42.2.19.154 - IPInfo

Basic Info

City: Tsuen Wan

Region: Tsuen Wan District

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: HKT Limited

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.2.195.132	attack	5555/tcp [2020-10-05]1pkt	2020-10-07 02:52:50
42.2.195.132	attackspam	5555/tcp [2020-10-05]1pkt	2020-10-06 18:52:33
42.2.19.26	attack	SSH login attempts.	2020-08-23 00:03:51
42.2.199.137	attackspam	Honeypot attack, port: 5555, PTR: 42-2-199-137.static.netvigator.com.	2020-06-11 00:13:34
42.2.198.23	attackspam	5555/tcp [2020-04-01]1pkt	2020-04-01 21:55:12

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.19.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48722
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.19.154.			IN	A

;; AUTHORITY SECTION:
.			2361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 15 02:00:20 CST 2019
;; MSG SIZE  rcvd: 115

Host info

154.19.2.42.in-addr.arpa domain name pointer 42-2-19-154.static.netvigator.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
154.19.2.42.in-addr.arpa	name = 42-2-19-154.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.75.33.66	attack	Oct 20 06:12:21 fr01 sshd[3575]: Invalid user fulvio from 106.75.33.66 Oct 20 06:12:21 fr01 sshd[3575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.33.66 Oct 20 06:12:21 fr01 sshd[3575]: Invalid user fulvio from 106.75.33.66 Oct 20 06:12:23 fr01 sshd[3575]: Failed password for invalid user fulvio from 106.75.33.66 port 35590 ssh2 Oct 20 06:27:03 fr01 sshd[6160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.33.66 user=root Oct 20 06:27:04 fr01 sshd[6160]: Failed password for root from 106.75.33.66 port 52946 ssh2 ...	2019-10-20 12:51:41
40.112.72.205	attack	microsoft.com - Bad Bots Host!	2019-10-20 13:05:32
130.105.143.153	attackspam	Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-10-20 12:33:03
175.211.116.226	attack	2019-10-20T04:59:42.671757abusebot-5.cloudsearch.cf sshd\[15926\]: Invalid user bjorn from 175.211.116.226 port 47326	2019-10-20 13:06:27
121.157.82.218	attackbotsspam	2019-10-20T04:25:32.661983abusebot-5.cloudsearch.cf sshd\[15610\]: Invalid user hp from 121.157.82.218 port 39512 2019-10-20T04:25:32.665961abusebot-5.cloudsearch.cf sshd\[15610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.218	2019-10-20 12:53:04
82.213.246.84	attackspam	Oct 20 03:57:28 hcbbdb sshd\[18861\]: Invalid user pi from 82.213.246.84 Oct 20 03:57:28 hcbbdb sshd\[18860\]: Invalid user pi from 82.213.246.84 Oct 20 03:57:28 hcbbdb sshd\[18861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.84.246.213.82.ibercom.com Oct 20 03:57:28 hcbbdb sshd\[18860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.84.246.213.82.ibercom.com Oct 20 03:57:30 hcbbdb sshd\[18861\]: Failed password for invalid user pi from 82.213.246.84 port 39762 ssh2	2019-10-20 12:56:57
95.222.252.254	attackspam	ssh failed login	2019-10-20 12:31:02
161.117.176.196	attackspam	Oct 20 05:57:37 www sshd\[5563\]: Invalid user ubuntu from 161.117.176.196 port 3428 ...	2019-10-20 12:52:05
121.136.167.50	attackbotsspam	2019-10-20T04:25:36.274064abusebot-5.cloudsearch.cf sshd\[15612\]: Invalid user hp from 121.136.167.50 port 38072 2019-10-20T04:25:36.278887abusebot-5.cloudsearch.cf sshd\[15612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.167.50	2019-10-20 12:37:39
61.76.175.195	attack	Oct 20 07:15:54 server sshd\[15430\]: User root from 61.76.175.195 not allowed because listed in DenyUsers Oct 20 07:15:54 server sshd\[15430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root Oct 20 07:15:56 server sshd\[15430\]: Failed password for invalid user root from 61.76.175.195 port 60232 ssh2 Oct 20 07:20:29 server sshd\[20410\]: User root from 61.76.175.195 not allowed because listed in DenyUsers Oct 20 07:20:29 server sshd\[20410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root	2019-10-20 12:29:53
51.75.171.150	attackspam	Oct 20 05:54:28 jane sshd[3025]: Failed password for mail from 51.75.171.150 port 41944 ssh2 ...	2019-10-20 12:40:06
107.151.222.194	attackspambots	Unauthorised access (Oct 20) SRC=107.151.222.194 LEN=40 TTL=236 ID=37597 TCP DPT=1433 WINDOW=1024 SYN	2019-10-20 13:02:09
5.160.103.202	attack	Unauthorised access (Oct 20) SRC=5.160.103.202 LEN=40 PREC=0x20 TTL=241 ID=26285 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Oct 19) SRC=5.160.103.202 LEN=40 PREC=0x20 TTL=241 ID=49517 TCP DPT=3389 WINDOW=1024 SYN	2019-10-20 12:38:40
138.68.12.43	attackspambots	Oct 20 07:05:34 vps647732 sshd[1960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Oct 20 07:05:36 vps647732 sshd[1960]: Failed password for invalid user polarbear from 138.68.12.43 port 59442 ssh2 ...	2019-10-20 13:07:02
106.12.68.10	attackbots	Oct 19 18:39:50 friendsofhawaii sshd\[24025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.10 user=root Oct 19 18:39:53 friendsofhawaii sshd\[24025\]: Failed password for root from 106.12.68.10 port 45042 ssh2 Oct 19 18:45:18 friendsofhawaii sshd\[24443\]: Invalid user con from 106.12.68.10 Oct 19 18:45:18 friendsofhawaii sshd\[24443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.10 Oct 19 18:45:20 friendsofhawaii sshd\[24443\]: Failed password for invalid user con from 106.12.68.10 port 36974 ssh2	2019-10-20 12:45:39

Recently Reported IPs

78.198.216.139	13.70.77.156	1.234.31.43	179.108.87.174
138.117.23.37	27.171.57.164	79.166.156.213	17.90.65.58
146.11.187.204	27.121.254.70	29.118.121.18	13.77.171.7
146.131.45.98	188.102.43.124	207.154.70.11	65.40.189.249
189.68.255.211	90.251.207.65	122.95.182.184	63.169.27.133