218.5.42.54 - IPInfo

Basic Info

City: Qingdao

Region: Shandong

Country: China

Internet Service Provider: ChinaNet Fujian Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 218.5.42.54 to port 4567 [J]	2020-01-20 23:14:38
attackbots	Unauthorized connection attempt detected from IP address 218.5.42.54 to port 4567 [T]	2020-01-17 08:46:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.5.42.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57120
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.5.42.54.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011602 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 08:46:07 CST 2020
;; MSG SIZE  rcvd: 115

Host info

54.42.5.218.in-addr.arpa domain name pointer 54.42.5.218.broad.fz.fj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.42.5.218.in-addr.arpa	name = 54.42.5.218.broad.fz.fj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.213.112.98	attackspambots	Dec 5 12:27:10 hell sshd[12703]: Failed password for mysql from 129.213.112.98 port 59884 ssh2 ...	2019-12-05 21:17:17
103.14.33.229	attack	Dec 5 09:05:18 mail sshd\[30303\]: Invalid user melantha from 103.14.33.229 Dec 5 09:05:18 mail sshd\[30303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.33.229 Dec 5 09:05:20 mail sshd\[30303\]: Failed password for invalid user melantha from 103.14.33.229 port 35114 ssh2 ...	2019-12-05 21:01:09
223.152.149.99	attackspambots	Host Scan	2019-12-05 21:32:35
78.131.56.62	attack	Dec 5 14:16:49 sauna sshd[101848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.131.56.62 Dec 5 14:16:51 sauna sshd[101848]: Failed password for invalid user nakanishi from 78.131.56.62 port 53190 ssh2 ...	2019-12-05 21:43:23
217.61.106.64	attack	Host Scan	2019-12-05 21:10:30
221.15.6.197	attackspam	Port 1433 Scan	2019-12-05 21:30:17
216.99.159.227	attack	Host Scan	2019-12-05 21:21:36
167.99.226.184	attackspam	[munged]::80 167.99.226.184 - - [05/Dec/2019:14:32:43 +0100] "POST /[munged]: HTTP/1.1" 200 1933 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-05 21:41:01
42.104.97.228	attack	Automatic report: SSH brute force attempt	2019-12-05 21:34:32
125.64.94.221	attack	Fail2Ban Ban Triggered	2019-12-05 21:22:23
167.71.201.242	attack	SIP/5060 Probe, BF, Hack -	2019-12-05 21:02:08
177.106.3.223	attackbots	Dec 5 07:25:03 [munged] sshd[30595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.106.3.223	2019-12-05 21:19:48
151.80.254.74	attack	Dec 5 09:11:43 vmanager6029 sshd\[10254\]: Invalid user sun from 151.80.254.74 port 58528 Dec 5 09:11:43 vmanager6029 sshd\[10254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.74 Dec 5 09:11:45 vmanager6029 sshd\[10254\]: Failed password for invalid user sun from 151.80.254.74 port 58528 ssh2	2019-12-05 21:01:51
152.67.67.89	attackspambots	Dec 5 13:04:53 raspberrypi sshd[12227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.67.89 Dec 5 13:04:55 raspberrypi sshd[12227]: Failed password for invalid user abron from 152.67.67.89 port 52630 ssh2 ...	2019-12-05 21:29:15
202.158.40.36	attackbotsspam	Dec 4 22:12:30 sachi sshd\[30688\]: Invalid user 1q2w3e from 202.158.40.36 Dec 4 22:12:30 sachi sshd\[30688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.40.36 Dec 4 22:12:32 sachi sshd\[30688\]: Failed password for invalid user 1q2w3e from 202.158.40.36 port 55048 ssh2 Dec 4 22:20:25 sachi sshd\[31461\]: Invalid user Password from 202.158.40.36 Dec 4 22:20:25 sachi sshd\[31461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.40.36	2019-12-05 21:23:01

Recently Reported IPs

183.133.107.187	182.107.202.206	180.176.211.171	131.68.169.129
180.97.31.170	159.84.8.95	176.113.115.51	190.42.137.176
115.129.187.255	164.52.36.237	31.157.15.193	176.105.48.240
164.52.36.227	23.88.14.91	164.52.36.221	164.52.36.218
164.52.36.217	125.112.116.235	125.26.251.224	132.208.5.163