175.42.146.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Nanping City Fujian Provincial Network of Unicom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user ubnt from 175.42.146.20 port 57948	2019-06-25 14:01:55

Comments on same subnet:

IP	Type	Details	Datetime
175.42.146.42	attackspambots	SSH-bruteforce attempts	2019-08-19 10:50:41
175.42.146.51	attackspambots	Aug 15 08:01:21 localhost sshd\[21111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.42.146.51 user=root Aug 15 08:01:24 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:27 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:30 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:32 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 ...	2019-08-15 16:20:20
175.42.146.15	attack	Jul 5 22:05:06 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:08 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:10 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:12 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:14 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:17 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.42.146.15	2019-07-07 15:37:38
175.42.146.15	attackbots	22/tcp [2019-07-05]1pkt	2019-07-06 07:43:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.42.146.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41925
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.42.146.20.			IN	A

;; AUTHORITY SECTION:
.			3142	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 14:01:49 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 20.146.42.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.146.42.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.159.152	attackbots	Invalid user phil from 51.91.159.152 port 34422	2020-03-21 23:09:30
180.76.183.218	attackbotsspam	Mar 21 14:53:19 SilenceServices sshd[1403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.183.218 Mar 21 14:53:20 SilenceServices sshd[1403]: Failed password for invalid user s from 180.76.183.218 port 33840 ssh2 Mar 21 14:57:10 SilenceServices sshd[7533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.183.218	2020-03-21 22:45:26
220.88.1.208	attackbotsspam	Mar 21 15:10:44 124388 sshd[1085]: Invalid user instrume from 220.88.1.208 port 42265 Mar 21 15:10:44 124388 sshd[1085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.88.1.208 Mar 21 15:10:44 124388 sshd[1085]: Invalid user instrume from 220.88.1.208 port 42265 Mar 21 15:10:46 124388 sshd[1085]: Failed password for invalid user instrume from 220.88.1.208 port 42265 ssh2 Mar 21 15:12:05 124388 sshd[1094]: Invalid user frontrow from 220.88.1.208 port 52607	2020-03-21 23:20:26
188.226.243.10	attackspambots	Invalid user futures from 188.226.243.10 port 46956	2020-03-21 23:26:49
187.217.199.20	attackspambots	Mar 21 16:16:41 ks10 sshd[3491654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 Mar 21 16:16:44 ks10 sshd[3491654]: Failed password for invalid user dummy from 187.217.199.20 port 59774 ssh2 ...	2020-03-21 23:28:14
212.145.192.205	attackspam	Invalid user xv from 212.145.192.205 port 47964	2020-03-21 23:23:12
212.119.194.34	attackbots	Invalid user jaden from 212.119.194.34 port 55298	2020-03-21 23:23:31
122.225.230.10	attack	Invalid user porno from 122.225.230.10 port 39804	2020-03-21 22:57:11
115.159.196.214	attackspam	Mar 21 16:47:23 ncomp sshd[3425]: Invalid user jessica from 115.159.196.214 Mar 21 16:47:23 ncomp sshd[3425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.196.214 Mar 21 16:47:23 ncomp sshd[3425]: Invalid user jessica from 115.159.196.214 Mar 21 16:47:25 ncomp sshd[3425]: Failed password for invalid user jessica from 115.159.196.214 port 42502 ssh2	2020-03-21 22:59:48
66.147.244.126	spam	Dear Ms. ; We compromised your devices and we have all your information related to your personal life and your adventures during travels (you know exactly what we mean). You have 24 hours to pay 50 USD, we do not want to expose you since we do not have any benefit doing troubles. We will delete everything related to you and leave you alone (sure 50 USD means nothing to you). If you want to contact the police you are free to do so and we are free to expose you too. We are not criminals, we just need some money, so be gentle and everything will pass safely for you. See how deep we know about you, if you want more we will email your advantures to your relatives: Pay the 50 USD to XMR (if you face problems pay using Bitcoin) (find out in Google how to): XMR: 46JJs5ttxR9jdNR2jmNiAbX5QtK3M9faBPPhh7WQwvrs8NLFpsagtZ3gnA6K6pSrm53JefbXGok6GTn7UexPHSBC2w2aN6j Bitcoin: 3NQCHf924JYzU2LfziVpfrX9cvJGwTCmvi You can buy XMR from https://localmonero.co/. Received: from cmgw14.unifiedlayer.com (unknown [66.147.244.17]) by soproxy11.mail.unifiedlayer.com (Postfix) with ESMTP id 3C4AB24B488 for ; Fri, 20 Mar 2020 19:25:26 -0600 (MDT) Received: from md-26.webhostbox.net ([208.91.199.22]) by cmsmtp with ESMTP id FStBj4x60KxvrFStCj7sth; Fri, 20 Mar 2020 19:25:26 -0600	2020-03-21 23:29:23
185.56.9.40	attackbotsspam	Invalid user hirota from 185.56.9.40 port 50492	2020-03-21 22:44:05
139.199.45.83	attackbots	Invalid user michelle from 139.199.45.83 port 42182	2020-03-21 22:52:27
51.75.52.195	attackspam	Invalid user liuzhenfeng from 51.75.52.195 port 41516	2020-03-21 23:10:48
51.15.87.74	attackbotsspam	Mar 21 15:31:50 dev0-dcde-rnet sshd[21379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.74 Mar 21 15:31:52 dev0-dcde-rnet sshd[21379]: Failed password for invalid user loni from 51.15.87.74 port 52258 ssh2 Mar 21 15:44:51 dev0-dcde-rnet sshd[21514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.74	2020-03-21 23:11:43
177.69.50.49	attackbots	Invalid user nw from 177.69.50.49 port 49927	2020-03-21 22:47:34

Recently Reported IPs

189.73.200.68	3.245.27.139	160.218.205.102	214.110.117.193
58.83.242.75	103.198.18.104	70.253.200.69	103.198.18.103
201.137.100.145	121.216.245.188	184.149.246.211	112.119.84.221
183.181.173.171	42.198.105.242	175.145.208.55	87.70.144.194
152.193.140.186	182.228.164.59	220.212.5.29	67.215.230.82