42.2.19.154 - IPInfo

Basic Info

City: Tsuen Wan

Region: Tsuen Wan District

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: HKT Limited

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.2.195.132	attack	5555/tcp [2020-10-05]1pkt	2020-10-07 02:52:50
42.2.195.132	attackspam	5555/tcp [2020-10-05]1pkt	2020-10-06 18:52:33
42.2.19.26	attack	SSH login attempts.	2020-08-23 00:03:51
42.2.199.137	attackspam	Honeypot attack, port: 5555, PTR: 42-2-199-137.static.netvigator.com.	2020-06-11 00:13:34
42.2.198.23	attackspam	5555/tcp [2020-04-01]1pkt	2020-04-01 21:55:12

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.19.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48722
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.19.154.			IN	A

;; AUTHORITY SECTION:
.			2361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 15 02:00:20 CST 2019
;; MSG SIZE  rcvd: 115

Host info

154.19.2.42.in-addr.arpa domain name pointer 42-2-19-154.static.netvigator.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
154.19.2.42.in-addr.arpa	name = 42-2-19-154.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.31.182.125	attackbotsspam	2020-07-26T14:02:47.079805shield sshd\[7881\]: Invalid user master from 176.31.182.125 port 49495 2020-07-26T14:02:47.091579shield sshd\[7881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.125 2020-07-26T14:02:48.582907shield sshd\[7881\]: Failed password for invalid user master from 176.31.182.125 port 49495 ssh2 2020-07-26T14:05:52.098524shield sshd\[8498\]: Invalid user nobe from 176.31.182.125 port 36817 2020-07-26T14:05:52.111242shield sshd\[8498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.125	2020-07-26 23:52:41
103.6.244.158	attackbotsspam	103.6.244.158 - - \[26/Jul/2020:16:11:56 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 103.6.244.158 - - \[26/Jul/2020:16:12:01 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 103.6.244.158 - - \[26/Jul/2020:16:12:03 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-26 23:37:16
107.6.183.226	attack	Unauthorized connection attempt detected from IP address 107.6.183.226 to port 3310	2020-07-26 23:55:00
118.24.99.161	attackspambots	SSH Brute-Forcing (server1)	2020-07-27 00:00:33
222.186.30.59	attackspam	Jul 26 17:49:11 vps647732 sshd[12675]: Failed password for root from 222.186.30.59 port 59199 ssh2 ...	2020-07-26 23:50:57
62.210.251.54	attack	[portscan] Port scan	2020-07-27 00:06:09
211.159.218.251	attack	bruteforce detected	2020-07-26 23:47:48
95.217.236.249	attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-27 00:14:47
180.76.142.19	attack	Jul 26 14:04:10 haigwepa sshd[22943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.142.19 Jul 26 14:04:12 haigwepa sshd[22943]: Failed password for invalid user fgt from 180.76.142.19 port 53128 ssh2 ...	2020-07-27 00:17:12
64.227.126.134	attack	Jul 26 17:14:27 ncomp sshd[29828]: Invalid user admin from 64.227.126.134 Jul 26 17:14:27 ncomp sshd[29828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.126.134 Jul 26 17:14:27 ncomp sshd[29828]: Invalid user admin from 64.227.126.134 Jul 26 17:14:29 ncomp sshd[29828]: Failed password for invalid user admin from 64.227.126.134 port 38050 ssh2	2020-07-26 23:55:34
139.59.18.215	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-27 00:19:03
122.51.204.45	attack	$f2bV_matches	2020-07-26 23:48:05
177.1.213.19	attackbotsspam	Jul 26 14:32:32 *** sshd[24672]: Invalid user mysql from 177.1.213.19	2020-07-27 00:02:33
129.226.114.41	attackbotsspam	Brute-force attempt banned	2020-07-27 00:09:28
109.116.14.186	attack	Automatic report - Banned IP Access	2020-07-26 23:45:53

Recently Reported IPs

78.198.216.139	13.70.77.156	1.234.31.43	179.108.87.174
138.117.23.37	27.171.57.164	79.166.156.213	17.90.65.58
146.11.187.204	27.121.254.70	29.118.121.18	13.77.171.7
146.131.45.98	188.102.43.124	207.154.70.11	65.40.189.249
189.68.255.211	90.251.207.65	122.95.182.184	63.169.27.133