42.2.46.117 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: 42-2-46-117.static.netvigator.com.	2020-03-18 23:09:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.46.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.46.117.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 23:09:11 CST 2020
;; MSG SIZE  rcvd: 115

Host info

117.46.2.42.in-addr.arpa domain name pointer 42-2-46-117.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.46.2.42.in-addr.arpa	name = 42-2-46-117.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.250.116.235	attack	Feb 20 14:20:15 server sshd[1969384]: Failed password for invalid user gitlab-prometheus from 50.250.116.235 port 57368 ssh2 Feb 20 14:23:55 server sshd[1971446]: Failed password for invalid user daniel from 50.250.116.235 port 58716 ssh2 Feb 20 14:27:30 server sshd[1973493]: Failed password for invalid user amandabackup from 50.250.116.235 port 60082 ssh2	2020-02-21 00:24:18
159.89.153.54	attackbots	Feb 20 10:48:57 ny01 sshd[15330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.153.54 Feb 20 10:48:59 ny01 sshd[15330]: Failed password for invalid user ftpuser from 159.89.153.54 port 50274 ssh2 Feb 20 10:52:22 ny01 sshd[16709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.153.54	2020-02-21 00:05:18
192.241.135.34	attack	Feb 20 16:23:34 server sshd\[11300\]: Invalid user xutao from 192.241.135.34 Feb 20 16:23:34 server sshd\[11300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ekf.com.br Feb 20 16:23:36 server sshd\[11300\]: Failed password for invalid user xutao from 192.241.135.34 port 35893 ssh2 Feb 20 16:27:43 server sshd\[12048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ekf.com.br user=nagios Feb 20 16:27:46 server sshd\[12048\]: Failed password for nagios from 192.241.135.34 port 49261 ssh2 ...	2020-02-21 00:14:55
46.142.147.176	attack	Feb 20 13:59:22 server2 sshd[21799]: Invalid user debian from 46.142.147.176 Feb 20 13:59:25 server2 sshd[21799]: Failed password for invalid user debian from 46.142.147.176 port 59376 ssh2 Feb 20 13:59:25 server2 sshd[21799]: Received disconnect from 46.142.147.176: 11: Bye Bye [preauth] Feb 20 14:21:31 server2 sshd[26141]: Invalid user cpaneleximfilter from 46.142.147.176 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.142.147.176	2020-02-21 00:38:48
206.189.204.63	attackspam	Feb 20 15:27:48 sip sshd[24438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63 Feb 20 15:27:50 sip sshd[24438]: Failed password for invalid user tongxin from 206.189.204.63 port 51462 ssh2 Feb 20 15:39:22 sip sshd[27445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63	2020-02-21 00:28:44
54.36.183.33	attack	Unauthorized connection attempt detected from IP address 54.36.183.33 to port 22	2020-02-21 00:33:51
171.220.243.213	attack	Feb 20 20:05:59 gw1 sshd[12314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.243.213 Feb 20 20:06:01 gw1 sshd[12314]: Failed password for invalid user admin from 171.220.243.213 port 37946 ssh2 ...	2020-02-21 00:09:20
94.181.94.12	attackbotsspam	Feb 20 12:33:00 firewall sshd[22081]: Invalid user nagios from 94.181.94.12 Feb 20 12:33:02 firewall sshd[22081]: Failed password for invalid user nagios from 94.181.94.12 port 60972 ssh2 Feb 20 12:36:19 firewall sshd[22186]: Invalid user tomcat from 94.181.94.12 ...	2020-02-21 00:14:25
41.65.64.51	attackbotsspam	$f2bV_matches	2020-02-21 00:41:07
111.229.116.240	attackspam	Feb 20 16:31:26 MK-Soft-Root1 sshd[5117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.116.240 Feb 20 16:31:29 MK-Soft-Root1 sshd[5117]: Failed password for invalid user at from 111.229.116.240 port 59320 ssh2 ...	2020-02-21 00:15:33
92.63.194.59	attack	2020-02-20T16:11:23.028908dmca.cloudsearch.cf sshd[20618]: Invalid user admin from 92.63.194.59 port 32773 2020-02-20T16:11:23.034478dmca.cloudsearch.cf sshd[20618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.59 2020-02-20T16:11:23.028908dmca.cloudsearch.cf sshd[20618]: Invalid user admin from 92.63.194.59 port 32773 2020-02-20T16:11:25.344149dmca.cloudsearch.cf sshd[20618]: Failed password for invalid user admin from 92.63.194.59 port 32773 ssh2 2020-02-20T16:12:31.943913dmca.cloudsearch.cf sshd[20745]: Invalid user admin from 92.63.194.59 port 39391 2020-02-20T16:12:31.949074dmca.cloudsearch.cf sshd[20745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.59 2020-02-20T16:12:31.943913dmca.cloudsearch.cf sshd[20745]: Invalid user admin from 92.63.194.59 port 39391 2020-02-20T16:12:34.594861dmca.cloudsearch.cf sshd[20745]: Failed password for invalid user admin from 92.63.194.59 port ...	2020-02-21 00:28:01
159.65.148.91	attackspambots	Feb 20 05:57:18 wbs sshd\[28191\]: Invalid user tmpu01 from 159.65.148.91 Feb 20 05:57:18 wbs sshd\[28191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.148.91 Feb 20 05:57:20 wbs sshd\[28191\]: Failed password for invalid user tmpu01 from 159.65.148.91 port 44116 ssh2 Feb 20 05:59:27 wbs sshd\[28362\]: Invalid user couchdb from 159.65.148.91 Feb 20 05:59:27 wbs sshd\[28362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.148.91	2020-02-21 00:23:37
0.0.0.193	attackspam	Fail2Ban Ban Triggered	2020-02-21 00:19:57
120.70.100.2	attackspam	Feb 20 03:25:44 web9 sshd\[30635\]: Invalid user sunlei from 120.70.100.2 Feb 20 03:25:44 web9 sshd\[30635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.2 Feb 20 03:25:47 web9 sshd\[30635\]: Failed password for invalid user sunlei from 120.70.100.2 port 40584 ssh2 Feb 20 03:27:49 web9 sshd\[30911\]: Invalid user jenkins from 120.70.100.2 Feb 20 03:27:49 web9 sshd\[30911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.2	2020-02-21 00:11:41
49.51.11.68	normal	unauthorized connection attempt	2020-02-21 00:06:31

Recently Reported IPs

77.32.50.249	157.102.235.145	212.174.57.49	164.77.131.165
125.27.180.42	122.121.96.148	14.185.8.65	14.177.111.67
124.123.119.164	89.207.110.243	176.217.205.188	124.123.116.255
123.16.98.167	213.82.30.142	123.16.211.60	118.172.255.36
34.89.231.16	117.213.65.190	116.234.82.204	115.85.128.53