42.2.40.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 42.2.40.4 to port 5555 [J]	2020-01-14 20:33:14

Comments on same subnet:

IP	Type	Details	Datetime
42.2.40.35	attackspambots	Unauthorized connection attempt detected from IP address 42.2.40.35 to port 5555 [J]	2020-01-18 14:59:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.40.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30788
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.40.4.			IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011400 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 14 20:33:07 CST 2020
;; MSG SIZE  rcvd: 113

Host info

4.40.2.42.in-addr.arpa domain name pointer 42-2-40-004.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.40.2.42.in-addr.arpa	name = 42-2-40-004.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.170.195.137	attackbotsspam	Jun 12 01:22:23 OPSO sshd\[13404\]: Invalid user te from 121.170.195.137 port 46432 Jun 12 01:22:23 OPSO sshd\[13404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.170.195.137 Jun 12 01:22:25 OPSO sshd\[13404\]: Failed password for invalid user te from 121.170.195.137 port 46432 ssh2 Jun 12 01:25:09 OPSO sshd\[13777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.170.195.137 user=root Jun 12 01:25:11 OPSO sshd\[13777\]: Failed password for root from 121.170.195.137 port 32930 ssh2	2020-06-12 07:26:43
36.92.174.133	attackbotsspam	Jun 12 01:18:30 electroncash sshd[47426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.174.133 Jun 12 01:18:30 electroncash sshd[47426]: Invalid user roda123 from 36.92.174.133 port 43277 Jun 12 01:18:32 electroncash sshd[47426]: Failed password for invalid user roda123 from 36.92.174.133 port 43277 ssh2 Jun 12 01:22:22 electroncash sshd[48399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.174.133 user=root Jun 12 01:22:24 electroncash sshd[48399]: Failed password for root from 36.92.174.133 port 40478 ssh2 ...	2020-06-12 07:41:10
200.89.154.99	attackbotsspam	Jun 12 01:23:08 vps687878 sshd\[7353\]: Failed password for invalid user endo from 200.89.154.99 port 60495 ssh2 Jun 12 01:27:04 vps687878 sshd\[7850\]: Invalid user temp from 200.89.154.99 port 56609 Jun 12 01:27:04 vps687878 sshd\[7850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.154.99 Jun 12 01:27:06 vps687878 sshd\[7850\]: Failed password for invalid user temp from 200.89.154.99 port 56609 ssh2 Jun 12 01:31:01 vps687878 sshd\[8291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.154.99 user=root ...	2020-06-12 07:35:19
182.75.216.74	attackbots	Jun 12 02:02:34 pkdns2 sshd\[56356\]: Address 182.75.216.74 maps to nsg-static-74.216.75.182-airtel.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jun 12 02:02:34 pkdns2 sshd\[56356\]: Invalid user lol from 182.75.216.74Jun 12 02:02:36 pkdns2 sshd\[56356\]: Failed password for invalid user lol from 182.75.216.74 port 59235 ssh2Jun 12 02:09:24 pkdns2 sshd\[56716\]: Address 182.75.216.74 maps to nsg-static-74.216.75.182-airtel.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jun 12 02:09:24 pkdns2 sshd\[56716\]: Invalid user root@12 from 182.75.216.74Jun 12 02:09:25 pkdns2 sshd\[56716\]: Failed password for invalid user root@12 from 182.75.216.74 port 37647 ssh2 ...	2020-06-12 07:24:15
64.227.37.2	attackspambots	TCP (SYN) 64.227.37.2:61953 -> port 25463, len 44	2020-06-12 07:21:50
122.51.82.162	attackbots	Jun 12 01:00:11 localhost sshd\[29575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.162 user=root Jun 12 01:00:13 localhost sshd\[29575\]: Failed password for root from 122.51.82.162 port 60100 ssh2 Jun 12 01:04:52 localhost sshd\[29619\]: Invalid user tomcat from 122.51.82.162 Jun 12 01:04:52 localhost sshd\[29619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.162 Jun 12 01:04:55 localhost sshd\[29619\]: Failed password for invalid user tomcat from 122.51.82.162 port 55890 ssh2 ...	2020-06-12 07:24:55
45.141.87.6	attackbotsspam	RDP (aggressivity: very high)	2020-06-12 07:52:32
222.186.30.167	attackbots	Jun 12 00:13:33 rocket sshd[6667]: Failed password for root from 222.186.30.167 port 62835 ssh2 Jun 12 00:13:42 rocket sshd[6669]: Failed password for root from 222.186.30.167 port 26641 ssh2 ...	2020-06-12 07:16:20
