42.2.148.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 42.2.148.58 to port 5555 [J]	2020-01-06 14:27:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.148.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.148.58.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010600 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 14:27:07 CST 2020
;; MSG SIZE  rcvd: 115

Host info

58.148.2.42.in-addr.arpa domain name pointer 42-2-148-058.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.148.2.42.in-addr.arpa	name = 42-2-148-058.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.29.29	attackbots	5x Failed Password	2020-04-18 07:29:39
177.66.208.244	attack	Automatic report - Port Scan Attack	2020-04-18 07:33:04
103.219.112.1	attackbotsspam	Apr 18 00:08:45 debian-2gb-nbg1-2 kernel: \[9420299.288662\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.219.112.1 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=42349 PROTO=TCP SPT=43167 DPT=23991 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-18 07:28:46
37.205.51.40	attack	Apr 17 22:23:31 master sshd[16492]: Failed password for invalid user xg from 37.205.51.40 port 41984 ssh2 Apr 17 22:26:02 master sshd[16499]: Failed password for invalid user yu from 37.205.51.40 port 59650 ssh2 Apr 17 22:27:54 master sshd[16503]: Failed password for invalid user hs from 37.205.51.40 port 48726 ssh2 Apr 17 22:29:40 master sshd[16508]: Failed password for invalid user admin from 37.205.51.40 port 37798 ssh2 Apr 17 22:33:48 master sshd[16527]: Failed password for invalid user test from 37.205.51.40 port 55148 ssh2 Apr 17 22:35:39 master sshd[16532]: Failed password for invalid user deploy from 37.205.51.40 port 44224 ssh2 Apr 17 22:37:27 master sshd[16536]: Failed password for root from 37.205.51.40 port 33292 ssh2 Apr 17 22:41:25 master sshd[16542]: Failed password for root from 37.205.51.40 port 50648 ssh2 Apr 17 22:45:15 master sshd[16564]: Failed password for invalid user postgres from 37.205.51.40 port 39758 ssh2	2020-04-18 07:28:13
120.71.146.217	attackspambots	Invalid user xg from 120.71.146.217 port 35379	2020-04-18 07:14:15
184.105.247.234	attackbotsspam	Port Scan: Events[1] countPorts[1]: 623 ..	2020-04-18 07:44:55
77.232.100.223	attackbotsspam	IP blocked	2020-04-18 07:16:08
222.186.175.150	attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-18 07:23:15
162.243.131.101	attackbotsspam	9042/tcp 4443/tcp 1364/tcp... [2020-03-13/04-17]33pkt,29pt.(tcp),1pt.(udp)	2020-04-18 07:32:40
14.232.160.213	attackspam	Apr 18 01:49:50 pkdns2 sshd\[2966\]: Invalid user jw from 14.232.160.213Apr 18 01:49:52 pkdns2 sshd\[2966\]: Failed password for invalid user jw from 14.232.160.213 port 59506 ssh2Apr 18 01:53:12 pkdns2 sshd\[3136\]: Invalid user uz from 14.232.160.213Apr 18 01:53:14 pkdns2 sshd\[3136\]: Failed password for invalid user uz from 14.232.160.213 port 57036 ssh2Apr 18 01:56:33 pkdns2 sshd\[3315\]: Invalid user admin from 14.232.160.213Apr 18 01:56:35 pkdns2 sshd\[3315\]: Failed password for invalid user admin from 14.232.160.213 port 54588 ssh2 ...	2020-04-18 07:40:52
5.135.179.178	attack	Invalid user ubuntu from 5.135.179.178 port 21029	2020-04-18 07:13:32
49.72.211.210	attackspambots	Apr 18 03:49:36 our-server-hostname sshd[21495]: reveeclipse mapping checking getaddrinfo for 210.211.72.49.broad.sz.js.dynamic.163data.com.cn [49.72.211.210] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 18 03:49:36 our-server-hostname sshd[21495]: Invalid user ftptest from 49.72.211.210 Apr 18 03:49:36 our-server-hostname sshd[21495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.211.210 Apr 18 03:49:38 our-server-hostname sshd[21495]: Failed password for invalid user ftptest from 49.72.211.210 port 41868 ssh2 Apr 18 03:53:28 our-server-hostname sshd[22208]: reveeclipse mapping checking getaddrinfo for 210.211.72.49.broad.sz.js.dynamic.163data.com.cn [49.72.211.210] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 18 03:53:28 our-server-hostname sshd[22208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.211.210 user=r.r Apr 18 03:53:30 our-server-hostname sshd[22208]: Failed password fo........ -------------------------------	2020-04-18 07:45:21
122.155.204.68	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-04-18 07:24:55
114.88.153.172	attack	Invalid user webadmin from 114.88.153.172 port 9106	2020-04-18 07:25:37
111.231.135.232	attackspambots	SSH auth scanning - multiple failed logins	2020-04-18 07:33:47

Recently Reported IPs

167.99.191.93	123.188.227.253	122.97.226.170	119.237.203.59
118.249.54.142	116.203.107.84	114.32.79.111	103.139.212.20
103.86.51.156	103.9.227.173	101.24.120.152	98.213.47.189
98.201.147.143	94.206.51.134	91.219.100.199	89.201.192.85
89.121.143.78	82.81.12.128	181.35.164.203	78.132.142.26