42.2.153.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 5555, PTR: 42-2-153-053.static.netvigator.com.	2019-09-07 13:26:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.153.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8725
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.153.53.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 13:26:42 CST 2019
;; MSG SIZE  rcvd: 115

Host info

53.153.2.42.in-addr.arpa domain name pointer 42-2-153-053.static.netvigator.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
53.153.2.42.in-addr.arpa	name = 42-2-153-053.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.223.161	attack	Feb 10 00:26:01 grey postfix/smtpd\[18317\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.161\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.161\]\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.97\]\>Feb 10 00:26:01 grey postfix/smtpd\[18317\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.161\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.161\]\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.97\]\>Feb 10 00:26:01 grey postfix/smtpd\[18317\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.161\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.161\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.161\]\; from=\ to=\< ...	2020-02-10 07:50:04
198.50.197.223	attack	Feb 9 13:51:54 hpm sshd\[1279\]: Invalid user fhf from 198.50.197.223 Feb 9 13:51:55 hpm sshd\[1279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip223.ip-198-50-197.net Feb 9 13:51:57 hpm sshd\[1279\]: Failed password for invalid user fhf from 198.50.197.223 port 37312 ssh2 Feb 9 13:54:37 hpm sshd\[1598\]: Invalid user acf from 198.50.197.223 Feb 9 13:54:37 hpm sshd\[1598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip223.ip-198-50-197.net	2020-02-10 08:20:15
129.211.67.139	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-02-10 08:20:40
103.90.220.214	attackspambots	port scan and connect, tcp 5000 (upnp)	2020-02-10 07:57:15
122.51.229.98	attack	Feb 10 00:14:22 mout sshd[7308]: Invalid user shl from 122.51.229.98 port 53246	2020-02-10 07:47:33
42.98.179.244	attack	Fail2Ban Ban Triggered	2020-02-10 08:23:16
110.78.23.131	attackspam	Feb 10 01:01:43 cp sshd[11772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.23.131 Feb 10 01:01:45 cp sshd[11772]: Failed password for invalid user bzt from 110.78.23.131 port 51635 ssh2 Feb 10 01:08:23 cp sshd[15584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.23.131	2020-02-10 08:22:55
178.165.72.177	attackspambots	02/09/2020-23:39:57.471945 178.165.72.177 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 19	2020-02-10 07:45:08
195.128.100.129	attackbotsspam	Feb 10 00:12:05 MK-Soft-VM6 sshd[28995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.128.100.129 Feb 10 00:12:07 MK-Soft-VM6 sshd[28995]: Failed password for invalid user orr from 195.128.100.129 port 58172 ssh2 ...	2020-02-10 08:04:00
217.15.61.178	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-10 07:54:14
222.186.30.187	attack	Feb 10 05:41:54 areeb-Workstation sshd[18839]: Failed password for root from 222.186.30.187 port 61826 ssh2 Feb 10 05:41:58 areeb-Workstation sshd[18839]: Failed password for root from 222.186.30.187 port 61826 ssh2 ...	2020-02-10 08:16:56
79.66.49.45	attackspam	Honeypot attack, port: 81, PTR: 79-66-49-45.dynamic.dsl.as9105.com.	2020-02-10 07:50:52
168.0.129.53	attackbots	Sun Feb 9 15:07:28 2020 - Child process 52845 handling connection Sun Feb 9 15:07:28 2020 - New connection from: 168.0.129.53:51201 Sun Feb 9 15:07:28 2020 - Sending data to client: [Login: ] Sun Feb 9 15:07:58 2020 - Child aborting Sun Feb 9 15:07:58 2020 - Reporting IP address: 168.0.129.53 - mflag: 0	2020-02-10 07:58:31
182.72.207.148	attack	Feb 9 17:39:33 plusreed sshd[15477]: Invalid user yid from 182.72.207.148 ...	2020-02-10 07:52:49
195.176.3.23	attackbots	02/09/2020-23:07:24.717072 195.176.3.23 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 43	2020-02-10 08:01:07

Recently Reported IPs

37.34.191.252	205.6.192.153	4.134.199.231	45.146.201.169
128.199.211.214	45.146.201.129	91.227.19.118	197.155.194.194
218.36.134.218	84.73.126.172	174.165.82.140	177.9.16.225
89.210.5.137	91.227.19.88	68.183.127.13	185.90.22.79
113.27.86.166	94.199.2.197	220.172.40.199	144.88.243.93