 sshd[2026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.207.126.21 user=r.r Nov 4 01:24:41 shared11 sshd[2026]: Failed password for r.r from 119.207.126.21 port 54864 ssh2 Nov 4 01:24:41 shared11 sshd[2026]: Received disconnect from 119.207.126.21 port 54864:11: Bye Bye [preauth] Nov 4 01:24:41 shared11 sshd[2026]: Disconnected from authenticating user r.r 119.207.126.21 port 54864 [preauth] Nov 4 01:36:55 shared11 sshd[6339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.207.126.21 user=r.r Nov 4 01:36:57 shared11 sshd[6339]: Failed password for r.r from 119.207.126.21 port 41060 ssh2 Nov 4 01:36:57 shared11 sshd[6339]: Received disconnect from 119.207.126.21 port 41060:11: Bye Bye [preauth] Nov 4 01:36:57 shared11 sshd[6339]: Disconnected from authenticating user r.r 119.207.126.21 port 41060 [preaut........ ------------------------------	2019-11-04 16:07:56
159.65.148.115	attackspam	Nov 4 10:10:06 hosting sshd[5462]: Invalid user suser from 159.65.148.115 port 60730 ...	2019-11-04 15:49:16
5.62.61.61	attackbotsspam	they hacked my Facebook account	2019-11-04 16:15:29
150.95.54.138	attack	Open Proxy "PROMETHEUS" Node. GET "/news/wp-login.php" by 1 times.	2019-11-04 16:16:11
58.222.24.164	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-11-04 15:42:14
51.255.174.164	attack	$f2bV_matches	2019-11-04 15:43:44
46.38.144.146	attack	Nov 4 08:34:24 webserver postfix/smtpd\[14949\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 08:35:11 webserver postfix/smtpd\[16939\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 08:36:03 webserver postfix/smtpd\[16849\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 08:36:53 webserver postfix/smtpd\[14949\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 08:37:42 webserver postfix/smtpd\[16939\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-04 15:44:27
193.70.36.161	attackbotsspam	Nov 4 08:45:22 minden010 sshd[7692]: Failed password for root from 193.70.36.161 port 45926 ssh2 Nov 4 08:50:17 minden010 sshd[9310]: Failed password for root from 193.70.36.161 port 36537 ssh2 ...	2019-11-04 15:56:07

Recently Reported IPs

43.87.65.101	195.133.177.196	123.243.215.142	100.139.14.29
157.189.194.6	14.69.62.12	193.35.218.8	37.191.121.97
4.252.121.225	165.160.73.101	138.186.223.185	174.73.226.240
93.176.167.15	218.7.220.183	23.198.58.161	90.89.139.102
65.27.93.165	177.162.37.169	215.248.170.33	14.179.177.56