222.186.169.194	attack	2020-06-12T01:17:14.575557sd-86998 sshd[14714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root 2020-06-12T01:17:16.694822sd-86998 sshd[14714]: Failed password for root from 222.186.169.194 port 42556 ssh2 2020-06-12T01:17:20.380858sd-86998 sshd[14714]: Failed password for root from 222.186.169.194 port 42556 ssh2 2020-06-12T01:17:14.575557sd-86998 sshd[14714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root 2020-06-12T01:17:16.694822sd-86998 sshd[14714]: Failed password for root from 222.186.169.194 port 42556 ssh2 2020-06-12T01:17:20.380858sd-86998 sshd[14714]: Failed password for root from 222.186.169.194 port 42556 ssh2 2020-06-12T01:17:14.575557sd-86998 sshd[14714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root 2020-06-12T01:17:16.694822sd-86998 sshd[14714]: Failed password for roo ...	2020-06-12 07:29:45
61.183.139.155	attackbots	Jun 12 04:17:56 dhoomketu sshd[670066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.139.155 user=root Jun 12 04:17:59 dhoomketu sshd[670066]: Failed password for root from 61.183.139.155 port 43614 ssh2 Jun 12 04:18:47 dhoomketu sshd[670101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.139.155 user=root Jun 12 04:18:49 dhoomketu sshd[670101]: Failed password for root from 61.183.139.155 port 51960 ssh2 Jun 12 04:19:37 dhoomketu sshd[670120]: Invalid user gou from 61.183.139.155 port 33384 ...	2020-06-12 07:27:17
82.189.223.116	attack	Jun 12 01:22:03 mout sshd[30879]: Invalid user sim from 82.189.223.116 port 52168 Jun 12 01:22:04 mout sshd[30879]: Failed password for invalid user sim from 82.189.223.116 port 52168 ssh2 Jun 12 01:22:06 mout sshd[30879]: Disconnected from invalid user sim 82.189.223.116 port 52168 [preauth]	2020-06-12 07:38:20
106.12.190.177	attackspambots	2020-06-11T19:16:18.7817451495-001 sshd[2415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.190.177 user=root 2020-06-11T19:16:20.8799291495-001 sshd[2415]: Failed password for root from 106.12.190.177 port 57132 ssh2 2020-06-11T19:19:13.9310301495-001 sshd[2532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.190.177 user=root 2020-06-11T19:19:16.0551401495-001 sshd[2532]: Failed password for root from 106.12.190.177 port 41546 ssh2 2020-06-11T19:22:10.6775421495-001 sshd[2708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.190.177 user=root 2020-06-11T19:22:12.7665801495-001 sshd[2708]: Failed password for root from 106.12.190.177 port 54186 ssh2 ...	2020-06-12 07:57:59
14.247.149.44	attackbotsspam	1591914431 - 06/12/2020 00:27:11 Host: 14.247.149.44/14.247.149.44 Port: 445 TCP Blocked	2020-06-12 07:55:59
112.85.42.176	attackspam	2020-06-12T01:35:43.741565rocketchat.forhosting.nl sshd[16758]: Failed password for root from 112.85.42.176 port 14603 ssh2 2020-06-12T01:35:48.018987rocketchat.forhosting.nl sshd[16758]: Failed password for root from 112.85.42.176 port 14603 ssh2 2020-06-12T01:35:53.309280rocketchat.forhosting.nl sshd[16758]: Failed password for root from 112.85.42.176 port 14603 ssh2 ...	2020-06-12 07:41:41
173.212.247.160	attackbots	2020-06-11T22:31:24.827134abusebot-6.cloudsearch.cf sshd[21393]: Invalid user hades from 173.212.247.160 port 53260 2020-06-11T22:31:24.833621abusebot-6.cloudsearch.cf sshd[21393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi146647.contaboserver.net 2020-06-11T22:31:24.827134abusebot-6.cloudsearch.cf sshd[21393]: Invalid user hades from 173.212.247.160 port 53260 2020-06-11T22:31:26.760322abusebot-6.cloudsearch.cf sshd[21393]: Failed password for invalid user hades from 173.212.247.160 port 53260 ssh2 2020-06-11T22:38:51.285068abusebot-6.cloudsearch.cf sshd[21851]: Invalid user shiyang from 173.212.247.160 port 40170 2020-06-11T22:38:51.292049abusebot-6.cloudsearch.cf sshd[21851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi146647.contaboserver.net 2020-06-11T22:38:51.285068abusebot-6.cloudsearch.cf sshd[21851]: Invalid user shiyang from 173.212.247.160 port 40170 2020-06-11T22:38:52.918298abu ...	2020-06-12 07:21:09

Recently Reported IPs

106.45.1.50	94.21.0.251	81.5.104.126	77.42.94.124
74.64.36.123	59.95.72.76	43.239.220.52	42.247.5.90
38.132.112.247	37.221.207.78	36.107.27.47	5.71.1.88
223.199.2.150	222.82.53.58	186.217.241.64	220.246.107.95
41.151.159.132	252.132.214.153	220.135.237.249	35.234.202.134