42.2.158.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 42.2.158.241 to port 5555	2020-07-25 22:43:08

Comments on same subnet:

IP	Type	Details	Datetime
42.2.158.177	attackspambots	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 22:22:05
42.2.158.177	attack	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 14:02:37
42.2.158.177	attackspam	Sep 2 18:50:58 vpn01 sshd[21513]: Failed password for root from 42.2.158.177 port 45052 ssh2 ...	2020-09-03 06:15:43
42.2.158.161	attackbots	Honeypot attack, port: 5555, PTR: 42-2-158-161.static.netvigator.com.	2020-03-09 04:05:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.158.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51650
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.158.241.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072500 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 22:42:59 CST 2020
;; MSG SIZE  rcvd: 116

Host info

241.158.2.42.in-addr.arpa domain name pointer 42-2-158-241.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
241.158.2.42.in-addr.arpa	name = 42-2-158-241.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.247.175.58	attackspambots	Jun 25 05:31:09 MK-Soft-Root1 sshd\[6564\]: Invalid user zero from 220.247.175.58 port 32985 Jun 25 05:31:09 MK-Soft-Root1 sshd\[6564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.247.175.58 Jun 25 05:31:11 MK-Soft-Root1 sshd\[6564\]: Failed password for invalid user zero from 220.247.175.58 port 32985 ssh2 ...	2019-06-25 14:10:37
177.44.64.21	attackbots	Autoban 177.44.64.21 AUTH/CONNECT	2019-06-25 13:39:13
2400:6180:0:d0::cf3:7001	attackbotsspam	C1,WP GET /digitale-produkte/wp-login.php	2019-06-25 13:46:56
3.19.53.58	attackbotsspam	Invalid user jacsom from 3.19.53.58 port 43984	2019-06-25 13:57:37
165.227.1.117	attackspambots	Invalid user pay from 165.227.1.117 port 49404	2019-06-25 14:02:46
103.3.227.229	attackspam	Jun 25 08:52:59 srv-4 sshd\[14893\]: Invalid user jue from 103.3.227.229 Jun 25 08:52:59 srv-4 sshd\[14893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.227.229 Jun 25 08:53:01 srv-4 sshd\[14893\]: Failed password for invalid user jue from 103.3.227.229 port 58696 ssh2 ...	2019-06-25 14:08:27
80.28.234.134	attackspambots	Jun 25 04:54:08 ArkNodeAT sshd\[7115\]: Invalid user admin from 80.28.234.134 Jun 25 04:54:08 ArkNodeAT sshd\[7115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.28.234.134 Jun 25 04:54:10 ArkNodeAT sshd\[7115\]: Failed password for invalid user admin from 80.28.234.134 port 33442 ssh2	2019-06-25 13:38:28
128.199.104.232	attackbots	2019-06-25T06:04:16.730924test01.cajus.name sshd\[32614\]: Invalid user lost from 128.199.104.232 port 50524 2019-06-25T06:04:16.747900test01.cajus.name sshd\[32614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.104.232 2019-06-25T06:04:19.188179test01.cajus.name sshd\[32614\]: Failed password for invalid user lost from 128.199.104.232 port 50524 ssh2	2019-06-25 13:27:38
124.128.34.66	attackspam	Invalid user by from 124.128.34.66 port 11467	2019-06-25 13:52:33
211.251.237.79	attackspam	Jun 25 06:25:47 dedicated sshd[26382]: Invalid user gunpreet from 211.251.237.79 port 54185	2019-06-25 13:48:40
202.105.182.132	attackspam	Invalid user devuser from 202.105.182.132 port 42121	2019-06-25 13:49:49
187.0.221.222	attack	Jun 25 00:35:48 mail sshd\[14000\]: Invalid user dong from 187.0.221.222 port 61289 Jun 25 00:35:48 mail sshd\[14000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.0.221.222 Jun 25 00:35:50 mail sshd\[14000\]: Failed password for invalid user dong from 187.0.221.222 port 61289 ssh2 Jun 25 00:38:03 mail sshd\[14399\]: Invalid user gabriel from 187.0.221.222 port 6867 Jun 25 00:38:03 mail sshd\[14399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.0.221.222	2019-06-25 13:18:59
177.67.204.109	attackspam	Autoban 177.67.204.109 AUTH/CONNECT	2019-06-25 13:26:47
167.99.144.82	attackbots	Jun 25 04:15:25 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: Invalid user nevada from 167.99.144.82 Jun 25 04:15:25 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.144.82 Jun 25 04:15:27 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: Failed password for invalid user nevada from 167.99.144.82 port 54796 ssh2 ...	2019-06-25 13:20:35
177.39.210.80	attackbotsspam	Autoban 177.39.210.80 AUTH/CONNECT	2019-06-25 13:39:41

Recently Reported IPs

182.74.36.70	177.102.61.249	177.93.68.63	247.162.228.205
177.55.188.232	138.254.167.176	253.155.23.25	121.100.37.0
148.240.193.237	125.46.29.18	121.225.201.51	112.133.201.2
112.120.138.99	85.106.88.38	81.182.52.170	73.46.112.45
62.12.5.178	61.220.52.5	59.126.208.5	59.1.110.41