42.2.156.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 42.2.156.6 to port 5555 [J]	2020-01-13 20:08:18

Comments on same subnet:

IP	Type	Details	Datetime
42.2.156.124	attack	Port probing on unauthorized port 5555	2020-02-08 01:29:12
42.2.156.28	attackbots	Unauthorized connection attempt detected from IP address 42.2.156.28 to port 5555 [J]	2020-01-22 23:11:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.156.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.156.6.			IN	A

;; AUTHORITY SECTION:
.			554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011300 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 20:08:15 CST 2020
;; MSG SIZE  rcvd: 114

Host info

6.156.2.42.in-addr.arpa domain name pointer 42-2-156-006.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.156.2.42.in-addr.arpa	name = 42-2-156-006.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.96.220.115	attackbotsspam	2020-10-03T03:34:50.045560linuxbox-skyline sshd[257885]: Invalid user joel from 103.96.220.115 port 45182 ...	2020-10-03 17:55:27
185.153.197.180	attack	RDPBruteGam24	2020-10-03 18:24:19
64.225.47.15	attack	Invalid user safeuser from 64.225.47.15 port 35228	2020-10-03 18:07:23
211.26.187.128	attackbots	2020-10-03T09:31:10.292752vps-d63064a2 sshd[11873]: User root from 211.26.187.128 not allowed because not listed in AllowUsers 2020-10-03T09:31:12.031091vps-d63064a2 sshd[11873]: Failed password for invalid user root from 211.26.187.128 port 46502 ssh2 2020-10-03T09:31:35.400784vps-d63064a2 sshd[11875]: Invalid user mysql from 211.26.187.128 port 49362 2020-10-03T09:31:35.413806vps-d63064a2 sshd[11875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.26.187.128 2020-10-03T09:31:35.400784vps-d63064a2 sshd[11875]: Invalid user mysql from 211.26.187.128 port 49362 2020-10-03T09:31:37.558063vps-d63064a2 sshd[11875]: Failed password for invalid user mysql from 211.26.187.128 port 49362 ssh2 ...	2020-10-03 18:06:50
125.141.56.231	attackspambots	Tried sshing with brute force.	2020-10-03 18:02:24
103.223.9.200	attack	port scan and connect, tcp 23 (telnet)	2020-10-03 18:18:14
103.100.209.118	attackspam	Oct 3 09:46:31 ns382633 sshd\[15833\]: Invalid user yun from 103.100.209.118 port 51172 Oct 3 09:46:31 ns382633 sshd\[15833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.209.118 Oct 3 09:46:32 ns382633 sshd\[15833\]: Failed password for invalid user yun from 103.100.209.118 port 51172 ssh2 Oct 3 09:53:50 ns382633 sshd\[16512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.209.118 user=root Oct 3 09:53:51 ns382633 sshd\[16512\]: Failed password for root from 103.100.209.118 port 34806 ssh2	2020-10-03 18:09:46
45.145.66.104	attackbotsspam	[HOST2] Port Scan detected	2020-10-03 18:21:49
140.143.128.66	attackbotsspam	24998/tcp 4610/tcp 24033/tcp [2020-09-09/10-03]3pkt	2020-10-03 17:57:41
182.52.90.164	attackbotsspam	Oct 2 20:42:05 gitlab sshd[2669549]: Failed password for root from 182.52.90.164 port 45484 ssh2 Oct 2 20:46:05 gitlab sshd[2670163]: Invalid user adriana from 182.52.90.164 port 49912 Oct 2 20:46:05 gitlab sshd[2670163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.52.90.164 Oct 2 20:46:05 gitlab sshd[2670163]: Invalid user adriana from 182.52.90.164 port 49912 Oct 2 20:46:07 gitlab sshd[2670163]: Failed password for invalid user adriana from 182.52.90.164 port 49912 ssh2 ...	2020-10-03 17:56:44
49.235.142.96	attackbots	[Tue Sep 22 13:02:33 2020] - DDoS Attack From IP: 49.235.142.96 Port: 53945	2020-10-03 18:31:05
89.189.154.112	attackspam	Unauthorized connection attempt from IP address 89.189.154.112 on Port 445(SMB)	2020-10-03 18:30:51
79.129.28.23	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-03 18:11:53
106.75.165.187	attackspam	Oct 3 00:14:25 pornomens sshd\[8067\]: Invalid user 123456 from 106.75.165.187 port 54596 Oct 3 00:14:25 pornomens sshd\[8067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.165.187 Oct 3 00:14:27 pornomens sshd\[8067\]: Failed password for invalid user 123456 from 106.75.165.187 port 54596 ssh2 ...	2020-10-03 18:22:20
190.64.68.178	attackspam	Invalid user test1 from 190.64.68.178 port 5477	2020-10-03 17:59:53

Recently Reported IPs

113.162.81.154	91.237.84.161	103.131.16.42	36.77.27.58
116.108.250.230	24.89.229.195	181.199.122.16	49.145.237.122
42.112.108.253	159.192.232.136	114.36.165.47	112.158.118.159
60.248.160.1	1.10.198.176	180.218.26.155	120.133.131.62
195.54.210.203	82.63.213.128	113.104.242.34	171.37.105.174