171.97.42.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
171.97.42.105	attack	Honeypot attack, port: 81, PTR: ppp-171-97-42-105.revip8.asianet.co.th.	2020-02-11 21:12:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.97.42.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18437
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;171.97.42.75.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 03:08:17 CST 2022
;; MSG SIZE  rcvd: 105

Host info

75.42.97.171.in-addr.arpa domain name pointer ppp-171-97-42-75.revip8.asianet.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.42.97.171.in-addr.arpa	name = ppp-171-97-42-75.revip8.asianet.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.159.216.19	attackspam	Jul 8 14:35:02 localhost kernel: [13855095.533939] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=187.159.216.19 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=26554 PROTO=TCP SPT=50849 DPT=139 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 8 14:35:02 localhost kernel: [13855095.533962] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=187.159.216.19 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=26554 PROTO=TCP SPT=50849 DPT=139 SEQ=2628847439 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405AC) Jul 8 14:35:02 localhost kernel: [13855095.933049] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=187.159.216.19 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=37352 PROTO=TCP SPT=50849 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 8 14:35:02 localhost kernel: [13855095.933072] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=187.159.216.19 DST=[mungedIP2]	2019-07-09 08:58:01
185.119.82.126	attackspam	pillott.xyz (checking ip) = 51.79.64.101	2019-07-09 08:57:22
181.49.219.114	attackspam	Jul 9 00:35:36 Proxmox sshd\[22719\]: Invalid user san from 181.49.219.114 port 43904 Jul 9 00:35:36 Proxmox sshd\[22719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.219.114 Jul 9 00:35:37 Proxmox sshd\[22719\]: Failed password for invalid user san from 181.49.219.114 port 43904 ssh2 Jul 9 00:38:11 Proxmox sshd\[25110\]: Invalid user www from 181.49.219.114 port 55746 Jul 9 00:38:11 Proxmox sshd\[25110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.219.114 Jul 9 00:38:13 Proxmox sshd\[25110\]: Failed password for invalid user www from 181.49.219.114 port 55746 ssh2	2019-07-09 08:20:41
178.128.84.246	attackspambots	Jul 9 01:08:53 h2177944 sshd\[14079\]: Invalid user waldo from 178.128.84.246 port 60396 Jul 9 01:08:53 h2177944 sshd\[14079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.84.246 Jul 9 01:08:55 h2177944 sshd\[14079\]: Failed password for invalid user waldo from 178.128.84.246 port 60396 ssh2 Jul 9 01:11:55 h2177944 sshd\[14218\]: Invalid user rameez from 178.128.84.246 port 60720 ...	2019-07-09 08:32:41
192.144.151.30	attackspambots	2019-07-08T20:36:51.2419591240 sshd\[31459\]: Invalid user test from 192.144.151.30 port 57198 2019-07-08T20:36:51.2486721240 sshd\[31459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.151.30 2019-07-08T20:36:53.5775481240 sshd\[31459\]: Failed password for invalid user test from 192.144.151.30 port 57198 ssh2 ...	2019-07-09 08:25:29
37.139.24.190	attackbotsspam	Tried sshing with brute force.	2019-07-09 08:35:33
190.111.239.48	attackspambots	SSH-BruteForce	2019-07-09 08:39:04
59.72.112.21	attack	detected by Fail2Ban	2019-07-09 08:22:38
36.66.4.62	attackspam	Jul 9 03:33:32 hosting sshd[9837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.4.62 user=root Jul 9 03:33:34 hosting sshd[9837]: Failed password for root from 36.66.4.62 port 42958 ssh2 Jul 9 03:33:36 hosting sshd[9840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.4.62 user=root Jul 9 03:33:38 hosting sshd[9840]: Failed password for root from 36.66.4.62 port 48460 ssh2 Jul 9 03:33:40 hosting sshd[9843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.4.62 user=root Jul 9 03:33:42 hosting sshd[9843]: Failed password for root from 36.66.4.62 port 53318 ssh2 ...	2019-07-09 09:02:58
139.59.95.244	attackspam	SSH Brute-Force reported by Fail2Ban	2019-07-09 08:37:14
189.110.87.169	attackbots	Jul 8 20:36:55 rpi sshd[14787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.110.87.169 Jul 8 20:36:57 rpi sshd[14787]: Failed password for invalid user system from 189.110.87.169 port 30012 ssh2	2019-07-09 08:24:06
207.154.192.36	attackspambots	Jul 8 23:29:18 unicornsoft sshd\[2081\]: Invalid user karol from 207.154.192.36 Jul 8 23:29:18 unicornsoft sshd\[2081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.36 Jul 8 23:29:20 unicornsoft sshd\[2081\]: Failed password for invalid user karol from 207.154.192.36 port 57260 ssh2	2019-07-09 08:46:00
216.245.210.222	attack	SipVicious Brute Force SIP Tool	2019-07-09 08:48:20
86.195.244.22	attack	Jul 9 01:40:21 mout sshd[17338]: Invalid user changeme from 86.195.244.22 port 36794	2019-07-09 08:44:53
158.69.212.107	attack	2019-07-08T14:35:44.276799WS-Zach sshd[12340]: Invalid user administrator from 158.69.212.107 port 55490 2019-07-08T14:35:44.280475WS-Zach sshd[12340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.212.107 2019-07-08T14:35:44.276799WS-Zach sshd[12340]: Invalid user administrator from 158.69.212.107 port 55490 2019-07-08T14:35:46.077144WS-Zach sshd[12340]: Failed password for invalid user administrator from 158.69.212.107 port 55490 ssh2 2019-07-08T14:35:51.012480WS-Zach sshd[12393]: Invalid user Administrator from 158.69.212.107 port 58374 ...	2019-07-09 08:40:48

Recently Reported IPs

39.163.23.208	43.252.230.124	43.154.175.152	39.49.59.251
103.40.172.189	147.139.35.74	1.14.159.132	34.229.135.92
119.179.239.146	171.252.226.51	188.75.220.80	177.93.108.70
78.92.240.136	120.85.112.99	116.101.143.136	46.161.60.68
165.154.224.122	103.130.72.117	185.61.153.77	24.96.12.221