175.42.146.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Nanping City Fujian Provincial Network of Unicom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user ubnt from 175.42.146.20 port 57948	2019-06-25 14:01:55

Comments on same subnet:

IP	Type	Details	Datetime
175.42.146.42	attackspambots	SSH-bruteforce attempts	2019-08-19 10:50:41
175.42.146.51	attackspambots	Aug 15 08:01:21 localhost sshd\[21111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.42.146.51 user=root Aug 15 08:01:24 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:27 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:30 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 Aug 15 08:01:32 localhost sshd\[21111\]: Failed password for root from 175.42.146.51 port 49907 ssh2 ...	2019-08-15 16:20:20
175.42.146.15	attack	Jul 5 22:05:06 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:08 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:10 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:12 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:14 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 Jul 5 22:05:17 c10 sshd[6416]: Failed password for r.r from 175.42.146.15 port 38495 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.42.146.15	2019-07-07 15:37:38
175.42.146.15	attackbots	22/tcp [2019-07-05]1pkt	2019-07-06 07:43:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.42.146.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41925
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.42.146.20.			IN	A

;; AUTHORITY SECTION:
.			3142	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 14:01:49 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 20.146.42.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.146.42.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.120.56.250	attack	Honeypot attack, port: 445, PTR: ppp-250-248.utech.ru.	2020-02-08 16:32:01
185.147.212.12	attack	[2020-02-08 03:14:55] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.12:52755' - Wrong password [2020-02-08 03:14:55] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-08T03:14:55.497-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="7473",SessionID="0x7fd82cd25138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.12/52755",Challenge="0b507dac",ReceivedChallenge="0b507dac",ReceivedHash="a7c8eeef31f35778d11947f9fe25198e" [2020-02-08 03:16:02] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.12:60256' - Wrong password [2020-02-08 03:16:02] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-08T03:16:02.394-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="6971",SessionID="0x7fd82c2bd8a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-02-08 16:21:38
185.220.100.245	attack	(mod_security) mod_security (id:930130) triggered by 185.220.100.245 (DE/Germany/tor-exit-6.zbau.f3netze.de): 5 in the last 3600 secs	2020-02-08 16:37:29
125.24.254.238	attackspambots	Honeypot attack, port: 445, PTR: node-1ecu.pool-125-24.dynamic.totinternet.net.	2020-02-08 16:26:14
185.156.73.52	attackspambots	02/08/2020-03:17:04.155828 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-08 16:22:42
173.168.197.166	attackbotsspam	Honeypot attack, port: 81, PTR: 173-168-197-166.res.bhn.net.	2020-02-08 16:52:08
14.174.190.31	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:55:11.	2020-02-08 16:28:08
139.217.234.68	attack	Feb 7 19:51:20 sachi sshd\[28001\]: Invalid user yow from 139.217.234.68 Feb 7 19:51:20 sachi sshd\[28001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Feb 7 19:51:22 sachi sshd\[28001\]: Failed password for invalid user yow from 139.217.234.68 port 43118 ssh2 Feb 7 19:54:51 sachi sshd\[28255\]: Invalid user qxh from 139.217.234.68 Feb 7 19:54:51 sachi sshd\[28255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68	2020-02-08 16:44:15
101.255.117.126	attackbots	Automatic report - Banned IP Access	2020-02-08 16:30:42
220.157.159.69	attack	Honeypot attack, port: 445, PTR: s159069.dynamic.ppp.asahi-net.or.jp.	2020-02-08 16:42:20
222.132.56.89	attackspam	firewall-block, port(s): 23/tcp	2020-02-08 16:24:18
103.82.241.67	attackbots	$f2bV_matches	2020-02-08 16:15:04
49.232.171.28	attackspam	Hacking	2020-02-08 17:02:59
144.217.242.247	attack	Feb 8 05:54:36 pornomens sshd\[30380\]: Invalid user pki from 144.217.242.247 port 58640 Feb 8 05:54:36 pornomens sshd\[30380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.242.247 Feb 8 05:54:39 pornomens sshd\[30380\]: Failed password for invalid user pki from 144.217.242.247 port 58640 ssh2 ...	2020-02-08 16:50:20
46.181.114.240	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-08 16:23:13

Recently Reported IPs

189.73.200.68	3.245.27.139	160.218.205.102	214.110.117.193
58.83.242.75	103.198.18.104	70.253.200.69	103.198.18.103
201.137.100.145	121.216.245.188	184.149.246.211	112.119.84.221
183.181.173.171	42.198.105.242	175.145.208.55	87.70.144.194
152.193.140.186	182.228.164.59	220.212.5.29	67.215.230.82