42.2.158.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 42.2.158.241 to port 5555	2020-07-25 22:43:08

Comments on same subnet:

IP	Type	Details	Datetime
42.2.158.177	attackspambots	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 22:22:05
42.2.158.177	attack	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 14:02:37
42.2.158.177	attackspam	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 06:15:43
42.2.158.161	attackbots	Honeypot attack, port: 5555, PTR: 42-2-158-161.static.netvigator.com.	2020-03-09 04:05:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.158.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51650
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.158.241.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072500 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 22:42:59 CST 2020
;; MSG SIZE  rcvd: 116

Host info

241.158.2.42.in-addr.arpa domain name pointer 42-2-158-241.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
241.158.2.42.in-addr.arpa	name = 42-2-158-241.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.173.50.157	attackspam	Dec 2 19:12:42 mercury auth[21801]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=113.173.50.157 ...	2020-03-04 02:58:52
123.20.179.114	attack	Dec 1 02:05:40 mercury auth[29123]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=123.20.179.114 ...	2020-03-04 02:22:09
103.21.59.20	attackspam	[Sat Oct 26 07:23:41.717971 2019] [access_compat:error] [pid 24855] [client 103.21.59.20:47542] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php, referer: https://lukegirvin.co.uk/wp-login.php ...	2020-03-04 02:51:53
104.200.144.21	attack	Feb 12 00:33:21 mercury smtpd[14994]: 66a183f2249afe8f smtp event=failed-command address=104.200.144.21 host=sendpoker.com command="RCPT to:" result="550 Invalid recipient" ...	2020-03-04 02:42:53
101.51.149.220	attackspambots	2019-10-31T03:24:56.989Z CLOSE host=101.51.149.220 port=51423 fd=4 time=20.020 bytes=15 ...	2020-03-04 02:47:43
104.152.52.22	attack	Dec 14 04:25:44 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=104.152.52.22 DST=109.74.200.221 LEN=76 TOS=0x00 PREC=0x00 TTL=243 ID=28234 PROTO=UDP SPT=57479 DPT=123 LEN=56 ...	2020-03-04 03:05:08
103.197.48.98	attack	Dec 17 13:16:53 mercury wordpress(www.learnargentinianspanish.com)[8453]: XML-RPC authentication attempt for unknown user silvina from 103.197.48.98 ...	2020-03-04 02:23:55
49.235.158.251	attack	Invalid user dan from 49.235.158.251 port 41906	2020-03-04 02:48:59
62.171.153.96	attackbotsspam	2020-03-03T18:43:22.763507Z 790b5974fb1f New connection: 62.171.153.96:33490 (172.17.0.3:2222) [session: 790b5974fb1f] 2020-03-03T18:43:33.809795Z b64def9439ea New connection: 62.171.153.96:56542 (172.17.0.3:2222) [session: b64def9439ea]	2020-03-04 02:44:03
103.196.36.15	attackspam	[Tue Oct 29 21:04:53.773245 2019] [access_compat:error] [pid 30237] [client 103.196.36.15:45266] AH01797: client denied by server configuration: /var/www/html/luke/admin ...	2020-03-04 02:59:09
139.196.236.152	attackbotsspam	REQUESTED PAGE: /wp-admin/edit.php?page=wp-db-backup.php&backup=../wp-config.php	2020-03-04 02:35:46
103.12.161.196	attackspambots	Feb 12 16:53:21 mercury wordpress(www.learnargentinianspanish.com)[2918]: XML-RPC authentication attempt for unknown user silvina from 103.12.161.196 ...	2020-03-04 03:02:29
139.99.84.85	attack	Mar 3 19:25:11 MK-Soft-Root1 sshd[9345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.84.85 Mar 3 19:25:13 MK-Soft-Root1 sshd[9345]: Failed password for invalid user elsearch from 139.99.84.85 port 49242 ssh2 ...	2020-03-04 02:29:04
102.114.10.224	attackbots	2020-01-20T22:25:33.246Z CLOSE host=102.114.10.224 port=8306 fd=4 time=20.020 bytes=29 ...	2020-03-04 02:28:03
45.143.223.40	attack	[ES hit] Tried to deliver spam.	2020-03-04 03:00:23

Recently Reported IPs

182.74.36.70	177.102.61.249	177.93.68.63	247.162.228.205
177.55.188.232	138.254.167.176	253.155.23.25	121.100.37.0
148.240.193.237	125.46.29.18	121.225.201.51	112.133.201.2
112.120.138.99	85.106.88.38	81.182.52.170	73.46.112.45
62.12.5.178	61.220.52.5	59.126.208.5	59.1.110.41