42.2.175.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 42.2.175.75 to port 5555 [J]	2020-02-05 09:01:19

Comments on same subnet:

IP	Type	Details	Datetime
42.2.175.57	attackspambots	5555/tcp [2020-09-07]1pkt	2020-09-09 02:44:12
42.2.175.57	attack	5555/tcp [2020-09-07]1pkt	2020-09-08 18:15:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.175.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.175.75.			IN	A

;; AUTHORITY SECTION:
.			505	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 09:01:16 CST 2020
;; MSG SIZE  rcvd: 115

Host info

75.175.2.42.in-addr.arpa domain name pointer 42-2-175-075.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.175.2.42.in-addr.arpa	name = 42-2-175-075.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
194.228.227.157	attackbots	2019-12-10T10:08:23.819600vps751288.ovh.net sshd\[9947\]: Invalid user home from 194.228.227.157 port 49004 2019-12-10T10:08:23.830441vps751288.ovh.net sshd\[9947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.228.227.157 2019-12-10T10:08:26.414067vps751288.ovh.net sshd\[9947\]: Failed password for invalid user home from 194.228.227.157 port 49004 ssh2 2019-12-10T10:13:33.107123vps751288.ovh.net sshd\[9971\]: Invalid user aurora from 194.228.227.157 port 57386 2019-12-10T10:13:33.114059vps751288.ovh.net sshd\[9971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.228.227.157	2019-12-10 17:59:23
218.94.136.90	attack	Dec 10 09:12:56 pkdns2 sshd\[55425\]: Invalid user cpotter from 218.94.136.90Dec 10 09:12:58 pkdns2 sshd\[55425\]: Failed password for invalid user cpotter from 218.94.136.90 port 63195 ssh2Dec 10 09:17:58 pkdns2 sshd\[55759\]: Invalid user jennyd from 218.94.136.90Dec 10 09:18:00 pkdns2 sshd\[55759\]: Failed password for invalid user jennyd from 218.94.136.90 port 40967 ssh2Dec 10 09:22:33 pkdns2 sshd\[56085\]: Invalid user amjad from 218.94.136.90Dec 10 09:22:36 pkdns2 sshd\[56085\]: Failed password for invalid user amjad from 218.94.136.90 port 41871 ssh2 ...	2019-12-10 17:35:18
31.14.142.109	attack	Dec 10 03:42:41 TORMINT sshd\[5677\]: Invalid user paribhi from 31.14.142.109 Dec 10 03:42:41 TORMINT sshd\[5677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.14.142.109 Dec 10 03:42:43 TORMINT sshd\[5677\]: Failed password for invalid user paribhi from 31.14.142.109 port 35804 ssh2 ...	2019-12-10 17:47:01
103.90.158.194	attackbots	Unauthorised access (Dec 10) SRC=103.90.158.194 LEN=52 TTL=109 ID=28037 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-10 17:34:15
123.150.103.187	attackspambots	Dec 10 05:33:18 zimbra sshd[10563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.150.103.187 user=sync Dec 10 05:33:20 zimbra sshd[10563]: Failed password for sync from 123.150.103.187 port 52420 ssh2 Dec 10 05:33:20 zimbra sshd[10563]: Received disconnect from 123.150.103.187 port 52420:11: Bye Bye [preauth] Dec 10 05:33:20 zimbra sshd[10563]: Disconnected from 123.150.103.187 port 52420 [preauth] Dec 10 05:51:12 zimbra sshd[27537]: Invalid user fare from 123.150.103.187 Dec 10 05:51:12 zimbra sshd[27537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.150.103.187 Dec 10 05:51:13 zimbra sshd[27537]: Failed password for invalid user fare from 123.150.103.187 port 43958 ssh2 Dec 10 05:51:13 zimbra sshd[27537]: Received disconnect from 123.150.103.187 port 43958:11: Bye Bye [preauth] Dec 10 05:51:13 zimbra sshd[27537]: Disconnected from 123.150.103.187 port 43958 [preauth] Dec 10 ........ -------------------------------	2019-12-10 17:36:37
217.138.76.66	attack	Dec 10 10:34:09 legacy sshd[28162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 Dec 10 10:34:12 legacy sshd[28162]: Failed password for invalid user kamanu from 217.138.76.66 port 40460 ssh2 Dec 10 10:39:35 legacy sshd[28353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 ...	2019-12-10 17:54:23
106.12.30.59	attackspambots	Dec 10 09:17:17 eventyay sshd[12886]: Failed password for root from 106.12.30.59 port 40977 ssh2 Dec 10 09:23:56 eventyay sshd[13130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.30.59 Dec 10 09:23:59 eventyay sshd[13130]: Failed password for invalid user abello from 106.12.30.59 port 40223 ssh2 ...	2019-12-10 17:50:31
77.42.83.185	attack	Automatic report - Port Scan Attack	2019-12-10 17:41:12
61.245.153.139	attack	Dec 10 04:44:12 TORMINT sshd\[12233\]: Invalid user apache from 61.245.153.139 Dec 10 04:44:12 TORMINT sshd\[12233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.245.153.139 Dec 10 04:44:14 TORMINT sshd\[12233\]: Failed password for invalid user apache from 61.245.153.139 port 52970 ssh2 ...	2019-12-10 17:58:13
139.59.3.151	attack	2019-12-10T09:50:09.332901abusebot-6.cloudsearch.cf sshd\[13257\]: Invalid user strawberry from 139.59.3.151 port 38408	2019-12-10 17:58:58
121.142.111.230	attackspam	2019-12-10T08:19:33.592355abusebot-5.cloudsearch.cf sshd\[2156\]: Invalid user bjorn from 121.142.111.230 port 36554	2019-12-10 18:03:12
49.232.17.7	attack	Dec 10 08:36:59 localhost sshd\[123690\]: Invalid user carole from 49.232.17.7 port 52598 Dec 10 08:36:59 localhost sshd\[123690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.7 Dec 10 08:37:01 localhost sshd\[123690\]: Failed password for invalid user carole from 49.232.17.7 port 52598 ssh2 Dec 10 08:42:58 localhost sshd\[123990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.17.7 user=root Dec 10 08:43:00 localhost sshd\[123990\]: Failed password for root from 49.232.17.7 port 42266 ssh2 ...	2019-12-10 17:40:01
46.101.101.66	attackspam	SSH Brute-Force reported by Fail2Ban	2019-12-10 17:55:20
121.229.10.174	attackspambots	Dec 10 11:41:43 sauna sshd[117224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.10.174 Dec 10 11:41:45 sauna sshd[117224]: Failed password for invalid user squid from 121.229.10.174 port 57125 ssh2 ...	2019-12-10 17:45:19
218.92.0.141	attackspam	Brute-force attempt banned	2019-12-10 17:50:50

Recently Reported IPs

11.90.182.69	248.122.74.181	153.206.150.78	115.131.89.134
91.155.4.195	127.250.162.157	107.148.105.225	221.13.12.97
185.236.213.240	192.168.47.102	49.110.75.105	214.0.223.212
211.37.92.9	210.213.219.122	209.97.180.161	202.185.172.167
250.237.109.43	200.194.36.144	106.223.51.57	161.156.48.57