42.2.172.91 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorised access (Jul 23) SRC=42.2.172.91 LEN=40 TTL=48 ID=12050 TCP DPT=23 WINDOW=17570 SYN	2019-07-23 17:09:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.172.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42624
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.172.91.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 23 17:09:39 CST 2019
;; MSG SIZE  rcvd: 115

Host info

91.172.2.42.in-addr.arpa domain name pointer 42-2-172-091.static.netvigator.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
91.172.2.42.in-addr.arpa	name = 42-2-172-091.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.62.218.200	attackbots	" "	2020-02-18 22:58:19
157.55.39.15	attackbots	Automatic report - Banned IP Access	2020-02-18 23:07:00
68.183.178.162	attack	Port Scan detected from 68.183.178.162 (SG/Singapore/-). 4 hits in the last 205 seconds	2020-02-18 22:40:12
103.122.32.118	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 23:05:27
222.186.30.35	attackspam	$f2bV_matches	2020-02-18 23:14:25
120.92.187.58	attackbots	Unauthorised access (Feb 18) SRC=120.92.187.58 LEN=40 TTL=235 ID=4159 TCP DPT=1433 WINDOW=1024 SYN	2020-02-18 22:43:31
5.188.210.139	attackspambots	Feb 18 14:27:49 debian-2gb-nbg1-2 kernel: \[4291684.665974\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=5.188.210.139 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=14342 PROTO=TCP SPT=44458 DPT=8080 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-18 22:50:48
103.123.46.65	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 22:36:15
109.234.38.61	attack	0,19-03/34 [bc01/m67] PostRequest-Spammer scoring: maputo01_x2b	2020-02-18 23:04:20
101.231.201.50	attack	Feb 18 14:48:28 silence02 sshd[21602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.201.50 Feb 18 14:48:31 silence02 sshd[21602]: Failed password for invalid user ts from 101.231.201.50 port 20869 ssh2 Feb 18 14:53:13 silence02 sshd[21834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.201.50	2020-02-18 22:49:40
14.231.148.251	attackbots	Feb 18 14:25:34 grey postfix/smtpd\[25713\]: NOQUEUE: reject: RCPT from unknown\[14.231.148.251\]: 554 5.7.1 Service unavailable\; Client host \[14.231.148.251\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?14.231.148.251\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-18 23:15:59
185.175.93.105	attackbots	02/18/2020-15:21:34.890077 185.175.93.105 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-18 22:37:52
70.231.19.203	attack	2020-02-18T13:23:05.468113abusebot-2.cloudsearch.cf sshd[3229]: Invalid user invite from 70.231.19.203 port 48368 2020-02-18T13:23:05.479622abusebot-2.cloudsearch.cf sshd[3229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70-231-19-203.lightspeed.rlghnc.sbcglobal.net 2020-02-18T13:23:05.468113abusebot-2.cloudsearch.cf sshd[3229]: Invalid user invite from 70.231.19.203 port 48368 2020-02-18T13:23:07.749517abusebot-2.cloudsearch.cf sshd[3229]: Failed password for invalid user invite from 70.231.19.203 port 48368 ssh2 2020-02-18T13:25:50.009514abusebot-2.cloudsearch.cf sshd[3404]: Invalid user php from 70.231.19.203 port 47336 2020-02-18T13:25:50.015450abusebot-2.cloudsearch.cf sshd[3404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70-231-19-203.lightspeed.rlghnc.sbcglobal.net 2020-02-18T13:25:50.009514abusebot-2.cloudsearch.cf sshd[3404]: Invalid user php from 70.231.19.203 port 47336 2020-02-18T13:2 ...	2020-02-18 22:59:23
185.176.27.98	attackbots	02/18/2020-08:25:57.161676 185.176.27.98 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-18 22:53:46
196.158.28.107	attack	1582032336 - 02/18/2020 14:25:36 Host: 196.158.28.107/196.158.28.107 Port: 445 TCP Blocked	2020-02-18 23:12:48

Recently Reported IPs

111.231.89.162	95.13.100.25	193.254.244.43	77.42.109.158
60.76.183.125	18.138.98.163	205.144.208.246	31.89.22.242
80.202.66.183	82.64.35.71	195.98.132.195	16.132.144.70
45.116.232.22	216.100.36.13	210.211.226.231	248.201.67.46
104.214.231.44	154.182.226.115	182.185.112.231	109.105.10.176