147.50.42.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CS Loxinfo Public Company Limited

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	20/3/31@23:54:32: FAIL: Alarm-Network address from=147.50.42.2 20/3/31@23:54:32: FAIL: Alarm-Network address from=147.50.42.2 ...	2020-04-01 13:48:00

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.50.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.50.42.2.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 13:47:51 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 2.42.50.147.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.42.50.147.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.158	attackspambots	$f2bV_matches	2020-08-10 14:39:12
61.51.95.234	attackbotsspam	Bruteforce detected by fail2ban	2020-08-10 15:01:08
120.132.27.238	attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-10 14:21:04
107.170.131.23	attackbots	B: Abusive ssh attack	2020-08-10 15:01:55
182.56.67.254	attack	Bruteforce detected by fail2ban	2020-08-10 14:59:26
106.208.121.142	attackbots	106.208.121.142 - - [10/Aug/2020:05:37:44 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 106.208.121.142 - - [10/Aug/2020:05:37:48 +0100] "POST /wp-login.php HTTP/1.1" 200 7828 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 106.208.121.142 - - [10/Aug/2020:05:38:45 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-10 14:49:20
49.234.149.92	attack	Aug 10 06:54:24 nextcloud sshd\[26777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.149.92 user=root Aug 10 06:54:26 nextcloud sshd\[26777\]: Failed password for root from 49.234.149.92 port 44039 ssh2 Aug 10 06:57:53 nextcloud sshd\[30106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.149.92 user=root	2020-08-10 14:52:24
45.143.223.90	attack	(smtpauth) Failed SMTP AUTH login from 45.143.223.90 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-10 08:24:22 login authenticator failed for (User) [45.143.223.90]: 535 Incorrect authentication data (set_id=info@farasunict.com)	2020-08-10 14:20:22
122.140.102.56	attack	Unauthorised access (Aug 10) SRC=122.140.102.56 LEN=40 TTL=46 ID=34353 TCP DPT=8080 WINDOW=12637 SYN Unauthorised access (Aug 9) SRC=122.140.102.56 LEN=40 TTL=46 ID=39607 TCP DPT=8080 WINDOW=50357 SYN	2020-08-10 14:53:32
165.22.94.219	attackbots	165.22.94.219 - - [10/Aug/2020:04:54:09 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.94.219 - - [10/Aug/2020:04:54:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.94.219 - - [10/Aug/2020:04:54:15 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-10 14:29:44
213.87.44.152	attackbots	Aug 10 07:50:29 minden010 sshd[10897]: Failed password for root from 213.87.44.152 port 40660 ssh2 Aug 10 07:54:38 minden010 sshd[12189]: Failed password for root from 213.87.44.152 port 50618 ssh2 ...	2020-08-10 14:46:35
187.214.27.117	attack	Automatic report - Port Scan Attack	2020-08-10 15:00:19
203.105.78.62	attackbots	2020-08-10T05:10:51.783989shield sshd\[16231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.105.78.62 user=root 2020-08-10T05:10:53.993407shield sshd\[16231\]: Failed password for root from 203.105.78.62 port 48551 ssh2 2020-08-10T05:13:44.489008shield sshd\[16660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.105.78.62 user=root 2020-08-10T05:13:46.445977shield sshd\[16660\]: Failed password for root from 203.105.78.62 port 40901 ssh2 2020-08-10T05:16:21.649993shield sshd\[16960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.105.78.62 user=root	2020-08-10 14:34:30
39.100.90.147	attackspambots	Bruteforce detected by fail2ban	2020-08-10 15:04:00
180.76.240.225	attackbots	Bruteforce detected by fail2ban	2020-08-10 14:56:41

Recently Reported IPs

43.87.65.101	195.133.177.196	123.243.215.142	100.139.14.29
157.189.194.6	14.69.62.12	193.35.218.8	37.191.121.97
4.252.121.225	165.160.73.101	138.186.223.185	174.73.226.240
93.176.167.15	218.7.220.183	23.198.58.161	90.89.139.102
65.27.93.165	177.162.37.169	215.248.170.33	14.179.177.56